$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a87e6de-abd8-4be0-a610-ec23b4c9818c.roa File: 4a87e6de-abd8-4be0-a610-ec23b4c9818c.roa (raw, json) Hash identifier: 2g1JdurZlpjCc3E4qxu4rgziMupgkixACUVtbWld76g= Subject key identifier: C0:FD:97:F0:95:34:39:9A:4D:F5:CC:61:19:CC:B5:C3:42:8F:75:6A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04621A503874A4454975BE91D01F9A7C180D10 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a87e6de-abd8-4be0-a610-ec23b4c9818c.roa Signing time: Fri 20 Jun 2025 00:01:19 +0000 ROA not before: Fri 20 Jun 2025 00:01:19 +0000 ROA not after: Fri 25 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 130.175.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:62:1a:50:38:74:a4:45:49:75:be:91:d0:1f:9a:7c:18:0d:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 20 00:01:19 2025 GMT Not After : Jul 25 23:59:59 2025 GMT Subject: serialNumber=e987ebab52e9060ecc013393dadd62b41e91969c0a1630cc714b9d141881bdd3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:86:12:69:bf:69:32:a7:68:82:be:7a:c0:a3: f2:50:a7:c9:de:56:e8:ab:73:ad:56:b8:86:95:ae: 74:f2:ca:ad:bc:d5:5d:6d:b3:35:59:8e:3e:14:27: 77:1d:b2:ce:b6:e7:4d:f8:6f:00:1d:d6:28:7d:12: b2:69:6f:9f:31:d9:71:58:16:e4:a5:26:a3:22:51: 5c:39:60:d6:20:a4:09:63:d0:a0:96:38:84:fa:f4: e9:67:39:85:11:e8:ed:5e:b3:bd:52:5e:29:f9:34: 1c:d3:01:55:18:7a:24:ca:2c:7d:aa:7f:47:42:0c: b0:a9:01:d6:32:18:e1:60:57:04:f1:8e:79:66:54: 41:37:76:41:ca:d5:5c:f6:70:4e:9f:be:45:38:a8: 12:6a:ad:3e:a0:78:10:92:d0:d4:05:10:31:86:61: ac:bc:16:1a:13:29:18:2e:04:a4:1c:65:fd:64:af: c2:cc:e8:84:41:65:37:7c:79:d6:ec:76:66:69:9e: f8:c4:c8:ed:1e:aa:44:21:41:03:e8:5e:da:21:c7: 05:f8:7e:b7:34:ba:15:30:9e:4c:d7:bf:f2:2d:d7: 38:20:ac:ab:ef:50:f1:28:16:7c:84:5d:40:6d:fd: 06:e3:4a:b7:f8:40:7c:e2:d4:79:d6:bf:2d:01:d8: 07:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:FD:97:F0:95:34:39:9A:4D:F5:CC:61:19:CC:B5:C3:42:8F:75:6A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a87e6de-abd8-4be0-a610-ec23b4c9818c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.175.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3a:75:b6:62:16:09:1f:ac:70:aa:aa:b6:65:62:91:c3:30:1a: 60:3d:85:94:17:2d:86:28:f7:81:9a:e5:c9:54:94:5d:7d:9b: f3:01:5e:2a:2b:87:85:ea:3c:3a:5e:47:49:29:48:30:32:2f: 79:b3:15:25:e1:d7:cd:47:42:56:07:4a:d0:d5:36:18:4c:02: de:4d:4a:c1:44:95:d8:ec:b0:57:aa:54:25:a6:c2:70:65:25: 55:fe:e9:68:b8:55:9f:23:7c:55:1f:e2:1b:ad:62:cc:11:53: a3:d1:4c:3f:c7:6e:57:64:dd:ed:f3:02:cc:04:88:f0:fd:14: 4a:29:88:19:2b:23:51:f5:bb:18:2b:11:5d:73:9b:ad:97:ba: 20:19:0b:64:fb:fa:11:30:48:c9:d0:9c:cc:eb:92:3d:cf:a2: ad:d5:44:e7:1a:ac:b9:61:78:24:6a:a6:6b:43:ca:d8:1d:a8: 87:3f:0d:a6:a5:f1:91:cf:7b:84:b3:7f:8a:a8:e7:9b:f3:e5: 29:f7:f1:80:73:2c:16:d1:34:01:3e:f3:a6:6e:a7:e0:e3:a7: 9e:0b:05:71:28:af:cb:d6:90:7c:b9:dc:66:33:cf:af:c3:d0: 98:a9:4d:7d:10:bc:57:f5:51:81:08:eb:20:4e:de:12:14:40: 86:61:df:78 -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITBGIaUDh0pEVJdb6R0B+afBgNEDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MjAwMDAxMTlaFw0yNTA3MjUyMzU5NTla MHoxSTBHBgNVBAUTQGU5ODdlYmFiNTJlOTA2MGVjYzAxMzM5M2RhZGQ2MmI0MWU5 MTk2OWMwYTE2MzBjYzcxNGI5ZDE0MTg4MWJkZDMxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMOGEmm/aTKnaIK+esCj8lCnyd5W6KtzrVa4hpWudPLKrbzV XW2zNVmOPhQndx2yzrbnTfhvAB3WKH0SsmlvnzHZcVgW5KUmoyJRXDlg1iCkCWPQ oJY4hPr06Wc5hRHo7V6zvVJeKfk0HNMBVRh6JMosfap/R0IMsKkB1jIY4WBXBPGO eWZUQTd2QcrVXPZwTp++RTioEmqtPqB4EJLQ1AUQMYZhrLwWGhMpGC4EpBxl/WSv wszohEFlN3x51ux2Zmme+MTI7R6qRCFBA+he2iHHBfh+tzS6FTCeTNe/8i3XOCCs q+9Q8SgWfIRdQG39BuNKt/hAfOLUeda/LQHYB2MCAwEAAaOCArAwggKsMB0GA1Ud DgQWBBTA/ZfwlTQ5mk31zGEZzLXDQo91ajAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNGE4N2U2ZGUtYWJkOC00YmUwLWE2MTAtZWMyM2I0Yzk4MThjLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAIKvMA0GCSqGSIb3DQEBCwUAA4IBAQA6dbZiFgkfrHCqqrZlYpHDMBpgPYWU Fy2GKPeBmuXJVJRdfZvzAV4qK4eF6jw6XkdJKUgwMi95sxUl4dfNR0JWB0rQ1TYY TALeTUrBRJXY7LBXqlQlpsJwZSVV/ulouFWfI3xVH+IbrWLMEVOj0Uw/x25XZN3t 8wLMBIjw/RRKKYgZKyNR9bsYKxFdc5utl7ogGQtk+/oRMEjJ0JzM65I9z6Kt1UTn Gqy5YXgkaqZrQ8rYHaiHPw2mpfGRz3uEs3+KqOeb8+Up9/GAcywW0TQBPvOmbqfg 46eeCwVxKK/L1pB8udxmM8+vw9CYqU19ELxX9VGBCOsgTt4SFECGYd94 -----END CERTIFICATE-----Generated at Sun Jun 29 04:02:39 2025 by rpki-client