$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa File: 70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa (raw, json) Hash identifier: jRYwGswjM5LuWewTBHBWcXarwZjiSLDbQewarfziJ5U= Subject key identifier: 92:83:F4:25:1F:CF:65:3C:11:8C:29:AD:DA:CA:5B:04:40:C1:FE:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56416F3481C04EFE2DB1C184A856DE33D0E80CB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa Signing time: Wed 09 Jul 2025 00:20:12 +0000 ROA not before: Wed 09 Jul 2025 00:20:12 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.182.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:41:6f:34:81:c0:4e:fe:2d:b1:c1:84:a8:56:de:33:d0:e8:0c:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:20:12 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=a1525b04d6385bf2a2fc35db5770b197e1c09e79b60f6c866be042c1b58296cf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a0:7f:f5:bd:dc:fd:fa:83:d0:e8:6e:6e:4f: 56:04:10:eb:23:85:11:b2:b4:12:e4:47:2a:af:d4: 69:0c:0b:bb:04:51:1a:56:7f:ac:d4:16:b0:67:ad: 4e:58:aa:bb:b2:61:0c:38:f5:7e:a1:da:1e:1b:86: 3e:72:df:1e:ca:7e:06:90:dd:46:5d:ac:b2:15:ff: f3:d1:b6:0c:ab:23:cb:c7:ab:3c:82:7e:9f:63:f1: 25:8a:d4:52:89:05:67:85:35:ee:c4:d9:63:df:45: d3:9c:6e:ab:a0:d1:7d:a1:c8:23:e5:88:8e:43:01: 32:17:14:33:c9:48:f0:17:6a:20:cf:ba:36:4d:9b: 2d:37:ed:e8:0c:0f:1c:2e:82:32:e1:c6:5a:2a:51: 1d:0c:06:50:79:d2:86:c6:3b:f2:65:e0:0c:2a:95: 8a:0d:13:7b:d5:1e:1b:5a:39:dc:cc:ca:03:e2:0e: d6:5a:92:df:a9:e8:9d:ff:50:8e:68:02:46:7c:ba: 4e:88:21:5c:a2:c4:16:80:92:c6:74:3d:87:94:54: ad:2f:21:96:43:4e:9e:97:c1:68:63:5b:b2:81:da: a6:f7:94:dc:9f:5c:2c:23:85:43:62:e2:cf:08:4c: 0d:b4:72:85:66:e1:b2:4c:1d:42:26:21:3c:87:f2: 7f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:83:F4:25:1F:CF:65:3C:11:8C:29:AD:DA:CA:5B:04:40:C1:FE:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.182.232.0/22 Signature Algorithm: sha256WithRSAEncryption a7:9f:2c:b4:f3:63:98:01:e6:4b:9f:af:a8:27:55:c9:e6:c2: c9:8f:e4:24:77:de:5f:ac:cb:53:3d:b7:25:86:21:cf:de:b2: 1b:d5:60:01:c8:4b:ce:15:a0:90:65:9a:b4:33:0a:61:a5:e1: 3e:42:0b:c1:e8:cf:3b:08:51:06:81:fa:5e:ef:24:81:c7:5b: 39:1a:5b:62:0c:82:f9:e3:61:5d:a2:4b:ac:29:15:4f:e9:27: e0:8c:0f:21:4f:75:d5:6d:00:d0:bf:3d:e2:89:2d:ab:29:0a: 7b:ac:54:a9:e1:a9:8e:b7:7c:a8:e1:bb:33:3f:00:96:b0:96: ee:f1:02:19:6d:f0:da:ec:16:22:4b:4e:57:3b:d3:79:ac:c0: 70:c9:a0:5f:40:13:a0:30:31:17:75:11:83:f4:1f:72:57:3a: 60:b0:da:02:87:97:5d:61:a1:1b:df:f3:fb:42:96:25:62:f0: 4f:ee:da:d3:b9:1d:60:ea:03:54:e9:07:3f:9f:64:8b:01:fe: da:b2:89:36:f6:94:9c:34:3d:c1:8d:4b:45:6c:63:79:d6:9e: a5:b6:17:0e:91:70:08:62:36:44:4b:a2:95:46:4c:20:d3:7a: f9:f1:3f:93:6d:d3:d9:c0:86:b0:7d:8f:de:40:82:14:78:dd: 0e:1c:fa:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVkFvNIHATv4tscGEqFbeM9DoDLYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDAyMDEyWhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTUyNWIwNGQ2Mzg1YmYyYTJmYzM1ZGI1NzcwYjE5N2Ux YzA5ZTc5YjYwZjZjODY2YmUwNDJjMWI1ODI5NmNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMoH/1vdz9+oPQ6G5uT1YEEOsjhRGytBLkRyqv1GkMC7sE URpWf6zUFrBnrU5YqruyYQw49X6h2h4bhj5y3x7KfgaQ3UZdrLIV//PRtgyrI8vH qzyCfp9j8SWK1FKJBWeFNe7E2WPfRdOcbqug0X2hyCPliI5DATIXFDPJSPAXaiDP ujZNmy037egMDxwugjLhxloqUR0MBlB50obGO/Jl4AwqlYoNE3vVHhtaOdzMygPi DtZakt+p6J3/UI5oAkZ8uk6IIVyixBaAksZ0PYeUVK0vIZZDTp6XwWhjW7KB2qb3 lNyfXCwjhUNi4s8ITA20coVm4bJMHUImITyH8n8XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkoP0JR/PZTwRjCmt2spbBEDB/iMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwYWE0Mjg1LWNiZDAtNDUwZi1iNTJjLWE3MGJhMWUzOTRkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALYtugwDQYJKoZIhvcNAQELBQADggEBAKefLLTzY5gB5kufr6gnVcnmwsmP 5CR33l+sy1M9tyWGIc/eshvVYAHIS84VoJBlmrQzCmGl4T5CC8HozzsIUQaB+l7v JIHHWzkaW2IMgvnjYV2iS6wpFU/pJ+CMDyFPddVtANC/PeKJLaspCnusVKnhqY63 fKjhuzM/AJawlu7xAhlt8NrsFiJLTlc703mswHDJoF9AE6AwMRd1EYP0H3JXOmCw 2gKHl11hoRvf8/tCliVi8E/u2tO5HWDqA1TpBz+fZIsB/tqyiTb2lJw0PcGNS0Vs Y3nWnqW2Fw6RcAhiNkRLopVGTCDTevnxP5Nt09nAhrB9j95AghR43Q4c+sA= -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:56 2025 by rpki-client