$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/711afc9c-219b-409d-9c7f-0d2fb54ac829.roa File: 711afc9c-219b-409d-9c7f-0d2fb54ac829.roa (raw, json) Hash identifier: TLgMUgWgjy8gGh5GHpV6q8fkHp6z3nzu6s48tyEfxAQ= Subject key identifier: A5:46:D5:E1:9A:DA:16:38:30:01:2D:12:22:94:D1:81:70:CB:C1:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BF52793D4346126FAE0DAA230CAA599595A5E6F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/711afc9c-219b-409d-9c7f-0d2fb54ac829.roa Signing time: Mon 07 Jul 2025 16:00:46 +0000 ROA not before: Mon 07 Jul 2025 16:00:46 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 119.13.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:f5:27:93:d4:34:61:26:fa:e0:da:a2:30:ca:a5:99:59:5a:5e:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:00:46 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=e9b38b8011f1facd7cad52f53645f5cf27e9b10bd50c8741a444eed856d31568, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:96:cd:1f:cf:d6:4b:c7:41:da:6c:6c:fa:11: 3b:08:a5:64:c7:a8:94:e5:7f:ff:f5:fd:30:9d:30: b8:81:6b:f9:6e:9e:ab:e9:ad:8f:af:76:99:24:e6: 75:92:46:5c:54:84:10:69:07:b0:63:d4:2e:9e:ce: 25:2a:09:56:3f:46:68:9f:32:9a:28:52:25:90:36: cd:9e:b5:ec:fa:41:cd:fc:d7:32:6c:b9:20:ec:3c: 7e:67:58:fb:15:fd:22:5a:af:b2:4e:49:ac:b1:3d: 4b:fe:51:6f:76:55:b9:73:fe:c0:e1:bf:1c:7c:c2: 47:b4:a7:db:c7:79:4b:31:f7:f6:06:eb:55:0b:83: a8:ec:48:fb:5b:08:4c:e4:89:6e:ed:f3:db:f8:d4: d3:14:6d:44:ef:c4:e7:3e:bd:96:09:c5:e6:45:f6: ea:5e:0c:4e:fa:b9:fb:87:00:33:f0:f0:72:a6:91: 3d:a7:75:38:98:9f:1e:c2:22:01:36:52:5c:7d:7e: 6f:a1:57:66:0f:2b:52:0a:e9:a1:f9:17:7c:bb:3b: 6e:6f:94:db:62:d1:2d:f6:7a:e8:6e:70:e5:55:c7: af:6e:75:a5:bb:73:33:1a:c9:95:f4:52:f6:44:7e: 81:42:f8:59:5f:f1:4c:cf:89:19:49:54:20:dd:55: 8f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:46:D5:E1:9A:DA:16:38:30:01:2D:12:22:94:D1:81:70:CB:C1:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/711afc9c-219b-409d-9c7f-0d2fb54ac829.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.13.128.0/20 Signature Algorithm: sha256WithRSAEncryption 4f:3b:71:7a:0e:42:e7:9a:f5:0f:a5:32:3e:53:19:60:7a:53: 76:35:c1:3b:c4:97:99:cc:a1:c1:7b:41:2a:43:bf:c4:92:d1: 98:f7:3a:a9:8f:ea:d2:02:34:cc:98:5f:d1:69:4c:86:a6:8b: 68:01:57:15:1a:b4:33:e3:da:9d:fe:47:16:2c:44:ce:6c:fe: 24:ff:b7:18:9c:06:5b:95:9a:bb:74:9b:90:00:fb:90:99:e6: 32:ff:6b:ab:0e:1b:d7:59:f1:d1:f9:f9:f8:c9:ab:23:a3:c9: 1a:a2:d4:26:07:e4:e7:e1:69:c2:d1:10:d9:1f:f6:42:64:e3: 3b:9c:ff:6f:db:07:25:c8:70:8e:17:01:c5:7f:7d:55:73:eb: af:18:ef:5c:26:78:03:d2:8f:ce:98:7b:3d:c0:5f:79:3a:29: a1:86:96:52:94:8b:ed:32:4f:e3:8e:a2:26:8e:d1:63:4c:43: b8:de:f5:39:2e:31:5b:61:21:c7:a9:b0:30:b1:1a:1c:d4:c3: 8d:2d:36:03:aa:88:ac:70:e6:21:54:22:c4:53:73:a2:1d:3f: 07:ea:c9:98:e9:be:30:4d:35:13:e2:b0:fb:25:82:30:98:b8: cf:88:d3:a2:e8:43:6e:0a:de:ed:a7:e7:e8:e4:08:b8:4f:7e: 52:b5:b0:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW/Unk9Q0YSb64NqiMMqlmVlaXm8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYwMDQ2WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOWIzOGI4MDExZjFmYWNkN2NhZDUyZjUzNjQ1ZjVjZjI3 ZTliMTBiZDUwYzg3NDFhNDQ0ZWVkODU2ZDMxNTY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzls0fz9ZLx0HabGz6ETsIpWTHqJTlf//1/TCdMLiBa/lu nqvprY+vdpkk5nWSRlxUhBBpB7Bj1C6eziUqCVY/RmifMpooUiWQNs2etez6Qc38 1zJsuSDsPH5nWPsV/SJar7JOSayxPUv+UW92Vblz/sDhvxx8wke0p9vHeUsx9/YG 61ULg6jsSPtbCEzkiW7t89v41NMUbUTvxOc+vZYJxeZF9upeDE76ufuHADPw8HKm kT2ndTiYnx7CIgE2Ulx9fm+hV2YPK1IK6aH5F3y7O25vlNti0S32euhucOVVx69u daW7czMayZX0UvZEfoFC+Flf8UzPiRlJVCDdVY/HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpUbV4ZraFjgwAS0SIpTRgXDLwWIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcxMWFmYzljLTIxOWItNDA5ZC05YzdmLTBkMmZiNTRhYzgyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAR3DYAwDQYJKoZIhvcNAQELBQADggEBAE87cXoOQuea9Q+lMj5TGWB6U3Y1 wTvEl5nMocF7QSpDv8SS0Zj3OqmP6tICNMyYX9FpTIami2gBVxUatDPj2p3+RxYs RM5s/iT/txicBluVmrt0m5AA+5CZ5jL/a6sOG9dZ8dH5+fjJqyOjyRqi1CYH5Ofh acLRENkf9kJk4zuc/2/bByXIcI4XAcV/fVVz668Y71wmeAPSj86Yez3AX3k6KaGG llKUi+0yT+OOoiaO0WNMQ7je9TkuMVthIcepsDCxGhzUw40tNgOqiKxw5iFUIsRT c6IdPwfqyZjpvjBNNRPisPslgjCYuM+I06LoQ24K3u2n5+jkCLhPflK1sHQ= -----END CERTIFICATE-----Generated at Mon Jul 21 18:10:01 2025 by rpki-client