$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/70e3f95f-4fd8-4acd-84e4-3ac6703b0781.roa File: 70e3f95f-4fd8-4acd-84e4-3ac6703b0781.roa (raw, json) Hash identifier: ixSG1mWd9L8yQmiBvfhvQmCg7jaS3OSs0Y4xmp3iE0A= Subject key identifier: B4:00:15:66:A3:41:8C:CA:A2:CA:D7:CC:06:24:2B:24:ED:4C:0E:49 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 50CBE0AAD8270564856D052CAEDD925659102197 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/70e3f95f-4fd8-4acd-84e4-3ac6703b0781.roa Signing time: Mon 30 Jun 2025 16:50:18 +0000 ROA not before: Mon 30 Jun 2025 16:50:18 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.66.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:cb:e0:aa:d8:27:05:64:85:6d:05:2c:ae:dd:92:56:59:10:21:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 16:50:18 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=722c8173cb2f31e743bc1d484848ca79314560992d23bb6046d06228aeb9ac8b, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2a:26:37:01:e9:c5:68:70:b8:91:4f:b7:12: a1:ba:75:3d:c6:38:83:ab:29:ec:9d:aa:31:9c:74: d3:dd:84:29:dc:d5:e3:3f:57:36:6d:16:fa:e5:e5: 53:a0:75:64:71:22:38:b7:34:e1:94:00:40:45:2b: 32:87:ef:3e:46:dd:39:ac:37:5a:b7:ec:cf:52:26: 8a:5a:f4:a7:92:dd:7a:bb:3f:a9:9e:8a:c2:34:83: 24:94:2e:07:35:1c:62:4d:b4:89:18:97:31:4b:ac: 0b:9d:4e:4c:2b:b6:a9:94:32:2a:27:f7:5e:65:2d: 21:28:77:fa:6a:33:3e:df:91:1e:58:ed:a7:51:d5: 84:4b:91:dc:9c:0c:89:3f:97:c9:be:4e:0f:b0:68: 4e:1e:1f:7a:2b:72:1b:c1:79:25:83:d4:91:3e:b5: 9f:e0:61:35:8c:89:8d:3d:8b:fc:f9:b5:46:54:7b: 83:72:e4:a3:a4:e5:66:da:af:a2:8d:55:d0:84:29: 2b:cb:65:53:29:91:f6:68:cf:c0:3e:8e:cb:69:21: 0e:2c:bc:e0:3d:c3:43:42:af:be:a1:50:04:e1:6f: 59:8f:84:5f:5b:a6:cf:e1:93:23:4e:a6:d0:a7:ce: 8b:42:84:3d:2c:6a:e6:74:ca:e0:4c:3e:7e:42:a6: ba:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:00:15:66:A3:41:8C:CA:A2:CA:D7:CC:06:24:2B:24:ED:4C:0E:49 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/70e3f95f-4fd8-4acd-84e4-3ac6703b0781.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.66.32.0/19 Signature Algorithm: sha256WithRSAEncryption 61:53:03:e7:6e:3a:86:0b:59:ff:89:3f:09:85:91:42:1a:a3: 3e:99:52:e8:32:59:bb:99:fe:a0:d4:7a:d7:76:16:dd:e4:a0: c4:89:71:12:7f:d4:60:82:c9:ae:a3:41:38:62:5f:4c:b3:ab: ce:b7:45:e9:46:9c:62:3e:5e:fa:1b:b6:01:ba:e0:d5:0a:f7: e3:f2:b0:f4:db:3d:8b:e0:fd:ed:7e:3a:0b:5c:09:f8:14:e6: 1b:c2:f4:70:e4:e3:6d:20:31:43:84:30:3b:c8:97:69:fe:65: 6a:44:c3:8b:4a:40:a9:26:b3:79:06:10:2d:2a:dc:85:20:d0: 18:14:1d:b6:aa:bd:b2:8a:86:79:af:9c:01:40:56:31:69:e6: c6:d1:d7:3e:f2:7b:03:2a:b3:bf:02:ce:18:bb:5c:36:24:1d: d7:30:2e:b1:dd:49:14:28:6a:47:5b:8d:cc:29:51:9d:01:fe: 43:38:cd:dd:e6:6a:dd:4a:37:f3:d1:08:ff:b7:6a:64:21:60: 4e:3f:36:0f:ca:40:5d:a0:29:d0:82:a2:37:4f:a6:dd:0e:eb: 26:8d:2c:d8:e4:9d:d8:4b:5b:73:41:2f:a6:ca:3a:f8:83:de: 14:9f:d9:ab:c9:d4:bf:89:7f:bb:e4:13:b2:03:54:a2:f6:02: 25:a2:15:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUMvgqtgnBWSFbQUsrt2SVlkQIZcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTY1MDE4WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjJjODE3M2NiMmYzMWU3NDNiYzFkNDg0ODQ4Y2E3OTMx NDU2MDk5MmQyM2JiNjA0NmQwNjIyOGFlYjlhYzhiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnKiY3AenFaHC4kU+3EqG6dT3GOIOrKeydqjGcdNPdhCnc 1eM/VzZtFvrl5VOgdWRxIji3NOGUAEBFKzKH7z5G3TmsN1q37M9SJopa9KeS3Xq7 P6meisI0gySULgc1HGJNtIkYlzFLrAudTkwrtqmUMion915lLSEod/pqMz7fkR5Y 7adR1YRLkdycDIk/l8m+Tg+waE4eH3orchvBeSWD1JE+tZ/gYTWMiY09i/z5tUZU e4Ny5KOk5Wbar6KNVdCEKSvLZVMpkfZoz8A+jstpIQ4svOA9w0NCr76hUAThb1mP hF9bps/hkyNOptCnzotChD0sauZ0yuBMPn5CprrtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtAAVZqNBjMqiytfMBiQrJO1MDkkwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzcwZTNmOTVmLTRmZDgtNGFjZC04NGU0LTNhYzY3MDNiMDc4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU0QiAwDQYJKoZIhvcNAQELBQADggEBAGFTA+duOoYLWf+JPwmFkUIaoz6Z UugyWbuZ/qDUetd2Ft3koMSJcRJ/1GCCya6jQThiX0yzq863RelGnGI+XvobtgG6 4NUK9+PysPTbPYvg/e1+OgtcCfgU5hvC9HDk420gMUOEMDvIl2n+ZWpEw4tKQKkm s3kGEC0q3IUg0BgUHbaqvbKKhnmvnAFAVjFp5sbR1z7yewMqs78Czhi7XDYkHdcw LrHdSRQoakdbjcwpUZ0B/kM4zd3mat1KN/PRCP+3amQhYE4/Ng/KQF2gKdCCojdP pt0O6yaNLNjkndhLW3NBL6bKOviD3hSf2avJ1L+Jf7vkE7IDVKL2AiWiFZI= -----END CERTIFICATE-----Generated at Mon Jun 30 22:43:52 2025 by rpki-client