$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a759ad3e-9206-4ceb-aa31-eb2d6952fa66.roa File: a759ad3e-9206-4ceb-aa31-eb2d6952fa66.roa (raw, json) Hash identifier: xgFiDgq3vKazB/QUPRZcclo9AUcfmAn/Vcl/c7+Njso= Subject key identifier: 11:BA:75:7C:62:B0:58:BE:B1:01:72:7F:03:EF:69:B5:8E:3C:2D:DB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F796DD992FB44001A9C34986B4007647E289FC3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a759ad3e-9206-4ceb-aa31-eb2d6952fa66.roa Signing time: Mon 16 Jun 2025 15:42:15 +0000 ROA not before: Mon 16 Jun 2025 15:42:15 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.232.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:79:6d:d9:92:fb:44:00:1a:9c:34:98:6b:40:07:64:7e:28:9f:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:42:15 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=8e0ffd1e14fe7dac222d4a28f3ab17b907c1bcf52825152e328da8f596413b05, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c0:b2:36:14:86:d3:6b:f8:35:17:72:7e:59: 07:6b:28:33:10:c1:47:e0:83:6e:1c:94:f5:0c:8d: 55:ea:36:3e:2c:2c:0c:9a:66:fb:cd:ae:75:dd:e8: 64:d4:eb:b7:cd:91:44:62:e7:c3:e4:cb:6c:09:af: cd:c2:83:41:3c:23:3d:48:03:82:f0:02:e6:87:0a: c3:08:a6:4f:5c:0c:4c:c5:d7:48:06:e7:f1:02:58: d7:f6:90:a0:c9:33:ff:78:63:2d:5b:ee:4a:b7:7b: ea:7c:c6:9a:ad:40:6c:b4:5a:48:ea:10:50:6e:3d: bf:21:75:22:da:fe:f7:27:04:fb:c2:2c:05:79:d0: 4c:8c:06:66:7d:f7:24:b0:d2:fb:49:28:29:33:b3: 6b:a4:bf:16:40:a2:90:4a:88:37:28:80:0f:57:c5: 77:cb:41:fc:0e:b4:93:ee:87:b0:dc:1b:f4:e8:93: 93:ec:44:9b:8f:7f:a8:e4:0a:e0:d6:b1:8a:d8:7f: de:87:07:c9:ff:82:97:0a:31:27:75:a9:a0:68:d0: d7:d4:b0:21:06:89:18:de:7e:de:9a:13:4e:d2:d9: 85:81:68:b7:e6:78:58:75:08:3b:ae:4d:5f:cb:b7: db:bf:66:fc:f8:2b:0a:cd:e9:84:04:f1:e6:04:86: 11:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:BA:75:7C:62:B0:58:BE:B1:01:72:7F:03:EF:69:B5:8E:3C:2D:DB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a759ad3e-9206-4ceb-aa31-eb2d6952fa66.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.232.124.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:af:ef:56:5e:91:5e:b4:00:6f:a5:5a:c0:bc:f2:6c:59:98: 5b:77:c6:3c:61:fd:54:99:1d:77:d2:89:7e:cd:b1:22:f2:bd: 2e:84:dc:dd:d7:9c:1d:4d:cb:d1:9e:e1:7d:5f:70:9d:a0:f9: 8b:07:bf:4e:01:cf:16:ca:bd:18:b1:74:be:83:29:36:be:6a: b3:b1:6f:a7:41:21:46:6a:99:1e:86:5f:4f:99:b5:76:80:30: 17:82:9f:c8:80:31:07:84:1b:77:1f:da:28:76:2e:d7:a2:70: 3a:9b:33:21:bb:59:89:32:e2:c9:31:04:b4:13:57:6d:3b:f4: 7a:68:ab:c0:a5:c1:0e:b8:57:a6:f1:ba:62:db:0b:92:a7:21: ea:9e:9d:27:ba:08:0d:d1:f7:31:70:86:5d:b6:af:99:5d:08: ab:9d:e6:68:6e:17:54:2e:15:ea:f0:45:3c:62:c5:0f:1f:a1: 59:41:52:d3:71:3b:d6:37:92:09:69:a5:46:79:ba:78:21:5c: 27:29:c7:48:f4:05:37:33:2e:a0:33:b6:ff:4c:45:fb:61:f1: 82:26:88:b7:3c:7f:f4:89:32:ac:4d:9d:9f:dd:0f:4d:c5:b1: 87:42:5f:b2:fb:15:95:55:bc:ba:4a:3c:00:46:66:86:d2:7d: 08:90:70:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL3lt2ZL7RAAanDSYa0AHZH4on8MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTU0MjE1WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTBmZmQxZTE0ZmU3ZGFjMjIyZDRhMjhmM2FiMTdiOTA3 YzFiY2Y1MjgyNTE1MmUzMjhkYThmNTk2NDEzYjA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkwLI2FIbTa/g1F3J+WQdrKDMQwUfgg24clPUMjVXqNj4s LAyaZvvNrnXd6GTU67fNkURi58Pky2wJr83Cg0E8Iz1IA4LwAuaHCsMIpk9cDEzF 10gG5/ECWNf2kKDJM/94Yy1b7kq3e+p8xpqtQGy0WkjqEFBuPb8hdSLa/vcnBPvC LAV50EyMBmZ99ySw0vtJKCkzs2ukvxZAopBKiDcogA9XxXfLQfwOtJPuh7DcG/To k5PsRJuPf6jkCuDWsYrYf96HB8n/gpcKMSd1qaBo0NfUsCEGiRjeft6aE07S2YWB aLfmeFh1CDuuTV/Lt9u/Zvz4KwrN6YQE8eYEhhFdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEbp1fGKwWL6xAXJ/A+9ptY48LdswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3NTlhZDNlLTkyMDYtNGNlYi1hYTMxLWViMmQ2OTUyZmE2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJG6HwwDQYJKoZIhvcNAQELBQADggEBAF+v71ZekV60AG+lWsC88mxZmFt3 xjxh/VSZHXfSiX7NsSLyvS6E3N3XnB1Ny9Ge4X1fcJ2g+YsHv04BzxbKvRixdL6D KTa+arOxb6dBIUZqmR6GX0+ZtXaAMBeCn8iAMQeEG3cf2ih2LteicDqbMyG7WYky 4skxBLQTV2079Hpoq8ClwQ64V6bxumLbC5KnIeqenSe6CA3R9zFwhl22r5ldCKud 5mhuF1QuFerwRTxixQ8foVlBUtNxO9Y3kglppUZ5unghXCcpx0j0BTczLqAztv9M Rfth8YImiLc8f/SJMqxNnZ/dD03FsYdCX7L7FZVVvLpKPABGZobSfQiQcEc= -----END CERTIFICATE-----Generated at Mon Jun 30 15:17:32 2025 by rpki-client