$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ec798da-a6c2-44be-afd4-f4a224668ad8.roa File: 7ec798da-a6c2-44be-afd4-f4a224668ad8.roa (raw, json) Hash identifier: 5z8rytD3q2qGfPSs+V8+kJIF6b+zMdy1FX01dMWYAZc= Subject key identifier: A8:5B:58:D7:E1:37:DB:17:98:A3:50:1C:D7:6E:E8:03:3C:25:48:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CDCCB73D735A64C37B91BA8705BF627AB5B8B32 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ec798da-a6c2-44be-afd4-f4a224668ad8.roa Signing time: Wed 09 Jul 2025 00:10:27 +0000 ROA not before: Wed 09 Jul 2025 00:10:27 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 119.13.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:dc:cb:73:d7:35:a6:4c:37:b9:1b:a8:70:5b:f6:27:ab:5b:8b:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:10:27 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=7bd7a2af32229941ab021c2916cf5b0c63441abb4f527decc713e9fbfa1480ef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6f:75:a6:45:6b:47:b6:48:a9:7f:61:5b:56: 8c:eb:1c:ab:ba:b3:67:ca:fa:7e:16:f2:71:fd:d3: 71:fe:48:98:c9:ec:7e:39:bb:9b:52:7a:c7:c4:43: bc:6e:1e:99:a8:f2:65:98:77:ac:6d:c5:68:bc:35: 6b:54:a2:0b:73:e4:80:6f:56:5f:f4:dc:83:99:86: 85:3c:71:ce:85:7a:14:e7:d4:ce:d2:af:67:c4:bb: 5d:36:de:87:1c:34:0d:ae:02:4d:b1:13:69:1a:f4: 5f:dc:92:37:64:3a:89:03:c5:dd:0c:c2:d1:19:4a: 2f:f3:07:82:d5:f7:9c:70:a7:2d:1b:35:30:9e:e1: 64:35:df:73:c8:b1:68:3e:3d:33:86:5d:f9:59:17: 6b:7b:e6:6e:26:52:bb:96:f1:19:b8:b7:d7:66:33: f1:22:f3:c3:5f:1a:e5:46:14:4d:75:7c:4c:58:83: 65:d2:ab:a8:b0:59:9a:56:8a:3f:0d:80:73:2b:ed: 16:7f:d0:26:a2:ca:26:ab:e4:ba:a9:7e:44:f2:d7: 54:9e:8f:bc:ba:52:07:d0:17:6a:ce:0d:09:21:ee: 97:a8:d1:8e:d1:2e:15:52:48:2e:63:ec:90:31:dd: ca:ef:e9:69:5b:69:ea:54:6f:45:13:ad:92:ec:9b: a2:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:5B:58:D7:E1:37:DB:17:98:A3:50:1C:D7:6E:E8:03:3C:25:48:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ec798da-a6c2-44be-afd4-f4a224668ad8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.13.52.0/22 Signature Algorithm: sha256WithRSAEncryption 11:95:a6:f2:50:dc:d3:1c:64:4b:05:a1:21:47:7c:f8:ee:22: 4f:0a:b3:a6:9f:d0:0c:16:9f:53:c0:3b:d7:45:2b:b6:a2:2d: d7:1b:e9:71:a9:fe:39:f6:36:58:03:f2:c9:32:34:e5:97:7f: cf:1d:97:9b:cc:e7:49:a1:09:cb:75:bd:71:c0:21:a2:59:57: 79:58:e3:87:c6:d4:d7:01:de:d5:57:10:72:3c:08:46:05:de: 34:8b:5f:10:e5:0f:5b:a3:a8:ae:21:53:d2:8a:ce:de:60:75: 6a:ad:09:57:a8:3e:f0:71:92:2e:ce:ef:fd:0d:4d:6a:41:1b: bb:92:4e:55:65:d8:66:fd:14:8b:84:bf:27:d3:d6:f4:20:ba: 64:2b:3e:7e:5d:17:d7:9c:ea:89:b1:66:9b:20:34:a6:23:d2: ea:35:a5:50:b5:5a:cd:b4:c0:79:1c:0c:07:da:83:61:e6:b3: f9:ac:c4:d0:ae:b3:f2:f7:fc:28:69:a1:69:d0:80:84:04:a6: a9:b8:7b:54:ce:17:61:af:ac:eb:e3:b3:6e:1d:7c:40:10:0a: d3:34:21:c1:11:7f:b0:c2:da:61:11:fc:cd:79:a6:89:ab:2a: 25:fc:e5:36:7d:0c:f7:9f:ef:2a:e5:13:c3:de:60:20:cd:44: 0c:2f:b3:ab -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbNzLc9c1pkw3uRuocFv2J6tbizIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDAxMDI3WhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YmQ3YTJhZjMyMjI5OTQxYWIwMjFjMjkxNmNmNWIwYzYz NDQxYWJiNGY1MjdkZWNjNzEzZTlmYmZhMTQ4MGVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7b3WmRWtHtkipf2FbVozrHKu6s2fK+n4W8nH903H+SJjJ 7H45u5tSesfEQ7xuHpmo8mWYd6xtxWi8NWtUogtz5IBvVl/03IOZhoU8cc6FehTn 1M7Sr2fEu1023occNA2uAk2xE2ka9F/ckjdkOokDxd0MwtEZSi/zB4LV95xwpy0b NTCe4WQ133PIsWg+PTOGXflZF2t75m4mUruW8Rm4t9dmM/Ei88NfGuVGFE11fExY g2XSq6iwWZpWij8NgHMr7RZ/0Caiyiar5LqpfkTy11Sej7y6UgfQF2rODQkh7peo 0Y7RLhVSSC5j7JAx3crv6WlbaepUb0UTrZLsm6KJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqFtY1+E32xeYo1Ac127oAzwlSLYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdlYzc5OGRhLWE2YzItNDRiZS1hZmQ0LWY0YTIyNDY2OGFkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJ3DTQwDQYJKoZIhvcNAQELBQADggEBABGVpvJQ3NMcZEsFoSFHfPjuIk8K s6af0AwWn1PAO9dFK7aiLdcb6XGp/jn2NlgD8skyNOWXf88dl5vM50mhCct1vXHA IaJZV3lY44fG1NcB3tVXEHI8CEYF3jSLXxDlD1ujqK4hU9KKzt5gdWqtCVeoPvBx ki7O7/0NTWpBG7uSTlVl2Gb9FIuEvyfT1vQgumQrPn5dF9ec6omxZpsgNKYj0uo1 pVC1Ws20wHkcDAfag2Hms/msxNCus/L3/ChpoWnQgIQEpqm4e1TOF2GvrOvjs24d fEAQCtM0IcERf7DC2mER/M15pomrKiX85TZ9DPef7yrlE8PeYCDNRAwvs6s= -----END CERTIFICATE-----Generated at Tue Jul 22 04:54:23 2025 by rpki-client