$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a728816-ace9-4a07-86ea-7ebc247ed176.roa File: 7a728816-ace9-4a07-86ea-7ebc247ed176.roa (raw, json) Hash identifier: 6PLND/X+uosiKcIFoVTOTJYdgL+8XBuav23Lg+YFVSs= Subject key identifier: DB:E8:D8:AA:40:96:75:75:BA:93:0A:63:F1:EC:33:CB:54:68:65:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F48D9A25C57026D20F931FA8BB0AD6008B1C671 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a728816-ace9-4a07-86ea-7ebc247ed176.roa Signing time: Tue 01 Jul 2025 00:12:12 +0000 ROA not before: Tue 01 Jul 2025 00:12:12 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:48:d9:a2:5c:57:02:6d:20:f9:31:fa:8b:b0:ad:60:08:b1:c6:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 1 00:12:12 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=ec61380292d76aa9ff61ae9e2d4c1a1dab2518bd0a72d7a5f78184230b71481c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d0:26:cd:5c:cb:8e:2e:95:02:fd:1b:94:ee: b8:b6:8b:a8:38:d1:22:10:cf:c0:9f:57:e1:fe:67: 5d:47:ef:e8:2b:da:d8:57:e4:e7:60:c1:be:ea:42: fe:fd:92:f7:ad:40:af:d5:06:5a:5c:1b:b3:60:7e: 96:61:84:b1:7b:16:cc:bb:51:56:60:ee:cb:cc:66: 74:5c:21:da:86:e5:a0:9a:28:44:bd:77:30:a0:d0: 37:ec:69:a9:e5:0e:4e:f0:e6:35:a1:34:7b:c9:c2: 10:75:e2:c1:1f:6e:51:71:09:be:be:83:c8:14:d3: 50:5b:f6:f1:dd:dc:7f:a5:f6:6e:9c:cc:19:f1:ef: ec:12:89:68:cf:e2:d0:d0:f6:ec:bf:6d:4a:2f:b1: 40:43:43:25:84:94:08:19:54:3a:08:3a:a9:9b:96: b8:e4:68:fe:06:0f:a5:32:ea:4a:d1:5c:e9:6a:5a: 3f:32:ce:6e:49:b0:82:1a:a4:05:11:0b:e0:8e:c3: aa:b9:39:1c:b7:01:e0:d3:bb:80:10:56:b7:13:be: 53:62:4d:0e:d3:6a:ad:0b:14:26:f3:53:42:ce:9d: 38:f6:60:7a:9a:52:da:a8:72:0f:85:15:bb:ff:bb: 6f:4b:d4:ac:b9:21:52:8d:9a:8c:40:f8:28:2e:2c: 0e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E8:D8:AA:40:96:75:75:BA:93:0A:63:F1:EC:33:CB:54:68:65:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a728816-ace9-4a07-86ea-7ebc247ed176.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.0.0/14 Signature Algorithm: sha256WithRSAEncryption bf:60:c1:13:23:cb:fa:24:53:af:77:38:c4:5e:7a:5f:27:d3: 3f:a8:2f:6f:58:c0:82:46:c1:36:31:9c:8f:e6:28:89:e4:bb: 81:a6:d3:c0:df:ba:20:be:cf:10:7e:0c:d9:5c:d8:f9:b4:ee: c8:65:91:48:90:6f:ec:08:82:db:43:b4:29:f3:32:16:35:d1: b8:19:a6:2b:85:33:66:64:29:fd:bd:28:73:1e:9a:12:f0:b3: 2a:1b:14:b6:70:96:b4:bd:47:68:0a:c2:96:37:09:4b:2b:b8: 9d:a4:01:e6:eb:24:3e:07:34:5c:b9:c1:9f:07:0b:0e:a2:59: 7e:47:2c:86:81:b1:70:fd:a2:43:6f:e5:a1:7c:cb:a1:61:ba: 75:a5:95:0b:a0:52:1d:ac:43:4a:c8:ad:ba:59:74:42:5b:e6: 97:d1:24:bc:6e:b2:af:7c:84:70:da:ac:f5:38:dd:3a:74:05: 73:b0:3c:a8:0a:f7:17:a3:07:52:d4:d9:66:e1:41:8f:81:59: 07:51:d5:26:c1:c0:aa:9e:08:55:68:f9:86:49:ce:87:5b:fe: 6f:7c:30:17:c8:65:8d:3a:d3:05:27:da:d8:d2:b8:7b:93:4e: 3a:d2:0b:7b:ff:b0:b3:1a:4f:d7:cd:f7:33:75:d6:40:7e:8c: 44:f5:6d:63 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUb0jZolxXAm0g+TH6i7CtYAixxnEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAxMDAxMjEyWhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzYxMzgwMjkyZDc2YWE5ZmY2MWFlOWUyZDRjMWExZGFi MjUxOGJkMGE3MmQ3YTVmNzgxODQyMzBiNzE0ODFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV0CbNXMuOLpUC/RuU7ri2i6g40SIQz8CfV+H+Z11H7+gr 2thX5Odgwb7qQv79kvetQK/VBlpcG7NgfpZhhLF7Fsy7UVZg7svMZnRcIdqG5aCa KES9dzCg0DfsaanlDk7w5jWhNHvJwhB14sEfblFxCb6+g8gU01Bb9vHd3H+l9m6c zBnx7+wSiWjP4tDQ9uy/bUovsUBDQyWElAgZVDoIOqmblrjkaP4GD6Uy6krRXOlq Wj8yzm5JsIIapAURC+COw6q5ORy3AeDTu4AQVrcTvlNiTQ7Taq0LFCbzU0LOnTj2 YHqaUtqocg+FFbv/u29L1Ky5IVKNmoxA+CguLA5bAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2+jYqkCWdXW6kwpj8ewzy1RoZZ0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdhNzI4ODE2LWFjZTktNGEwNy04NmVhLTdlYmMyNDdlZDE3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJODDANBgkqhkiG9w0BAQsFAAOCAQEAv2DBEyPL+iRTr3c4xF56XyfTP6gv b1jAgkbBNjGcj+YoieS7gabTwN+6IL7PEH4M2VzY+bTuyGWRSJBv7AiC20O0KfMy FjXRuBmmK4UzZmQp/b0ocx6aEvCzKhsUtnCWtL1HaArCljcJSyu4naQB5uskPgc0 XLnBnwcLDqJZfkcshoGxcP2iQ2/loXzLoWG6daWVC6BSHaxDSsitull0Qlvml9Ek vG6yr3yEcNqs9TjdOnQFc7A8qAr3F6MHUtTZZuFBj4FZB1HVJsHAqp4IVWj5hknO h1v+b3wwF8hljTrTBSfa2NK4e5NOOtILe/+wsxpP1833M3XWQH6MRPVtYw== -----END CERTIFICATE-----Generated at Tue Jul 1 18:42:22 2025 by rpki-client