$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2365433-7c93-4016-ad7e-0a4383160d29.roa File: f2365433-7c93-4016-ad7e-0a4383160d29.roa (raw, json) Hash identifier: l1QawY4SIn7BpChbTxISyQ2xsxhyLMT1G5djzW60JyA= Subject key identifier: F5:87:5D:A6:A8:3A:FB:5A:20:E9:5A:A8:0C:9C:D1:B1:16:7D:33:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B0C8451EA9C564DC06BF6183FDD3C41E3CA95B2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2365433-7c93-4016-ad7e-0a4383160d29.roa Signing time: Sat 28 Jun 2025 00:20:12 +0000 ROA not before: Sat 28 Jun 2025 00:20:12 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 184.72.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0c:84:51:ea:9c:56:4d:c0:6b:f6:18:3f:dd:3c:41:e3:ca:95:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:20:12 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=7bd5389da891ccf28f9389aec33594a7be242eb5f375a2f9226d99f4ae20b315, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d3:a1:f1:60:bf:e5:da:f5:33:49:83:74:3f: 84:c0:71:9d:d8:24:55:e7:6c:20:1d:63:bf:c0:47: e8:6d:37:1c:a1:d6:3a:94:a4:cb:7b:c8:03:a1:dc: 21:a0:2b:ff:15:d2:4f:ef:4e:22:29:52:84:94:9f: 67:19:36:d0:48:16:74:b8:7a:c8:f6:d3:fe:e6:b2: 0c:36:fc:0c:15:e1:8b:2a:28:58:a0:45:f7:4a:6f: 85:6a:af:8c:8a:3e:14:80:ba:0a:28:ce:8b:ae:76: 83:b8:47:30:b6:52:6e:e4:5c:cc:30:63:2b:ca:c3: 5b:70:4c:9f:a7:43:6c:06:78:b6:b9:63:16:7b:aa: da:4c:a7:44:5a:97:06:f1:9b:8c:67:5f:d4:2e:51: b6:03:30:9c:0a:70:90:12:55:b6:df:d2:1b:2a:b9: 04:70:ca:ee:59:76:7e:d6:04:b6:f7:5c:4c:9d:82: db:2b:76:43:15:1a:ae:20:dc:c4:e7:a1:0d:b8:4e: 66:93:3a:ca:5c:ef:f2:a4:95:bd:9a:32:e6:87:59: 70:31:06:f2:21:b7:f6:ea:63:96:09:58:12:5a:93: a8:33:6e:6f:bc:1b:1c:ec:50:8a:4b:3a:02:b2:74: bd:71:4f:2b:6f:93:e7:69:b3:ec:94:30:b2:b1:10: b0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:87:5D:A6:A8:3A:FB:5A:20:E9:5A:A8:0C:9C:D1:B1:16:7D:33:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2365433-7c93-4016-ad7e-0a4383160d29.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.93.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:78:0f:70:33:e8:f0:a1:f3:ae:f4:10:7f:58:3a:f0:d6:27: 3c:61:ce:97:20:c9:e4:56:3a:b4:43:b7:18:24:ee:a1:13:3d: f9:0b:86:77:b6:fd:d2:af:0b:86:57:de:94:d5:ea:45:52:ec: b4:b0:0b:78:f9:d5:3d:d0:ff:bd:a2:a3:49:c0:a0:ce:23:e5: 78:14:a7:4b:81:d1:b4:13:b7:30:1b:e4:84:1a:c2:e7:fb:ea: 04:e8:10:dc:00:f6:1b:82:33:fd:3e:7a:66:5a:ea:f5:1c:fb: ac:c7:dc:7b:57:2a:f0:59:a0:21:01:81:23:70:9f:fe:2e:d4: c4:6d:bd:f6:a3:74:d7:59:15:6b:6e:1e:2c:49:bd:c4:a6:bc: ff:ba:46:ae:c0:b3:34:a7:b8:85:fd:4c:ed:a4:78:90:cc:1f: e7:ba:f6:02:9a:b0:4a:52:0c:0d:12:61:41:4c:55:fb:09:e1: c1:65:6f:91:0e:1a:1b:1c:f9:21:b6:84:09:3f:80:bf:53:b9: 4e:fd:d9:83:1a:cb:1d:dd:15:05:23:50:f8:e3:aa:e6:be:8c: e2:85:77:2d:a4:d7:18:21:59:f7:29:93:45:b0:07:24:8d:b6: f7:13:6f:12:fa:77:08:6c:7e:1c:61:19:ad:db:62:3b:e5:bd: 04:c3:e9:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUewyEUeqcVk3Aa/YYP908QePKlbIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAyMDEyWhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YmQ1Mzg5ZGE4OTFjY2YyOGY5Mzg5YWVjMzM1OTRhN2Jl MjQyZWI1ZjM3NWEyZjkyMjZkOTlmNGFlMjBiMzE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM06HxYL/l2vUzSYN0P4TAcZ3YJFXnbCAdY7/AR+htNxyh 1jqUpMt7yAOh3CGgK/8V0k/vTiIpUoSUn2cZNtBIFnS4esj20/7msgw2/AwV4Ysq KFigRfdKb4Vqr4yKPhSAugoozouudoO4RzC2Um7kXMwwYyvKw1twTJ+nQ2wGeLa5 YxZ7qtpMp0Ralwbxm4xnX9QuUbYDMJwKcJASVbbf0hsquQRwyu5Zdn7WBLb3XEyd gtsrdkMVGq4g3MTnoQ24TmaTOspc7/Kklb2aMuaHWXAxBvIht/bqY5YJWBJak6gz bm+8GxzsUIpLOgKydL1xTytvk+dps+yUMLKxELATAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9Yddpqg6+1og6VqoDJzRsRZ9M80wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyMzY1NDMzLTdjOTMtNDAxNi1hZDdlLTBhNDM4MzE2MGQyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAC4SF0wDQYJKoZIhvcNAQELBQADggEBAFp4D3Az6PCh8670EH9YOvDWJzxh zpcgyeRWOrRDtxgk7qETPfkLhne2/dKvC4ZX3pTV6kVS7LSwC3j51T3Q/72io0nA oM4j5XgUp0uB0bQTtzAb5IQawuf76gToENwA9huCM/0+emZa6vUc+6zH3HtXKvBZ oCEBgSNwn/4u1MRtvfajdNdZFWtuHixJvcSmvP+6Rq7AszSnuIX9TO2keJDMH+e6 9gKasEpSDA0SYUFMVfsJ4cFlb5EOGhsc+SG2hAk/gL9TuU792YMayx3dFQUjUPjj qua+jOKFdy2k1xghWfcpk0WwBySNtvcTbxL6dwhsfhxhGa3bYjvlvQTD6Uo= -----END CERTIFICATE-----Generated at Wed Jul 2 11:46:53 2025 by rpki-client