$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa File: 78a29a43-6fb1-4f22-858b-58921f0187e5.roa (raw, json) Hash identifier: NcZQ0C6w1tqjGIRUEkuFDEa8/7h0ROuH+wQuOQvpV6Y= Subject key identifier: BD:73:35:6F:A6:08:E3:0D:2E:E7:3E:8C:A4:B2:10:03:10:78:C2:73 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F13ADA00BEE79590DFF6851818B432A0C342CC4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa Signing time: Sat 26 Jul 2025 00:00:41 +0000 ROA not before: Sat 26 Jul 2025 00:00:41 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:13:ad:a0:0b:ee:79:59:0d:ff:68:51:81:8b:43:2a:0c:34:2c:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 26 00:00:41 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=1a8cc4edaf0de8e21da385ea05a15feed20664d73cb5e57012a41ee732389bd3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:60:fa:81:f0:3e:7c:08:c9:2c:8b:b6:76:14: 64:33:74:ea:a6:79:10:08:de:32:a0:ce:c8:94:d2: 1d:98:50:a6:a4:6b:fe:78:6c:b4:45:94:32:0a:c7: 65:63:89:86:f0:eb:53:05:65:1c:f6:23:48:35:98: 84:1d:0c:a9:56:54:a3:6b:28:c9:0b:a8:18:9b:db: 44:98:bc:f4:f2:78:4e:8b:79:4d:08:4c:fd:30:7e: 66:96:4e:00:02:98:88:58:6b:62:d5:76:64:e6:5c: 89:4b:b8:9a:c1:38:e5:ae:48:96:36:9e:c5:b7:11: 89:29:ff:00:0a:38:8f:ef:6e:2a:9a:8f:d5:83:e0: be:b3:21:24:6a:f0:48:11:44:2f:43:64:8a:1e:dc: df:f8:b1:15:48:5e:56:a6:aa:f0:65:59:a0:c6:a5: 15:8e:4e:77:bd:5d:15:3e:96:b8:88:e0:a4:0a:75: 19:f9:13:11:26:1e:86:4b:94:ef:0a:e1:a0:98:0a: a8:4a:6a:80:71:fb:43:4a:cd:57:48:a6:ea:f9:1b: c1:9d:bd:15:81:2b:03:bf:c1:b1:f8:a7:5b:d2:b6: e1:9f:0e:af:6b:ec:36:76:d1:d6:5c:83:81:57:aa: cd:4c:f7:48:d4:9c:1c:c9:85:f9:9e:95:af:e5:fa: 13:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:73:35:6F:A6:08:E3:0D:2E:E7:3E:8C:A4:B2:10:03:10:78:C2:73 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.64.0/18 Signature Algorithm: sha256WithRSAEncryption 20:23:b5:20:09:03:22:41:de:7f:43:03:c2:a5:d6:bc:b3:c6: 26:cf:0a:4e:93:22:d3:c1:a3:fa:36:a2:f6:f2:38:ff:36:d1: 1e:ad:dc:2a:3c:05:9b:07:4f:10:d7:3d:0f:b2:24:22:56:c5: 51:4e:60:22:de:b1:11:34:70:bf:f7:9c:37:d0:26:05:fd:66: f9:94:aa:4b:cd:2f:51:dc:7c:63:36:a6:59:b3:17:11:51:53: cf:af:d9:b2:13:07:7a:42:5d:9d:e2:b8:bc:27:6f:01:f4:0b: bb:c7:a3:a7:f9:10:e2:ba:53:e4:27:3c:19:99:16:12:d9:2f: 46:d7:02:2a:11:ca:a9:fc:42:3b:ed:60:17:f9:e4:bc:d6:e0: b3:af:61:6e:1b:8a:1f:c6:4b:b6:e8:97:91:46:03:a3:e5:e9: 1f:5f:85:cd:c7:43:ca:87:97:f9:c7:94:38:18:d7:02:dc:09: f4:45:b8:b7:8b:9e:24:e4:49:88:fe:e8:60:9e:55:3f:c2:ad: 4c:2f:e9:a2:06:5f:88:72:b1:64:dc:c8:4e:c4:a6:58:09:36: 30:f5:f3:5d:66:ae:81:c6:49:f6:e2:40:84:7d:00:e9:94:a8: 5d:b1:02:d5:81:8d:91:18:7c:42:b4:28:62:b0:5d:2f:b2:b0: d2:76:88:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbxOtoAvueVkN/2hRgYtDKgw0LMQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI2MDAwMDQxWhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYThjYzRlZGFmMGRlOGUyMWRhMzg1ZWEwNWExNWZlZWQy MDY2NGQ3M2NiNWU1NzAxMmE0MWVlNzMyMzg5YmQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgYPqB8D58CMksi7Z2FGQzdOqmeRAI3jKgzsiU0h2YUKak a/54bLRFlDIKx2VjiYbw61MFZRz2I0g1mIQdDKlWVKNrKMkLqBib20SYvPTyeE6L eU0ITP0wfmaWTgACmIhYa2LVdmTmXIlLuJrBOOWuSJY2nsW3EYkp/wAKOI/vbiqa j9WD4L6zISRq8EgRRC9DZIoe3N/4sRVIXlamqvBlWaDGpRWOTne9XRU+lriI4KQK dRn5ExEmHoZLlO8K4aCYCqhKaoBx+0NKzVdIpur5G8GdvRWBKwO/wbH4p1vStuGf Dq9r7DZ20dZcg4FXqs1M90jUnBzJhfmela/l+hNRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvXM1b6YI4w0u5z6MpLIQAxB4wnMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4YTI5YTQzLTZmYjEtNGYyMi04NThiLTU4OTIxZjAxODdlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZyOEAwDQYJKoZIhvcNAQELBQADggEBACAjtSAJAyJB3n9DA8Kl1ryzxibP Ck6TItPBo/o2ovbyOP820R6t3Co8BZsHTxDXPQ+yJCJWxVFOYCLesRE0cL/3nDfQ JgX9ZvmUqkvNL1HcfGM2plmzFxFRU8+v2bITB3pCXZ3iuLwnbwH0C7vHo6f5EOK6 U+QnPBmZFhLZL0bXAioRyqn8QjvtYBf55LzW4LOvYW4bih/GS7bol5FGA6Pl6R9f hc3HQ8qHl/nHlDgY1wLcCfRFuLeLniTkSYj+6GCeVT/CrUwv6aIGX4hysWTcyE7E plgJNjD1811mroHGSfbiQIR9AOmUqF2xAtWBjZEYfEK0KGKwXS+ysNJ2iOU= -----END CERTIFICATE-----Generated at Thu Aug 7 02:11:25 2025 by rpki-client