$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b734e30-ac3c-49be-aa50-ed7a692648c4.roa File: 7b734e30-ac3c-49be-aa50-ed7a692648c4.roa (raw, json) Hash identifier: 1B9HODvMtZ7DICjzQr1JazyDbugLs3y8Naaw8GZKdmM= Subject key identifier: 38:93:A9:E0:3C:AE:E3:2A:CA:0B:A0:15:FF:78:04:2B:22:59:11:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52054D74A3E4DC1BDD4A3D6772C73C462A4E02 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b734e30-ac3c-49be-aa50-ed7a692648c4.roa Signing time: Sat 14 Jun 2025 00:50:20 +0000 ROA not before: Sat 14 Jun 2025 00:50:20 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.192.0.0/10 maxlen: 10 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:05:4d:74:a3:e4:dc:1b:dd:4a:3d:67:72:c7:3c:46:2a:4e:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:50:20 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=022cadf8de8a7a160b1b2878aa682a7f1f947243b6b135f0d397b118b8f71fb4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a9:dc:bf:8b:1d:ae:3c:68:d8:c3:dc:ec:8b: 61:83:41:3c:cd:b2:b3:a8:6b:95:83:76:2e:ac:7a: 66:81:dd:7f:37:b7:02:cb:83:5a:26:e4:b7:b7:18: 30:3b:46:02:68:6f:1d:25:e8:0d:1e:74:80:f9:10: d1:88:11:ef:2f:b3:62:9f:6f:52:60:12:c8:8d:0c: b3:a8:19:47:bd:e4:4f:eb:84:dd:0d:bd:08:6b:16: c3:a2:27:56:40:c8:10:b2:95:3f:74:ed:28:32:a3: 3b:bb:df:08:58:e2:85:9c:ec:0a:a0:36:d7:ff:de: 3b:26:21:2b:85:20:77:b8:9e:82:34:ab:b7:8d:7b: 0e:9b:f2:8b:10:b8:9c:bc:8f:aa:e2:11:ad:c3:c7: 7f:10:ed:d3:c1:98:66:e4:38:cb:67:65:31:b3:3f: 83:58:4e:cc:70:ce:48:7d:f5:a3:ce:44:68:ec:a9: 82:55:00:ba:90:e2:8a:d9:68:0e:39:90:db:0b:fc: ef:fc:bd:48:f4:73:e7:2e:de:a6:72:34:13:53:f8: 06:4f:09:1c:49:f0:10:87:2f:fc:91:ce:70:58:4b: 6b:30:7c:15:be:0b:22:48:60:41:f9:45:ff:f3:fb: 49:0f:fc:d3:cd:4a:73:32:7f:c6:a9:43:b4:d0:f2: 61:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:93:A9:E0:3C:AE:E3:2A:CA:0B:A0:15:FF:78:04:2B:22:59:11:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7b734e30-ac3c-49be-aa50-ed7a692648c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.192.0.0/10 Signature Algorithm: sha256WithRSAEncryption 70:bf:3f:a1:3e:a1:62:e8:29:2f:20:13:d8:d9:1c:b4:41:38: 80:56:df:1e:01:67:ee:a0:4d:4f:a1:a2:bb:93:2e:5b:a5:d4: bd:34:85:f4:2b:f0:7b:5c:01:a6:34:9a:cf:38:79:ae:1b:70: 9d:36:41:e1:a3:38:e0:5d:5f:20:dc:b3:04:9c:af:1d:bd:37: 1b:3d:70:d8:af:af:07:39:f5:de:f9:ed:d7:5c:b6:ae:8b:19: c1:88:7f:1c:61:4c:7b:60:58:6b:36:66:1e:f6:c5:ae:a2:ed: d1:1e:7c:77:39:65:df:52:12:96:29:c4:a4:86:5e:f4:dc:15: 7d:88:b6:2c:ba:b1:16:d8:b2:30:3d:a4:1d:90:9b:3f:b8:49: b9:36:46:35:a4:c2:3a:d9:97:a9:16:c1:c1:a9:34:1f:e2:53: 43:08:53:f6:6c:4d:2f:e3:2c:11:52:f8:25:89:a1:ec:c3:37: 38:b9:e0:bf:71:9c:23:7f:8c:24:4e:73:2d:ed:c9:c0:a4:d1: f2:ec:58:4d:90:91:aa:41:d4:d7:c7:07:b2:8a:f6:e7:e7:ab: 29:d2:2f:74:6c:23:64:a6:9f:aa:a4:92:d4:ab:77:ea:94:a1: e5:fe:a4:8b:49:63:a4:99:dd:7b:18:2b:0e:ec:21:a3:e4:62: 00:2f:2c:74 -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITUgVNdKPk3BvdSj1ncsc8RipOAjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MTQwMDUwMjBaFw0yNTA3MTkyMzU5NTla MHoxSTBHBgNVBAUTQDAyMmNhZGY4ZGU4YTdhMTYwYjFiMjg3OGFhNjgyYTdmMWY5 NDcyNDNiNmIxMzVmMGQzOTdiMTE4YjhmNzFmYjQxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKOp3L+LHa48aNjD3OyLYYNBPM2ys6hrlYN2Lqx6ZoHdfze3 AsuDWibkt7cYMDtGAmhvHSXoDR50gPkQ0YgR7y+zYp9vUmASyI0Ms6gZR73kT+uE 3Q29CGsWw6InVkDIELKVP3TtKDKjO7vfCFjihZzsCqA21//eOyYhK4Ugd7iegjSr t417DpvyixC4nLyPquIRrcPHfxDt08GYZuQ4y2dlMbM/g1hOzHDOSH31o85EaOyp glUAupDiitloDjmQ2wv87/y9SPRz5y7epnI0E1P4Bk8JHEnwEIcv/JHOcFhLazB8 Fb4LIkhgQflF//P7SQ/8081KczJ/xqlDtNDyYRkCAwEAAaOCArAwggKsMB0GA1Ud DgQWBBQ4k6ngPK7jKsoLoBX/eAQrIlkRmjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvN2I3MzRlMzAtYWMzYy00OWJlLWFhNTAtZWQ3YTY5MjY0OGM0LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDBizAMA0GCSqGSIb3DQEBCwUAA4IBAQBwvz+hPqFi6CkvIBPY2Ry0QTiAVt8e AWfuoE1PoaK7ky5bpdS9NIX0K/B7XAGmNJrPOHmuG3CdNkHhozjgXV8g3LMEnK8d vTcbPXDYr68HOfXe+e3XXLauixnBiH8cYUx7YFhrNmYe9sWuou3RHnx3OWXfUhKW KcSkhl703BV9iLYsurEW2LIwPaQdkJs/uEm5NkY1pMI62ZepFsHBqTQf4lNDCFP2 bE0v4ywRUvgliaHswzc4ueC/cZwjf4wkTnMt7cnApNHy7FhNkJGqQdTXxweyivbn 56sp0i90bCNkpp+qpJLUq3fqlKHl/qSLSWOkmd17GCsO7CGj5GIALyx0 -----END CERTIFICATE-----Generated at Sat Jun 14 06:37:25 2025 by rpki-client