$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88ad3ecf-8794-428a-bc51-4ac3eff6ca62.roa File: 88ad3ecf-8794-428a-bc51-4ac3eff6ca62.roa (raw, json) Hash identifier: QqV5h1Inx7Q0GcUroURcLdUbUj0Wuyl0f/ID2hKrt7I= Subject key identifier: E1:86:35:75:90:F6:DA:5D:3C:66:E4:6B:4C:BB:30:F7:04:76:7C:8C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54B87A1440A34A8C932AD7693049D7DB4FB50296 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88ad3ecf-8794-428a-bc51-4ac3eff6ca62.roa Signing time: Mon 07 Jul 2025 16:22:14 +0000 ROA not before: Mon 07 Jul 2025 16:22:14 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 212.111.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:b8:7a:14:40:a3:4a:8c:93:2a:d7:69:30:49:d7:db:4f:b5:02:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:22:14 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=f871f2b4ed8e093dbadb8d16c7b834e1287030fd06a765b2407b7cb75d50f008, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e1:3f:42:e3:e7:04:06:1c:96:0c:48:67:a8: 4c:f4:d1:fe:e2:59:b1:d6:1f:07:e5:72:12:4e:46: 66:d5:58:16:8c:a0:1a:a9:38:ac:3e:a0:b4:3d:c0: 45:2e:e2:af:99:35:94:ed:a3:bc:c2:34:d2:11:1b: 68:0d:07:9b:cd:2f:c5:37:92:fc:1d:75:7e:89:7a: fd:4d:46:96:8c:83:87:34:ba:bb:56:8d:c2:28:f5: 4d:ff:25:20:f8:01:ab:0d:5d:36:b1:7e:b3:cf:de: 02:82:24:b4:9d:cd:01:89:1c:cd:26:bc:e6:c1:07: e1:33:b6:97:95:48:81:85:07:ef:d3:24:36:12:6d: 24:d9:78:fd:4e:2e:79:03:0b:23:24:e6:cb:fc:98: 9b:83:d0:76:a6:63:96:fa:ff:92:4e:26:a2:67:08: dd:25:00:2e:f1:a2:6e:2a:ff:a8:df:25:0d:27:1c: 02:95:98:6f:6a:ce:60:2b:7a:66:04:54:c1:74:46: 36:b1:d3:78:ad:63:71:58:32:94:a2:b6:3a:e1:18: 06:fa:10:10:5d:0b:39:88:83:5b:d5:51:11:10:c3: 9b:4d:cc:89:34:c0:8c:e5:bf:b3:16:43:90:0a:e2: 2f:5b:ba:7c:da:45:6a:33:6e:5a:70:ed:46:d7:d4: e2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:86:35:75:90:F6:DA:5D:3C:66:E4:6B:4C:BB:30:F7:04:76:7C:8C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88ad3ecf-8794-428a-bc51-4ac3eff6ca62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.111.160.0/19 Signature Algorithm: sha256WithRSAEncryption af:69:cd:36:66:80:8c:99:28:41:d3:dd:c5:2a:80:e3:ee:a2: 1f:d8:61:3c:fd:a6:1f:1c:2b:5e:f7:73:96:3f:77:cf:3f:5b: b6:be:d9:11:20:93:cf:ad:e7:9b:0b:5a:4b:af:9c:57:f0:01: 60:cf:0a:88:48:d0:39:2c:35:96:57:25:33:7c:3c:71:d8:69: ff:6f:0d:11:c7:1c:87:ea:f9:97:1d:88:fe:6d:a8:d3:17:e5: cb:8b:2f:22:b3:c2:26:74:6d:b0:f7:13:22:7d:46:c1:0f:45: d7:1d:96:50:d1:c1:26:b4:2f:29:ce:2c:dc:bc:f6:12:81:24: 7c:59:90:23:c9:cd:65:c1:ca:01:b2:c8:5d:03:1c:fa:ed:ab: f0:db:1e:ec:f3:2d:c0:8b:9b:a3:f5:19:4c:6a:e6:ef:a7:bc: 2f:32:66:7c:3a:57:79:28:ce:72:79:36:b3:b5:5f:ee:84:ca: b7:9f:e5:2a:83:ba:2b:7d:a2:03:63:6e:d3:39:71:6f:90:b0: c1:20:77:0b:df:e4:f3:23:8b:ff:b4:54:56:3f:86:e4:f6:df: 75:b2:72:05:61:ed:ab:a3:ba:4d:37:64:74:ae:e3:88:d2:34: 3c:fe:4d:aa:94:ae:7a:5c:2f:1c:2f:86:32:1c:41:b1:12:6d: 99:ee:5b:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVLh6FECjSoyTKtdpMEnX20+1ApYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYyMjE0WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0BmODcxZjJiNGVkOGUwOTNkYmFkYjhkMTZjN2I4MzRlMTI4 NzAzMGZkMDZhNzY1YjI0MDdiN2NiNzVkNTBmMDA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK4T9C4+cEBhyWDEhnqEz00f7iWbHWHwflchJORmbVWBaM oBqpOKw+oLQ9wEUu4q+ZNZTto7zCNNIRG2gNB5vNL8U3kvwddX6Jev1NRpaMg4c0 urtWjcIo9U3/JSD4AasNXTaxfrPP3gKCJLSdzQGJHM0mvObBB+EztpeVSIGFB+/T JDYSbSTZeP1OLnkDCyMk5sv8mJuD0HamY5b6/5JOJqJnCN0lAC7xom4q/6jfJQ0n HAKVmG9qzmAremYEVMF0Rjax03itY3FYMpSitjrhGAb6EBBdCzmIg1vVUREQw5tN zIk0wIzlv7MWQ5AK4i9bunzaRWozblpw7UbX1OLVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4YY1dZD22l08ZuRrTLsw9wR2fIwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg4YWQzZWNmLTg3OTQtNDI4YS1iYzUxLTRhYzNlZmY2Y2E2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXUb6AwDQYJKoZIhvcNAQELBQADggEBAK9pzTZmgIyZKEHT3cUqgOPuoh/Y YTz9ph8cK173c5Y/d88/W7a+2REgk8+t55sLWkuvnFfwAWDPCohI0DksNZZXJTN8 PHHYaf9vDRHHHIfq+ZcdiP5tqNMX5cuLLyKzwiZ0bbD3EyJ9RsEPRdcdllDRwSa0 LynOLNy89hKBJHxZkCPJzWXBygGyyF0DHPrtq/DbHuzzLcCLm6P1GUxq5u+nvC8y Znw6V3koznJ5NrO1X+6Eyref5SqDuit9ogNjbtM5cW+QsMEgdwvf5PMji/+0VFY/ huT233WycgVh7aujuk03ZHSu44jSNDz+TaqUrnpcLxwvhjIcQbESbZnuW6E= -----END CERTIFICATE-----Generated at Tue Jul 22 05:12:50 2025 by rpki-client