$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79b61ca4-67b3-4ea2-95eb-ba7f6e611072.roa File: 79b61ca4-67b3-4ea2-95eb-ba7f6e611072.roa (raw, json) Hash identifier: acWmxrM8SVaGgyKWZtnY4JPKJ57tXlBXoS57OBcHr8Y= Subject key identifier: 8C:B0:40:78:99:96:CD:E0:58:C0:4E:DA:35:83:82:95:88:B5:D5:15 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 752BE06FA24C2CC84DAAD58210D79C98355C7F71 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79b61ca4-67b3-4ea2-95eb-ba7f6e611072.roa Signing time: Mon 16 Jun 2025 15:31:14 +0000 ROA not before: Mon 16 Jun 2025 15:31:14 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.226.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:2b:e0:6f:a2:4c:2c:c8:4d:aa:d5:82:10:d7:9c:98:35:5c:7f:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:31:14 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=26253c86aa8df9e3ea4215ce8320ad12c15ba711d9f6d7c508045c63fc398868, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9c:37:be:67:52:2a:ff:48:ef:53:40:1c:cb: 46:ab:d0:20:f3:5e:60:48:be:dd:11:eb:fd:91:5f: 2c:ee:00:fc:e9:ba:6d:ea:b7:67:3d:15:65:b5:6c: db:89:ff:70:f3:78:27:40:58:32:b4:52:4a:3c:bd: 7a:cb:77:a6:f5:a2:58:ee:74:7f:f9:67:03:dd:f0: e0:98:58:95:19:ce:28:02:05:95:3e:3a:86:cd:ce: e6:be:29:3e:92:ee:3b:94:da:61:60:19:e8:9f:94: 30:43:79:1c:59:44:8a:4f:dc:04:33:88:34:20:38: 55:25:06:cf:b4:39:8d:25:c3:26:7d:57:12:6b:e4: 9e:d0:1a:24:69:71:35:a6:57:cf:ce:34:88:92:dd: 61:45:34:49:bc:cb:47:00:d8:45:a3:f3:f5:1b:ac: aa:0d:9c:fe:b5:21:c9:dc:cd:48:72:8f:af:6f:7e: 1a:63:4d:17:d9:a8:ee:0d:30:3b:56:6a:13:2d:3a: 2c:ee:a1:d3:0b:44:82:6c:3b:4a:46:cd:70:ee:a8: 80:9b:85:a0:59:e0:5c:71:81:57:31:52:9c:f4:27: 86:ce:95:73:db:62:de:da:6d:d2:01:09:b1:3f:6c: 93:4f:8a:0a:f7:1a:21:b8:2f:b4:fc:6a:8f:a6:5f: 04:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:B0:40:78:99:96:CD:E0:58:C0:4E:DA:35:83:82:95:88:B5:D5:15 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79b61ca4-67b3-4ea2-95eb-ba7f6e611072.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.226.221.0/24 Signature Algorithm: sha256WithRSAEncryption 79:b2:8d:00:21:e3:85:4e:f8:b7:4e:ef:1b:e5:fb:3d:a3:fd: 05:2e:62:7c:91:d6:a8:70:26:b7:e3:36:1c:8c:6d:5d:ab:d0: 60:a9:6d:50:0e:a2:07:87:f6:9c:15:3a:0b:cc:26:6a:c7:60: 5f:8d:c6:6c:65:d2:c3:56:7d:fa:16:9c:65:79:5e:87:ef:59: 43:46:a2:74:06:04:1a:96:30:8d:b5:1b:c9:55:ba:79:69:45: 4b:2d:4b:3b:d1:bd:ae:a9:1e:fa:7e:83:28:76:fa:e1:0a:f2: bf:10:98:f8:cf:f8:bc:72:52:6d:89:56:4d:7f:0d:8f:38:b8: 21:5c:03:a2:ec:0e:d2:ae:76:c8:d1:32:35:7e:64:71:4d:85: 81:56:60:2e:06:4a:b0:ba:17:99:31:e5:27:c4:c4:c4:3c:19: 43:c3:98:94:46:fb:ac:c1:e3:d2:4f:58:15:5f:01:28:30:00: 60:63:1c:10:4b:23:b7:20:a8:c4:42:0e:2c:8d:0e:89:ac:34: ee:f7:92:3f:6b:26:61:bf:8b:cb:f5:d6:84:a7:92:0a:09:3a: 0c:bb:27:c6:17:ff:e0:d5:eb:66:76:3c:97:1b:a7:89:16:55: 10:3e:df:3d:59:65:df:64:27:23:73:4f:fd:15:32:d3:a4:1f: 3f:34:6b:b3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdSvgb6JMLMhNqtWCENecmDVcf3EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTUzMTE0WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNjI1M2M4NmFhOGRmOWUzZWE0MjE1Y2U4MzIwYWQxMmMx NWJhNzExZDlmNmQ3YzUwODA0NWM2M2ZjMzk4ODY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClnDe+Z1Iq/0jvU0Acy0ar0CDzXmBIvt0R6/2RXyzuAPzp um3qt2c9FWW1bNuJ/3DzeCdAWDK0Uko8vXrLd6b1oljudH/5ZwPd8OCYWJUZzigC BZU+OobNzua+KT6S7juU2mFgGeiflDBDeRxZRIpP3AQziDQgOFUlBs+0OY0lwyZ9 VxJr5J7QGiRpcTWmV8/ONIiS3WFFNEm8y0cA2EWj8/UbrKoNnP61IcnczUhyj69v fhpjTRfZqO4NMDtWahMtOizuodMLRIJsO0pGzXDuqICbhaBZ4FxxgVcxUpz0J4bO lXPbYt7abdIBCbE/bJNPigr3GiG4L7T8ao+mXwSZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjLBAeJmWzeBYwE7aNYOClYi11RUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc5YjYxY2E0LTY3YjMtNGVhMi05NWViLWJhN2Y2ZTYxMTA3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA4t0wDQYJKoZIhvcNAQELBQADggEBAHmyjQAh44VO+LdO7xvl+z2j/QUu YnyR1qhwJrfjNhyMbV2r0GCpbVAOogeH9pwVOgvMJmrHYF+Nxmxl0sNWffoWnGV5 XofvWUNGonQGBBqWMI21G8lVunlpRUstSzvRva6pHvp+gyh2+uEK8r8QmPjP+Lxy Um2JVk1/DY84uCFcA6LsDtKudsjRMjV+ZHFNhYFWYC4GSrC6F5kx5SfExMQ8GUPD mJRG+6zB49JPWBVfASgwAGBjHBBLI7cgqMRCDiyNDomsNO73kj9rJmG/i8v11oSn kgoJOgy7J8YX/+DV62Z2PJcbp4kWVRA+3z1ZZd9kJyNzT/0VMtOkHz80a7M= -----END CERTIFICATE-----Generated at Wed Jul 2 23:02:27 2025 by rpki-client