$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2b14584-beb1-4be9-ba33-b2dbc4ebb1a1.roa File: d2b14584-beb1-4be9-ba33-b2dbc4ebb1a1.roa (raw, json) Hash identifier: kjS16vsL8RrB1wEruHDxLZbmm2gO3bIB1cgej0DhFxU= Subject key identifier: A3:06:E8:30:65:16:4B:B5:EB:78:88:74:B9:05:F6:38:6E:41:D8:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 036B5BDF7E2275C7E1A909861ABDC93E13349394 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2b14584-beb1-4be9-ba33-b2dbc4ebb1a1.roa Signing time: Mon 16 Jun 2025 15:51:08 +0000 ROA not before: Mon 16 Jun 2025 15:51:08 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:6b:5b:df:7e:22:75:c7:e1:a9:09:86:1a:bd:c9:3e:13:34:93:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:51:08 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=a14061c556c656ada03eb38f2dd9db1bc9a0ec8ea7e8d1f76e5c1ef2844dd4a1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:95:fb:30:91:9d:30:6e:7c:9c:a7:1e:fb:52: 78:61:00:eb:a5:22:3c:d9:74:2d:72:d3:19:80:07: 8e:94:5b:28:fe:4d:a7:81:a1:e2:e9:bf:05:10:37: aa:47:c2:64:e4:9f:cf:d6:c5:c8:75:1f:6c:9c:c4: ec:db:ee:fb:52:5c:01:57:bb:74:c8:21:f0:70:96: 2d:54:51:c4:2a:9b:06:bc:bc:49:bb:19:30:5e:91: 18:bc:25:04:1c:a5:7f:23:4d:6c:22:ac:f8:92:73: ea:95:29:d1:88:9b:b1:90:62:96:28:45:8a:03:46: 60:fc:0b:ec:f8:27:d8:36:fc:a0:b6:8c:6c:6b:71: 70:75:df:4a:d8:80:3f:0e:14:71:aa:ec:96:fb:17: e0:34:97:87:cf:4b:9d:39:87:0e:29:4f:f0:55:a7: 1a:d1:a5:ac:ad:04:85:c9:cd:38:df:2b:4c:60:cf: da:04:96:8a:ab:4e:b8:cc:1c:98:13:dc:82:51:9a: 77:85:c1:1a:11:be:e2:6a:76:bd:3f:2f:7c:7d:d9: 31:c6:70:8a:42:33:9e:e7:7e:6e:41:63:1c:f6:fe: 27:57:4c:02:63:c3:b3:3a:e6:38:b7:fa:cd:57:f9: e8:55:03:c3:26:9f:b6:4c:77:8e:17:6a:ae:12:b5: b1:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:06:E8:30:65:16:4B:B5:EB:78:88:74:B9:05:F6:38:6E:41:D8:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2b14584-beb1-4be9-ba33-b2dbc4ebb1a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.60.0/24 Signature Algorithm: sha256WithRSAEncryption 93:88:ca:d8:3b:33:99:4c:ad:d7:b2:c4:32:be:91:9d:96:4f: 80:65:be:36:4f:07:cf:12:f1:32:6d:a8:dd:10:b8:4c:f9:6e: d9:67:9a:3d:8f:19:cf:dc:bc:72:a0:29:eb:ab:6b:a3:4d:05: 7f:69:dc:5c:0a:5a:7d:21:f8:36:9a:1e:ac:8b:31:f3:51:81: 3c:65:63:46:b6:91:a8:bf:cd:a9:e4:7b:e2:55:ff:9d:01:ff: 62:9e:65:c5:19:b3:d4:a4:58:04:3f:d4:c4:44:1e:82:db:39: a1:10:85:88:2e:87:87:44:35:a2:88:d0:5f:f6:df:e1:a3:3b: 32:1f:a6:78:49:b8:6d:ec:32:71:67:49:4b:fb:f3:b1:6c:66: 80:35:1e:a0:20:85:7e:cb:92:63:6d:3a:0f:cd:ef:fd:6f:9d: 80:91:1b:6e:8d:fa:bb:42:33:92:87:4a:c5:31:f9:3b:f1:11: 2c:1c:0b:28:31:bd:36:5a:b5:e4:60:d0:52:8c:da:75:1a:66: 8e:25:cb:da:6a:05:ee:8e:83:cf:92:57:e8:61:99:4b:d5:35: ff:18:a7:79:9c:b8:4d:8f:01:2b:07:68:90:b1:8f:42:25:b9: dc:a0:fc:36:af:f6:49:5b:10:1f:d8:14:2d:17:69:03:1c:4d: 91:8e:4d:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA2tb334idcfhqQmGGr3JPhM0k5QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTU1MTA4WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTQwNjFjNTU2YzY1NmFkYTAzZWIzOGYyZGQ5ZGIxYmM5 YTBlYzhlYTdlOGQxZjc2ZTVjMWVmMjg0NGRkNGExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdlfswkZ0wbnycpx77UnhhAOulIjzZdC1y0xmAB46UWyj+ TaeBoeLpvwUQN6pHwmTkn8/Wxch1H2ycxOzb7vtSXAFXu3TIIfBwli1UUcQqmwa8 vEm7GTBekRi8JQQcpX8jTWwirPiSc+qVKdGIm7GQYpYoRYoDRmD8C+z4J9g2/KC2 jGxrcXB130rYgD8OFHGq7Jb7F+A0l4fPS505hw4pT/BVpxrRpaytBIXJzTjfK0xg z9oEloqrTrjMHJgT3IJRmneFwRoRvuJqdr0/L3x92THGcIpCM57nfm5BYxz2/idX TAJjw7M65ji3+s1X+ehVA8Mmn7ZMd44Xaq4StbE/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUowboMGUWS7XreIh0uQX2OG5B2NUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyYjE0NTg0LWJlYjEtNGJlOS1iYTMzLWIyZGJjNGViYjFhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABODDwwDQYJKoZIhvcNAQELBQADggEBAJOIytg7M5lMrdeyxDK+kZ2WT4Bl vjZPB88S8TJtqN0QuEz5btlnmj2PGc/cvHKgKeura6NNBX9p3FwKWn0h+DaaHqyL MfNRgTxlY0a2kai/zanke+JV/50B/2KeZcUZs9SkWAQ/1MREHoLbOaEQhYguh4dE NaKI0F/23+GjOzIfpnhJuG3sMnFnSUv787FsZoA1HqAghX7LkmNtOg/N7/1vnYCR G26N+rtCM5KHSsUx+TvxESwcCygxvTZateRg0FKM2nUaZo4ly9pqBe6Og8+SV+hh mUvVNf8Yp3mcuE2PASsHaJCxj0Iludyg/Dav9klbEB/YFC0XaQMcTZGOTcg= -----END CERTIFICATE-----Generated at Tue Jul 1 07:42:32 2025 by rpki-client