$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa File: 3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa (raw, json) Hash identifier: jedPTYsmxmsdhQVZnubFC/jQcnfOYEa1PaBpXpMsQH0= Subject key identifier: 12:21:11:89:F6:45:14:1B:01:EB:CD:33:C2:FA:70:DF:B3:93:B4:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 41C33F41964964364B74AE64E23B61BE71BA77AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa Signing time: Fri 27 Jun 2025 00:21:38 +0000 ROA not before: Fri 27 Jun 2025 00:21:38 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 37.203.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:c3:3f:41:96:49:64:36:4b:74:ae:64:e2:3b:61:be:71:ba:77:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:21:38 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=b2807b8ae7f82c6a59a50f270978786bd2770bf64a05f2bc22a865b9698969a8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ca:4d:d0:6e:0b:f9:e6:fa:48:36:5d:9f:1a: 26:20:5b:88:be:56:14:a5:63:a3:30:8b:ad:0b:a7: e2:c0:e0:84:a6:5d:aa:63:65:a8:92:e6:ca:a1:e8: 1a:bd:03:86:23:66:13:be:8d:e2:a1:3e:a0:0d:c3: 67:d8:d9:5f:1b:70:a4:c0:c3:fa:2d:5a:a6:2b:46: 66:08:40:15:5e:68:e5:dc:ae:e8:c9:57:2e:f8:8e: c1:5c:f9:da:b8:e7:d7:c0:8b:7d:98:d0:ef:26:79: 80:68:ab:d1:d5:af:33:d4:bc:88:14:a1:13:bb:91: 01:6e:6d:df:31:3c:71:91:2c:28:74:38:34:85:1b: 7d:bd:23:13:00:40:3b:57:78:9a:79:41:24:85:06: 11:9a:89:46:fc:ae:5e:0b:c6:d3:be:3f:ea:97:a3: a5:0d:61:41:2f:2b:e3:e1:42:d1:5b:a5:e1:91:ab: 76:fc:5a:75:22:e9:fe:d1:f1:7b:89:e1:c0:34:a5: 89:23:fc:65:30:72:60:e4:ae:78:d4:d4:6d:42:2e: 0a:78:41:fc:10:f7:48:fb:f9:48:07:ad:d5:5c:88: 6f:ea:11:31:7c:bd:d9:91:70:69:ce:fd:91:70:45: 41:51:68:ec:6c:1f:7f:f9:d8:ab:e2:3b:f4:97:23: 03:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:21:11:89:F6:45:14:1B:01:EB:CD:33:C2:FA:70:DF:B3:93:B4:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.203.157.0/24 Signature Algorithm: sha256WithRSAEncryption 60:a7:08:cf:37:dc:75:41:f8:c4:e5:4a:41:9e:21:cc:d9:c7: 5a:ea:03:f9:21:72:c3:b5:7d:5f:e6:80:6c:41:8a:35:64:d6: 5f:35:c2:de:87:c1:5d:d3:fa:2b:0b:1e:f2:70:5b:60:37:10: 65:12:e2:3d:11:ed:7e:d2:fb:a9:67:b4:c9:e7:aa:f9:9e:4d: 43:12:c8:08:ca:19:be:1d:b9:25:7d:25:5a:4d:9f:ec:d0:d6: 82:c5:10:65:42:4d:6d:2a:03:53:c4:a5:b1:d6:98:31:f7:1e: 14:9e:3d:70:1f:3f:22:08:81:2b:45:c7:d4:71:5f:58:ea:e8: 54:63:31:d2:bd:c3:98:84:52:61:a0:30:c1:8d:c7:62:d9:fa: cb:24:44:a3:e4:1e:81:79:29:5b:3e:e1:0e:7c:7f:66:aa:e8: 7f:3b:4d:b0:f2:c4:72:87:e7:1d:d2:f1:7a:2f:84:79:8a:0c: b7:9d:60:00:01:ff:53:d8:f6:d4:42:2b:77:c5:30:f9:83:f3: d7:59:21:4b:25:93:60:f6:09:77:18:b2:a8:dd:e2:c5:a9:c4: ad:8f:e5:e6:47:db:f7:97:22:55:82:5e:63:aa:05:79:f5:22: 53:fb:b2:37:8b:8c:78:05:c7:2b:1a:26:50:31:d3:96:08:a4: d7:50:28:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQcM/QZZJZDZLdK5k4jthvnG6d6wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDAyMTM4WhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjgwN2I4YWU3ZjgyYzZhNTlhNTBmMjcwOTc4Nzg2YmQy NzcwYmY2NGEwNWYyYmMyMmE4NjViOTY5ODk2OWE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3yk3Qbgv55vpINl2fGiYgW4i+VhSlY6Mwi60Lp+LA4ISm XapjZaiS5sqh6Bq9A4YjZhO+jeKhPqANw2fY2V8bcKTAw/otWqYrRmYIQBVeaOXc rujJVy74jsFc+dq459fAi32Y0O8meYBoq9HVrzPUvIgUoRO7kQFubd8xPHGRLCh0 ODSFG329IxMAQDtXeJp5QSSFBhGaiUb8rl4LxtO+P+qXo6UNYUEvK+PhQtFbpeGR q3b8WnUi6f7R8XuJ4cA0pYkj/GUwcmDkrnjU1G1CLgp4QfwQ90j7+UgHrdVciG/q ETF8vdmRcGnO/ZFwRUFRaOxsH3/52KviO/SXIwMHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEiERifZFFBsB680zwvpw37OTtFMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNlMTExY2FiLWIzNzMtNDI0Yi1hM2E5LThjOGZjN2Y3MWUxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAly50wDQYJKoZIhvcNAQELBQADggEBAGCnCM833HVB+MTlSkGeIczZx1rq A/khcsO1fV/mgGxBijVk1l81wt6HwV3T+isLHvJwW2A3EGUS4j0R7X7S+6lntMnn qvmeTUMSyAjKGb4duSV9JVpNn+zQ1oLFEGVCTW0qA1PEpbHWmDH3HhSePXAfPyII gStFx9RxX1jq6FRjMdK9w5iEUmGgMMGNx2LZ+sskRKPkHoF5KVs+4Q58f2aq6H87 TbDyxHKH5x3S8XovhHmKDLedYAAB/1PY9tRCK3fFMPmD89dZIUslk2D2CXcYsqjd 4sWpxK2P5eZH2/eXIlWCXmOqBXn1IlP7sjeLjHgFxysaJlAx05YIpNdQKAM= -----END CERTIFICATE-----Generated at Tue Jul 1 19:55:32 2025 by rpki-client