$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dea262d0-e7e3-4be4-9f3d-e12e1bbcd873.roa File: dea262d0-e7e3-4be4-9f3d-e12e1bbcd873.roa (raw, json) Hash identifier: hqf/oELV83Oz1bJDzjo4wVazOn61WxcSB6NpyCkL9U0= Subject key identifier: 16:F8:E2:CD:E0:02:B5:0E:99:E0:B5:B9:8E:E6:3C:0F:82:99:11:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 07D29304C036FA49B15A7875CE2D321CC104A490 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dea262d0-e7e3-4be4-9f3d-e12e1bbcd873.roa Signing time: Wed 28 May 2025 00:42:00 +0000 ROA not before: Wed 28 May 2025 00:42:00 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 70.232.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:d2:93:04:c0:36:fa:49:b1:5a:78:75:ce:2d:32:1c:c1:04:a4:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:42:00 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=b8e9f4bef9c4bc8718539cbd7e525b7e8042613f05ecda4faaa1c4c6f87f1e6c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:63:4c:4a:01:ee:c6:27:04:66:1d:25:97:a7: 10:5b:7f:88:2c:c2:82:b1:6e:df:be:f9:b1:5d:3b: 6d:7c:6f:0d:c7:d1:ab:c3:b0:48:8e:6a:e3:35:82: 0a:bd:0f:d4:72:21:4c:b5:b6:b1:89:b8:f7:5e:13: 44:28:d0:3e:71:26:2e:c6:44:bd:3f:f9:ef:bd:cd: 53:ac:07:2e:88:bb:12:e3:a8:14:ef:fd:43:a3:91: de:44:bb:fa:58:2c:2d:21:42:6f:cd:79:17:44:5e: fd:4d:b5:68:d5:62:c2:2b:a7:80:73:96:ed:33:dd: 92:ae:ab:45:6c:79:9e:7f:c7:81:5d:ed:a6:4b:2a: 75:b0:d9:b9:c9:36:e0:47:d5:2f:80:b4:2d:cf:7e: 64:23:ec:df:32:5d:17:ad:2f:a0:d5:f7:29:08:13: 31:2c:ec:74:a4:84:48:e2:6d:97:e9:e6:de:ea:e4: fc:0b:ad:2d:de:d6:6b:e3:ef:fe:bd:04:a2:d0:db: bf:18:81:d5:ba:0e:9b:20:95:a4:8f:3c:e3:1e:a9: f0:cf:aa:bc:0e:78:42:80:8a:42:35:e5:b5:77:a7: e4:2c:5f:92:c2:6b:73:03:84:81:dd:0f:7d:81:30: de:59:47:a8:27:7f:59:dc:12:c4:8d:f1:35:25:bc: fb:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F8:E2:CD:E0:02:B5:0E:99:E0:B5:B9:8E:E6:3C:0F:82:99:11:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dea262d0-e7e3-4be4-9f3d-e12e1bbcd873.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.232.80.0/21 Signature Algorithm: sha256WithRSAEncryption 14:18:d8:f3:45:72:cd:c7:1e:ea:0e:d4:e8:63:76:31:f3:b1: e7:e2:29:4d:b4:83:3a:be:24:a1:cf:11:3c:01:55:3c:ef:49: 3c:de:19:f8:fd:3c:d3:71:45:a2:84:98:4b:2c:d4:45:6a:bd: 35:9f:15:35:70:b6:f1:11:11:b2:d0:ac:8b:d6:63:eb:56:aa: e9:af:a2:f1:ad:99:89:85:b9:ae:b4:87:05:a8:4b:cc:64:75: 42:24:f3:1b:bc:18:00:5e:57:8f:fd:9e:1d:f5:ca:31:91:06: e0:94:c5:55:fb:b6:4c:0b:37:69:02:fd:13:72:df:43:7c:11: 12:b3:17:8e:03:85:cf:7b:df:75:98:a0:9f:8d:d3:f8:28:79: e2:79:55:b5:5e:11:55:ce:1b:6e:9e:3d:af:44:b5:6b:13:50: bc:38:89:d2:fa:c3:a0:bf:ad:89:7f:75:00:63:b6:f6:34:68: 69:05:33:54:4c:78:d1:3d:2f:5b:31:4f:01:d2:5c:18:b9:fa: 4f:1f:ab:5b:4d:01:0f:f7:14:a0:8b:e5:fa:df:2b:df:8a:ad: 43:fb:12:46:5f:a8:b2:b7:b2:00:6e:e9:3b:f1:82:0c:d1:6e: 9f:c5:1b:2e:5d:8f:af:00:53:54:15:23:c6:4c:99:90:6a:e9: 3a:84:8b:44 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB9KTBMA2+kmxWnh1zi0yHMEEpJAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDA0MjAwWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOGU5ZjRiZWY5YzRiYzg3MTg1MzljYmQ3ZTUyNWI3ZTgw NDI2MTNmMDVlY2RhNGZhYWExYzRjNmY4N2YxZTZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClY0xKAe7GJwRmHSWXpxBbf4gswoKxbt+++bFdO218bw3H 0avDsEiOauM1ggq9D9RyIUy1trGJuPdeE0Qo0D5xJi7GRL0/+e+9zVOsBy6IuxLj qBTv/UOjkd5Eu/pYLC0hQm/NeRdEXv1NtWjVYsIrp4Bzlu0z3ZKuq0VseZ5/x4Fd 7aZLKnWw2bnJNuBH1S+AtC3PfmQj7N8yXRetL6DV9ykIEzEs7HSkhEjibZfp5t7q 5PwLrS3e1mvj7/69BKLQ278YgdW6DpsglaSPPOMeqfDPqrwOeEKAikI15bV3p+Qs X5LCa3MDhIHdD32BMN5ZR6gnf1ncEsSN8TUlvPvZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFvjizeACtQ6Z4LW5juY8D4KZETowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RlYTI2MmQwLWU3ZTMtNGJlNC05ZjNkLWUxMmUxYmJjZDg3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANG6FAwDQYJKoZIhvcNAQELBQADggEBABQY2PNFcs3HHuoO1OhjdjHzsefi KU20gzq+JKHPETwBVTzvSTzeGfj9PNNxRaKEmEss1EVqvTWfFTVwtvEREbLQrIvW Y+tWqumvovGtmYmFua60hwWoS8xkdUIk8xu8GABeV4/9nh31yjGRBuCUxVX7tkwL N2kC/RNy30N8ERKzF44Dhc9733WYoJ+N0/goeeJ5VbVeEVXOG26ePa9EtWsTULw4 idL6w6C/rYl/dQBjtvY0aGkFM1RMeNE9L1sxTwHSXBi5+k8fq1tNAQ/3FKCL5frf K9+KrUP7EkZfqLK3sgBu6TvxggzRbp/FGy5dj68AU1QVI8ZMmZBq6TqEi0Q= -----END CERTIFICATE-----Generated at Sun Jun 1 04:28:32 2025 by rpki-client