$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1da3737-597d-48e1-b632-0f19dd97e2e2.roa File: f1da3737-597d-48e1-b632-0f19dd97e2e2.roa (raw, json) Hash identifier: ZwrPHRhiZkvL+EXOaIL1sCAShWeDgj1K5ONfzpreAOE= Subject key identifier: CE:93:73:CD:08:FE:3B:29:C9:67:6C:5A:63:50:84:78:23:97:4D:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 62080AE8ECED051B7F6B353BEA584648D7F86F1F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1da3737-597d-48e1-b632-0f19dd97e2e2.roa Signing time: Wed 02 Jul 2025 00:21:06 +0000 ROA not before: Wed 02 Jul 2025 00:21:06 +0000 ROA not after: Wed 06 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 185.7.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:08:0a:e8:ec:ed:05:1b:7f:6b:35:3b:ea:58:46:48:d7:f8:6f:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 2 00:21:06 2025 GMT Not After : Aug 6 23:59:59 2025 GMT Subject: serialNumber=6e81877b23727d6ed663090aed69c4f1167a3aeba608564a0f05b79abd6de513, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:71:13:34:f8:89:22:26:61:b6:cd:f7:c3:cd: 2b:bf:ff:c1:ab:93:06:bc:32:bf:8e:29:63:68:80: 91:c6:00:20:ff:22:7b:de:18:7c:87:53:ed:1c:70: 18:33:0f:a8:4f:82:88:f0:3b:5b:69:f4:7f:b9:b7: a7:bb:65:e2:14:30:b9:59:77:ce:73:aa:68:69:78: f9:a6:28:89:e2:9e:96:78:ca:2f:fe:03:f4:05:d1: ad:79:80:66:c4:38:24:d7:cf:ca:5c:74:5c:ce:a6: f1:4d:a3:db:80:92:4e:af:8d:e9:a5:36:be:bf:e9: cf:4f:e7:86:7c:42:50:33:a7:da:8d:24:77:a7:a4: 0e:32:fb:fd:ce:15:79:c8:00:b7:2b:57:74:3b:3b: 70:1b:f6:3b:af:e0:32:8a:a4:eb:40:6e:1d:fa:9f: ff:48:a3:63:d8:a5:be:17:c1:55:e0:38:80:54:78: 9a:a0:f8:ac:6a:b6:51:0c:7f:f1:22:a3:7f:e9:a8: 40:fb:d5:38:78:9f:2d:52:fe:1d:c7:52:69:84:6c: a6:07:52:58:86:01:b2:c0:e7:25:99:9a:91:50:1a: 90:51:40:67:95:10:3c:4a:5d:89:ea:bd:5d:d4:7a: d2:ca:f5:ed:92:d6:5f:1b:2a:30:10:a8:73:9e:d3: bd:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:93:73:CD:08:FE:3B:29:C9:67:6C:5A:63:50:84:78:23:97:4D:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1da3737-597d-48e1-b632-0f19dd97e2e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.7.12.0/23 Signature Algorithm: sha256WithRSAEncryption 39:c7:45:cc:a0:71:af:36:8c:40:59:f7:c9:25:62:37:62:1a: d3:f0:5d:f2:7f:0a:d6:35:5e:57:b4:71:ba:33:88:17:f2:56: a8:71:2f:41:5c:34:5d:32:85:b6:7e:c2:b9:e7:52:64:fb:bb: d2:e9:13:75:96:b0:15:50:53:1e:06:a2:28:09:3c:33:36:96: da:1a:23:de:c1:47:ee:82:25:39:1e:a2:37:9a:ab:4a:ed:84: d9:19:78:7f:01:a9:e6:ef:3c:21:a6:53:03:18:6e:b0:74:d1: 25:5a:20:e7:f1:45:a4:dd:91:14:a5:a6:fc:49:78:2d:da:34: dd:f8:19:a7:e0:23:1d:82:14:db:c1:6c:32:d4:a5:ba:40:88: e4:6a:30:3c:96:c6:f4:e3:5a:99:e9:3f:ed:75:df:23:2e:d4: e5:ae:30:ce:89:21:1e:eb:54:e4:5c:9b:78:c6:47:fc:2a:49: e9:38:c4:c0:e0:3a:da:f9:ad:96:df:58:f9:af:a0:48:53:97: 98:d8:dd:c0:db:fa:cc:cb:27:68:d6:f8:86:d8:38:73:e7:dc: 15:5d:15:c6:f6:fe:ea:00:69:85:a9:b0:97:6d:44:78:91:9f: e2:7d:44:6c:d6:40:f3:50:87:aa:6e:7d:67:a4:5e:e8:4d:e5: cb:ae:5d:08 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYggK6OztBRt/azU76lhGSNf4bx8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAyMDAyMTA2WhcNMjUwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTgxODc3YjIzNzI3ZDZlZDY2MzA5MGFlZDY5YzRmMTE2 N2EzYWViYTYwODU2NGEwZjA1Yjc5YWJkNmRlNTEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKcRM0+IkiJmG2zffDzSu//8Grkwa8Mr+OKWNogJHGACD/ InveGHyHU+0ccBgzD6hPgojwO1tp9H+5t6e7ZeIUMLlZd85zqmhpePmmKIninpZ4 yi/+A/QF0a15gGbEOCTXz8pcdFzOpvFNo9uAkk6vjemlNr6/6c9P54Z8QlAzp9qN JHenpA4y+/3OFXnIALcrV3Q7O3Ab9juv4DKKpOtAbh36n/9Io2PYpb4XwVXgOIBU eJqg+KxqtlEMf/Eio3/pqED71Th4ny1S/h3HUmmEbKYHUliGAbLA5yWZmpFQGpBR QGeVEDxKXYnqvV3UetLK9e2S1l8bKjAQqHOe0719AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzpNzzQj+OynJZ2xaY1CEeCOXTcgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxZGEzNzM3LTU5N2QtNDhlMS1iNjMyLTBmMTlkZDk3ZTJlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAG5BwwwDQYJKoZIhvcNAQELBQADggEBADnHRcygca82jEBZ98klYjdiGtPw XfJ/CtY1Xle0cboziBfyVqhxL0FcNF0yhbZ+wrnnUmT7u9LpE3WWsBVQUx4GoigJ PDM2ltoaI97BR+6CJTkeojeaq0rthNkZeH8BqebvPCGmUwMYbrB00SVaIOfxRaTd kRSlpvxJeC3aNN34GafgIx2CFNvBbDLUpbpAiORqMDyWxvTjWpnpP+113yMu1OWu MM6JIR7rVORcm3jGR/wqSek4xMDgOtr5rZbfWPmvoEhTl5jY3cDb+szLJ2jW+IbY OHPn3BVdFcb2/uoAaYWpsJdtRHiRn+J9RGzWQPNQh6pufWekXuhN5cuuXQg= -----END CERTIFICATE-----Generated at Tue Jul 22 04:37:05 2025 by rpki-client