$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa File: 78a29a43-6fb1-4f22-858b-58921f0187e5.roa (raw, json) Hash identifier: Fkxj3YX1e5spbT6zkVZr0GUAvgdT/bbM3OPvoQBPB2E= Subject key identifier: 54:AE:0C:24:DB:9D:74:0A:F1:77:91:94:36:93:C2:1B:B6:B1:E9:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4EA49246BF1A1BA23B85213172724B66AA8CD5AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa Signing time: Fri 06 Jun 2025 00:00:23 +0000 ROA not before: Fri 06 Jun 2025 00:00:23 +0000 ROA not after: Fri 11 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:a4:92:46:bf:1a:1b:a2:3b:85:21:31:72:72:4b:66:aa:8c:d5:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 6 00:00:23 2025 GMT Not After : Jul 11 23:59:59 2025 GMT Subject: serialNumber=de90b3d0e800a342614b043e0aa9af1a2bad48d7e471a6a44f6cb7fa1f5550e7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0a:4e:08:b4:2a:88:f7:3a:4a:73:ee:83:34: ab:c1:e4:df:79:77:47:31:d2:69:91:1e:f9:89:d8: 18:e7:d2:af:90:3b:45:5b:ee:35:78:eb:e6:a0:0f: 09:59:07:c3:2d:82:ae:58:55:e1:e1:95:9f:7a:f5: 18:05:69:92:4f:a9:d4:e4:b5:48:e0:4b:eb:05:13: 7e:59:e9:8e:80:3d:94:1b:55:b6:0a:da:f5:5b:88: e6:e8:34:08:a0:12:c8:82:8e:63:ba:ed:45:21:6b: c9:62:92:1a:0f:26:75:12:77:aa:b9:c6:e8:37:bc: 1c:47:16:95:f8:43:81:a5:f3:6e:88:2f:08:fd:68: 5c:d6:a6:db:72:ef:36:aa:db:f7:5a:fe:6b:81:4e: 59:86:9b:b6:c6:ca:78:90:f9:ff:ba:f0:31:01:df: 7e:31:32:a9:cb:f7:6b:6c:89:6d:58:6d:6a:c6:d8: b7:73:d9:3d:21:df:31:cc:33:35:79:4d:39:66:b3: 56:e4:92:8a:07:94:0e:c8:f3:44:07:44:c6:89:60: ee:ad:09:94:72:3b:b1:31:f3:44:73:87:98:d0:b4: 8d:c7:f3:6f:e4:90:35:12:5c:99:af:15:dc:a6:e2: 4c:e8:f4:ea:60:a6:ff:88:13:3d:1b:c1:0c:1f:61: 8e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:AE:0C:24:DB:9D:74:0A:F1:77:91:94:36:93:C2:1B:B6:B1:E9:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.64.0/18 Signature Algorithm: sha256WithRSAEncryption d2:e4:9b:c7:a3:74:b6:36:0a:38:e9:fd:eb:09:a3:9f:c7:93: a1:2c:4a:81:8a:64:d5:f0:09:05:8d:6d:46:00:54:1a:e4:dc: cd:2f:4e:df:16:0a:38:e1:b8:2f:85:ee:5e:59:82:11:dc:3d: e9:c1:45:aa:75:f7:4f:04:94:47:18:ec:25:1d:c4:a5:61:fe: c0:57:af:eb:04:2f:32:29:5e:37:3f:1c:47:6d:64:da:79:79: 3c:b5:71:64:34:d3:69:62:45:a4:2b:72:45:11:b2:dc:c2:3b: b6:30:fe:33:96:73:e6:b6:4f:77:e3:a9:11:18:a4:8e:43:d4: 1d:c5:2d:df:19:7d:78:16:e8:9d:02:70:12:7a:ab:0e:d9:20: 7f:a4:8d:8b:d2:65:f4:79:cf:f7:9a:5e:e0:12:25:9d:1e:21: 81:27:a6:8a:31:1f:42:5c:f1:42:96:2c:b2:c1:df:eb:3f:67: 7d:06:ff:5f:a5:a3:e2:93:75:4f:4f:17:d2:3a:1b:23:78:16: 12:ef:ea:54:de:e5:1c:eb:ec:30:dc:dd:ae:f1:5a:17:e4:c9: ca:fa:c2:58:7f:43:03:89:91:c6:ff:7d:bc:ef:0d:a5:92:ee: 3e:a5:52:f3:eb:77:d7:9b:c5:60:a5:10:67:1a:3b:74:a2:e8: 9d:4b:4f:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTqSSRr8aG6I7hSExcnJLZqqM1awwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA2MDAwMDIzWhcNMjUwNzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZTkwYjNkMGU4MDBhMzQyNjE0YjA0M2UwYWE5YWYxYTJi YWQ0OGQ3ZTQ3MWE2YTQ0ZjZjYjdmYTFmNTU1MGU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2Ck4ItCqI9zpKc+6DNKvB5N95d0cx0mmRHvmJ2Bjn0q+Q O0Vb7jV46+agDwlZB8Mtgq5YVeHhlZ969RgFaZJPqdTktUjgS+sFE35Z6Y6APZQb VbYK2vVbiOboNAigEsiCjmO67UUha8likhoPJnUSd6q5xug3vBxHFpX4Q4Gl826I Lwj9aFzWptty7zaq2/da/muBTlmGm7bGyniQ+f+68DEB334xMqnL92tsiW1YbWrG 2Ldz2T0h3zHMMzV5TTlms1bkkooHlA7I80QHRMaJYO6tCZRyO7Ex80Rzh5jQtI3H 82/kkDUSXJmvFdym4kzo9Opgpv+IEz0bwQwfYY6BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVK4MJNuddArxd5GUNpPCG7ax6a4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4YTI5YTQzLTZmYjEtNGYyMi04NThiLTU4OTIxZjAxODdlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZyOEAwDQYJKoZIhvcNAQELBQADggEBANLkm8ejdLY2Cjjp/esJo5/Hk6Es SoGKZNXwCQWNbUYAVBrk3M0vTt8WCjjhuC+F7l5ZghHcPenBRap1908ElEcY7CUd xKVh/sBXr+sELzIpXjc/HEdtZNp5eTy1cWQ002liRaQrckURstzCO7Yw/jOWc+a2 T3fjqREYpI5D1B3FLd8ZfXgW6J0CcBJ6qw7ZIH+kjYvSZfR5z/eaXuASJZ0eIYEn pooxH0Jc8UKWLLLB3+s/Z30G/1+lo+KTdU9PF9I6GyN4FhLv6lTe5Rzr7DDc3a7x Whfkycr6wlh/QwOJkcb/fbzvDaWS7j6lUvPrd9ebxWClEGcaO3Si6J1LT7Y= -----END CERTIFICATE-----Generated at Sat Jun 14 18:50:36 2025 by rpki-client