$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2262b90-44fa-401f-842c-4ae44ec786a4.roa File: b2262b90-44fa-401f-842c-4ae44ec786a4.roa (raw, json) Hash identifier: aRfgG+XinBxuiFTJJbCe6Q44aWOTnii0UTf//zVmYVI= Subject key identifier: 4E:15:6E:56:0A:EF:E7:66:AA:EA:FD:5C:16:93:87:7F:36:1D:F2:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E7A99958EC7CD0028C54D74B7680535FD519BAC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2262b90-44fa-401f-842c-4ae44ec786a4.roa Signing time: Sat 28 Jun 2025 00:20:32 +0000 ROA not before: Sat 28 Jun 2025 00:20:32 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.73.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:7a:99:95:8e:c7:cd:00:28:c5:4d:74:b7:68:05:35:fd:51:9b:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:20:32 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=e8b13c9478b5c3a5329d3688c5a251fe97f9aa98e5de4b12033fef49b23fd7cf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e2:58:c8:42:f3:75:4a:a9:d0:da:39:f6:50: 79:f3:5e:a9:73:ce:ae:f9:93:3d:5b:cb:0e:d2:bb: 66:6b:fe:38:2f:25:de:99:0c:8f:48:f8:5c:e9:07: 7c:a4:e0:3d:45:ec:41:c7:26:b2:9f:87:f1:02:52: b9:9c:8a:04:ce:7a:ad:7b:a3:d9:1c:9a:5e:80:a1: f4:ff:15:85:13:c9:b6:a4:e5:0f:01:bd:a5:36:c5: b3:cd:07:0c:66:14:eb:ec:b8:37:26:02:75:52:b7: 78:a6:f2:2f:16:07:3d:40:02:4f:d1:e8:fb:81:83: 5b:dd:12:e2:93:2c:b1:3b:a8:2b:ae:60:4c:6b:19: f2:58:6c:7b:19:34:ab:66:1d:cd:91:da:c3:38:c0: 32:12:ac:90:2f:3c:4c:14:01:58:e7:06:63:44:42: 26:68:85:53:e5:24:56:7c:3e:ab:5d:44:53:48:28: d3:f0:e5:6c:6a:fd:c8:1e:13:6c:9d:da:52:4a:b5: d4:98:84:9b:57:36:ae:ce:cf:f6:af:ac:0d:e8:b8: c9:2a:af:fc:c1:78:26:88:5f:a7:a4:79:92:81:23: 43:69:81:34:c2:6d:64:09:52:0f:41:72:ce:30:cb: ec:f0:09:17:c3:7b:66:ac:eb:3f:5e:80:bc:fe:af: 37:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:15:6E:56:0A:EF:E7:66:AA:EA:FD:5C:16:93:87:7F:36:1D:F2:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2262b90-44fa-401f-842c-4ae44ec786a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.73.144.0/21 Signature Algorithm: sha256WithRSAEncryption ab:9d:3c:35:9d:73:e4:0d:4c:f7:66:dc:78:6d:e4:63:59:2b: 6e:d8:51:d1:9a:d0:9b:3c:ad:66:89:fb:e6:86:7f:6c:fb:8b: 46:ae:ec:4d:c8:a5:bb:ba:3e:1c:d9:3d:2c:79:14:48:c5:a1: 01:0d:07:66:80:9b:24:5f:96:b0:f2:e7:6c:81:84:d8:6a:cd: 7b:6e:d4:f1:4e:11:78:cc:03:52:5f:81:3f:45:ed:c9:85:13: 4e:2f:c4:48:a2:6d:6d:94:5e:49:0c:3b:58:40:79:db:2e:17: 67:2d:54:1e:67:c3:33:4b:31:02:de:1f:59:64:00:59:d1:5c: b4:c5:77:c9:f2:47:2c:39:aa:d7:2b:0c:18:15:12:73:ba:5b: 23:0e:cc:16:52:a5:24:83:21:7d:43:d9:16:33:63:bc:58:22: 58:85:e4:b9:55:47:3d:6c:6a:0c:d1:fe:8f:36:68:ae:a1:72: de:64:13:4e:06:47:e2:31:61:ea:4d:e4:31:6a:90:ec:4e:94: 9c:8e:2f:6b:70:3b:f7:7c:f3:13:3d:55:e4:1f:cb:0e:21:56: 12:58:5a:ff:72:c9:2d:c2:58:2f:71:57:98:a2:76:3f:ff:1c: 68:a4:13:66:1e:ec:be:46:6f:12:a5:c4:e0:1e:7b:17:fc:20: f1:4d:5e:f0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfnqZlY7HzQAoxU10t2gFNf1Rm6wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAyMDMyWhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOGIxM2M5NDc4YjVjM2E1MzI5ZDM2ODhjNWEyNTFmZTk3 ZjlhYTk4ZTVkZTRiMTIwMzNmZWY0OWIyM2ZkN2NmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCX4ljIQvN1SqnQ2jn2UHnzXqlzzq75kz1byw7Su2Zr/jgv Jd6ZDI9I+FzpB3yk4D1F7EHHJrKfh/ECUrmcigTOeq17o9kcml6AofT/FYUTybak 5Q8BvaU2xbPNBwxmFOvsuDcmAnVSt3im8i8WBz1AAk/R6PuBg1vdEuKTLLE7qCuu YExrGfJYbHsZNKtmHc2R2sM4wDISrJAvPEwUAVjnBmNEQiZohVPlJFZ8PqtdRFNI KNPw5Wxq/cgeE2yd2lJKtdSYhJtXNq7Oz/avrA3ouMkqr/zBeCaIX6ekeZKBI0Np gTTCbWQJUg9Bcs4wy+zwCRfDe2as6z9egLz+rzfhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUThVuVgrv52aq6v1cFpOHfzYd8rUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyMjYyYjkwLTQ0ZmEtNDAxZi04NDJjLTRhZTQ0ZWM3ODZhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4SZAwDQYJKoZIhvcNAQELBQADggEBAKudPDWdc+QNTPdm3Hht5GNZK27Y UdGa0Js8rWaJ++aGf2z7i0au7E3Ipbu6PhzZPSx5FEjFoQENB2aAmyRflrDy52yB hNhqzXtu1PFOEXjMA1JfgT9F7cmFE04vxEiibW2UXkkMO1hAedsuF2ctVB5nwzNL MQLeH1lkAFnRXLTFd8nyRyw5qtcrDBgVEnO6WyMOzBZSpSSDIX1D2RYzY7xYIliF 5LlVRz1sagzR/o82aK6hct5kE04GR+IxYepN5DFqkOxOlJyOL2twO/d88xM9VeQf yw4hVhJYWv9yyS3CWC9xV5iidj//HGikE2Ye7L5GbxKlxOAeexf8IPFNXvA= -----END CERTIFICATE-----Generated at Sun Jun 29 09:37:01 2025 by rpki-client