$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21abbc7d-7b93-4e53-9077-6ff1e16011b9.roa File: 21abbc7d-7b93-4e53-9077-6ff1e16011b9.roa (raw, json) Hash identifier: g34rDAtfXU+ieB4jljGQTGYoCU0idv8tLJjBY6GZkZA= Subject key identifier: BE:CD:0D:9B:B4:33:B1:30:F6:17:04:1E:CB:19:75:B9:BF:46:36:E9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 69B7761C7F213024A3A572B2DA7AF455C55609FD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21abbc7d-7b93-4e53-9077-6ff1e16011b9.roa Signing time: Wed 09 Jul 2025 00:10:22 +0000 ROA not before: Wed 09 Jul 2025 00:10:22 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 119.13.148.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:b7:76:1c:7f:21:30:24:a3:a5:72:b2:da:7a:f4:55:c5:56:09:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:10:22 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=b6e904468cac94763bb7af218edfbce4692de5a87e9901cae558a31f805d64df, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:16:06:37:1b:81:b2:29:05:fe:6e:2f:ce:91: 4c:c1:45:fc:78:7b:33:69:38:67:ac:df:dd:1d:ed: 57:f8:8f:67:48:d9:d0:59:4b:ef:a7:95:9c:e6:59: 4d:9c:08:c6:e4:c7:73:22:e1:b4:da:93:bd:f7:c4: 5a:54:ea:ee:88:5b:f2:9c:ee:19:b2:32:bc:49:10: be:ee:d2:24:6c:59:22:f6:bc:45:69:35:c8:86:44: 3a:c1:a0:26:60:5e:c2:08:f7:cd:b5:22:00:aa:be: cc:2d:bd:92:f8:08:67:8a:b5:26:9f:53:8e:b1:9e: aa:01:26:62:64:90:c9:08:4e:02:3e:c0:49:fc:52: d3:77:35:ac:80:95:38:57:ff:8f:88:ae:36:ea:62: e5:6f:c8:77:a2:7a:0c:df:bb:01:ba:81:ef:7a:f8: 6f:07:b1:1e:27:5d:50:b4:84:09:e5:b4:82:3e:df: 89:a5:15:a0:07:5a:d0:be:29:c3:b9:99:c3:1c:b5: 57:dd:63:55:38:2b:98:58:a4:55:9f:b1:1b:67:4c: 73:fd:8a:4f:64:79:92:be:a3:4f:e9:2f:d9:ea:7e: cf:1e:40:ed:c5:50:f6:16:92:58:9c:d5:68:60:6a: e0:be:77:19:3e:50:cd:03:52:e7:2a:da:3e:b7:98: aa:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:CD:0D:9B:B4:33:B1:30:F6:17:04:1E:CB:19:75:B9:BF:46:36:E9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21abbc7d-7b93-4e53-9077-6ff1e16011b9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.13.148.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:85:dc:ec:39:06:d3:a9:74:9f:49:aa:f7:36:73:7e:00:18: 94:3e:7b:46:7e:e4:81:46:c2:ca:19:ba:7d:bc:4e:23:ff:e9: b3:42:be:c4:7c:3f:b6:11:bf:b1:e1:7b:48:89:c9:ba:c0:8b: c5:e7:8a:c1:2a:6e:7d:86:04:f9:7e:e1:5c:ec:03:71:d3:d3: 35:96:c4:22:36:2c:2f:8b:f3:91:f5:0f:92:35:66:fe:d0:29: 32:21:7c:37:5b:ab:37:ba:a4:6d:4a:c8:37:1e:de:e3:0a:10: 1e:ab:63:da:92:87:96:e2:4a:c7:96:5f:30:df:09:d1:2f:78: ba:28:04:16:1b:b7:80:f2:06:9f:2d:29:13:58:69:b9:f4:ab: ee:41:1a:15:63:c5:8f:3f:7d:af:b2:f7:8f:91:b6:a4:54:66: de:b6:99:1f:86:08:42:53:87:a6:64:c3:fc:03:f6:fc:81:80: 72:02:2b:04:03:54:3d:18:14:4e:70:be:a0:3d:da:2f:c0:24: 96:27:48:44:49:1a:ff:22:12:4b:f9:d2:bb:53:0e:06:74:07: 8e:1f:ea:f2:29:9b:bd:0a:6b:60:e4:eb:9a:da:41:7c:eb:92: d5:be:f7:fc:67:c6:2b:91:97:8b:c6:62:72:de:8f:05:75:90: 73:23:f3:fb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUabd2HH8hMCSjpXKy2nr0VcVWCf0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDAxMDIyWhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNmU5MDQ0NjhjYWM5NDc2M2JiN2FmMjE4ZWRmYmNlNDY5 MmRlNWE4N2U5OTAxY2FlNTU4YTMxZjgwNWQ2NGRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsFgY3G4GyKQX+bi/OkUzBRfx4ezNpOGes390d7Vf4j2dI 2dBZS++nlZzmWU2cCMbkx3Mi4bTak733xFpU6u6IW/Kc7hmyMrxJEL7u0iRsWSL2 vEVpNciGRDrBoCZgXsII9821IgCqvswtvZL4CGeKtSafU46xnqoBJmJkkMkITgI+ wEn8UtN3NayAlThX/4+IrjbqYuVvyHeiegzfuwG6ge96+G8HsR4nXVC0hAnltII+ 34mlFaAHWtC+KcO5mcMctVfdY1U4K5hYpFWfsRtnTHP9ik9keZK+o0/pL9nqfs8e QO3FUPYWklic1WhgauC+dxk+UM0DUucq2j63mKpXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvs0Nm7QzsTD2FwQeyxl1ub9GNukwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxYWJiYzdkLTdiOTMtNGU1My05MDc3LTZmZjFlMTYwMTFiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJ3DZQwDQYJKoZIhvcNAQELBQADggEBAGyF3Ow5BtOpdJ9Jqvc2c34AGJQ+ e0Z+5IFGwsoZun28TiP/6bNCvsR8P7YRv7Hhe0iJybrAi8XnisEqbn2GBPl+4Vzs A3HT0zWWxCI2LC+L85H1D5I1Zv7QKTIhfDdbqze6pG1KyDce3uMKEB6rY9qSh5bi SseWXzDfCdEveLooBBYbt4DyBp8tKRNYabn0q+5BGhVjxY8/fa+y94+RtqRUZt62 mR+GCEJTh6Zkw/wD9vyBgHICKwQDVD0YFE5wvqA92i/AJJYnSERJGv8iEkv50rtT DgZ0B44f6vIpm70Ka2Dk65raQXzrktW+9/xnxiuRl4vGYnLejwV1kHMj8/s= -----END CERTIFICATE-----Generated at Mon Jul 21 18:18:19 2025 by rpki-client