$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a656ff06-dd61-4a24-a01f-a8fcac8be378.roa File: a656ff06-dd61-4a24-a01f-a8fcac8be378.roa (raw, json) Hash identifier: s5VPnUiuMx7zFmK2leXAbIpKxJCsXaXhLM5VNKyD6+4= Subject key identifier: 93:25:6C:C4:12:02:03:CB:1C:35:A9:49:42:7D:0E:C2:84:B1:14:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3757A929CB9705206B7D559DAEE54657056442E1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a656ff06-dd61-4a24-a01f-a8fcac8be378.roa Signing time: Fri 08 Aug 2025 00:22:14 +0000 ROA not before: Fri 08 Aug 2025 00:22:14 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.232.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:57:a9:29:cb:97:05:20:6b:7d:55:9d:ae:e5:46:57:05:64:42:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:22:14 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=2d9c74719b6bc3139e8c0dff3738fe52c8e3d38445b88a1e13f5ca254b69db8f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e0:22:a9:a3:b3:2c:8e:24:63:2a:2f:f2:ff: e0:d8:a1:ea:c5:68:9c:74:c9:e6:db:6c:11:1d:83: a5:ca:86:2c:6f:5f:c2:11:14:f3:7b:1c:59:39:fa: 2d:0f:d8:9f:9f:b5:3a:cc:02:31:dd:75:11:97:fc: 82:df:b1:a5:db:19:0d:c0:12:86:b0:b9:d0:3c:60: 2e:2c:c0:72:74:7b:a1:0c:2d:7a:cb:ee:c4:62:57: c3:d2:f2:b8:69:be:9e:5c:ad:e0:88:eb:95:e4:3e: 80:aa:4a:b4:66:69:19:5b:09:1e:45:0c:e6:16:c3: 12:8e:9b:e3:44:bb:c8:0b:fc:4f:d3:55:cb:f0:5e: 94:f5:ff:1f:76:d3:84:fb:c3:97:83:27:3d:a9:8b: 95:bf:9b:79:81:c5:b0:27:88:44:7d:6a:fd:79:9e: ea:93:0c:27:a0:4c:8e:03:12:d7:50:62:a0:c2:29: b9:0e:d1:5d:92:38:a3:8d:59:91:86:96:d3:e9:9e: b9:c3:a9:cf:1e:8a:f5:ed:2d:2b:6c:02:da:92:5e: 41:6b:d0:2e:28:cd:9c:31:dc:16:26:f9:35:3f:bc: d5:8f:45:2c:a9:02:df:ca:d2:fd:20:c8:39:a3:96: f7:b4:cb:c2:b2:7a:99:95:7c:c2:cd:50:0f:0a:7a: fa:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:25:6C:C4:12:02:03:CB:1C:35:A9:49:42:7D:0E:C2:84:B1:14:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a656ff06-dd61-4a24-a01f-a8fcac8be378.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.232.120.0/22 Signature Algorithm: sha256WithRSAEncryption 74:1c:c0:a3:e0:d8:59:7d:83:4e:86:28:90:b0:86:36:78:61: 46:74:db:85:a5:49:9d:e0:06:f0:30:ba:0e:04:33:d1:93:b7: 5e:61:7c:61:9b:5e:3b:cd:5a:6f:f2:a1:47:1d:49:44:37:b4: a6:48:2c:69:4f:79:0f:bc:a0:dc:8a:e5:72:6a:16:b2:d7:13: 7d:8a:f0:30:4c:d8:80:ad:28:b9:10:2d:4e:fc:10:40:6d:43: 69:85:63:06:63:ea:bc:2c:b2:32:27:5b:a4:5c:74:15:fb:55: c7:68:23:cc:c2:fe:b6:09:2a:50:a3:b6:46:9f:81:2f:cd:55: e7:bc:16:03:94:8b:71:10:63:17:97:89:af:9e:0f:0f:f6:bf: aa:31:9f:7b:af:30:03:50:1f:7d:b0:90:eb:e1:16:a4:9e:1d: b3:1b:26:ab:13:1e:cb:7a:ee:1a:3a:2f:06:25:60:dd:bb:80: e8:d1:2e:01:97:14:6c:3f:ed:f2:94:27:e5:b9:3c:b7:7d:85: 2f:72:81:53:59:21:f3:bb:84:fb:7a:c5:2e:71:d8:24:7a:8e: 12:ab:e6:2b:5c:18:de:e0:a7:b7:29:d0:09:9c:b3:3e:cc:54: 75:07:0e:24:74:27:49:0a:92:7a:01:bc:ac:34:5d:25:41:fa: 1c:c2:e3:3b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN1epKcuXBSBrfVWdruVGVwVkQuEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAyMjE0WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDljNzQ3MTliNmJjMzEzOWU4YzBkZmYzNzM4ZmU1MmM4 ZTNkMzg0NDViODhhMWUxM2Y1Y2EyNTRiNjlkYjhmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC04CKpo7MsjiRjKi/y/+DYoerFaJx0yebbbBEdg6XKhixv X8IRFPN7HFk5+i0P2J+ftTrMAjHddRGX/ILfsaXbGQ3AEoawudA8YC4swHJ0e6EM LXrL7sRiV8PS8rhpvp5creCI65XkPoCqSrRmaRlbCR5FDOYWwxKOm+NEu8gL/E/T VcvwXpT1/x9204T7w5eDJz2pi5W/m3mBxbAniER9av15nuqTDCegTI4DEtdQYqDC KbkO0V2SOKONWZGGltPpnrnDqc8eivXtLStsAtqSXkFr0C4ozZwx3BYm+TU/vNWP RSypAt/K0v0gyDmjlve0y8KyepmVfMLNUA8KevpJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkyVsxBICA8scNalJQn0OwoSxFIIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2NTZmZjA2LWRkNjEtNGEyNC1hMDFmLWE4ZmNhYzhiZTM3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJG6HgwDQYJKoZIhvcNAQELBQADggEBAHQcwKPg2Fl9g06GKJCwhjZ4YUZ0 24WlSZ3gBvAwug4EM9GTt15hfGGbXjvNWm/yoUcdSUQ3tKZILGlPeQ+8oNyK5XJq FrLXE32K8DBM2ICtKLkQLU78EEBtQ2mFYwZj6rwssjInW6RcdBX7VcdoI8zC/rYJ KlCjtkafgS/NVee8FgOUi3EQYxeXia+eDw/2v6oxn3uvMANQH32wkOvhFqSeHbMb JqsTHst67ho6LwYlYN27gOjRLgGXFGw/7fKUJ+W5PLd9hS9ygVNZIfO7hPt6xS5x 2CR6jhKr5itcGN7gp7cp0Amcsz7MVHUHDiR0J0kKknoBvKw0XSVB+hzC4zs= -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:58 2025 by rpki-client