$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78ea6c31-0dc6-42b2-989e-2ae62658190d.roa File: 78ea6c31-0dc6-42b2-989e-2ae62658190d.roa (raw, json) Hash identifier: di6UmBL7RDfsM4QxHdlQQszDx5gqJgcNFH4EFSOicwg= Subject key identifier: 73:5D:53:F1:3E:78:D7:A7:CE:9A:36:59:91:AB:6D:A8:6A:E0:93:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C7D03FE599BE7CC512D80B00D03D62C2DFC38E7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78ea6c31-0dc6-42b2-989e-2ae62658190d.roa Signing time: Mon 23 Jun 2025 15:00:51 +0000 ROA not before: Mon 23 Jun 2025 15:00:51 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 208.124.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:7d:03:fe:59:9b:e7:cc:51:2d:80:b0:0d:03:d6:2c:2d:fc:38:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:00:51 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=85dc847045862054063d1266d89bdef5a093e182ee57a83edbee63c7b97a5b11, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6c:bd:5b:86:ea:87:50:90:42:ba:48:ea:e3: 1d:5e:ac:1f:6c:c9:43:ed:5c:ec:8b:3e:41:2f:e3: e3:56:d8:82:5c:8a:29:df:52:b6:3d:64:7b:a5:b2: 6a:57:89:d4:56:b3:1c:08:b5:c0:6e:5c:b4:e5:3a: 74:5e:eb:63:7c:21:b0:fa:14:89:34:88:d9:a4:cb: b2:9c:12:5b:4f:4b:26:85:cb:49:81:38:26:15:53: 31:3d:27:d9:ab:00:2f:67:9d:aa:6a:74:35:f7:6b: be:01:f4:d5:eb:b7:fd:79:42:7d:13:a6:cb:e8:7a: ce:6b:18:49:40:cd:21:72:db:90:26:25:aa:20:41: 55:c4:08:d6:34:f3:f2:41:5d:f8:b4:86:9e:f8:6d: a2:99:ee:f1:04:c1:f0:8e:8b:19:8e:0e:42:44:47: 90:93:bc:b8:a0:60:01:40:ed:04:ba:db:bd:23:d2: 70:39:07:0f:89:30:e4:e9:db:dc:2d:2a:d8:77:ca: 52:37:82:bb:59:c4:49:e6:4b:6c:65:b5:ed:f7:f9: aa:4d:e0:4c:2f:27:cb:15:be:60:d3:57:d5:6b:1f: a5:6f:62:04:13:71:cc:7e:84:8a:29:98:c7:96:f0: 2c:d6:2e:5f:c5:af:4e:0d:9c:07:93:d9:50:51:d4: 68:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:5D:53:F1:3E:78:D7:A7:CE:9A:36:59:91:AB:6D:A8:6A:E0:93:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78ea6c31-0dc6-42b2-989e-2ae62658190d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.124.0.0/18 Signature Algorithm: sha256WithRSAEncryption c4:83:0c:7b:2d:11:36:a2:ab:f0:26:bc:71:33:13:aa:8b:aa: 14:d3:2e:76:72:27:34:c1:e8:44:76:d3:26:9e:e8:63:8d:f9: d3:10:3a:e9:b9:ad:c2:57:d5:0e:d9:5b:52:02:38:d2:d0:19: 71:24:06:d3:4e:b2:e0:9f:be:99:5d:ed:7a:3e:e7:d8:14:46: 8a:44:f8:6a:f0:d9:ce:ce:b3:72:10:9b:cd:96:61:94:84:da: d2:50:76:3f:18:4d:cf:8f:66:0e:e7:9a:ec:3b:a6:6c:87:b1: fd:a3:ec:6b:90:88:bd:ff:da:c9:13:f7:36:f0:cd:12:4b:97: 52:91:18:13:86:b2:ce:6c:6d:65:5a:96:a2:6b:80:7c:fb:62: 62:29:5b:e0:8e:9d:6a:52:ab:71:ea:1e:e7:10:76:78:51:da: 0d:6b:3c:b5:98:4c:8c:c3:d3:a5:c0:60:44:9b:b2:17:b9:81: 4c:95:af:8f:a0:fd:30:dc:72:81:ea:06:22:6d:fa:c9:61:27: 42:42:b5:f5:ba:a0:ac:ae:85:c1:18:3e:be:1c:a7:06:e2:93: 46:ea:52:e8:2c:0b:52:4f:6c:58:0d:30:5b:5f:23:62:b2:07: ce:c3:5e:66:02:48:f2:fa:96:8d:9c:61:34:54:e4:3e:30:e5: 50:eb:3e:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfH0D/lmb58xRLYCwDQPWLC38OOcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUwMDUxWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NWRjODQ3MDQ1ODYyMDU0MDYzZDEyNjZkODliZGVmNWEw OTNlMTgyZWU1N2E4M2VkYmVlNjNjN2I5N2E1YjExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8bL1bhuqHUJBCukjq4x1erB9syUPtXOyLPkEv4+NW2IJc iinfUrY9ZHulsmpXidRWsxwItcBuXLTlOnRe62N8IbD6FIk0iNmky7KcEltPSyaF y0mBOCYVUzE9J9mrAC9nnapqdDX3a74B9NXrt/15Qn0Tpsvoes5rGElAzSFy25Am JaogQVXECNY08/JBXfi0hp74baKZ7vEEwfCOixmODkJER5CTvLigYAFA7QS6270j 0nA5Bw+JMOTp29wtKth3ylI3grtZxEnmS2xlte33+apN4EwvJ8sVvmDTV9VrH6Vv YgQTccx+hIopmMeW8CzWLl/Fr04NnAeT2VBR1GgrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUc11T8T5416fOmjZZkattqGrgk34wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4ZWE2YzMxLTBkYzYtNDJiMi05ODllLTJhZTYyNjU4MTkwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbQfAAwDQYJKoZIhvcNAQELBQADggEBAMSDDHstETaiq/AmvHEzE6qLqhTT LnZyJzTB6ER20yae6GON+dMQOum5rcJX1Q7ZW1ICONLQGXEkBtNOsuCfvpld7Xo+ 59gURopE+Grw2c7Os3IQm82WYZSE2tJQdj8YTc+PZg7nmuw7pmyHsf2j7GuQiL3/ 2skT9zbwzRJLl1KRGBOGss5sbWValqJrgHz7YmIpW+COnWpSq3HqHucQdnhR2g1r PLWYTIzD06XAYESbshe5gUyVr4+g/TDccoHqBiJt+slhJ0JCtfW6oKyuhcEYPr4c pwbik0bqUugsC1JPbFgNMFtfI2KyB87DXmYCSPL6lo2cYTRU5D4w5VDrPr4= -----END CERTIFICATE-----Generated at Tue Jul 1 14:15:56 2025 by rpki-client