$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a728d17e-d435-496e-9424-123dad229b72.roa File: a728d17e-d435-496e-9424-123dad229b72.roa (raw, json) Hash identifier: c9PpIbLRQgoRB3znq8Qm2Hs6f34WNBtTN+BCNdzBKjQ= Subject key identifier: A5:86:13:8F:6C:CE:22:AC:B9:66:38:1A:80:62:0F:15:BA:D7:86:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AA9049915BFDB3305FAE8A93D5BF3755D9C1DF3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a728d17e-d435-496e-9424-123dad229b72.roa Signing time: Tue 10 Jun 2025 16:00:35 +0000 ROA not before: Tue 10 Jun 2025 16:00:35 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 162.120.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:a9:04:99:15:bf:db:33:05:fa:e8:a9:3d:5b:f3:75:5d:9c:1d:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 10 16:00:35 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=a2a3ed84344dfe42b9238e7ce3f7ae70a06e871e9a874c9c154af5062d0fbb13, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:0d:01:4e:1f:2d:37:06:8a:53:e1:b0:32:d1: 37:1d:87:a7:22:0d:12:27:d8:c9:2b:70:b6:6c:f3: 94:8a:ce:a0:fe:50:29:bb:64:18:96:e4:4e:f7:e2: 11:b7:0b:d5:26:19:f0:ca:8b:bd:20:28:88:ac:64: 23:94:0f:cb:02:8d:1b:ef:69:71:eb:28:20:4b:9b: 3d:57:49:e5:7b:b6:93:7c:68:eb:31:a0:3c:be:69: 29:9d:ed:95:65:70:9a:c1:ed:6f:1f:24:7a:e5:15: 1e:de:0c:fb:b5:f5:74:56:50:c7:ce:93:c5:c4:ae: 00:0a:7e:d3:7c:74:36:f8:4d:34:8b:f1:ad:a9:1b: 7c:0c:38:b3:1d:6e:56:38:17:8c:c8:2d:c4:96:78: 15:ae:fe:3a:92:1f:73:3d:f6:30:d0:2b:ca:e3:2b: 2b:c3:41:8e:8c:7e:a7:79:10:22:af:59:f8:77:34: 78:d8:55:7e:d2:db:4c:ca:0b:e6:01:58:c6:f7:19: 9b:64:e9:29:05:c3:9a:bd:b3:7b:ca:d1:af:4f:62: 59:61:94:73:51:85:92:86:3d:c1:d3:f7:21:89:6e: 4f:95:cd:af:f2:a5:cf:63:53:60:7f:e4:e7:6e:3f: 51:45:92:52:65:e9:e8:35:6d:b2:52:62:05:56:b8: 08:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:86:13:8F:6C:CE:22:AC:B9:66:38:1A:80:62:0F:15:BA:D7:86:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a728d17e-d435-496e-9424-123dad229b72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.120.24.0/21 Signature Algorithm: sha256WithRSAEncryption 3e:65:d4:07:91:fd:27:d5:96:37:6a:f1:05:39:96:61:8f:ca: 03:e8:9b:ef:a3:af:1f:9a:dd:1c:31:15:ae:76:b9:7c:8b:72: b9:a2:f6:b0:17:62:3c:ac:8c:47:5e:3d:b1:ad:5b:35:03:90: 63:f9:89:0c:f2:17:cc:f6:90:4b:60:ae:b6:82:b4:1b:e8:67: dc:30:62:95:8e:bc:29:7a:12:b3:eb:af:00:34:f7:92:d4:3c: 47:55:3a:12:e4:8e:fc:b9:52:58:7e:29:f6:c8:97:85:a8:06: de:ab:db:83:52:69:55:75:c7:0a:26:b4:5d:72:a7:2a:27:c5: e5:75:e0:f1:d5:d6:1d:e3:be:d9:79:93:d1:6c:a4:35:9a:9c: 50:9c:a2:ba:74:3a:4a:f4:2f:e2:de:7d:b6:4e:de:f1:a5:20: bc:b1:73:01:f9:c1:64:09:e1:5e:94:c4:a2:47:25:86:cb:4c: fc:7d:d8:f6:be:d3:d7:b4:0c:a8:9b:7b:ea:74:f5:76:82:71: d5:00:36:b6:95:60:4c:d5:65:3c:bd:5b:ba:a7:a5:75:47:a8: 3b:11:ad:73:9c:74:ad:97:47:98:97:92:4f:f4:a0:8d:16:6b: 35:07:d9:cb:d7:dc:72:1b:e1:e8:ca:e5:ce:7a:3e:73:e5:65: 1c:bb:1a:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKqkEmRW/2zMF+uipPVvzdV2cHfMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEwMTYwMDM1WhcNMjUwNzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMmEzZWQ4NDM0NGRmZTQyYjkyMzhlN2NlM2Y3YWU3MGEw NmU4NzFlOWE4NzRjOWMxNTRhZjUwNjJkMGZiYjEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLDQFOHy03BopT4bAy0Tcdh6ciDRIn2MkrcLZs85SKzqD+ UCm7ZBiW5E734hG3C9UmGfDKi70gKIisZCOUD8sCjRvvaXHrKCBLmz1XSeV7tpN8 aOsxoDy+aSmd7ZVlcJrB7W8fJHrlFR7eDPu19XRWUMfOk8XErgAKftN8dDb4TTSL 8a2pG3wMOLMdblY4F4zILcSWeBWu/jqSH3M99jDQK8rjKyvDQY6Mfqd5ECKvWfh3 NHjYVX7S20zKC+YBWMb3GZtk6SkFw5q9s3vK0a9PYllhlHNRhZKGPcHT9yGJbk+V za/ypc9jU2B/5OduP1FFklJl6eg1bbJSYgVWuAj5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpYYTj2zOIqy5ZjgagGIPFbrXhhowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3MjhkMTdlLWQ0MzUtNDk2ZS05NDI0LTEyM2RhZDIyOWI3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOieBgwDQYJKoZIhvcNAQELBQADggEBAD5l1AeR/SfVljdq8QU5lmGPygPo m++jrx+a3RwxFa52uXyLcrmi9rAXYjysjEdePbGtWzUDkGP5iQzyF8z2kEtgrraC tBvoZ9wwYpWOvCl6ErPrrwA095LUPEdVOhLkjvy5Ulh+KfbIl4WoBt6r24NSaVV1 xwomtF1ypyonxeV14PHV1h3jvtl5k9FspDWanFCcorp0Okr0L+LefbZO3vGlILyx cwH5wWQJ4V6UxKJHJYbLTPx92Pa+09e0DKibe+p09XaCcdUANraVYEzVZTy9W7qn pXVHqDsRrXOcdK2XR5iXkk/0oI0WazUH2cvX3HIb4ejK5c56PnPlZRy7GrQ= -----END CERTIFICATE-----Generated at Sat Jun 14 18:59:12 2025 by rpki-client