$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b72f4616-5ee0-476d-82ee-4c547532502d.roa File: b72f4616-5ee0-476d-82ee-4c547532502d.roa (raw, json) Hash identifier: LGZ5TKC2lkc1i5RtoewjrWqaOg3StEbyey6RPI0XaIc= Subject key identifier: 6B:39:0B:68:C4:2C:F4:6F:A7:17:10:BF:D8:48:0F:46:F0:35:0D:99 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CF1455ABF854EAEE08BD2D6F85C908F2C36471A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b72f4616-5ee0-476d-82ee-4c547532502d.roa Signing time: Sat 19 Jul 2025 00:00:32 +0000 ROA not before: Sat 19 Jul 2025 00:00:32 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 157.135.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:f1:45:5a:bf:85:4e:ae:e0:8b:d2:d6:f8:5c:90:8f:2c:36:47:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 19 00:00:32 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=d1b9c2bf831cd8116805d44fa9f3ee7e4049df00876d176f380363ea2d6ba46f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:77:3e:2b:cd:85:da:58:e6:e5:39:d1:0a:10: 25:cb:5f:43:69:ce:eb:51:22:15:13:eb:16:e7:63: 6d:e8:61:b3:5f:da:c9:de:ea:4d:40:4b:f7:04:5f: 86:46:33:ac:29:b4:a9:6a:d2:86:67:83:8a:da:7d: 84:ac:81:b9:8f:12:d0:f9:dd:2f:3c:33:25:dc:3a: 4d:95:9d:b4:bc:47:03:d8:55:49:84:d0:3c:40:32: 2b:b0:13:db:50:29:40:81:16:69:4c:80:c8:12:0b: 37:b9:ff:d5:45:45:08:b1:04:e1:3d:d4:9f:fb:98: ec:b7:26:82:3c:7c:0a:1d:15:62:d9:c5:27:12:ed: 63:22:dc:62:6a:91:7f:09:22:67:b4:e6:f4:0a:61: e7:43:bb:83:e4:76:96:6d:69:e6:dc:06:29:53:c6: 21:9d:3f:fb:ab:22:91:98:98:7c:83:d8:e2:4a:1f: 12:5c:a2:45:47:e6:6b:73:8f:bf:66:1c:df:a0:80: 62:08:2b:65:55:e8:3c:b0:05:a9:c5:9b:f7:a0:46: c5:a6:bb:7c:0f:a5:55:bc:c1:83:5a:ac:62:03:e3: d8:30:98:37:ed:cc:f1:4b:d0:c5:2c:dc:17:cf:93: cb:8c:d9:24:ef:bf:16:78:ed:90:45:4a:8e:99:3b: 6d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:39:0B:68:C4:2C:F4:6F:A7:17:10:BF:D8:48:0F:46:F0:35:0D:99 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b72f4616-5ee0-476d-82ee-4c547532502d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.135.0.0/16 Signature Algorithm: sha256WithRSAEncryption a1:77:cf:ad:05:82:51:26:d6:8a:81:e5:2c:65:6b:79:21:f8: 40:7c:a6:20:20:51:29:78:87:06:27:e6:d4:b7:29:f6:60:91: 5a:71:79:5f:e9:64:24:d0:58:2d:89:6b:94:3e:83:95:a1:b2: 5e:43:6f:35:70:cd:c6:8d:8f:ca:8d:15:29:b7:62:72:a0:07: db:df:85:b6:77:f7:41:4a:bb:98:4e:5c:33:6e:50:1b:0b:f2: 12:27:bc:ac:04:4e:c3:cb:52:46:b2:02:a0:9d:2e:6a:41:f3: ab:7a:37:08:e1:21:11:2b:32:6e:5c:4f:26:35:e0:dd:0b:33: 84:15:70:b1:bd:9b:97:0a:2c:81:8e:2b:15:e9:45:65:23:34: d6:2d:33:03:71:a1:d1:2a:d3:6c:15:37:3e:c6:ff:38:a1:72: d7:6b:3d:8e:66:1d:4d:59:77:26:04:a0:c9:12:18:3b:4d:71: c6:ee:45:02:e9:c3:f0:43:42:47:1b:33:76:75:cf:80:25:44: 32:9f:88:66:af:b7:52:a9:d2:33:d5:bb:68:6b:78:02:d7:b0: 52:69:bf:5a:13:50:75:bb:35:d1:a1:f3:ef:cf:d0:7e:6b:69: 11:7f:2f:e1:f5:29:5b:e4:b3:da:7d:2d:5f:e4:78:77:95:b6: 75:50:20:34 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXPFFWr+FTq7gi9LW+FyQjyw2RxowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE5MDAwMDMyWhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWI5YzJiZjgzMWNkODExNjgwNWQ0NGZhOWYzZWU3ZTQw NDlkZjAwODc2ZDE3NmYzODAzNjNlYTJkNmJhNDZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6dz4rzYXaWOblOdEKECXLX0NpzutRIhUT6xbnY23oYbNf 2sne6k1AS/cEX4ZGM6wptKlq0oZng4rafYSsgbmPEtD53S88MyXcOk2VnbS8RwPY VUmE0DxAMiuwE9tQKUCBFmlMgMgSCze5/9VFRQixBOE91J/7mOy3JoI8fAodFWLZ xScS7WMi3GJqkX8JIme05vQKYedDu4PkdpZtaebcBilTxiGdP/urIpGYmHyD2OJK HxJcokVH5mtzj79mHN+ggGIIK2VV6DywBanFm/egRsWmu3wPpVW8wYNarGID49gw mDftzPFL0MUs3BfPk8uM2STvvxZ47ZBFSo6ZO22XAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUazkLaMQs9G+nFxC/2EgPRvA1DZkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I3MmY0NjE2LTVlZTAtNDc2ZC04MmVlLTRjNTQ3NTMyNTAyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCdhzANBgkqhkiG9w0BAQsFAAOCAQEAoXfPrQWCUSbWioHlLGVreSH4QHym ICBRKXiHBifm1Lcp9mCRWnF5X+lkJNBYLYlrlD6DlaGyXkNvNXDNxo2Pyo0VKbdi cqAH29+Ftnf3QUq7mE5cM25QGwvyEie8rAROw8tSRrICoJ0uakHzq3o3COEhESsy blxPJjXg3QszhBVwsb2blwosgY4rFelFZSM01i0zA3Gh0SrTbBU3Psb/OKFy12s9 jmYdTVl3JgSgyRIYO01xxu5FAunD8ENCRxszdnXPgCVEMp+IZq+3UqnSM9W7aGt4 AtewUmm/WhNQdbs10aHz78/QfmtpEX8v4fUpW+Sz2n0tX+R4d5W2dVAgNA== -----END CERTIFICATE-----Generated at Mon Jul 21 18:16:09 2025 by rpki-client