$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70eb0b36-5a6b-4553-808b-0006fc6be8e0.roa File: 70eb0b36-5a6b-4553-808b-0006fc6be8e0.roa (raw, json) Hash identifier: enN792JYR4pn7Es7tj4gCXg+6lYjvZ+TXpMYk4y4XT4= Subject key identifier: C2:29:92:5E:25:FD:02:F9:45:6E:CE:CB:4E:A7:D9:D8:56:1C:BC:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A1D575C5953E4B997C051EC402DA8D170058CF1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70eb0b36-5a6b-4553-808b-0006fc6be8e0.roa Signing time: Mon 04 Aug 2025 16:02:06 +0000 ROA not before: Mon 04 Aug 2025 16:02:06 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.21.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:1d:57:5c:59:53:e4:b9:97:c0:51:ec:40:2d:a8:d1:70:05:8c:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:02:06 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=bd744a00eae989828029a73f31dbfa7463794facba0de514b4dc65ac83b64646, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e1:d3:4a:a8:fe:0a:c5:b5:20:aa:73:a5:85: 73:1b:ad:8f:71:02:71:8a:4e:60:d0:02:c0:08:68: cd:5b:e2:10:87:84:37:aa:01:f7:da:b9:11:58:a2: c0:30:97:83:10:72:e9:b7:fb:ba:33:1f:c5:b9:bd: 1b:01:0b:4c:ed:98:c9:09:81:be:a1:c2:45:2d:09: 2d:3c:ad:53:15:5a:b0:e5:45:c8:ca:d0:8f:e8:82: 2c:55:b0:56:5c:df:4c:a2:07:46:ff:c8:cc:5a:7e: 9e:dd:01:0c:22:d0:f9:a2:14:ce:38:27:e0:d5:d9: ca:42:9c:ab:0b:6b:80:ee:95:6b:80:3d:e3:26:c8: 71:bb:f3:d9:a9:2e:c3:4b:79:e5:74:8a:15:b9:e7: e5:c3:0b:9a:29:54:93:93:67:cc:42:c2:49:c5:7e: 8b:cd:3b:f9:e6:34:fc:5d:b9:07:cf:25:61:81:0d: f0:a8:f3:9a:84:09:68:c5:2e:d7:ef:18:1e:93:55: d9:d5:e5:f0:75:9d:96:a1:f4:3a:62:3e:09:67:16: b6:d8:3f:36:03:48:73:ac:71:ee:31:fe:1b:9e:d6: d7:67:5b:15:55:28:b7:69:07:f7:20:be:33:1a:24: 82:f9:4a:99:88:6b:69:1f:3d:49:80:63:24:0b:4a: 84:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:29:92:5E:25:FD:02:F9:45:6E:CE:CB:4E:A7:D9:D8:56:1C:BC:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70eb0b36-5a6b-4553-808b-0006fc6be8e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.21.128.0/17 Signature Algorithm: sha256WithRSAEncryption 5a:61:ef:56:43:f2:6b:e8:51:f3:64:59:fe:6e:92:fe:c4:c7: 04:ed:f6:7a:3d:22:7a:e5:43:af:88:fb:cb:06:b8:fc:33:f7: 71:95:c2:2a:e0:9c:a6:3c:49:10:dc:fe:9a:f6:aa:be:e4:04: 4f:4b:fa:19:e1:d6:9e:00:32:21:80:2e:ae:50:cf:d0:4c:7a: be:e5:74:a1:a4:1d:66:27:a9:82:d5:fb:f6:5e:e3:d6:38:5d: c9:4a:0f:05:23:eb:da:bf:28:7b:11:3b:3b:23:a0:8d:86:98: 0e:05:87:52:a6:2e:a9:ad:35:c9:67:74:00:3b:d3:1f:dd:87: 63:8d:3a:da:f7:e0:5d:f5:09:c6:43:60:08:ef:c9:40:7b:f8: 2c:f2:b8:60:98:a6:84:49:dd:3a:29:8f:24:cf:9d:83:98:3e: 60:1e:09:c2:84:87:f0:5a:d5:fb:74:b6:02:31:b4:f2:d0:1f: 1b:9a:af:4b:62:08:62:36:a5:63:5c:e6:84:d8:bd:32:73:41: ae:ab:91:13:c7:8e:b4:2b:7c:5d:c7:49:06:b9:b6:93:ba:d6: fd:0f:36:d7:f9:29:bb:83:44:b5:b2:a4:21:26:24:cb:b5:49: ac:2f:51:95:b6:e4:0b:e9:f7:93:3e:da:a8:fb:e1:3f:09:aa: aa:97:2a:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSh1XXFlT5LmXwFHsQC2o0XAFjPEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYwMjA2WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDc0NGEwMGVhZTk4OTgyODAyOWE3M2YzMWRiZmE3NDYz Nzk0ZmFjYmEwZGU1MTRiNGRjNjVhYzgzYjY0NjQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC24dNKqP4KxbUgqnOlhXMbrY9xAnGKTmDQAsAIaM1b4hCH hDeqAffauRFYosAwl4MQcum3+7ozH8W5vRsBC0ztmMkJgb6hwkUtCS08rVMVWrDl RcjK0I/ogixVsFZc30yiB0b/yMxafp7dAQwi0PmiFM44J+DV2cpCnKsLa4DulWuA PeMmyHG789mpLsNLeeV0ihW55+XDC5opVJOTZ8xCwknFfovNO/nmNPxduQfPJWGB DfCo85qECWjFLtfvGB6TVdnV5fB1nZah9DpiPglnFrbYPzYDSHOsce4x/hue1tdn WxVVKLdpB/cgvjMaJIL5SpmIa2kfPUmAYyQLSoSpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwimSXiX9AvlFbs7LTqfZ2FYcvJowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwZWIwYjM2LTVhNmItNDU1My04MDhiLTAwMDZmYzZiZThlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcXFYAwDQYJKoZIhvcNAQELBQADggEBAFph71ZD8mvoUfNkWf5ukv7ExwTt 9no9InrlQ6+I+8sGuPwz93GVwirgnKY8SRDc/pr2qr7kBE9L+hnh1p4AMiGALq5Q z9BMer7ldKGkHWYnqYLV+/Ze49Y4XclKDwUj69q/KHsROzsjoI2GmA4Fh1KmLqmt NclndAA70x/dh2ONOtr34F31CcZDYAjvyUB7+CzyuGCYpoRJ3TopjyTPnYOYPmAe CcKEh/Ba1ft0tgIxtPLQHxuar0tiCGI2pWNc5oTYvTJzQa6rkRPHjrQrfF3HSQa5 tpO61v0PNtf5KbuDRLWypCEmJMu1SawvUZW25Avp95M+2qj74T8JqqqXKhw= -----END CERTIFICATE-----Generated at Thu Aug 7 05:05:32 2025 by rpki-client