$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70eb0b36-5a6b-4553-808b-0006fc6be8e0.roa File: 70eb0b36-5a6b-4553-808b-0006fc6be8e0.roa (raw, json) Hash identifier: H16q+whYN0fXFZ9wYO9UUE9An4YjdqsIYRZocF/218E= Subject key identifier: F0:FF:48:3B:B2:16:EC:8B:6C:DE:26:8E:78:69:EB:0F:51:30:D5:DF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 776989D6DE65C086067B2B250BE673285D9B17EE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70eb0b36-5a6b-4553-808b-0006fc6be8e0.roa Signing time: Tue 20 May 2025 00:31:27 +0000 ROA not before: Tue 20 May 2025 00:31:27 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.21.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 10 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:69:89:d6:de:65:c0:86:06:7b:2b:25:0b:e6:73:28:5d:9b:17:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:31:27 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=15a73bc08ecb3c543faff2dc048ee19790f449b3d44a2c8f7c462b5341647632, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:61:1b:d4:65:21:5e:d6:00:28:0f:d2:a7:7e: e1:f9:b4:0e:da:27:aa:70:68:16:63:a6:60:ac:e9: a9:e6:51:d3:9b:47:e6:04:74:e4:88:c2:3b:de:33: 17:f5:ec:54:15:0d:6d:4c:6b:7f:c1:df:87:06:2a: 68:c6:bf:46:78:7f:ab:05:1b:f2:ef:2b:aa:75:b7: 27:3f:8f:0b:42:6d:94:d3:a4:6e:06:c4:ff:bf:22: 9e:c0:0c:ae:ad:78:64:f8:52:47:7c:4c:2a:92:21: b7:04:4d:1c:92:63:28:20:81:cd:3f:34:a8:3e:c9: 7a:ec:b7:5d:57:10:67:b3:74:50:8e:f5:d1:c3:ca: 55:08:b1:de:d1:33:33:53:e7:24:18:78:e5:ca:46: ad:53:60:68:24:ed:a7:30:20:47:60:a2:60:7e:e4: 9b:ca:3d:7a:6f:ac:44:3d:5c:e5:fe:f3:5f:35:e9: 57:51:61:7a:db:ce:d6:c5:77:ad:99:36:21:35:a8: 08:58:fd:a1:c8:ac:10:31:ef:bf:d2:66:9e:11:8c: 9d:51:f0:12:ca:77:8e:c4:68:9b:f8:f2:2d:0e:4a: 0f:49:1d:60:e7:6e:2c:69:24:e6:1b:74:ff:a5:4f: 40:ae:c8:bc:2a:6e:e0:7e:96:60:de:2b:0b:ef:05: f1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:FF:48:3B:B2:16:EC:8B:6C:DE:26:8E:78:69:EB:0F:51:30:D5:DF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70eb0b36-5a6b-4553-808b-0006fc6be8e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.21.128.0/17 Signature Algorithm: sha256WithRSAEncryption 53:7c:f0:79:5e:bb:8c:f0:e4:1b:76:b7:56:ef:ee:b3:25:da: e4:32:34:1c:b5:33:76:15:f8:fc:32:c3:ac:5b:0e:07:f7:4a: 90:7a:0b:5c:5d:95:5d:e4:c1:be:73:c6:83:7c:dd:c4:07:ff: b9:d3:78:c4:8e:33:c7:05:30:e3:95:ec:fb:ca:c3:74:67:76: 19:65:46:5f:6b:8c:8e:fd:ff:23:14:b7:e8:d2:e0:42:18:4b: bd:3b:bc:e6:b1:03:52:5f:19:b7:e7:15:69:e7:d5:aa:1f:fe: fc:c9:23:10:75:ca:7e:8a:e3:ba:81:f1:bc:5a:f3:89:2a:70: 53:3d:79:22:5c:ee:50:72:ed:c2:bf:00:aa:cd:ba:23:f1:46: 79:1d:08:7c:01:b6:d3:2d:ec:de:32:d2:82:69:e4:91:53:1c: 5d:38:4d:1d:bf:61:49:17:73:79:a0:72:27:d9:63:af:87:be: a9:b0:68:c3:b2:9d:1b:08:b0:d2:c5:aa:01:8e:1c:54:a4:d6: 1c:77:5e:27:bb:32:94:91:48:a2:b4:28:b6:8f:22:d4:8d:5b: 92:47:b6:c5:da:9f:56:8f:7c:8e:f3:96:a1:c7:34:dc:50:ac: 30:d8:ca:2e:df:35:cc:f1:ee:22:c8:93:f7:ba:7e:9c:de:32: b8:39:5d:25 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd2mJ1t5lwIYGeyslC+ZzKF2bF+4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAzMTI3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNWE3M2JjMDhlY2IzYzU0M2ZhZmYyZGMwNDhlZTE5Nzkw ZjQ0OWIzZDQ0YTJjOGY3YzQ2MmI1MzQxNjQ3NjMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCDYRvUZSFe1gAoD9KnfuH5tA7aJ6pwaBZjpmCs6anmUdOb R+YEdOSIwjveMxf17FQVDW1Ma3/B34cGKmjGv0Z4f6sFG/LvK6p1tyc/jwtCbZTT pG4GxP+/Ip7ADK6teGT4Ukd8TCqSIbcETRySYygggc0/NKg+yXrst11XEGezdFCO 9dHDylUIsd7RMzNT5yQYeOXKRq1TYGgk7acwIEdgomB+5JvKPXpvrEQ9XOX+8181 6VdRYXrbztbFd62ZNiE1qAhY/aHIrBAx77/SZp4RjJ1R8BLKd47EaJv48i0OSg9J HWDnbixpJOYbdP+lT0CuyLwqbuB+lmDeKwvvBfF5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8P9IO7IW7Its3iaOeGnrD1Ew1d8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwZWIwYjM2LTVhNmItNDU1My04MDhiLTAwMDZmYzZiZThlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcXFYAwDQYJKoZIhvcNAQELBQADggEBAFN88Hleu4zw5Bt2t1bv7rMl2uQy NBy1M3YV+Pwyw6xbDgf3SpB6C1xdlV3kwb5zxoN83cQH/7nTeMSOM8cFMOOV7PvK w3RndhllRl9rjI79/yMUt+jS4EIYS707vOaxA1JfGbfnFWnn1aof/vzJIxB1yn6K 47qB8bxa84kqcFM9eSJc7lBy7cK/AKrNuiPxRnkdCHwBttMt7N4y0oJp5JFTHF04 TR2/YUkXc3mgcifZY6+HvqmwaMOynRsIsNLFqgGOHFSk1hx3Xie7MpSRSKK0KLaP ItSNW5JHtsXan1aPfI7zlqHHNNxQrDDYyi7fNczx7iLIk/e6fpzeMrg5XSU= -----END CERTIFICATE-----Generated at Mon Jun 9 06:11:59 2025 by rpki-client