$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa File: 75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa (raw, json) Hash identifier: tGmSlwWSEvv//8u2TDQTTe65QNhhC1m+6VHtWoPFXEA= Subject key identifier: D1:E3:AD:95:5F:3B:D4:48:5B:20:6D:46:AE:03:AF:ED:CC:45:01:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03E6E1E590809DB1EA5FF82F42DE61568C91E6C1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa Signing time: Mon 23 Jun 2025 15:01:58 +0000 ROA not before: Mon 23 Jun 2025 15:01:58 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.15.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:e6:e1:e5:90:80:9d:b1:ea:5f:f8:2f:42:de:61:56:8c:91:e6:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:01:58 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=20e37b5f51aee00831394dc16806476368bb9a192b70b7e79f9028871e392356, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f1:8d:c3:da:eb:76:a1:fb:0c:62:83:90:4d: 61:ea:55:e6:e1:15:13:bd:de:ac:3f:2e:37:df:08: 4b:19:41:a4:4d:2c:47:62:91:cf:eb:66:4a:50:3e: 2b:08:4f:16:b5:de:d7:37:68:6e:08:f1:b5:d4:e5: 8f:16:32:23:16:25:bd:81:55:bc:8d:95:ba:b9:a6: 70:97:52:a3:49:78:7a:e5:95:7f:99:03:2d:36:4d: 0f:35:cf:7f:8c:e6:41:52:fe:97:f6:5e:ef:7c:a3: c5:b4:61:6f:43:33:98:d3:ab:17:ee:97:dd:4c:4f: 5a:10:5c:2f:b3:bb:a6:81:5a:f7:1c:7c:dd:11:1d: 5d:17:27:e4:f3:dd:56:6d:4b:0e:55:03:ec:d9:2e: fe:17:bd:8c:dd:ba:6c:3e:d2:d5:18:d9:5f:aa:33: 62:4f:08:84:87:0f:da:aa:db:82:f5:19:c2:12:ff: 89:2b:0b:c7:29:8a:ef:0c:b1:05:dc:b5:cf:92:48: da:dd:0b:60:75:1f:52:c3:6b:87:4e:1b:28:5c:02: e4:8a:53:36:95:bb:19:a6:81:c3:e5:12:a2:09:18: 87:1f:22:b8:d4:50:0f:ac:9d:53:8b:0b:72:94:74: 10:44:50:a0:5a:68:5f:3d:a0:e6:8c:d6:38:de:41: 21:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E3:AD:95:5F:3B:D4:48:5B:20:6D:46:AE:03:AF:ED:CC:45:01:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75d9fcf4-4228-49d5-bd7b-d0439141fb46.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.15.72.0/21 Signature Algorithm: sha256WithRSAEncryption 9f:92:48:cd:2d:11:59:ec:36:e9:df:e3:77:28:e0:66:bc:cb: f2:ea:8a:e1:3f:61:1e:26:61:f2:cf:c7:2c:bf:55:5e:66:e6: f0:30:4e:92:36:6f:6b:6a:d3:9e:86:aa:fc:ef:4d:eb:3e:bd: 54:85:f1:f5:5b:c9:84:bb:1d:d3:3e:97:5c:e9:9e:9a:8b:c2: 8d:70:52:21:d8:91:ae:4e:33:44:7d:b8:17:ed:c3:93:1b:91: 21:62:76:be:d4:78:ab:02:4b:5c:e1:47:a9:b3:16:10:53:c4: 13:6b:bf:ba:73:36:bb:ed:d7:12:5f:ea:3e:f3:4b:ea:7f:18: d8:fc:6e:56:30:76:ab:b0:88:e3:58:ec:9b:74:73:cf:d6:00: e6:22:c5:b7:0d:2b:4d:0d:5d:f5:2a:9b:a0:cc:77:21:78:4e: 7c:5f:2b:43:c6:6a:c5:03:16:28:5c:01:69:0a:ba:16:b5:4e: db:54:51:bf:ea:e2:64:ea:55:ff:9f:40:a0:1a:34:aa:0e:42: 6a:10:52:41:ce:7a:69:64:e8:90:41:b8:04:42:d7:6b:71:36: f8:41:8c:13:7b:08:a5:fb:45:58:04:8a:a0:68:e3:c9:9b:86: 9c:c2:13:71:7a:55:bd:4d:b1:0e:a5:57:a2:af:61:36:d2:0a: 15:cb:d6:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA+bh5ZCAnbHqX/gvQt5hVoyR5sEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUwMTU4WhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMGUzN2I1ZjUxYWVlMDA4MzEzOTRkYzE2ODA2NDc2MzY4 YmI5YTE5MmI3MGI3ZTc5ZjkwMjg4NzFlMzkyMzU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQ8Y3D2ut2ofsMYoOQTWHqVebhFRO93qw/LjffCEsZQaRN LEdikc/rZkpQPisITxa13tc3aG4I8bXU5Y8WMiMWJb2BVbyNlbq5pnCXUqNJeHrl lX+ZAy02TQ81z3+M5kFS/pf2Xu98o8W0YW9DM5jTqxful91MT1oQXC+zu6aBWvcc fN0RHV0XJ+Tz3VZtSw5VA+zZLv4XvYzdumw+0tUY2V+qM2JPCISHD9qq24L1GcIS /4krC8cpiu8MsQXctc+SSNrdC2B1H1LDa4dOGyhcAuSKUzaVuxmmgcPlEqIJGIcf IrjUUA+snVOLC3KUdBBEUKBaaF89oOaM1jjeQSHTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0eOtlV871EhbIG1GrgOv7cxFAacwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1ZDlmY2Y0LTQyMjgtNDlkNS1iZDdiLWQwNDM5MTQxZmI0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPMD0gwDQYJKoZIhvcNAQELBQADggEBAJ+SSM0tEVnsNunf43co4Ga8y/Lq iuE/YR4mYfLPxyy/VV5m5vAwTpI2b2tq056GqvzvTes+vVSF8fVbyYS7HdM+l1zp npqLwo1wUiHYka5OM0R9uBftw5MbkSFidr7UeKsCS1zhR6mzFhBTxBNrv7pzNrvt 1xJf6j7zS+p/GNj8blYwdquwiONY7Jt0c8/WAOYixbcNK00NXfUqm6DMdyF4Tnxf K0PGasUDFihcAWkKuha1TttUUb/q4mTqVf+fQKAaNKoOQmoQUkHOemlk6JBBuARC 12txNvhBjBN7CKX7RVgEiqBo48mbhpzCE3F6Vb1NsQ6lV6KvYTbSChXL1vk= -----END CERTIFICATE-----Generated at Tue Jul 1 09:21:01 2025 by rpki-client