$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/352e6ecd-2c56-4d98-bd90-daa78dfcf3c0.roa File: 352e6ecd-2c56-4d98-bd90-daa78dfcf3c0.roa (raw, json) Hash identifier: u4v5isd+u5kegu/q84QVMTuy83ch2+m+rc8Gd6M098Y= Subject key identifier: 9B:62:C5:A6:79:C2:0D:57:5B:D7:FE:A9:E7:B5:D9:FF:EF:DE:97:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F71396B93327F5C148E39818A1E97F4F35827CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/352e6ecd-2c56-4d98-bd90-daa78dfcf3c0.roa Signing time: Mon 16 Jun 2025 15:42:17 +0000 ROA not before: Mon 16 Jun 2025 15:42:17 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 72.44.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:71:39:6b:93:32:7f:5c:14:8e:39:81:8a:1e:97:f4:f3:58:27:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:42:17 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=91b23dd19d90566a58b2baf0a6b29d2b41bd47a81dd94534524144657f1339e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8e:89:ae:19:4c:05:d0:67:26:00:a6:80:20: 54:8c:a0:bf:98:f2:20:00:1b:fe:df:39:69:3e:58: b9:2e:1b:57:29:87:4d:b2:0b:38:4c:dc:66:af:c2: a4:b5:18:ff:69:22:1f:13:c1:ca:a9:a6:7a:65:77: 49:68:0f:8e:99:0a:5d:02:5a:eb:5e:c6:ae:ed:2a: 79:f2:bc:ff:56:9d:53:b7:ac:d8:fb:ce:0e:7a:0a: 20:07:84:f7:5f:04:df:01:a0:a2:56:7c:5f:3b:bc: d2:34:69:0c:b4:d8:4e:2a:7f:47:49:89:d1:65:01: 0b:52:a6:83:c6:cf:43:df:ab:f8:f1:95:fd:ab:1b: 70:f2:45:c3:b3:84:b5:aa:8d:bb:ab:5d:16:50:a9: 0a:82:66:75:09:ec:d2:f4:3c:e0:7d:6d:b8:7a:83: c3:18:2d:da:35:ee:b8:77:a2:17:33:ed:55:fc:fa: 1b:33:ef:1d:d2:72:bd:f1:c3:d6:df:4a:e9:4e:c5: 46:42:7f:f0:54:67:6f:47:75:eb:ad:95:62:9d:6a: d8:57:64:7b:2d:b3:97:aa:96:2f:c6:3b:41:34:04: b8:63:2d:52:56:c0:d9:23:37:1e:b7:f9:64:72:63: f2:06:8b:22:e7:de:36:7d:01:cc:ce:00:08:54:6d: 03:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:62:C5:A6:79:C2:0D:57:5B:D7:FE:A9:E7:B5:D9:FF:EF:DE:97:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/352e6ecd-2c56-4d98-bd90-daa78dfcf3c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.32.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:ac:7d:3c:d3:b5:0c:07:50:77:8d:9f:51:41:83:16:87:7e: 6c:cb:d7:4d:9c:4c:06:0f:7f:54:1e:98:f9:15:9a:9a:0a:d0: b6:f2:6a:a4:d5:4e:2e:e6:23:cf:bd:e8:64:72:9d:c2:f4:bf: 45:ec:79:1f:33:fc:81:92:02:f0:14:2f:a0:6a:18:02:c9:7a: dd:22:7c:4a:e1:4c:67:d2:6f:08:36:d6:8f:af:8b:0a:51:ac: 3d:94:b7:3c:11:16:f4:41:da:a2:e0:7c:bb:57:2e:e2:a8:e2: 85:cc:5a:57:49:fe:a5:4b:d4:f0:30:61:22:85:0a:cc:7c:f8: 70:90:7d:cb:53:b1:d8:cb:dc:49:38:be:aa:86:ec:c7:e1:5f: 2a:95:7a:68:b4:62:f1:08:48:c1:a2:dd:fe:79:4c:50:de:47: 01:40:b8:23:26:71:73:80:de:ce:c4:a3:21:42:0a:96:17:da: 2f:5e:e2:5f:bb:4a:f9:75:09:01:49:fc:8a:e1:f1:96:a5:e9: b0:1b:54:cd:b2:94:e9:a7:17:ea:99:12:9c:21:87:5a:f7:de: 31:ca:75:39:92:d8:fb:51:8f:86:32:e7:9b:18:74:24:b7:12: 5f:93:fc:e8:73:11:93:64:94:cb:3a:87:66:bd:ff:02:ca:04: ae:42:0f:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb3E5a5Myf1wUjjmBih6X9PNYJ84wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTU0MjE3WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MWIyM2RkMTlkOTA1NjZhNThiMmJhZjBhNmIyOWQyYjQx YmQ0N2E4MWRkOTQ1MzQ1MjQxNDQ2NTdmMTMzOWU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrjomuGUwF0GcmAKaAIFSMoL+Y8iAAG/7fOWk+WLkuG1cp h02yCzhM3GavwqS1GP9pIh8Twcqppnpld0loD46ZCl0CWutexq7tKnnyvP9WnVO3 rNj7zg56CiAHhPdfBN8BoKJWfF87vNI0aQy02E4qf0dJidFlAQtSpoPGz0Pfq/jx lf2rG3DyRcOzhLWqjburXRZQqQqCZnUJ7NL0POB9bbh6g8MYLdo17rh3ohcz7VX8 +hsz7x3Scr3xw9bfSulOxUZCf/BUZ29HdeutlWKdathXZHsts5eqli/GO0E0BLhj LVJWwNkjNx63+WRyY/IGiyLn3jZ9AczOAAhUbQNxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm2LFpnnCDVdb1/6p57XZ/+/el9owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1MmU2ZWNkLTJjNTYtNGQ5OC1iZDkwLWRhYTc4ZGZjZjNjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABILCAwDQYJKoZIhvcNAQELBQADggEBAF+sfTzTtQwHUHeNn1FBgxaHfmzL 102cTAYPf1QemPkVmpoK0LbyaqTVTi7mI8+96GRyncL0v0XseR8z/IGSAvAUL6Bq GALJet0ifErhTGfSbwg21o+viwpRrD2UtzwRFvRB2qLgfLtXLuKo4oXMWldJ/qVL 1PAwYSKFCsx8+HCQfctTsdjL3Ek4vqqG7MfhXyqVemi0YvEISMGi3f55TFDeRwFA uCMmcXOA3s7EoyFCCpYX2i9e4l+7Svl1CQFJ/Irh8Zal6bAbVM2ylOmnF+qZEpwh h1r33jHKdTmS2PtRj4Yy55sYdCS3El+T/OhzEZNklMs6h2a9/wLKBK5CD2A= -----END CERTIFICATE-----Generated at Wed Jul 2 05:04:23 2025 by rpki-client