$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c39d5c58-914d-4d17-9204-d6652dbcef48.roa File: c39d5c58-914d-4d17-9204-d6652dbcef48.roa (raw, json) Hash identifier: NtfEY05UlhqOQpdMoN08iezanjQGwN4qB73QUuosFss= Subject key identifier: 0B:38:1A:50:7D:15:6E:EE:48:C0:93:65:7B:DE:49:7E:44:24:CB:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38EEF578406EDB7927CF076DD50C988B4E0DD7DD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c39d5c58-914d-4d17-9204-d6652dbcef48.roa Signing time: Wed 20 Aug 2025 00:10:23 +0000 ROA not before: Wed 20 Aug 2025 00:10:23 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:ee:f5:78:40:6e:db:79:27:cf:07:6d:d5:0c:98:8b:4e:0d:d7:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 20 00:10:23 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=6168ff9e508808e2eda96b965e0e05fb9e7c1d00f45ebde20a71fdcf427c9c51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f5:72:3d:00:53:a2:d8:6a:9e:d0:49:68:96: 2a:d2:66:eb:6b:6e:ed:0f:22:ea:11:90:3d:46:d8: 34:74:d1:01:e2:a6:68:35:4e:2d:b1:40:b8:a2:c1: 69:89:e9:01:de:6a:f9:88:0a:86:0c:89:c6:76:47: a5:8b:b6:fc:ae:5b:9b:63:e5:ff:21:f8:29:98:cf: c1:1e:1d:a9:60:cc:39:59:c2:bc:85:67:8b:f8:c4: 75:d9:5f:d7:d5:1c:07:ea:ae:b9:e7:31:ef:ba:2d: 20:ac:8c:49:8b:8d:e0:8a:91:5f:32:ef:f3:ae:e2: 72:fc:e4:95:ee:59:cc:9c:0e:7b:dd:42:e5:63:54: 72:99:fa:ff:a2:ac:fb:0a:8b:78:9a:10:b3:db:12: ab:dd:24:c3:17:6e:42:9e:0e:83:a0:6b:46:fa:2a: 9b:32:47:a1:f1:bd:d9:2d:82:cc:7f:3d:b2:59:86: df:a2:d0:22:54:43:e0:5c:fc:3f:78:18:e1:10:ff: ae:92:39:b5:65:7f:c6:04:a9:a1:88:26:1a:61:b7: 21:fc:25:8e:58:40:f2:04:d2:46:a4:50:ce:86:f8: 50:7a:d8:03:1e:7b:fe:06:19:48:88:4d:6a:25:03: f7:eb:cb:c7:a3:c4:58:a7:36:75:1e:c1:8a:b0:06: 5d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:38:1A:50:7D:15:6E:EE:48:C0:93:65:7B:DE:49:7E:44:24:CB:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c39d5c58-914d-4d17-9204-d6652dbcef48.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.59.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:96:8e:1e:d7:61:58:e6:bf:60:1e:77:0b:63:89:ff:18:3a: 86:59:bb:8e:10:0a:af:65:da:7c:31:5c:7e:fa:9e:7b:3e:8c: 61:26:31:a3:fa:51:d7:33:62:f3:87:fc:09:9c:b3:2a:af:d4: 5e:e0:33:f7:57:88:6b:4b:ad:e5:41:d7:43:72:35:64:6d:4f: 03:c5:a4:26:75:a9:fd:b6:ab:29:c3:80:35:58:89:a4:1f:95: c7:72:54:06:53:83:8e:cd:88:1a:8f:73:ef:22:9f:e5:b5:54: 56:37:4b:b1:31:ab:6e:e9:2c:61:61:bc:3f:c3:a3:e7:17:d6: ef:65:78:d7:18:d6:cc:e9:d1:78:cf:56:d7:63:2c:a0:e0:a8: 6e:88:5b:cf:ac:b2:20:72:7f:04:29:c3:3e:ce:0a:28:fe:19: 70:79:b6:19:27:34:c6:fe:63:2a:d6:9e:f4:ae:9e:29:ad:16: a8:d3:2c:19:69:88:30:9c:5c:da:4c:cb:57:ec:13:79:d4:51: 1c:76:9f:6c:ed:88:82:e6:2b:9d:46:54:fb:05:90:0a:14:8f: da:c1:9f:f6:ce:d6:66:1f:90:bc:d6:68:26:0b:64:f7:96:6b: 69:b0:d3:42:c4:e2:bf:28:de:76:a6:fc:06:a0:ae:9a:60:0e: d5:7d:72:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOO71eEBu23knzwdt1QyYi04N190wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIwMDAxMDIzWhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MTY4ZmY5ZTUwODgwOGUyZWRhOTZiOTY1ZTBlMDVmYjll N2MxZDAwZjQ1ZWJkZTIwYTcxZmRjZjQyN2M5YzUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx9XI9AFOi2Gqe0ElolirSZutrbu0PIuoRkD1G2DR00QHi pmg1Ti2xQLiiwWmJ6QHeavmICoYMicZ2R6WLtvyuW5tj5f8h+CmYz8EeHalgzDlZ wryFZ4v4xHXZX9fVHAfqrrnnMe+6LSCsjEmLjeCKkV8y7/Ou4nL85JXuWcycDnvd QuVjVHKZ+v+irPsKi3iaELPbEqvdJMMXbkKeDoOga0b6KpsyR6Hxvdktgsx/PbJZ ht+i0CJUQ+Bc/D94GOEQ/66SObVlf8YEqaGIJhphtyH8JY5YQPIE0kakUM6G+FB6 2AMee/4GGUiITWolA/fry8ejxFinNnUewYqwBl3PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCzgaUH0Vbu5IwJNle95JfkQky8MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MzOWQ1YzU4LTkxNGQtNGQxNy05MjA0LWQ2NjUyZGJjZWY0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABODDswDQYJKoZIhvcNAQELBQADggEBACuWjh7XYVjmv2Aedwtjif8YOoZZ u44QCq9l2nwxXH76nns+jGEmMaP6UdczYvOH/Amcsyqv1F7gM/dXiGtLreVB10Ny NWRtTwPFpCZ1qf22qynDgDVYiaQflcdyVAZTg47NiBqPc+8in+W1VFY3S7Exq27p LGFhvD/Do+cX1u9leNcY1szp0XjPVtdjLKDgqG6IW8+ssiByfwQpwz7OCij+GXB5 thknNMb+YyrWnvSunimtFqjTLBlpiDCcXNpMy1fsE3nUURx2n2ztiILmK51GVPsF kAoUj9rBn/bO1mYfkLzWaCYLZPeWa2mw00LE4r8o3nam/AagrppgDtV9cuk= -----END CERTIFICATE-----Generated at Sat Aug 23 06:46:54 2025 by rpki-client