$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa File: 25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa (raw, json) Hash identifier: og3g5KlOvd7yDPmls1nnIax0zvBId42iMABWumJqjXk= Subject key identifier: B3:76:DE:3F:26:3B:CB:C7:61:D5:3A:8F:E2:54:7D:E7:51:F2:F8:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CC36317B57611F3FCD85D90B01B32B7D62C59BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa Signing time: Fri 11 Jul 2025 00:50:21 +0000 ROA not before: Fri 11 Jul 2025 00:50:21 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:c3:63:17:b5:76:11:f3:fc:d8:5d:90:b0:1b:32:b7:d6:2c:59:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:50:21 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=179df428684c449667e8aa808f403b4608dcfd0efc563e942db1ba4a08018bd6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ae:be:21:91:97:94:77:97:78:75:5b:dc:cb: 6b:59:6e:cb:9f:90:d7:d8:1e:fa:dc:0e:48:42:a3: c1:f2:32:c1:b5:0d:61:40:17:d4:91:81:84:cf:ee: ef:3e:b4:cb:7b:68:ca:36:22:aa:ef:d0:5c:c7:0a: dd:91:6d:96:ad:91:cc:42:b6:23:58:04:5f:b1:21: 7d:e6:c5:e6:75:39:8a:68:59:b9:9b:a2:0f:97:28: 91:43:78:e5:0f:32:fd:6f:bd:be:2c:68:f1:b5:e7: 12:a6:b4:f3:1a:e6:e8:c3:cd:65:f3:58:49:c6:ae: d4:ef:c9:2b:4d:a5:b1:95:bc:1b:1f:6a:05:53:f8: 81:80:e4:a7:b6:a8:0f:9f:99:73:e4:92:3b:05:35: cf:cd:73:0a:c9:d7:5f:38:ba:a9:6e:4d:85:b4:15: de:fc:4d:64:32:d1:ec:b0:dc:6c:a5:db:ef:ef:f4: 71:d9:6c:57:e0:71:bf:cc:41:a9:54:a7:b8:29:d2: 16:08:f2:b6:09:de:88:6b:ed:27:1a:1b:43:17:78: e0:b0:ba:68:be:fc:69:c8:42:a1:0d:93:88:4e:f0: 96:2d:40:45:32:42:e1:43:67:5e:1d:4d:c4:92:37: 23:50:98:ec:32:be:d8:65:6e:49:7f:a5:19:89:02: d2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:76:DE:3F:26:3B:CB:C7:61:D5:3A:8F:E2:54:7D:E7:51:F2:F8:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.0.0/15 Signature Algorithm: sha256WithRSAEncryption 58:a9:30:1e:68:98:5f:89:0c:62:52:f8:08:b0:a6:d1:86:f3: 52:9c:d2:c3:f4:b5:81:f3:74:e6:6a:58:68:3c:df:f9:5a:50: b5:36:ea:0f:91:69:4f:15:94:6b:d5:16:aa:c0:78:cb:b7:09: 14:bb:8c:38:76:92:f5:ac:50:d3:c0:12:2e:ee:98:9d:e5:98: fd:12:af:8b:3b:ea:83:63:2b:b9:05:6f:22:15:2a:ce:2b:ac: df:e4:67:eb:c4:9f:bc:5f:ee:34:f6:32:84:ca:d5:fc:ec:f9: 89:ac:73:d9:6f:95:96:d9:50:3c:e6:e0:2e:ad:ba:21:c7:60: 34:29:50:22:33:11:18:43:73:f0:8f:7e:30:06:60:d2:94:8d: 2e:16:da:ad:5c:c6:d2:85:83:71:24:76:d8:01:61:90:f2:99: e5:d7:aa:06:4e:ea:d6:00:c1:b3:5e:af:d6:8b:59:a1:d7:17: 83:99:b8:c2:32:52:ac:a1:db:0a:6a:2e:8f:ed:6a:09:5d:c9: 9d:11:63:34:1e:2b:d0:e1:04:00:c5:75:dd:e3:db:6b:a0:95: 73:13:e5:b4:9c:02:9f:c8:9e:55:d1:0a:57:06:92:a5:98:1c: a2:d0:fb:30:ad:80:a4:65:79:b5:51:2e:74:d6:59:96:cd:1a: 4b:7e:05:a3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXMNjF7V2EfP82F2QsBsyt9YsWbwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDA1MDIxWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzlkZjQyODY4NGM0NDk2NjdlOGFhODA4ZjQwM2I0NjA4 ZGNmZDBlZmM1NjNlOTQyZGIxYmE0YTA4MDE4YmQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDrr4hkZeUd5d4dVvcy2tZbsufkNfYHvrcDkhCo8HyMsG1 DWFAF9SRgYTP7u8+tMt7aMo2Iqrv0FzHCt2RbZatkcxCtiNYBF+xIX3mxeZ1OYpo Wbmbog+XKJFDeOUPMv1vvb4saPG15xKmtPMa5ujDzWXzWEnGrtTvyStNpbGVvBsf agVT+IGA5Ke2qA+fmXPkkjsFNc/NcwrJ1184uqluTYW0Fd78TWQy0eyw3Gyl2+/v 9HHZbFfgcb/MQalUp7gp0hYI8rYJ3ohr7ScaG0MXeOCwumi+/GnIQqENk4hO8JYt QEUyQuFDZ14dTcSSNyNQmOwyvthlbkl/pRmJAtK1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUs3bePyY7y8dh1TqP4lR951Hy+NgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1YjQxYTRjLTdhOGItNDFlNi04ZDBjLTJkYzdjZWU4YWZkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFODDANBgkqhkiG9w0BAQsFAAOCAQEAWKkwHmiYX4kMYlL4CLCm0YbzUpzS w/S1gfN05mpYaDzf+VpQtTbqD5FpTxWUa9UWqsB4y7cJFLuMOHaS9axQ08ASLu6Y neWY/RKvizvqg2MruQVvIhUqzius3+Rn68SfvF/uNPYyhMrV/Oz5iaxz2W+VltlQ PObgLq26IcdgNClQIjMRGENz8I9+MAZg0pSNLhbarVzG0oWDcSR22AFhkPKZ5deq Bk7q1gDBs16v1otZodcXg5m4wjJSrKHbCmouj+1qCV3JnRFjNB4r0OEEAMV13ePb a6CVcxPltJwCn8ieVdEKVwaSpZgcotD7MK2ApGV5tVEudNZZls0aS34Fow== -----END CERTIFICATE-----Generated at Mon Jul 21 18:03:57 2025 by rpki-client