$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa File: 9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa (raw, json) Hash identifier: AaHtbVwsUnQu6kqxQWl83DHy2xdp2cpmEd7BKSu0Oq8= Subject key identifier: E8:17:55:67:7E:E1:69:CB:B2:62:7F:EE:A3:A8:A7:08:1E:83:3C:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A2F519F967B800E328F3E291662CF12DA309CAE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa Signing time: Sat 12 Jul 2025 00:21:38 +0000 ROA not before: Sat 12 Jul 2025 00:21:38 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.5.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:2f:51:9f:96:7b:80:0e:32:8f:3e:29:16:62:cf:12:da:30:9c:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 12 00:21:38 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=06770a11a653636f6e73dbdfb56dee98e0154df932ca145ec434a820f8413ee9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9e:43:23:8c:7e:3f:92:c1:b4:97:a5:88:96: 84:6d:2d:07:7b:0e:3e:e2:19:09:d1:22:26:e1:e9: 5e:fb:01:0e:23:77:16:4f:88:38:04:54:92:ff:be: 82:fb:bd:4d:2a:b9:a2:97:cc:16:8a:a0:5d:5d:fc: ef:c7:9b:87:ef:f9:7a:c2:29:51:d2:5c:e2:15:a9: a1:3a:a5:38:67:6a:8e:a6:b7:99:65:40:21:27:13: 46:8b:de:13:d9:28:32:f3:b8:53:db:7e:72:1b:7f: 90:ac:d5:91:b3:ce:c1:bc:94:e9:a0:f4:80:c4:e3: 97:23:ee:37:b4:c6:5f:e4:a7:3e:27:8b:9a:c5:77: a9:65:3f:44:9f:32:04:63:1f:29:84:db:16:34:13: 93:b9:b5:d7:0e:dc:43:65:d3:4d:49:29:b4:6a:14: 16:e0:5a:23:6c:1d:60:5a:d3:80:b2:bb:f8:8d:b5: 88:d9:42:53:6b:6a:66:b1:e6:ab:a4:ad:d8:0c:ce: 01:05:28:1c:30:c1:1d:87:cf:72:81:f0:18:71:f9: ec:54:15:16:a5:9f:c2:07:f2:59:fa:64:0d:3d:53: 65:7f:ee:c6:84:7e:34:8a:6f:1e:09:7a:82:4f:07: 6a:78:13:66:0d:31:90:ff:48:b4:08:95:46:0c:e2: 9b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:17:55:67:7E:E1:69:CB:B2:62:7F:EE:A3:A8:A7:08:1E:83:3C:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.180.0/22 Signature Algorithm: sha256WithRSAEncryption a2:4b:f4:b2:78:52:5c:c4:94:9d:48:65:47:a6:d2:b4:31:19: 73:fe:23:e9:fb:52:93:1e:3e:5a:9b:06:a0:c6:c6:fe:7b:28: da:ae:ed:49:a2:4f:b1:44:47:20:72:86:a9:1e:66:de:7e:c4: 1e:87:55:fa:73:04:76:ff:2e:22:41:d9:f3:9c:07:5e:0d:92: a8:ae:9e:14:6d:b7:22:df:ab:27:1d:02:90:d7:1f:28:dd:a3: 14:d6:0b:23:95:24:7f:ad:5f:75:2f:15:9c:ca:54:c7:36:ac: 6e:b1:94:15:c1:d3:f1:87:69:8e:72:c8:05:e9:af:e0:fa:f5: 5f:b7:61:20:d1:d1:dd:79:7d:42:c2:ac:9f:c7:0c:9d:8d:ec: c8:de:68:c2:25:f1:17:a2:d9:69:39:d3:92:c9:89:d0:e0:3d: 78:8a:4e:49:b6:e5:aa:37:b0:d7:84:c7:d4:8e:2c:0d:dc:b8: a7:4c:0e:c7:a3:16:35:4d:8c:97:f1:a8:d5:32:46:b9:b4:63: 41:1c:17:52:5e:87:cc:86:08:13:6b:f6:05:69:d5:1c:80:ff: 38:ab:30:9b:61:a2:09:f6:6f:10:85:7d:97:ad:38:27:56:e9: 9f:68:16:88:b1:61:ed:1d:1d:a2:d2:57:f5:50:02:79:06:bf: 4a:d0:22:08 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSi9Rn5Z7gA4yjz4pFmLPEtownK4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzEyMDAyMTM4WhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjc3MGExMWE2NTM2MzZmNmU3M2RiZGZiNTZkZWU5OGUw MTU0ZGY5MzJjYTE0NWVjNDM0YTgyMGY4NDEzZWU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7nkMjjH4/ksG0l6WIloRtLQd7Dj7iGQnRIibh6V77AQ4j dxZPiDgEVJL/voL7vU0quaKXzBaKoF1d/O/Hm4fv+XrCKVHSXOIVqaE6pThnao6m t5llQCEnE0aL3hPZKDLzuFPbfnIbf5Cs1ZGzzsG8lOmg9IDE45cj7je0xl/kpz4n i5rFd6llP0SfMgRjHymE2xY0E5O5tdcO3ENl001JKbRqFBbgWiNsHWBa04Cyu/iN tYjZQlNramax5qukrdgMzgEFKBwwwR2Hz3KB8Bhx+exUFRaln8IH8ln6ZA09U2V/ 7saEfjSKbx4JeoJPB2p4E2YNMZD/SLQIlUYM4puvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6BdVZ37hacuyYn/uo6inCB6DPBgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkMzk2YjY0LTMxYTctNGVmYy05ZmMyLWJkOGY1NTM5ZTUwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKBbQwDQYJKoZIhvcNAQELBQADggEBAKJL9LJ4UlzElJ1IZUem0rQxGXP+ I+n7UpMePlqbBqDGxv57KNqu7UmiT7FERyByhqkeZt5+xB6HVfpzBHb/LiJB2fOc B14NkqiunhRttyLfqycdApDXHyjdoxTWCyOVJH+tX3UvFZzKVMc2rG6xlBXB0/GH aY5yyAXpr+D69V+3YSDR0d15fULCrJ/HDJ2N7MjeaMIl8Rei2Wk505LJidDgPXiK Tkm25ao3sNeEx9SOLA3cuKdMDsejFjVNjJfxqNUyRrm0Y0EcF1Jeh8yGCBNr9gVp 1RyA/zirMJthogn2bxCFfZetOCdW6Z9oFoixYe0dHaLSV/VQAnkGv0rQIgg= -----END CERTIFICATE-----Generated at Mon Jul 21 18:10:04 2025 by rpki-client