$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d9b1ca-9364-4ed2-997e-dd893686a86b.roa File: 28d9b1ca-9364-4ed2-997e-dd893686a86b.roa (raw, json) Hash identifier: 75+P9EZezcCRLg0zaE0em1Pb+eAQ4Mp7KDvoJR+mYHI= Subject key identifier: 5D:2B:DB:B9:3A:35:25:88:0B:4E:A3:26:19:E4:3D:4C:16:0D:21:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1F94A5C16A925DB0D6CD8AA5983A415FC0793585 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d9b1ca-9364-4ed2-997e-dd893686a86b.roa Signing time: Mon 07 Jul 2025 16:00:40 +0000 ROA not before: Mon 07 Jul 2025 16:00:40 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:94:a5:c1:6a:92:5d:b0:d6:cd:8a:a5:98:3a:41:5f:c0:79:35:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:00:40 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=430fa6edfa9b12e7cd421e7be61304bf8bd75d03a24c04612eade5f3a23636f1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8d:fb:27:04:aa:76:9a:c3:a8:2a:4e:61:72: ea:95:77:48:c1:ec:e5:47:a0:78:41:7a:43:a0:0f: 05:3f:fe:f6:d8:e0:24:98:76:fa:94:8d:32:2f:a6: 71:cf:8e:1f:08:44:20:e3:ff:00:91:d7:11:55:46: 8b:a3:11:54:9b:27:ba:08:03:06:4e:19:0a:72:7e: 30:5d:e2:58:3e:6e:f7:ef:7b:a3:41:b3:04:5e:18: d3:8e:25:99:48:43:da:08:ec:3d:3b:2a:84:3d:38: f7:08:53:e8:05:a0:0b:d7:00:f0:b6:c2:d4:cf:44: d2:4e:fc:0d:d0:48:e5:a9:68:65:53:fd:7b:95:b3: 3c:56:48:b9:21:30:1f:51:59:8f:93:c7:a3:9f:75: 22:b2:80:f9:83:9f:5b:51:11:8a:d3:5f:5e:62:af: 82:17:9c:e3:cf:af:64:00:d2:af:51:17:f1:55:ff: b0:3c:c9:ba:d5:e3:42:c4:63:40:81:b8:a7:37:3f: f4:e8:da:38:dd:22:cb:51:c5:3e:33:ce:dd:73:5e: 7a:04:cd:7f:97:a9:d1:19:75:2a:42:b0:bc:bc:b9: 2f:30:8b:fb:17:a2:a7:9c:dc:12:c6:57:36:9a:1e: 09:42:9d:cc:6d:9a:2d:76:a4:d4:60:c4:4c:04:ec: b5:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:2B:DB:B9:3A:35:25:88:0B:4E:A3:26:19:E4:3D:4C:16:0D:21:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d9b1ca-9364-4ed2-997e-dd893686a86b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.187.0/24 Signature Algorithm: sha256WithRSAEncryption 10:50:90:d5:9b:2a:66:62:25:1a:fc:6c:b3:7a:45:19:5f:55: 36:18:f7:af:56:9d:12:98:03:29:b0:43:35:f2:fd:98:aa:f9: 3c:14:b3:e6:0b:36:79:e5:63:ac:f8:30:00:2a:a8:61:47:c9: 34:65:6f:27:ef:00:55:c0:a8:09:e7:b2:cd:77:72:b3:09:87: c7:8e:f1:63:d8:b8:19:93:b0:99:fc:19:6b:a5:20:17:9c:f7: f0:8e:93:91:fb:d0:9a:fb:57:df:df:bf:13:15:5e:8b:b9:0e: ba:86:12:f1:b6:4c:1a:aa:c8:58:fb:77:bd:f7:12:a4:1f:4f: 8e:cb:aa:79:cb:73:4d:2e:11:a9:b8:87:fd:ac:bc:9f:a5:4a: 23:38:df:af:be:8f:a3:7d:3b:3d:e4:c3:5d:4b:7d:c1:56:9b: 0d:b9:c8:82:61:0c:86:d4:d7:0a:59:9f:ba:3e:bf:a4:6d:67: dd:82:23:13:e0:67:5e:00:3e:0e:03:77:af:a8:ca:52:f5:67: 6d:df:02:f7:b4:64:ef:ac:82:61:87:b2:01:33:d0:a6:59:0b: 01:f9:d7:be:df:ef:76:dd:88:cb:d7:c6:46:ce:b2:09:45:88: 51:ad:ad:c4:77:ba:79:73:dd:67:9b:61:0a:fe:f4:5d:fa:8f: 45:61:0a:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH5SlwWqSXbDWzYqlmDpBX8B5NYUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYwMDQwWhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzBmYTZlZGZhOWIxMmU3Y2Q0MjFlN2JlNjEzMDRiZjhi ZDc1ZDAzYTI0YzA0NjEyZWFkZTVmM2EyMzYzNmYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgjfsnBKp2msOoKk5hcuqVd0jB7OVHoHhBekOgDwU//vbY 4CSYdvqUjTIvpnHPjh8IRCDj/wCR1xFVRoujEVSbJ7oIAwZOGQpyfjBd4lg+bvfv e6NBswReGNOOJZlIQ9oI7D07KoQ9OPcIU+gFoAvXAPC2wtTPRNJO/A3QSOWpaGVT /XuVszxWSLkhMB9RWY+Tx6OfdSKygPmDn1tREYrTX15ir4IXnOPPr2QA0q9RF/FV /7A8ybrV40LEY0CBuKc3P/To2jjdIstRxT4zzt1zXnoEzX+XqdEZdSpCsLy8uS8w i/sXoqec3BLGVzaaHglCncxtmi12pNRgxEwE7LW/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXSvbuTo1JYgLTqMmGeQ9TBYNIdcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4ZDliMWNhLTkzNjQtNGVkMi05OTdlLWRkODkzNjg2YTg2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAByOLswDQYJKoZIhvcNAQELBQADggEBABBQkNWbKmZiJRr8bLN6RRlfVTYY 969WnRKYAymwQzXy/Ziq+TwUs+YLNnnlY6z4MAAqqGFHyTRlbyfvAFXAqAnnss13 crMJh8eO8WPYuBmTsJn8GWulIBec9/COk5H70Jr7V9/fvxMVXou5DrqGEvG2TBqq yFj7d733EqQfT47LqnnLc00uEam4h/2svJ+lSiM436++j6N9Oz3kw11LfcFWmw25 yIJhDIbU1wpZn7o+v6RtZ92CIxPgZ14APg4Dd6+oylL1Z23fAve0ZO+sgmGHsgEz 0KZZCwH5177f73bdiMvXxkbOsglFiFGtrcR3unlz3WebYQr+9F36j0VhCrY= -----END CERTIFICATE-----Generated at Mon Jul 21 23:33:24 2025 by rpki-client