$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/072c09c9-2b2b-47f3-bf8f-9e94d6cf69e2.roa File: 072c09c9-2b2b-47f3-bf8f-9e94d6cf69e2.roa (raw, json) Hash identifier: asxVwIArs5OGj06b/PNOKS8zkUb/N0283/dNEdyKwt8= Subject key identifier: 79:58:22:B9:02:3D:A5:B8:65:28:03:F0:46:F1:14:96:10:80:88:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72B49A3ABDA26197AECB80A0236E4A6172D4950C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/072c09c9-2b2b-47f3-bf8f-9e94d6cf69e2.roa Signing time: Sat 28 Jun 2025 00:11:52 +0000 ROA not before: Sat 28 Jun 2025 00:11:52 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 162.247.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:b4:9a:3a:bd:a2:61:97:ae:cb:80:a0:23:6e:4a:61:72:d4:95:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:11:52 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=a42530916492f4c0d60f8f94dfb1fc05967becfb597477a518a89486840ff492, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:90:e6:a6:1b:cf:8e:98:fb:68:18:ea:0c:f2: eb:0e:55:e0:5c:0d:c2:42:ea:4c:59:e0:5c:3d:f4: fe:54:68:03:38:92:78:27:d3:aa:b5:c4:0d:2f:d6: 52:08:3a:c4:80:0e:10:74:dc:69:eb:12:c3:a3:2d: 8c:93:56:9e:77:1f:47:00:11:54:5c:79:8e:6b:0e: 2e:fb:0d:94:b1:bb:43:06:8e:dd:e6:de:a3:3c:4c: cd:a3:0a:e8:fe:2b:29:dc:b6:6c:20:9c:ac:43:b2: d8:5c:76:2d:02:6d:58:bc:52:ef:db:4d:01:03:87: 69:29:c6:0d:e2:3f:94:f2:2c:58:33:6b:2f:31:2c: 3b:aa:f9:93:84:43:22:79:d6:a9:3f:fa:e2:ef:35: c7:7c:02:9c:24:ad:a8:71:ee:bf:95:03:fb:c4:92: 9f:7e:8d:49:c7:f0:9e:1a:a7:78:a8:43:33:1b:8c: b2:09:2f:6f:40:53:56:78:a6:08:b8:81:97:3f:68: 0e:7c:ef:19:33:fb:d9:79:06:da:2b:d0:39:84:4c: f8:58:65:91:72:04:53:ce:af:76:99:9c:18:0d:d8: c9:fe:11:ac:68:42:d1:28:c8:1b:fe:50:a7:fc:c6: a4:9a:7e:1b:cc:f8:68:85:0c:ca:77:bc:c6:48:31: 27:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:58:22:B9:02:3D:A5:B8:65:28:03:F0:46:F1:14:96:10:80:88:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/072c09c9-2b2b-47f3-bf8f-9e94d6cf69e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.247.66.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:0f:6b:0a:84:7d:00:f0:97:cf:a7:08:93:9c:ee:95:69:46: ff:68:40:e0:06:66:58:5f:c6:9a:93:3e:09:03:21:7c:c6:bf: 5e:0f:7b:f4:c7:4b:95:96:3e:1f:09:5d:2d:f2:51:8b:17:11: e0:e8:bf:7d:2a:bc:f5:7c:38:23:42:98:62:90:35:15:d3:19: 5e:83:6a:45:81:ed:fd:7e:99:0e:76:3e:4a:81:26:62:85:54: a6:8d:dd:95:9e:f7:85:9a:b1:2b:af:f9:00:b4:4c:fa:fb:30: 57:f5:5e:49:39:fb:71:84:d1:2b:b9:19:9a:5e:38:e6:53:5b: 8e:ed:c3:a1:12:fe:7b:d5:da:a0:f8:d7:14:8c:aa:9b:53:72: 79:dd:0b:d9:2a:25:44:88:b8:13:e6:8b:d9:be:06:ce:c7:a2: 73:5b:92:f7:f1:41:1f:b9:38:45:ca:07:3c:43:d2:22:73:7d: 75:27:57:ea:2e:8b:6f:a5:1a:31:70:8a:a0:57:17:a1:90:d6: de:c7:1f:6c:88:bc:b7:55:19:56:50:8a:57:d5:e2:08:58:b2: b7:92:ff:a1:fb:f4:66:70:3d:14:ad:9f:b7:61:04:53:de:2b: d4:e0:12:e0:6d:1e:c2:46:0f:03:dc:e6:af:aa:b8:d9:b8:f0: 3b:d8:29:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcrSaOr2iYZeuy4CgI25KYXLUlQwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAxMTUyWhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDI1MzA5MTY0OTJmNGMwZDYwZjhmOTRkZmIxZmMwNTk2 N2JlY2ZiNTk3NDc3YTUxOGE4OTQ4Njg0MGZmNDkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIkOamG8+OmPtoGOoM8usOVeBcDcJC6kxZ4Fw99P5UaAM4 kngn06q1xA0v1lIIOsSADhB03GnrEsOjLYyTVp53H0cAEVRceY5rDi77DZSxu0MG jt3m3qM8TM2jCuj+KynctmwgnKxDsthcdi0CbVi8Uu/bTQEDh2kpxg3iP5TyLFgz ay8xLDuq+ZOEQyJ51qk/+uLvNcd8Apwkrahx7r+VA/vEkp9+jUnH8J4ap3ioQzMb jLIJL29AU1Z4pgi4gZc/aA587xkz+9l5Btor0DmETPhYZZFyBFPOr3aZnBgN2Mn+ EaxoQtEoyBv+UKf8xqSafhvM+GiFDMp3vMZIMSflAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeVgiuQI9pbhlKAPwRvEUlhCAiDMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3MmMwOWM5LTJiMmItNDdmMy1iZjhmLTllOTRkNmNmNjllMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGi90IwDQYJKoZIhvcNAQELBQADggEBAG4PawqEfQDwl8+nCJOc7pVpRv9o QOAGZlhfxpqTPgkDIXzGv14Pe/THS5WWPh8JXS3yUYsXEeDov30qvPV8OCNCmGKQ NRXTGV6DakWB7f1+mQ52PkqBJmKFVKaN3ZWe94WasSuv+QC0TPr7MFf1Xkk5+3GE 0Su5GZpeOOZTW47tw6ES/nvV2qD41xSMqptTcnndC9kqJUSIuBPmi9m+Bs7HonNb kvfxQR+5OEXKBzxD0iJzfXUnV+oui2+lGjFwiqBXF6GQ1t7HH2yIvLdVGVZQilfV 4ghYsreS/6H79GZwPRStn7dhBFPeK9TgEuBtHsJGDwPc5q+quNm48DvYKSA= -----END CERTIFICATE-----Generated at Sun Jun 29 04:32:41 2025 by rpki-client