$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9aca1af5-70ad-46f8-9435-7a35a97cef1f.roa File: 9aca1af5-70ad-46f8-9435-7a35a97cef1f.roa (raw, json) Hash identifier: 0v5ttXCILTUnfy6Rn+Z8db4KyEf+Gdiche1QFSwxl58= Subject key identifier: 62:F9:68:C7:02:5A:82:2B:17:6A:E9:C4:E0:6F:21:AA:88:4F:7B:99 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D1D3D4F113C2059326B320BCD43A57E00F725BD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9aca1af5-70ad-46f8-9435-7a35a97cef1f.roa Signing time: Sat 26 Jul 2025 00:10:30 +0000 ROA not before: Sat 26 Jul 2025 00:10:30 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:1d:3d:4f:11:3c:20:59:32:6b:32:0b:cd:43:a5:7e:00:f7:25:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 26 00:10:30 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=d9ad4ce1ec1ad8a192d195dac0019eed588063ec01c7ad98f05fc3c88e3315fb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:4f:cf:4e:24:ec:1c:ec:2a:cf:bb:b5:3d:69: 5d:58:c2:39:0b:a3:3c:53:36:ed:fc:d7:fd:56:45: 01:77:ac:20:68:8a:b0:0d:7d:44:16:aa:b1:60:da: eb:3f:c7:44:e6:ea:bd:e4:ce:d7:dc:53:e1:cd:9f: b2:56:08:40:5a:df:9c:86:c1:4b:b7:cb:05:fe:7f: 31:7f:24:37:e1:db:d3:c6:e2:b4:b0:21:26:dc:92: ed:25:af:f4:fe:57:08:ef:fe:73:80:a4:46:66:46: ed:3d:39:61:4a:16:98:70:78:75:c1:8c:0a:61:c1: 81:86:43:17:7c:71:3c:24:1c:5e:9b:1c:a8:6a:9c: 85:3a:9e:76:14:c1:50:df:ad:11:9d:fd:0b:a3:66: fb:e2:11:95:5c:b3:86:1d:50:03:48:5c:62:e2:ec: 7f:a2:52:d2:52:68:4b:95:ea:01:ff:01:fb:7d:26: f8:56:1a:16:50:70:03:68:30:06:83:81:5b:7c:67: f2:1f:54:8a:f3:f2:4d:b7:2c:60:d8:fc:67:f8:80: 3f:c6:7f:fa:f5:81:c4:6f:73:a5:cf:44:11:25:b3: bf:50:6d:1f:eb:9b:13:71:31:12:bc:a8:16:9e:f9: 84:dc:0e:cb:c8:4a:db:8e:19:c6:91:e8:be:57:5d: 6c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F9:68:C7:02:5A:82:2B:17:6A:E9:C4:E0:6F:21:AA:88:4F:7B:99 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9aca1af5-70ad-46f8-9435-7a35a97cef1f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.61.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:df:91:98:7c:99:29:8e:de:4e:38:13:91:1b:ae:8d:98:71: 5f:75:64:1e:b7:f4:b7:4b:72:23:c0:58:c9:06:06:8a:a4:5f: 17:5d:ac:11:60:2e:81:2e:32:88:cf:04:da:8d:28:ff:ee:bc: 6b:73:98:91:68:85:8c:d7:e4:0d:80:c7:93:fb:0e:a2:c1:08: 0a:39:41:75:7f:31:e9:b4:bc:61:be:08:1c:05:a3:be:99:05: 6a:7e:e2:8e:16:8c:f0:51:61:bc:65:dd:ec:b1:10:cc:c9:f5: 78:be:2e:ba:e6:c2:30:bf:5a:5d:12:0b:94:58:b7:3b:ea:9e: 39:c7:e9:12:d2:a5:4c:1a:42:08:d1:96:96:71:a2:5c:b6:13: fd:da:c2:f6:9f:9e:b6:ec:05:d5:4a:84:11:e8:de:06:11:b2: c1:86:26:50:8c:37:dc:b1:a8:8e:2a:1e:65:b5:19:47:b0:ca: 6a:3e:c0:05:f6:ea:db:b8:ca:eb:4c:8c:d8:22:2b:22:b9:d8: 02:b5:33:1e:c2:b0:dc:f7:58:6f:42:96:0a:61:32:ea:e7:c9: f4:0d:bf:79:7c:ce:b0:bd:71:7e:bb:ba:32:b6:5e:93:4f:70: 47:9c:15:7b:b3:3a:d3:bd:61:30:c0:8f:a7:b2:18:af:e8:76: be:ba:67:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbR09TxE8IFkyazILzUOlfgD3Jb0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI2MDAxMDMwWhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOWFkNGNlMWVjMWFkOGExOTJkMTk1ZGFjMDAxOWVlZDU4 ODA2M2VjMDFjN2FkOThmMDVmYzNjODhlMzMxNWZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLT89OJOwc7CrPu7U9aV1YwjkLozxTNu381/1WRQF3rCBo irANfUQWqrFg2us/x0Tm6r3kztfcU+HNn7JWCEBa35yGwUu3ywX+fzF/JDfh29PG 4rSwISbcku0lr/T+Vwjv/nOApEZmRu09OWFKFphweHXBjAphwYGGQxd8cTwkHF6b HKhqnIU6nnYUwVDfrRGd/QujZvviEZVcs4YdUANIXGLi7H+iUtJSaEuV6gH/Aft9 JvhWGhZQcANoMAaDgVt8Z/IfVIrz8k23LGDY/Gf4gD/Gf/r1gcRvc6XPRBEls79Q bR/rmxNxMRK8qBae+YTcDsvIStuOGcaR6L5XXWy7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYvloxwJagisXaunE4G8hqohPe5kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhY2ExYWY1LTcwYWQtNDZmOC05NDM1LTdhMzVhOTdjZWYxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABODD0wDQYJKoZIhvcNAQELBQADggEBAJvfkZh8mSmO3k44E5Ebro2YcV91 ZB639LdLciPAWMkGBoqkXxddrBFgLoEuMojPBNqNKP/uvGtzmJFohYzX5A2Ax5P7 DqLBCAo5QXV/Mem0vGG+CBwFo76ZBWp+4o4WjPBRYbxl3eyxEMzJ9Xi+LrrmwjC/ Wl0SC5RYtzvqnjnH6RLSpUwaQgjRlpZxoly2E/3awvafnrbsBdVKhBHo3gYRssGG JlCMN9yxqI4qHmW1GUewymo+wAX26tu4yutMjNgiKyK52AK1Mx7CsNz3WG9Clgph MurnyfQNv3l8zrC9cX67ujK2XpNPcEecFXuzOtO9YTDAj6eyGK/odr66Z6g= -----END CERTIFICATE-----Generated at Sat Aug 9 14:29:30 2025 by rpki-client