$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c0520ff-eed4-48ce-be7c-ec1c56f2cf31.roa File: 4c0520ff-eed4-48ce-be7c-ec1c56f2cf31.roa (raw, json) Hash identifier: IcxYdcPAxVfywkSXCsYc9li2B0UTyFGgogXQSes9y10= Subject key identifier: 9B:5F:97:39:8D:1E:72:66:9F:10:46:91:D0:AA:C2:42:6E:A7:AF:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68CA7AC05B4131E6DA336B84DBBDAB4139810481 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c0520ff-eed4-48ce-be7c-ec1c56f2cf31.roa Signing time: Sat 12 Jul 2025 00:21:36 +0000 ROA not before: Sat 12 Jul 2025 00:21:36 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.5.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ca:7a:c0:5b:41:31:e6:da:33:6b:84:db:bd:ab:41:39:81:04:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 12 00:21:36 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=1f8a424412738c5a580556de75e33e606979a3fa352de3b17b5f8ac4e29c4832, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f6:cd:c0:a1:0f:7e:96:46:f9:85:77:0f:b0: 68:5d:7f:34:45:e8:e9:f3:3a:0f:bc:96:ad:2d:b1: 87:62:dd:19:22:12:de:93:f4:88:42:f1:17:5b:27: 10:ee:4d:f8:78:7b:d6:8e:7e:61:da:e0:6a:c5:c9: b2:84:e7:a3:57:87:67:57:f5:49:54:7f:fc:27:60: ef:33:1b:9a:41:6c:1c:25:c3:1a:98:b4:7b:dc:1a: 8c:64:f2:c9:81:ce:ee:6f:63:c8:44:a1:a1:2f:8b: 92:ab:96:a5:d1:13:c1:63:a8:3d:42:d6:c6:d3:bb: 51:18:4e:ce:c7:8b:74:01:bb:04:b0:61:06:50:3a: 19:9a:1f:91:70:6a:90:3c:09:9d:ff:e1:05:4a:35: c8:32:63:42:c9:b7:ff:4f:07:46:7c:9d:be:5c:c0: 54:34:46:59:cd:20:57:0d:e5:e4:1b:a8:b0:73:24: ca:dd:4b:68:2c:1c:e4:34:43:61:b7:ed:8d:e8:b8: 55:3b:c1:8e:bf:b5:69:ad:a9:a1:55:3e:03:03:56: 61:f7:b7:43:bd:99:cc:ea:43:33:42:2a:10:f0:d4: c7:28:3b:13:c3:ab:75:65:6b:5d:7f:de:a8:80:ca: ec:8e:52:a2:d2:bf:1f:60:c2:48:6b:63:84:9f:de: 03:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:5F:97:39:8D:1E:72:66:9F:10:46:91:D0:AA:C2:42:6E:A7:AF:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c0520ff-eed4-48ce-be7c-ec1c56f2cf31.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.172.0/22 Signature Algorithm: sha256WithRSAEncryption 62:54:ef:02:01:a1:2e:97:79:43:dc:5d:2a:a0:57:e5:82:bc: 03:e4:d3:ea:37:a8:c6:2e:5b:2e:e8:e2:fa:cc:ba:9c:4e:7d: 2d:60:a7:c5:13:2f:f5:19:6f:a5:61:53:ef:40:45:7f:1b:5e: 2b:be:1d:f6:a2:31:b8:e1:f8:58:7b:33:d4:bf:e0:12:16:17: 20:a6:42:e0:ea:dc:18:7c:81:11:e4:22:b9:46:b5:03:33:e8: b4:49:da:03:d1:0b:f3:d3:a6:c3:5b:82:39:09:87:73:87:60: 4b:65:b9:bf:2b:24:a1:58:f5:79:eb:9c:2a:4b:bf:76:42:16: c7:62:e4:21:d8:01:56:61:e4:35:f7:ed:b0:f6:79:28:d5:87: ed:1c:1d:83:f5:a9:a6:8b:62:01:9b:52:f2:2d:fd:6b:be:fd: e3:1c:8b:94:a2:f5:26:f6:0d:16:30:47:db:82:6b:2e:d0:1d: 17:5c:dc:b4:2c:9e:bf:1a:ff:de:22:8a:86:0b:3a:d9:2a:80: f5:a6:a8:1c:72:b1:3c:a1:6a:75:97:4d:6d:e8:41:2a:2e:6e: ec:6e:fd:98:10:cf:ae:35:a9:b7:64:9d:8b:11:4b:2d:07:ee: c3:9d:1e:19:75:17:f3:13:4f:50:7e:41:b6:7a:d9:d3:6c:a0: 40:97:aa:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaMp6wFtBMebaM2uE272rQTmBBIEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzEyMDAyMTM2WhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjhhNDI0NDEyNzM4YzVhNTgwNTU2ZGU3NWUzM2U2MDY5 NzlhM2ZhMzUyZGUzYjE3YjVmOGFjNGUyOWM0ODMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv9s3AoQ9+lkb5hXcPsGhdfzRF6OnzOg+8lq0tsYdi3Rki Et6T9IhC8RdbJxDuTfh4e9aOfmHa4GrFybKE56NXh2dX9UlUf/wnYO8zG5pBbBwl wxqYtHvcGoxk8smBzu5vY8hEoaEvi5KrlqXRE8FjqD1C1sbTu1EYTs7Hi3QBuwSw YQZQOhmaH5FwapA8CZ3/4QVKNcgyY0LJt/9PB0Z8nb5cwFQ0RlnNIFcN5eQbqLBz JMrdS2gsHOQ0Q2G37Y3ouFU7wY6/tWmtqaFVPgMDVmH3t0O9mczqQzNCKhDw1Mco OxPDq3Vla11/3qiAyuyOUqLSvx9gwkhrY4Sf3gOTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm1+XOY0ecmafEEaR0KrCQm6nrzUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjMDUyMGZmLWVlZDQtNDhjZS1iZTdjLWVjMWM1NmYyY2YzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKBawwDQYJKoZIhvcNAQELBQADggEBAGJU7wIBoS6XeUPcXSqgV+WCvAPk 0+o3qMYuWy7o4vrMupxOfS1gp8UTL/UZb6VhU+9ARX8bXiu+HfaiMbjh+Fh7M9S/ 4BIWFyCmQuDq3Bh8gRHkIrlGtQMz6LRJ2gPRC/PTpsNbgjkJh3OHYEtlub8rJKFY 9XnrnCpLv3ZCFsdi5CHYAVZh5DX37bD2eSjVh+0cHYP1qaaLYgGbUvIt/Wu+/eMc i5Si9Sb2DRYwR9uCay7QHRdc3LQsnr8a/94iioYLOtkqgPWmqBxysTyhanWXTW3o QSoubuxu/ZgQz641qbdknYsRSy0H7sOdHhl1F/MTT1B+QbZ62dNsoECXqvg= -----END CERTIFICATE-----Generated at Tue Jul 22 04:30:26 2025 by rpki-client