$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4b42247-f61c-4e66-8e1f-eec8fefcd322.roa File: c4b42247-f61c-4e66-8e1f-eec8fefcd322.roa (raw, json) Hash identifier: CIqJ/6ivkm2UJmNBcxCOfgb71E7dvlRQrWL5M92fv9c= Subject key identifier: 29:AF:80:40:9B:C3:56:C5:4A:72:4A:B8:6E:67:03:9B:87:28:5B:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4CA37F8F6D7B610E5BDB2BBE9A897B0807788338 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4b42247-f61c-4e66-8e1f-eec8fefcd322.roa Signing time: Mon 28 Jul 2025 15:31:19 +0000 ROA not before: Mon 28 Jul 2025 15:31:19 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.230.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:a3:7f:8f:6d:7b:61:0e:5b:db:2b:be:9a:89:7b:08:07:78:83:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 28 15:31:19 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=3e571034c26a3e431a7f5c329571857f333d65be771551dbfefc37c2a3b43277, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:12:8b:b8:8e:c5:d1:25:d6:42:aa:1c:06:e6: b5:1b:61:ae:53:eb:dd:dd:51:71:d2:0a:05:07:e3: a3:7c:d9:f6:c4:6d:89:f8:76:a2:1d:b2:60:e7:97: 00:ed:be:61:0d:a9:43:64:f2:46:76:7a:a9:d4:47: 55:1a:19:0a:5d:67:04:42:5a:04:a3:b9:77:22:e0: 90:7d:28:d0:44:f9:8f:17:06:14:43:ff:46:8c:17: 22:e2:28:e5:01:83:5b:93:56:16:7b:50:56:7c:bb: cd:6b:57:eb:7d:bd:e1:da:9d:17:cf:8b:21:90:94: 28:2b:a6:bb:0a:3a:22:78:48:3a:58:fa:44:26:83: 3b:3b:bc:fa:12:f7:3d:a8:d2:3e:58:cf:fe:46:be: 5e:05:65:0a:92:89:89:9f:83:47:5a:f1:7d:bd:9e: 0f:8a:37:d2:e5:3e:ce:64:fb:fb:3d:9d:3d:bd:26: 72:2d:3e:86:e1:70:31:a2:fe:24:93:d9:a7:71:88: a8:ad:0a:95:2b:20:b3:44:90:b1:47:68:e6:df:ac: ee:df:fc:2c:4f:f9:5c:16:b3:a6:f8:35:9c:62:8b: d9:f4:b6:55:38:f7:75:ee:15:0b:82:f5:c4:cd:86: ef:3a:9f:6b:4e:7d:7e:e6:06:d3:1e:75:c3:46:78: cd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:AF:80:40:9B:C3:56:C5:4A:72:4A:B8:6E:67:03:9B:87:28:5B:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4b42247-f61c-4e66-8e1f-eec8fefcd322.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.230.70.0/24 Signature Algorithm: sha256WithRSAEncryption 64:d8:09:66:63:a3:dd:49:35:85:ae:63:f5:95:af:f6:95:03: 8d:93:9b:81:d2:cb:d5:77:f4:10:e7:21:f8:30:75:fb:4c:69: c4:86:ab:47:4c:8b:d8:e4:e2:84:2c:bb:a1:b5:6f:15:4f:b8: 48:cd:46:76:6a:ac:30:1f:16:ae:09:ab:2e:76:74:d9:d8:84: 40:6f:69:45:4a:b5:95:1d:8e:3a:46:66:3b:ed:9f:94:91:45: 8c:57:80:56:0a:7b:11:97:52:85:9c:f6:70:a2:ac:66:a6:4d: a6:6f:97:e8:b5:c1:68:a8:b6:04:af:9f:47:1a:c4:93:a9:64: 1e:90:80:9f:92:5a:cd:37:a9:ca:67:5c:fe:87:fe:2f:b9:d6: b2:2f:dd:fa:22:93:4c:9f:01:7c:64:ca:88:e9:78:a3:6f:0a: dd:97:d4:e4:9c:db:8b:0c:09:8b:4a:9c:b0:c4:47:9e:12:9b: 30:f9:e2:36:e8:83:9b:64:d5:7e:ee:ee:42:60:2e:11:8f:03: 29:27:c6:a7:8f:43:5d:78:58:06:43:3d:89:d3:09:4d:40:94: 17:bb:84:d9:01:f0:3a:f3:ac:5f:fe:5d:2b:ea:0a:2a:b4:f0: 0a:a7:c5:01:95:0b:b9:cd:b4:f4:2b:fb:16:a0:42:51:fc:0a: b1:31:09:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTKN/j217YQ5b2yu+mol7CAd4gzgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI4MTUzMTE5WhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTU3MTAzNGMyNmEzZTQzMWE3ZjVjMzI5NTcxODU3ZjMz M2Q2NWJlNzcxNTUxZGJmZWZjMzdjMmEzYjQzMjc3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5Eou4jsXRJdZCqhwG5rUbYa5T693dUXHSCgUH46N82fbE bYn4dqIdsmDnlwDtvmENqUNk8kZ2eqnUR1UaGQpdZwRCWgSjuXci4JB9KNBE+Y8X BhRD/0aMFyLiKOUBg1uTVhZ7UFZ8u81rV+t9veHanRfPiyGQlCgrprsKOiJ4SDpY +kQmgzs7vPoS9z2o0j5Yz/5Gvl4FZQqSiYmfg0da8X29ng+KN9LlPs5k+/s9nT29 JnItPobhcDGi/iST2adxiKitCpUrILNEkLFHaObfrO7f/CxP+VwWs6b4NZxii9n0 tlU493XuFQuC9cTNhu86n2tOfX7mBtMedcNGeM3vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKa+AQJvDVsVKckq4bmcDm4coWxMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M0YjQyMjQ3LWY2MWMtNGU2Ni04ZTFmLWVlYzhmZWZjZDMyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADY5kYwDQYJKoZIhvcNAQELBQADggEBAGTYCWZjo91JNYWuY/WVr/aVA42T m4HSy9V39BDnIfgwdftMacSGq0dMi9jk4oQsu6G1bxVPuEjNRnZqrDAfFq4Jqy52 dNnYhEBvaUVKtZUdjjpGZjvtn5SRRYxXgFYKexGXUoWc9nCirGamTaZvl+i1wWio tgSvn0caxJOpZB6QgJ+SWs03qcpnXP6H/i+51rIv3foik0yfAXxkyojpeKNvCt2X 1OSc24sMCYtKnLDER54SmzD54jbog5tk1X7u7kJgLhGPAyknxqePQ114WAZDPYnT CU1AlBe7hNkB8DrzrF/+XSvqCiq08AqnxQGVC7nNtPQr+xagQlH8CrExCbU= -----END CERTIFICATE-----Generated at Tue Aug 5 20:15:50 2025 by rpki-client