$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa File: 78a29a43-6fb1-4f22-858b-58921f0187e5.roa (raw, json) Hash identifier: Pg17FjtaCYxbIVwcLnnIHlYtqwOxejhZS44pm4VnJcc= Subject key identifier: 5A:3D:9D:EB:87:4C:9A:6A:38:30:AE:AD:EE:83:15:63:0A:06:C8:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 167AB7D02848B280A50277137FE0F3CDE03647AA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa Signing time: Tue 01 Jul 2025 00:00:23 +0000 ROA not before: Tue 01 Jul 2025 00:00:23 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:7a:b7:d0:28:48:b2:80:a5:02:77:13:7f:e0:f3:cd:e0:36:47:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 1 00:00:23 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=43c21e98092cca6993af118e1ac05875b649f35d0ff7e46186dd7370a12c6aea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c1:0a:e2:69:e7:f3:9c:5b:7e:ec:36:09:46: d5:5f:0b:20:81:58:c4:0b:ef:47:8f:55:84:24:18: 7b:0c:b6:57:a0:f3:10:be:19:43:eb:4a:e8:cf:c6: 9d:0b:21:fa:b4:f7:61:4c:e8:2f:78:49:e3:38:ef: d0:8d:69:c8:21:7c:c8:a2:33:d7:c9:38:f5:24:52: 0d:56:89:8b:75:31:0d:e4:87:6c:23:d4:19:87:de: 3b:28:a4:65:c2:f3:76:81:87:57:24:d3:7e:39:6b: 5b:91:07:c5:2d:60:c4:19:2d:46:61:c7:8c:6b:11: c9:6d:ac:27:f0:d6:b1:b6:c8:bc:1b:3a:a7:91:3b: 35:2a:1e:6a:d0:0b:6c:68:6b:52:4f:6a:12:48:7d: 48:3f:d0:8d:d6:c8:03:79:80:d7:76:65:fa:cf:81: e3:07:23:ec:2f:d1:e0:a8:8b:7d:92:db:22:8b:34: ab:01:92:1d:2c:27:51:77:1d:71:8d:0e:12:0c:34: 4a:53:c4:dc:30:01:2d:37:f3:e3:8e:02:77:5d:b4: bf:e5:9a:34:9c:90:c0:9d:9c:9d:67:8f:66:6f:f7: 28:18:6e:c1:51:a9:22:be:4b:b5:6f:d9:83:0a:fc: ce:2d:4e:4b:d0:2b:a8:ff:5e:5c:46:7a:6e:50:ad: ce:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:3D:9D:EB:87:4C:9A:6A:38:30:AE:AD:EE:83:15:63:0A:06:C8:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.64.0/18 Signature Algorithm: sha256WithRSAEncryption 3e:2c:27:bd:a0:89:15:1a:e9:00:48:83:13:03:a9:be:9f:db: 65:c1:9e:8c:39:8b:e9:e5:52:e4:33:01:d3:72:9e:6a:80:cf: ef:2f:f9:cb:1c:f6:19:c6:72:80:00:a9:8f:ae:b2:28:43:39: 23:bf:14:c0:72:f2:8b:92:d4:f1:8c:89:92:c3:ea:44:ff:07: e8:46:d8:33:77:69:41:de:06:9b:c8:bc:14:6a:08:0e:3b:99: 52:ed:43:d8:08:e1:b8:97:06:11:32:db:c2:ed:c0:ce:04:58: f3:67:5c:14:d8:4f:19:71:21:20:54:2c:0d:14:a3:28:bc:3b: 29:7b:3a:bc:9f:3e:19:3f:33:12:69:a3:42:82:b6:4d:06:94: 2f:ee:78:f9:c8:9a:72:9a:a6:15:c7:db:23:c0:e5:02:66:5e: 03:7f:d8:47:8a:c0:c2:9f:b7:c2:99:25:de:74:9b:18:0f:11: 95:e3:a7:9b:83:17:f3:3c:f8:7d:67:81:b7:b6:39:c6:5a:c6: 3c:28:08:dc:78:9a:db:9a:4e:0f:e6:c3:fa:da:08:c1:41:e9: fe:7b:3a:52:bb:c4:4f:a2:f9:5c:ca:85:75:93:6c:a1:6d:b2: 5d:6e:76:4d:c5:3a:b7:fc:fd:f8:8b:02:0c:ea:08:4d:a8:ad: 98:53:eb:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFnq30ChIsoClAncTf+DzzeA2R6owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAxMDAwMDIzWhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0M2MyMWU5ODA5MmNjYTY5OTNhZjExOGUxYWMwNTg3NWI2 NDlmMzVkMGZmN2U0NjE4NmRkNzM3MGExMmM2YWVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChwQriaefznFt+7DYJRtVfCyCBWMQL70ePVYQkGHsMtleg 8xC+GUPrSujPxp0LIfq092FM6C94SeM479CNacghfMiiM9fJOPUkUg1WiYt1MQ3k h2wj1BmH3jsopGXC83aBh1ck0345a1uRB8UtYMQZLUZhx4xrEcltrCfw1rG2yLwb OqeROzUqHmrQC2xoa1JPahJIfUg/0I3WyAN5gNd2ZfrPgeMHI+wv0eCoi32S2yKL NKsBkh0sJ1F3HXGNDhIMNEpTxNwwAS038+OOAnddtL/lmjSckMCdnJ1nj2Zv9ygY bsFRqSK+S7Vv2YMK/M4tTkvQK6j/XlxGem5Qrc7/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWj2d64dMmmo4MK6t7oMVYwoGyFcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4YTI5YTQzLTZmYjEtNGYyMi04NThiLTU4OTIxZjAxODdlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZyOEAwDQYJKoZIhvcNAQELBQADggEBAD4sJ72giRUa6QBIgxMDqb6f22XB now5i+nlUuQzAdNynmqAz+8v+csc9hnGcoAAqY+usihDOSO/FMBy8ouS1PGMiZLD 6kT/B+hG2DN3aUHeBpvIvBRqCA47mVLtQ9gI4biXBhEy28LtwM4EWPNnXBTYTxlx ISBULA0Uoyi8Oyl7OryfPhk/MxJpo0KCtk0GlC/uePnImnKaphXH2yPA5QJmXgN/ 2EeKwMKft8KZJd50mxgPEZXjp5uDF/M8+H1ngbe2OcZaxjwoCNx4mtuaTg/mw/ra CMFB6f57OlK7xE+i+VzKhXWTbKFtsl1udk3FOrf8/fiLAgzqCE2orZhT60U= -----END CERTIFICATE-----Generated at Tue Jul 22 04:36:58 2025 by rpki-client