$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c0842d7-9731-43b2-aeaa-fff79b41c3dd.roa File: 7c0842d7-9731-43b2-aeaa-fff79b41c3dd.roa (raw, json) Hash identifier: xLUvz5XEgqnXsfzxUMJ7pQnCNaSGobtOoZYX1KLO/xQ= Subject key identifier: 5F:08:11:E5:77:BC:98:35:46:FF:20:25:66:AB:E7:FF:28:C6:B9:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BFED2CD2C82834FD579E36107F67E601FEF5AD1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c0842d7-9731-43b2-aeaa-fff79b41c3dd.roa Signing time: Tue 12 Aug 2025 00:40:30 +0000 ROA not before: Tue 12 Aug 2025 00:40:30 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.232.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:fe:d2:cd:2c:82:83:4f:d5:79:e3:61:07:f6:7e:60:1f:ef:5a:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:40:30 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=1ccd0be9cf3bfbc775664a36ff98b4af213fca81160a3de0160f2d5e45ea404a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e4:25:17:38:13:cb:d0:bb:07:53:fd:fb:4e: 78:1c:b3:d4:03:d1:d9:a5:49:83:74:f2:e5:90:01: 25:77:b5:e2:2d:53:ef:00:53:7e:4d:fd:27:02:a6: 7a:a0:ef:57:53:1e:54:6d:cc:2b:ab:3d:c1:76:44: 4b:00:6b:13:10:7f:80:f4:a2:a8:e2:0c:92:04:ad: 92:4b:b6:79:dc:f2:16:04:f5:04:c0:96:7c:cd:be: c3:4f:2a:34:33:41:29:bb:01:b1:9c:0b:f0:b0:db: ed:05:1b:81:45:58:b6:5b:af:f9:9d:bf:63:7e:b3: a4:6b:fe:2a:20:cf:46:8f:3b:67:09:03:ea:1d:01: 8b:56:1a:b4:7f:5d:e8:12:eb:a0:ca:7c:07:7a:5d: 03:34:64:ad:33:72:7a:05:0c:64:16:50:6d:c8:27: c0:9b:b2:1b:7b:08:dc:98:38:13:ff:42:5e:4b:12: 44:b6:e0:9f:6c:38:7b:09:a8:8c:ef:89:1d:32:88: 03:47:7c:a7:f1:02:9e:d8:5f:d8:3c:1a:17:ad:09: cd:1a:df:2f:48:2f:8b:9e:82:d4:6e:e3:9d:d5:72: 82:8c:3e:d5:22:a8:ea:4b:c7:71:1c:87:e6:45:02: 91:c7:78:0f:7e:2c:c9:4b:5a:b8:ba:dd:4c:23:46: fa:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:08:11:E5:77:BC:98:35:46:FF:20:25:66:AB:E7:FF:28:C6:B9:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c0842d7-9731-43b2-aeaa-fff79b41c3dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.232.88.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:d1:8d:aa:70:04:30:86:01:05:64:08:e8:6f:95:14:18:d9: 08:4a:e6:15:9a:25:1c:53:3d:66:f5:14:2e:99:7d:51:67:f8: 0b:e8:6a:90:46:7d:b0:15:cf:55:f5:16:f2:b2:a6:3e:b7:f2: f1:00:a9:0d:03:8b:0e:66:a5:b2:f1:73:ef:05:88:d3:da:ed: 94:a5:8d:5a:bf:d4:db:f7:e4:93:3c:c9:e0:07:aa:51:56:8c: 66:2e:f2:3b:d4:b8:49:46:ab:49:2c:3a:28:ec:73:96:8d:4f: 55:18:fb:4f:ad:db:ed:58:37:60:c1:85:08:d3:61:5a:9b:5f: 24:51:41:b5:56:3a:70:f1:43:77:35:b4:a0:aa:e4:b4:cb:6c: 00:17:5f:7a:b9:29:51:b1:5e:77:08:ea:46:ba:8d:59:b7:bd: 91:40:14:a3:b1:df:f2:01:5f:ea:8a:b7:e1:95:29:ca:1c:12: fd:40:12:0e:66:b6:b3:cb:64:2f:8b:5e:ee:bb:6a:26:20:ad: a0:15:7d:0b:1e:46:02:29:f7:eb:14:4f:1f:ea:79:cf:5c:a5: 22:43:19:3a:a9:e4:05:ac:77:8a:7b:3f:8c:9c:52:64:93:87: b4:3a:b9:70:3a:f5:f6:a8:ca:44:7d:45:a1:db:2e:e2:5d:93: d7:03:65:64 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS/7SzSyCg0/VeeNhB/Z+YB/vWtEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDA0MDMwWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxY2NkMGJlOWNmM2JmYmM3NzU2NjRhMzZmZjk4YjRhZjIx M2ZjYTgxMTYwYTNkZTAxNjBmMmQ1ZTQ1ZWE0MDRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC75CUXOBPL0LsHU/37Tngcs9QD0dmlSYN08uWQASV3teIt U+8AU35N/ScCpnqg71dTHlRtzCurPcF2REsAaxMQf4D0oqjiDJIErZJLtnnc8hYE 9QTAlnzNvsNPKjQzQSm7AbGcC/Cw2+0FG4FFWLZbr/mdv2N+s6Rr/iogz0aPO2cJ A+odAYtWGrR/XegS66DKfAd6XQM0ZK0zcnoFDGQWUG3IJ8Cbsht7CNyYOBP/Ql5L EkS24J9sOHsJqIzviR0yiANHfKfxAp7YX9g8GhetCc0a3y9IL4uegtRu453VcoKM PtUiqOpLx3Ech+ZFApHHeA9+LMlLWri63UwjRvotAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXwgR5Xe8mDVG/yAlZqvn/yjGucgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjMDg0MmQ3LTk3MzEtNDNiMi1hZWFhLWZmZjc5YjQxYzNkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJG6FgwDQYJKoZIhvcNAQELBQADggEBAF3RjapwBDCGAQVkCOhvlRQY2QhK 5hWaJRxTPWb1FC6ZfVFn+AvoapBGfbAVz1X1FvKypj638vEAqQ0Diw5mpbLxc+8F iNPa7ZSljVq/1Nv35JM8yeAHqlFWjGYu8jvUuElGq0ksOijsc5aNT1UY+0+t2+1Y N2DBhQjTYVqbXyRRQbVWOnDxQ3c1tKCq5LTLbAAXX3q5KVGxXncI6ka6jVm3vZFA FKOx3/IBX+qKt+GVKcocEv1AEg5mtrPLZC+LXu67aiYgraAVfQseRgIp9+sUTx/q ec9cpSJDGTqp5AWsd4p7P4ycUmSTh7Q6uXA69faoykR9RaHbLuJdk9cDZWQ= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:40 2025 by rpki-client