$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b72f4616-5ee0-476d-82ee-4c547532502d.roa File: b72f4616-5ee0-476d-82ee-4c547532502d.roa (raw, json) Hash identifier: FvHWXUehEof2Wx5vUZZngrVC97KiTzdDoo5xGVkJkqA= Subject key identifier: 1C:49:19:17:6B:26:EE:0B:46:BE:96:67:AD:35:77:72:DD:88:AF:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B0FAEDF940887C571110EABCAF2DAB82A4AC622 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b72f4616-5ee0-476d-82ee-4c547532502d.roa Signing time: Tue 24 Jun 2025 00:01:13 +0000 ROA not before: Tue 24 Jun 2025 00:01:13 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 157.135.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:0f:ae:df:94:08:87:c5:71:11:0e:ab:ca:f2:da:b8:2a:4a:c6:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:01:13 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=2c8727f4112519b4c5023cf49f631c8b19a909fcc54843ec8c90325903975717, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8a:b5:ca:0f:f2:ac:2f:d7:f0:34:2b:be:85: af:f6:31:62:bd:94:7a:94:25:89:ca:40:1f:30:6e: 96:cd:21:6e:93:bd:f4:c4:01:b7:ef:1a:8d:2c:85: 24:b6:0b:3b:39:33:40:6a:4d:40:15:86:18:b5:0e: b8:50:40:13:ca:42:5b:b6:a6:8a:3d:49:32:db:2b: 4c:6a:f6:8c:33:78:dd:84:0d:1c:c1:2b:ec:b6:50: 7c:0f:a9:0b:d0:b4:91:46:cc:b4:bb:de:eb:54:85: 31:29:c9:4f:d2:1b:e8:51:f3:01:6c:6f:68:68:db: 33:8a:b1:fe:e6:c1:83:f0:87:90:46:a7:76:5a:5d: 18:49:6a:e3:20:5a:72:ff:23:15:15:dd:3e:79:10: a3:fb:d8:a3:57:ec:06:48:d6:2a:7d:22:4d:53:38: 44:8b:b5:6a:7b:cc:60:a3:17:b2:7c:83:cf:a7:6c: bf:2b:14:fc:8d:84:6e:b7:ea:53:9f:1c:49:99:92: 6f:7b:37:fa:2e:fe:7b:65:0d:02:e0:2a:92:b4:b8: 65:04:62:aa:90:2e:4a:5f:a8:12:26:c7:28:9c:23: 0e:7b:b7:be:44:ea:c7:e5:11:de:ec:29:68:d7:c6: 78:b0:41:1a:af:03:e6:2c:a4:a8:39:fb:4f:6b:c9: 65:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:49:19:17:6B:26:EE:0B:46:BE:96:67:AD:35:77:72:DD:88:AF:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b72f4616-5ee0-476d-82ee-4c547532502d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.135.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2b:dd:7c:13:8e:a7:a4:d7:58:1d:a5:b3:b0:db:3e:f1:25:18: 58:d7:e5:9b:37:9a:ca:22:89:b1:57:69:dd:1f:d2:1b:ab:7b: 6a:f4:84:dd:9a:1b:e5:c2:dd:0c:86:2c:b9:a4:f1:21:47:66: ed:20:2a:a5:1d:80:ef:c3:3b:c1:21:15:98:15:e5:17:81:f5: 82:c9:33:f6:28:a2:c1:4d:13:84:e4:f2:9e:15:d7:bc:4f:e9: fe:ef:24:bd:39:08:9f:43:8b:5e:5e:7c:cc:bb:98:f9:14:92: 9d:2d:54:e2:45:0c:b2:38:c1:db:74:69:5b:7e:ad:4c:5d:af: bf:9c:21:4c:50:65:c0:a5:03:6d:06:e0:b5:13:e0:d4:f2:7a: d7:f9:5c:78:19:9e:de:e0:86:06:60:1c:e5:01:51:52:df:c3: fc:d9:0c:a3:5f:fd:e5:34:88:f8:d3:b7:27:e0:79:5c:50:33: 17:4a:a5:c0:71:93:0d:f2:0f:f5:18:33:fe:11:37:08:9e:3e: e2:26:cc:55:6e:2f:ba:bc:64:9e:e9:c5:9d:fc:ee:b2:f7:41: b2:5a:f7:3c:63:95:9d:86:71:88:7d:62:1a:46:b3:46:26:3b: b7:be:e0:a3:8a:17:09:90:10:5c:1a:49:40:65:79:1f:88:2d: 15:37:71:ad -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWw+u35QIh8VxEQ6ryvLauCpKxiIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAwMTEzWhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzg3MjdmNDExMjUxOWI0YzUwMjNjZjQ5ZjYzMWM4YjE5 YTkwOWZjYzU0ODQzZWM4YzkwMzI1OTAzOTc1NzE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbirXKD/KsL9fwNCu+ha/2MWK9lHqUJYnKQB8wbpbNIW6T vfTEAbfvGo0shSS2Czs5M0BqTUAVhhi1DrhQQBPKQlu2poo9STLbK0xq9owzeN2E DRzBK+y2UHwPqQvQtJFGzLS73utUhTEpyU/SG+hR8wFsb2ho2zOKsf7mwYPwh5BG p3ZaXRhJauMgWnL/IxUV3T55EKP72KNX7AZI1ip9Ik1TOESLtWp7zGCjF7J8g8+n bL8rFPyNhG636lOfHEmZkm97N/ou/ntlDQLgKpK0uGUEYqqQLkpfqBImxyicIw57 t75E6sflEd7sKWjXxniwQRqvA+YspKg5+09ryWX/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHEkZF2sm7gtGvpZnrTV3ct2Ir+QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I3MmY0NjE2LTVlZTAtNDc2ZC04MmVlLTRjNTQ3NTMyNTAyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCdhzANBgkqhkiG9w0BAQsFAAOCAQEAK918E46npNdYHaWzsNs+8SUYWNfl mzeayiKJsVdp3R/SG6t7avSE3Zob5cLdDIYsuaTxIUdm7SAqpR2A78M7wSEVmBXl F4H1gskz9iiiwU0ThOTynhXXvE/p/u8kvTkIn0OLXl58zLuY+RSSnS1U4kUMsjjB 23RpW36tTF2vv5whTFBlwKUDbQbgtRPg1PJ61/lceBme3uCGBmAc5QFRUt/D/NkM o1/95TSI+NO3J+B5XFAzF0qlwHGTDfIP9Rgz/hE3CJ4+4ibMVW4vurxknunFnfzu svdBslr3PGOVnYZxiH1iGkazRiY7t77go4oXCZAQXBpJQGV5H4gtFTdxrQ== -----END CERTIFICATE-----Generated at Tue Jul 1 07:19:11 2025 by rpki-client