$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ed3afac-055a-4ba0-8dd9-6d8700aa13eb.roa File: 0ed3afac-055a-4ba0-8dd9-6d8700aa13eb.roa (raw, json) Hash identifier: UBcIzHsPdAZyT69iQCigwW7QBusIwYZpNo9apNnYWe0= Subject key identifier: F4:0E:94:56:F2:50:A1:89:C8:96:F5:C6:29:69:D0:E6:14:3C:A9:E1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C62CEEFD7D5F0227E1C5A1FACE125DF1023634A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ed3afac-055a-4ba0-8dd9-6d8700aa13eb.roa Signing time: Sat 28 Jun 2025 00:21:50 +0000 ROA not before: Sat 28 Jun 2025 00:21:50 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 184.72.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:62:ce:ef:d7:d5:f0:22:7e:1c:5a:1f:ac:e1:25:df:10:23:63:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:21:50 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=4696bd31cd5594de6040eb5b481a4d80b85ceb6e35032aa948ff894f13505b22, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e2:0a:e9:8d:25:6d:36:b2:43:fa:21:43:10: e5:9e:8e:3c:d9:15:4d:c3:8a:ca:82:1b:21:56:fc: f0:6e:9f:eb:ff:0a:b3:53:ad:c6:4a:32:99:17:85: bf:f8:bf:b1:6d:e5:b5:55:71:dc:14:6e:c4:3e:11: 1a:db:75:51:13:6e:89:cc:9a:a4:3e:e4:e4:5b:0a: 12:03:f2:2d:87:4b:23:8e:a6:bf:ac:16:67:53:c6: 88:c6:71:de:5c:7a:d2:a4:85:7f:e6:a4:2c:8a:50: 99:27:f2:71:6f:bb:4f:15:7b:30:f5:ca:1f:25:4f: f4:d2:c0:17:83:72:0f:78:d9:06:9f:fc:8c:29:9e: 83:04:c5:28:9b:63:ec:7c:78:c8:61:97:12:d0:bd: e7:56:34:d2:08:0c:6f:ec:a9:b2:38:81:95:5c:04: 62:02:a3:1a:7d:87:20:47:61:7b:8a:4e:26:55:e2: a8:42:1c:ab:db:0f:f3:b4:47:f3:38:42:90:5a:89: 34:72:a9:ea:ba:3e:7f:3b:96:1d:37:49:9c:c8:84: 74:4d:14:8c:82:88:82:7d:d0:07:8e:2a:3a:2d:0f: 8a:47:14:11:59:32:be:4b:7b:3b:d9:71:73:bf:f0: 05:7b:aa:7e:3c:ca:c8:8e:f9:26:c1:34:2a:e9:79: db:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:0E:94:56:F2:50:A1:89:C8:96:F5:C6:29:69:D0:E6:14:3C:A9:E1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ed3afac-055a-4ba0-8dd9-6d8700aa13eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.128.0/17 Signature Algorithm: sha256WithRSAEncryption 55:52:36:dc:c1:d9:37:3b:67:df:0b:1a:a4:96:b7:24:b5:a3: 23:3b:fa:10:2f:51:23:70:6b:34:16:24:a6:90:16:b8:07:96: 68:a0:b0:40:21:19:8a:34:5b:dc:6c:28:86:76:f5:bc:cb:bf: 13:af:53:08:72:20:db:43:de:33:fc:5c:5c:b8:7d:a4:5f:60: 08:5d:85:6e:53:4c:7f:44:68:c1:27:72:0d:a8:c9:1f:ac:cd: 70:d8:a0:32:9a:85:d5:46:00:11:e0:15:fa:d6:bb:d7:27:ba: 0a:f4:29:69:7b:c1:e1:e7:e9:80:6e:56:1b:ac:31:ca:31:94: a6:e3:89:51:03:ad:f8:cb:cf:b3:be:f7:a8:45:52:91:a4:7c: 4f:f0:30:18:c0:01:f5:fd:81:d9:18:ba:07:f3:c9:ae:7b:cd: 74:b2:3f:b7:fa:4d:84:bc:24:97:5f:b8:a4:1f:ef:9f:bc:44: 63:57:ad:cd:64:8d:0e:f9:9f:4b:55:e6:47:d2:76:fe:2f:08: 21:4e:f2:0d:90:89:f5:e2:56:80:19:84:96:9c:a1:6b:74:ab: 5e:97:c1:8c:33:45:e4:ed:f9:a9:b0:12:ea:9e:40:c7:80:5a: 54:16:ed:12:bc:16:8d:18:df:69:fa:ce:6e:88:19:12:ea:16: c6:79:9f:3c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDGLO79fV8CJ+HFofrOEl3xAjY0owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAyMTUwWhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0Njk2YmQzMWNkNTU5NGRlNjA0MGViNWI0ODFhNGQ4MGI4 NWNlYjZlMzUwMzJhYTk0OGZmODk0ZjEzNTA1YjIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv4grpjSVtNrJD+iFDEOWejjzZFU3DisqCGyFW/PBun+v/ CrNTrcZKMpkXhb/4v7Ft5bVVcdwUbsQ+ERrbdVETbonMmqQ+5ORbChID8i2HSyOO pr+sFmdTxojGcd5cetKkhX/mpCyKUJkn8nFvu08VezD1yh8lT/TSwBeDcg942Qaf /IwpnoMExSibY+x8eMhhlxLQvedWNNIIDG/sqbI4gZVcBGICoxp9hyBHYXuKTiZV 4qhCHKvbD/O0R/M4QpBaiTRyqeq6Pn87lh03SZzIhHRNFIyCiIJ90AeOKjotD4pH FBFZMr5LezvZcXO/8AV7qn48ysiO+SbBNCrpedtXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9A6UVvJQoYnIlvXGKWnQ5hQ8qeEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlZDNhZmFjLTA1NWEtNGJhMC04ZGQ5LTZkODcwMGFhMTNlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAe4SIAwDQYJKoZIhvcNAQELBQADggEBAFVSNtzB2Tc7Z98LGqSWtyS1oyM7 +hAvUSNwazQWJKaQFrgHlmigsEAhGYo0W9xsKIZ29bzLvxOvUwhyINtD3jP8XFy4 faRfYAhdhW5TTH9EaMEncg2oyR+szXDYoDKahdVGABHgFfrWu9cnugr0KWl7weHn 6YBuVhusMcoxlKbjiVEDrfjLz7O+96hFUpGkfE/wMBjAAfX9gdkYugfzya57zXSy P7f6TYS8JJdfuKQf75+8RGNXrc1kjQ75n0tV5kfSdv4vCCFO8g2QifXiVoAZhJac oWt0q16XwYwzReTt+amwEuqeQMeAWlQW7RK8Fo0Y32n6zm6IGRLqFsZ5nzw= -----END CERTIFICATE-----Generated at Tue Jul 22 05:13:11 2025 by rpki-client