$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4b42247-f61c-4e66-8e1f-eec8fefcd322.roa File: c4b42247-f61c-4e66-8e1f-eec8fefcd322.roa (raw, json) Hash identifier: 3NNbdg4t4mKTSiIYUJr0/JT+mqGfg0w2VLeAKappwrU= Subject key identifier: B6:36:91:94:BD:3C:87:AC:51:6F:0D:D3:5B:F3:13:81:6F:A1:50:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03E33A712F187D475B63AB8773CE3DF0E92A5EA2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4b42247-f61c-4e66-8e1f-eec8fefcd322.roa Signing time: Wed 02 Jul 2025 00:31:37 +0000 ROA not before: Wed 02 Jul 2025 00:31:37 +0000 ROA not after: Wed 06 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.230.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:e3:3a:71:2f:18:7d:47:5b:63:ab:87:73:ce:3d:f0:e9:2a:5e:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 2 00:31:37 2025 GMT Not After : Aug 6 23:59:59 2025 GMT Subject: serialNumber=f714db7552ced3d23ed285cfef4e8d910761a8763753392e5a3944520e8fa3e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b2:7d:27:5f:62:e4:e8:20:16:ab:da:0f:a8: 78:04:c2:fd:54:32:f8:cc:07:e4:88:84:27:fa:6c: 67:d8:e3:39:59:0a:a6:fb:c9:b6:2d:08:ad:5b:10: c5:60:7b:fe:41:b2:ed:b1:a5:5e:f0:6a:f1:32:d5: a4:97:5e:68:b6:88:a2:9e:2a:b8:05:15:86:df:8a: a7:12:2f:56:4e:2c:54:5d:eb:ba:09:d3:07:9b:c7: ad:3c:95:37:06:fd:52:b2:88:4f:f8:17:30:25:bb: 5f:d0:aa:87:b9:75:ba:12:47:21:f9:45:1c:8d:22: 52:e0:ac:61:6e:2a:1c:be:e5:ab:45:6b:7e:2d:ba: 22:f4:32:37:30:a6:78:c6:ae:43:41:93:88:27:de: c5:e0:13:71:5e:6a:90:45:7d:11:c0:af:db:ec:c3: cd:02:12:54:cb:a5:79:b7:73:b7:bb:92:b2:2a:30: 8b:f7:45:ac:51:1e:47:35:fa:2f:ae:cc:e5:63:04: 7a:b6:92:ba:1f:dc:d5:08:12:02:bd:20:17:52:ec: d8:88:34:87:38:da:eb:08:ca:32:54:dc:15:84:54: 7e:ec:58:1b:c6:6d:b4:98:25:62:40:07:1d:01:5b: 2a:2a:1b:bf:59:f9:f1:56:45:db:3e:ee:15:6e:94: 11:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:36:91:94:BD:3C:87:AC:51:6F:0D:D3:5B:F3:13:81:6F:A1:50:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4b42247-f61c-4e66-8e1f-eec8fefcd322.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.230.70.0/24 Signature Algorithm: sha256WithRSAEncryption a8:e5:13:7e:e8:d1:48:41:2f:61:90:4f:bf:bb:1f:bd:7b:82: be:df:73:94:a2:fe:5b:84:0f:f2:2c:bc:12:2b:e8:0d:9f:36: 76:ca:b1:f0:9c:5a:ab:a3:41:28:1c:7c:96:5c:dd:fd:04:bb: 4b:96:71:26:99:a5:bf:c3:f0:e7:f3:47:e8:b6:4e:d2:ba:b3: 76:8f:10:a1:51:b0:98:4b:19:bb:06:e5:3a:d3:9a:57:d7:d0: 80:8d:32:9b:b6:c5:76:d6:b1:de:93:bc:91:35:23:92:ca:fd: 73:1e:f4:3d:5d:c3:93:0e:6f:6d:e2:57:31:e0:9e:d4:c3:0a: 0d:bc:8b:7f:84:c4:cd:5d:98:b5:5c:43:fa:5d:88:6e:3b:3c: 76:a8:78:17:03:67:f1:97:75:00:e1:33:2b:40:ad:28:07:9e: a7:bf:4c:7d:b2:13:b4:64:92:23:ad:97:a9:0e:9a:e2:63:ad: 8e:6a:2b:2c:57:34:da:27:5a:39:b0:92:5a:98:46:a0:81:32: 74:d7:36:98:5d:6d:8f:3b:dd:d7:be:87:d3:61:49:7d:90:fb: 74:72:11:6c:ae:49:bd:bd:53:b7:3a:0b:df:99:ee:a8:5b:ce: 69:47:5c:96:e6:98:85:22:31:01:44:b3:b6:4d:96:b1:7d:b2: 8a:04:c7:8c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA+M6cS8YfUdbY6uHc8498OkqXqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAyMDAzMTM3WhcNMjUwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzE0ZGI3NTUyY2VkM2QyM2VkMjg1Y2ZlZjRlOGQ5MTA3 NjFhODc2Mzc1MzM5MmU1YTM5NDQ1MjBlOGZhM2U0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHsn0nX2Lk6CAWq9oPqHgEwv1UMvjMB+SIhCf6bGfY4zlZ Cqb7ybYtCK1bEMVge/5Bsu2xpV7wavEy1aSXXmi2iKKeKrgFFYbfiqcSL1ZOLFRd 67oJ0webx608lTcG/VKyiE/4FzAlu1/Qqoe5dboSRyH5RRyNIlLgrGFuKhy+5atF a34tuiL0MjcwpnjGrkNBk4gn3sXgE3FeapBFfRHAr9vsw80CElTLpXm3c7e7krIq MIv3RaxRHkc1+i+uzOVjBHq2krof3NUIEgK9IBdS7NiINIc42usIyjJU3BWEVH7s WBvGbbSYJWJABx0BWyoqG79Z+fFWRds+7hVulBFPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtjaRlL08h6xRbw3TW/MTgW+hUJgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M0YjQyMjQ3LWY2MWMtNGU2Ni04ZTFmLWVlYzhmZWZjZDMyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADY5kYwDQYJKoZIhvcNAQELBQADggEBAKjlE37o0UhBL2GQT7+7H717gr7f c5Si/luED/IsvBIr6A2fNnbKsfCcWqujQSgcfJZc3f0Eu0uWcSaZpb/D8OfzR+i2 TtK6s3aPEKFRsJhLGbsG5TrTmlfX0ICNMpu2xXbWsd6TvJE1I5LK/XMe9D1dw5MO b23iVzHgntTDCg28i3+ExM1dmLVcQ/pdiG47PHaoeBcDZ/GXdQDhMytArSgHnqe/ TH2yE7RkkiOtl6kOmuJjrY5qKyxXNNonWjmwklqYRqCBMnTXNphdbY873de+h9Nh SX2Q+3RyEWyuSb29U7c6C9+Z7qhbzmlHXJbmmIUiMQFEs7ZNlrF9sooEx4w= -----END CERTIFICATE-----Generated at Tue Jul 22 04:18:49 2025 by rpki-client