$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc653e96-0d95-4eef-a3c8-8e462bde99e4.roa File: bc653e96-0d95-4eef-a3c8-8e462bde99e4.roa (raw, json) Hash identifier: ZUmqTgMQm95yNa/l2U6bMlK3qnFbJDREGqqoRW2AHdE= Subject key identifier: A4:12:E5:F4:E3:15:26:31:30:E4:39:37:19:E4:A1:D4:E0:CD:20:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B262FAD39303ECCFBD089F3A3D1F1934B87262F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc653e96-0d95-4eef-a3c8-8e462bde99e4.roa Signing time: Fri 11 Jul 2025 00:42:02 +0000 ROA not before: Fri 11 Jul 2025 00:42:02 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.224.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:26:2f:ad:39:30:3e:cc:fb:d0:89:f3:a3:d1:f1:93:4b:87:26:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:42:02 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=c41299f32905a76d46039b389b31deeaabbbf61c26ab4a89f5134d9d8e295ec2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:34:6e:53:76:54:32:49:fd:cd:eb:ce:44:99: 97:0e:2c:f0:2c:c7:fe:84:d3:d0:68:54:b1:d4:70: 9c:f4:df:79:ba:f3:5c:96:31:f3:4c:d6:21:0b:2b: 89:9c:d8:14:e3:6d:1b:30:f7:74:b8:99:38:4a:e4: e3:83:c2:27:1d:2d:4e:42:ba:33:22:be:2e:00:fd: d7:32:22:37:fa:b1:bf:6f:a9:49:91:9d:4e:2a:14: 1d:cc:95:24:0f:08:b5:8a:e4:fc:90:46:b6:00:60: b1:7c:5b:9c:e1:03:db:69:28:cc:bc:fe:48:90:93: df:78:3a:f0:cd:f1:b0:89:51:1a:37:66:5b:10:38: 7a:d1:4d:20:12:ff:b1:3e:b2:39:25:eb:07:bb:8b: 54:08:02:e0:c4:01:79:56:6a:02:46:9f:ad:54:ad: a7:1d:67:95:b4:75:52:df:1b:35:e4:21:51:1c:29: ab:68:a3:c3:b8:e0:a0:c4:f0:52:a9:f3:a3:b4:1e: 7b:76:b5:8f:81:0d:56:cc:be:9a:51:ec:47:57:08: 27:ee:d7:0e:25:7d:8b:3d:5e:3c:71:9f:43:f1:73: 8c:32:c8:92:f8:6a:79:92:84:72:2d:6f:e2:c8:bb: 86:d6:6c:13:1e:3a:49:ba:14:89:3f:e2:46:2f:ee: f2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:12:E5:F4:E3:15:26:31:30:E4:39:37:19:E4:A1:D4:E0:CD:20:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc653e96-0d95-4eef-a3c8-8e462bde99e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.224.224.0/19 Signature Algorithm: sha256WithRSAEncryption 29:5e:a4:4b:78:52:e4:3f:8a:a7:a2:63:e9:87:b0:0e:ab:e7: e5:85:4a:af:a9:57:ad:a5:51:54:b0:2c:b4:2b:9a:2e:81:02: 30:a9:c9:15:55:70:27:fb:bb:ad:5f:bb:2e:91:16:98:9b:f9: b4:18:14:f7:21:70:01:68:4d:32:00:49:85:ef:77:71:41:22: 8c:d6:a8:1c:73:b8:08:f3:1d:75:1b:a2:25:0e:2f:5b:b6:a8: 38:1a:a7:9f:58:0a:83:84:36:5a:39:6e:70:36:70:33:4a:18: 4b:76:4c:2c:3f:55:9a:c8:81:e3:06:09:26:b1:4b:37:1e:5e: c7:a1:67:c9:8c:c3:82:3f:24:c6:a9:3d:6e:18:34:73:05:b7: 61:b6:69:76:58:0b:57:ae:e7:c3:f9:6c:4f:be:c3:11:4f:fb: 49:ad:f3:56:c0:45:33:10:ca:b7:4e:53:3f:e6:22:ac:c9:b7: d4:8b:5c:1e:ca:79:49:68:29:07:1f:eb:17:eb:1c:e3:c5:ea: e2:f9:08:f1:d7:52:c3:ff:b4:9e:e2:45:16:54:6c:ef:40:76: 8c:8d:cc:04:ed:7d:65:14:dc:02:15:bb:f1:2a:2b:99:89:d5: 0b:75:99:cf:2c:5f:82:14:f7:aa:e9:64:6a:08:0f:28:1f:3f: 0a:eb:df:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGyYvrTkwPsz70Inzo9Hxk0uHJi8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDA0MjAyWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDEyOTlmMzI5MDVhNzZkNDYwMzliMzg5YjMxZGVlYWFi YmJmNjFjMjZhYjRhODlmNTEzNGQ5ZDhlMjk1ZWMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVNG5TdlQySf3N685EmZcOLPAsx/6E09BoVLHUcJz033m6 81yWMfNM1iELK4mc2BTjbRsw93S4mThK5OODwicdLU5CujMivi4A/dcyIjf6sb9v qUmRnU4qFB3MlSQPCLWK5PyQRrYAYLF8W5zhA9tpKMy8/kiQk994OvDN8bCJURo3 ZlsQOHrRTSAS/7E+sjkl6we7i1QIAuDEAXlWagJGn61UracdZ5W0dVLfGzXkIVEc Katoo8O44KDE8FKp86O0Hnt2tY+BDVbMvppR7EdXCCfu1w4lfYs9Xjxxn0Pxc4wy yJL4anmShHItb+LIu4bWbBMeOkm6FIk/4kYv7vJDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpBLl9OMVJjEw5Dk3GeSh1ODNIHowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjNjUzZTk2LTBkOTUtNGVlZi1hM2M4LThlNDYyYmRlOTllNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVG4OAwDQYJKoZIhvcNAQELBQADggEBAClepEt4UuQ/iqeiY+mHsA6r5+WF Sq+pV62lUVSwLLQrmi6BAjCpyRVVcCf7u61fuy6RFpib+bQYFPchcAFoTTIASYXv d3FBIozWqBxzuAjzHXUboiUOL1u2qDgap59YCoOENlo5bnA2cDNKGEt2TCw/VZrI geMGCSaxSzceXsehZ8mMw4I/JMapPW4YNHMFt2G2aXZYC1eu58P5bE++wxFP+0mt 81bARTMQyrdOUz/mIqzJt9SLXB7KeUloKQcf6xfrHOPF6uL5CPHXUsP/tJ7iRRZU bO9AdoyNzATtfWUU3AIVu/EqK5mJ1Qt1mc8sX4IU96rpZGoIDygfPwrr3zk= -----END CERTIFICATE-----Generated at Mon Jul 21 18:12:26 2025 by rpki-client