$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2304bbf7-aaad-4af6-85cf-ac713779380e.roa File: 2304bbf7-aaad-4af6-85cf-ac713779380e.roa (raw, json) Hash identifier: Za2jUFTxvtwwtLUL926YbHXf8kbeyiB8XJm+zkpU+nM= Subject key identifier: C5:34:CB:24:3D:B5:7B:BF:2C:47:C5:14:F5:DD:9E:65:AA:AD:AD:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A4DC2A5297F7700EACF2A8C9B1CBEA5C5A2A54B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2304bbf7-aaad-4af6-85cf-ac713779380e.roa Signing time: Fri 13 Jun 2025 15:51:47 +0000 ROA not before: Fri 13 Jun 2025 15:51:47 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:4d:c2:a5:29:7f:77:00:ea:cf:2a:8c:9b:1c:be:a5:c5:a2:a5:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:51:47 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=6bd06799d2b214775120a8008171c5c0beed23cb48250e586169b836665c7dcd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:08:33:2e:67:b5:03:34:99:74:0d:2a:03:77: d6:f3:ee:3a:54:5f:5b:09:4c:fd:4a:5e:8b:5a:17: cc:d3:f1:12:de:5a:db:37:7d:63:e4:02:53:73:1a: 60:59:7b:00:91:4e:6c:92:0b:37:24:f4:bb:72:5d: 1a:fa:f2:b9:85:56:52:a7:79:35:1a:df:4e:d4:91: 1f:e7:8c:4e:41:ec:ef:35:37:27:25:2a:2c:d0:36: 37:e5:cb:cc:c0:d0:bf:c1:43:28:60:9c:3b:d6:a6: b5:a1:c6:57:8c:28:66:0f:f2:45:e7:82:32:eb:90: cf:98:3e:3d:14:e3:b8:69:b7:e2:e3:07:65:3d:2f: 54:18:f3:aa:8e:93:59:c4:13:44:0c:85:95:79:23: eb:05:12:c3:e1:58:96:79:2b:ab:fe:59:4c:47:4a: 5c:1b:d4:08:12:ca:c3:7a:24:81:d3:5b:15:7d:3a: 68:af:e0:5e:85:96:9b:6e:70:9c:3e:0a:5d:73:c7: 06:1e:23:65:28:0c:87:c4:5c:0e:35:fe:ff:78:26: 2c:00:1f:f2:26:8e:0c:20:9d:21:e8:e7:46:57:2d: 43:44:74:db:b4:e3:24:99:ab:28:12:bd:62:72:15: 53:e1:9f:cb:7a:9f:f0:00:f7:39:74:74:1d:94:03: 2d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:34:CB:24:3D:B5:7B:BF:2C:47:C5:14:F5:DD:9E:65:AA:AD:AD:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2304bbf7-aaad-4af6-85cf-ac713779380e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.68.0/22 Signature Algorithm: sha256WithRSAEncryption bd:e6:ac:dc:d1:ec:f9:a4:6a:40:bb:98:28:8d:8e:1d:3b:a1: 66:d8:b9:95:c4:0b:c2:89:d0:58:fa:8f:7c:4f:fe:5a:a8:d9: ac:d2:07:7f:70:25:51:07:1d:91:ad:ba:07:2c:e4:32:df:8b: 8e:4d:2c:e5:9e:9c:5f:c6:0c:c4:c0:82:c9:39:66:50:ef:0b: 53:e2:3b:a0:87:8e:9d:64:a9:9d:6f:a6:9a:2e:89:18:1d:3d: 48:9f:59:03:c3:97:8c:bf:46:ad:bb:03:ee:a9:1b:d2:1a:57: 81:6c:15:19:a0:dc:96:35:ef:d8:20:67:4e:86:51:40:2d:7c: 58:39:7b:79:02:08:e2:61:f0:fb:ed:b9:64:13:08:19:fd:18: 0c:14:12:80:fa:5a:76:da:f4:1c:0c:17:e6:f0:eb:2a:e6:96: 6e:fd:ed:90:3e:aa:07:8f:8a:5b:ed:58:18:74:eb:d5:2f:34: 9c:9e:c3:e2:1a:cf:5b:9c:44:ab:7c:8a:db:7a:0c:3e:de:a8: 11:07:c3:aa:09:01:0c:ef:7c:42:78:8b:4f:29:9a:77:15:4b: 8f:a7:99:81:ca:62:ff:da:27:15:66:0b:4b:9f:be:a1:7a:64: d5:e1:40:70:8d:fa:69:f2:a3:09:d3:4a:12:3b:59:38:37:ef: d8:8c:62:61 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUek3CpSl/dwDqzyqMmxy+pcWipUswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTU1MTQ3WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmQwNjc5OWQyYjIxNDc3NTEyMGE4MDA4MTcxYzVjMGJl ZWQyM2NiNDgyNTBlNTg2MTY5YjgzNjY2NWM3ZGNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDECDMuZ7UDNJl0DSoDd9bz7jpUX1sJTP1KXotaF8zT8RLe Wts3fWPkAlNzGmBZewCRTmySCzck9LtyXRr68rmFVlKneTUa307UkR/njE5B7O81 NyclKizQNjfly8zA0L/BQyhgnDvWprWhxleMKGYP8kXngjLrkM+YPj0U47hpt+Lj B2U9L1QY86qOk1nEE0QMhZV5I+sFEsPhWJZ5K6v+WUxHSlwb1AgSysN6JIHTWxV9 Omiv4F6FlptucJw+Cl1zxwYeI2UoDIfEXA41/v94JiwAH/ImjgwgnSHo50ZXLUNE dNu04ySZqygSvWJyFVPhn8t6n/AA9zl0dB2UAy01AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxTTLJD21e78sR8UU9d2eZaqtrdMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzMDRiYmY3LWFhYWQtNGFmNi04NWNmLWFjNzEzNzc5MzgwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBskQwDQYJKoZIhvcNAQELBQADggEBAL3mrNzR7PmkakC7mCiNjh07oWbY uZXEC8KJ0Fj6j3xP/lqo2azSB39wJVEHHZGtugcs5DLfi45NLOWenF/GDMTAgsk5 ZlDvC1PiO6CHjp1kqZ1vppouiRgdPUifWQPDl4y/Rq27A+6pG9IaV4FsFRmg3JY1 79ggZ06GUUAtfFg5e3kCCOJh8PvtuWQTCBn9GAwUEoD6Wnba9BwMF+bw6yrmlm79 7ZA+qgePilvtWBh069UvNJyew+Iaz1ucRKt8itt6DD7eqBEHw6oJAQzvfEJ4i08p mncVS4+nmYHKYv/aJxVmC0ufvqF6ZNXhQHCN+mnyownTShI7WTg379iMYmE= -----END CERTIFICATE-----Generated at Sat Jun 14 07:11:05 2025 by rpki-client