$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c39d5c58-914d-4d17-9204-d6652dbcef48.roa File: c39d5c58-914d-4d17-9204-d6652dbcef48.roa (raw, json) Hash identifier: gHuqtK93oc7NcfRmnIEN01vPVTd5uy/nah0OflfUWKU= Subject key identifier: 65:29:B1:91:74:26:4B:15:49:23:53:6E:89:B3:56:D6:4F:AC:E3:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D88A64A1E6B6D80F7AF20802DAAAFE0D98F6FF2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c39d5c58-914d-4d17-9204-d6652dbcef48.roa Signing time: Sat 26 Jul 2025 00:10:27 +0000 ROA not before: Sat 26 Jul 2025 00:10:27 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:88:a6:4a:1e:6b:6d:80:f7:af:20:80:2d:aa:af:e0:d9:8f:6f:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 26 00:10:27 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=8806ffd8209bc0714b1e48f00cdc4bb212b65133b16c441323e3573d45e4ac20, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:06:61:84:fa:46:a9:dc:65:da:a5:7c:3d:11: 62:84:78:ff:9c:5e:d2:fe:79:e0:fb:57:39:bc:27: b3:f2:da:1c:0d:85:c8:f1:cf:58:99:68:80:d4:d9: a5:ab:72:64:1d:2e:48:6e:21:1c:f7:6c:0a:0c:4e: a5:db:57:0f:78:2e:40:00:8d:c2:52:49:2c:6a:b5: 6e:78:a0:aa:65:9f:8f:74:7d:2a:89:d4:51:40:80: 62:cb:cf:b8:30:3e:a6:75:9a:df:67:b4:57:f0:f3: d0:b9:22:87:d4:4c:8e:e6:f2:23:1e:45:ba:fb:ee: d7:fd:78:f9:f4:2f:84:7f:c5:d2:14:d7:50:c7:4c: 81:49:e1:eb:94:26:ec:e4:4b:ea:16:78:e7:4d:37: 39:8c:73:2e:e9:6c:06:6c:9d:89:ff:a7:6e:b0:17: fe:bd:f9:42:9a:0b:15:03:f3:7d:78:fc:7e:49:af: 69:6a:12:01:a4:47:fc:39:41:8c:e1:cb:43:45:a0: 2b:99:2d:c1:09:f7:66:ac:c5:a1:fd:49:35:97:fe: 31:7c:fa:ea:cf:56:29:b2:87:59:9b:d8:02:76:b6: 6b:9f:88:08:f4:70:26:7a:23:15:96:34:21:1d:d0: 18:61:65:b4:c6:17:27:be:9c:e8:8a:56:3d:f4:21: 0c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:29:B1:91:74:26:4B:15:49:23:53:6E:89:B3:56:D6:4F:AC:E3:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c39d5c58-914d-4d17-9204-d6652dbcef48.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.59.0/24 Signature Algorithm: sha256WithRSAEncryption bb:b6:52:bf:18:49:e4:6f:2b:1a:fd:b8:cc:81:ce:9b:72:f4: 58:7e:73:f9:1f:81:14:19:28:f0:36:df:20:66:12:1f:44:db: 7b:f8:f5:3c:24:ad:7e:ac:cd:25:27:07:2b:59:d3:e1:52:9f: c7:72:95:0d:90:36:81:91:94:c1:21:09:05:45:f4:ea:56:8b: ff:3b:21:4b:30:dd:79:52:9c:a8:0c:b9:fe:96:51:80:8b:10: 67:d8:5e:52:46:07:22:e7:46:21:39:b3:3c:f5:77:98:04:54: ab:25:7a:5e:e3:64:c6:1b:d7:7c:5f:14:78:e3:77:5a:d9:a3: 6b:01:f2:4f:22:43:5b:be:0f:d8:33:c8:6f:92:7f:72:09:9f: f5:a1:e5:31:3d:a8:df:e9:98:cd:f8:d0:f2:59:85:b3:eb:51: d1:fd:3f:79:ca:28:fd:73:ef:23:e2:6d:57:46:28:a5:b4:42: c6:db:b0:14:a2:68:c8:6a:4f:b4:80:58:af:77:de:97:1d:f5: ec:ff:c6:a6:41:2a:41:f9:4e:93:f9:53:b3:ea:8a:a0:bc:b8: be:e8:a2:93:19:a4:67:9e:c3:43:ca:18:12:fb:71:50:0f:68: ad:f4:11:c8:72:76:eb:03:a2:f9:80:6f:43:22:0e:c1:75:d2: 81:dd:76:e8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfYimSh5rbYD3ryCALaqv4NmPb/IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI2MDAxMDI3WhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODA2ZmZkODIwOWJjMDcxNGIxZTQ4ZjAwY2RjNGJiMjEy YjY1MTMzYjE2YzQ0MTMyM2UzNTczZDQ1ZTRhYzIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRBmGE+kap3GXapXw9EWKEeP+cXtL+eeD7Vzm8J7Py2hwN hcjxz1iZaIDU2aWrcmQdLkhuIRz3bAoMTqXbVw94LkAAjcJSSSxqtW54oKpln490 fSqJ1FFAgGLLz7gwPqZ1mt9ntFfw89C5IofUTI7m8iMeRbr77tf9ePn0L4R/xdIU 11DHTIFJ4euUJuzkS+oWeOdNNzmMcy7pbAZsnYn/p26wF/69+UKaCxUD8314/H5J r2lqEgGkR/w5QYzhy0NFoCuZLcEJ92asxaH9STWX/jF8+urPVimyh1mb2AJ2tmuf iAj0cCZ6IxWWNCEd0BhhZbTGFye+nOiKVj30IQxxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZSmxkXQmSxVJI1NuibNW1k+s46swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MzOWQ1YzU4LTkxNGQtNGQxNy05MjA0LWQ2NjUyZGJjZWY0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABODDswDQYJKoZIhvcNAQELBQADggEBALu2Ur8YSeRvKxr9uMyBzpty9Fh+ c/kfgRQZKPA23yBmEh9E23v49TwkrX6szSUnBytZ0+FSn8dylQ2QNoGRlMEhCQVF 9OpWi/87IUsw3XlSnKgMuf6WUYCLEGfYXlJGByLnRiE5szz1d5gEVKslel7jZMYb 13xfFHjjd1rZo2sB8k8iQ1u+D9gzyG+Sf3IJn/Wh5TE9qN/pmM340PJZhbPrUdH9 P3nKKP1z7yPibVdGKKW0QsbbsBSiaMhqT7SAWK933pcd9ez/xqZBKkH5TpP5U7Pq iqC8uL7oopMZpGeew0PKGBL7cVAPaK30EchydusDovmAb0MiDsF10oHddug= -----END CERTIFICATE-----Generated at Wed Aug 6 05:16:21 2025 by rpki-client