$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/628f294d-91fb-4214-b47e-601508341308.roa File: 628f294d-91fb-4214-b47e-601508341308.roa (raw, json) Hash identifier: CH4wPnzC84TavaUA+crs8EZGGNzM0Z77qfcL08+3Nhg= Subject key identifier: E0:D6:6D:AA:C0:46:B4:76:AC:3F:A2:69:C6:9B:C2:86:35:E1:84:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66B9AB327FD1AA7D36FD15EB6B560F800B4AF0E7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/628f294d-91fb-4214-b47e-601508341308.roa Signing time: Wed 02 Jul 2025 00:20:37 +0000 ROA not before: Wed 02 Jul 2025 00:20:37 +0000 ROA not after: Wed 06 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 125.253.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:b9:ab:32:7f:d1:aa:7d:36:fd:15:eb:6b:56:0f:80:0b:4a:f0:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 2 00:20:37 2025 GMT Not After : Aug 6 23:59:59 2025 GMT Subject: serialNumber=8bad6892b4777c1ff1e3d810717795a20301f5fd6796babae98fe2fcf4a55faf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:12:7e:ba:bc:ad:ad:6c:4e:4f:9f:a2:51:46: 66:3e:c4:f9:78:ed:fd:c2:c4:e5:a3:97:40:64:e9: ea:ee:c1:ef:39:4e:32:ff:fc:b8:0f:8e:27:41:34: 73:99:dc:fa:91:54:6b:0f:67:15:89:db:a3:ad:83: da:ae:f2:5f:47:0a:d7:aa:2a:01:24:ee:1f:f6:b9: f2:e3:43:03:ba:01:52:d8:de:3c:d0:6b:5d:f7:38: cc:92:4b:9b:50:fb:76:3e:44:32:6f:51:6e:b7:97: c1:0b:04:c6:29:7a:da:0b:df:ce:71:f4:7a:34:a4: 78:0a:87:09:df:ea:6e:cb:19:a6:e8:2e:d3:af:79: 4d:ee:aa:92:a1:5c:42:c3:44:7c:71:64:e8:cc:d3: 80:21:48:cd:b9:e1:b8:b3:2b:ac:f4:a7:c3:b7:6c: 27:0f:1c:d9:a6:6c:63:db:8a:be:65:99:d9:f5:0b: 8a:11:57:5f:d9:88:32:ae:b6:52:bd:6e:02:dc:38: b6:53:33:02:70:be:14:00:2a:84:08:e0:56:96:30: ee:5d:a3:9a:f9:98:83:09:16:e9:91:ec:08:74:af: bf:15:e1:9f:00:37:51:2e:5a:a4:3f:e8:ad:1d:18: 90:d1:a2:ed:94:da:19:77:e5:19:28:e4:54:bb:ca: 8b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:D6:6D:AA:C0:46:B4:76:AC:3F:A2:69:C6:9B:C2:86:35:E1:84:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/628f294d-91fb-4214-b47e-601508341308.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.253.192.0/18 Signature Algorithm: sha256WithRSAEncryption 5b:f6:0a:f6:cc:21:38:34:23:11:5f:e7:7d:fc:14:f2:4f:38: 9f:63:da:37:19:a5:2c:cf:bd:1b:bf:8e:45:91:b8:b8:78:f2: 18:31:11:82:39:f9:74:a4:9d:83:6f:70:bb:e2:ee:98:58:4b: 1f:b8:d7:d4:9b:f9:4b:ea:81:b4:dc:45:68:b0:4c:1d:4f:74: 6a:e0:30:6f:09:5f:29:1f:2a:cc:5a:a2:a4:b0:9d:6c:40:4b: 83:ee:3a:db:62:db:c8:78:3c:63:41:cb:6c:a9:77:9b:b6:cb: 9a:5c:05:48:64:43:20:80:1e:17:23:96:49:45:91:c6:be:fc: dd:d2:16:5b:3a:14:7b:41:64:8e:4d:bb:d8:83:9f:00:28:c1: 2b:8b:d6:ce:41:6d:c1:85:a3:44:e9:0a:fa:e3:b2:a2:a9:99: 6c:36:91:49:95:36:b7:8c:a6:93:ec:0d:9c:fb:d5:1b:7b:b1: 97:e4:e6:63:bb:b8:74:1c:6d:55:67:96:60:ff:69:63:2d:75: ff:25:a7:06:0a:32:cc:1e:e7:12:52:f7:a7:a0:0f:f8:4b:3a: 0b:4e:83:82:c4:ec:90:f1:32:ce:31:da:4c:73:7a:ef:5b:1b: 8e:2a:cd:b5:5b:c2:eb:d2:01:e9:6e:6b:3e:46:2f:36:0d:b1: 0f:db:ec:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZrmrMn/Rqn02/RXra1YPgAtK8OcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAyMDAyMDM3WhcNMjUwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YmFkNjg5MmI0Nzc3YzFmZjFlM2Q4MTA3MTc3OTVhMjAz MDFmNWZkNjc5NmJhYmFlOThmZTJmY2Y0YTU1ZmFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeEn66vK2tbE5Pn6JRRmY+xPl47f3CxOWjl0Bk6eruwe85 TjL//LgPjidBNHOZ3PqRVGsPZxWJ26Otg9qu8l9HCteqKgEk7h/2ufLjQwO6AVLY 3jzQa133OMySS5tQ+3Y+RDJvUW63l8ELBMYpetoL385x9Ho0pHgKhwnf6m7LGabo LtOveU3uqpKhXELDRHxxZOjM04AhSM254bizK6z0p8O3bCcPHNmmbGPbir5lmdn1 C4oRV1/ZiDKutlK9bgLcOLZTMwJwvhQAKoQI4FaWMO5do5r5mIMJFumR7Ah0r78V 4Z8AN1EuWqQ/6K0dGJDRou2U2hl35Rko5FS7yotfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4NZtqsBGtHasP6JpxpvChjXhhGgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyOGYyOTRkLTkxZmItNDIxNC1iNDdlLTYwMTUwODM0MTMwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZ9/cAwDQYJKoZIhvcNAQELBQADggEBAFv2CvbMITg0IxFf5338FPJPOJ9j 2jcZpSzPvRu/jkWRuLh48hgxEYI5+XSknYNvcLvi7phYSx+419Sb+UvqgbTcRWiw TB1PdGrgMG8JXykfKsxaoqSwnWxAS4PuOtti28h4PGNBy2ypd5u2y5pcBUhkQyCA HhcjlklFkca+/N3SFls6FHtBZI5Nu9iDnwAowSuL1s5BbcGFo0TpCvrjsqKpmWw2 kUmVNreMppPsDZz71Rt7sZfk5mO7uHQcbVVnlmD/aWMtdf8lpwYKMswe5xJS96eg D/hLOgtOg4LE7JDxMs4x2kxzeu9bG44qzbVbwuvSAeluaz5GLzYNsQ/b7Kc= -----END CERTIFICATE-----Generated at Tue Jul 22 05:09:50 2025 by rpki-client