$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a788d599-2c60-4aa0-a3d2-135fff75c258.roa File: a788d599-2c60-4aa0-a3d2-135fff75c258.roa (raw, json) Hash identifier: u/7LGVudI6uv8Gw/ytzBVuabGPTIKMJlZxusOZWOwfg= Subject key identifier: 29:A7:A2:EC:C1:88:7B:A3:04:EF:C9:A5:A8:EC:EA:05:DE:1B:02:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4CFAD9FADE4A4CDA22A13DFCA132850ADF2B353B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a788d599-2c60-4aa0-a3d2-135fff75c258.roa Signing time: Mon 14 Jul 2025 15:00:11 +0000 ROA not before: Mon 14 Jul 2025 15:00:11 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.88.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:fa:d9:fa:de:4a:4c:da:22:a1:3d:fc:a1:32:85:0a:df:2b:35:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 14 15:00:11 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=fd4bfec620df85b417b5bd3e812e7ae90d7bff8cf7514f45008797eccc2c1f3c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:82:81:30:c5:53:ee:f6:09:f5:7d:ec:68:51: 45:47:ad:0b:8b:ee:77:cc:b5:dd:a2:29:1d:ce:62: 23:55:8f:de:6d:87:d0:12:f7:82:4d:66:06:b9:8f: c4:0f:e0:1b:81:3e:ad:66:cd:9c:b9:37:ae:bb:5e: 31:3a:33:df:c1:c8:9e:04:c0:ac:c5:89:18:86:bb: b3:b7:a8:ec:cb:37:fe:f6:3f:73:cd:fc:7f:90:9a: 26:d5:8a:c2:b5:8c:de:c1:36:e5:de:7a:5e:61:fc: 26:55:fb:28:fa:17:32:ae:8a:aa:39:4f:93:11:6b: c1:16:bd:a3:4d:f0:ff:8d:38:b5:e9:f3:e3:1a:5c: 60:ea:9a:e4:db:54:6a:bf:7d:59:0e:76:8b:7f:86: c3:e6:02:e2:f8:bc:0f:95:f0:ad:7f:29:1a:b6:0a: cb:b4:46:d4:16:43:fc:33:2e:83:a0:d2:b2:eb:29: fa:c6:d8:24:de:57:a9:fd:ca:71:d7:8b:d9:cd:3c: 29:a2:07:dd:b1:7d:03:f7:e3:4a:4f:fe:1a:a2:b5: b8:3f:ac:84:e5:78:af:bd:f4:7c:26:02:04:57:03: 45:51:9b:e1:9a:2a:ce:4b:58:d7:5c:47:83:da:b4: 48:7c:fa:f6:ae:3a:05:1a:e6:63:99:6a:37:c5:76: 3f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:A7:A2:EC:C1:88:7B:A3:04:EF:C9:A5:A8:EC:EA:05:DE:1B:02:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a788d599-2c60-4aa0-a3d2-135fff75c258.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.88.84.0/23 Signature Algorithm: sha256WithRSAEncryption 07:7a:ac:08:e6:b7:ef:47:68:e6:29:f4:74:47:44:6d:0a:0f: f2:1a:9c:8f:b2:59:56:28:bf:d8:bb:b9:26:0e:52:66:1a:64: 18:91:01:59:1f:ba:bf:a1:db:0b:11:f5:e6:79:2f:78:a7:fb: e8:5d:c5:c2:9e:65:32:51:9f:93:4a:99:cc:df:1d:53:32:a1: e7:63:f9:13:51:ac:ce:d2:33:d7:10:f7:51:52:c2:6c:8a:88: a8:cc:1e:3f:37:54:08:c6:69:ec:e3:42:5e:70:a0:29:07:d5: a0:62:86:7e:83:49:16:17:a2:33:1b:55:64:6b:83:1d:68:d2: 71:5c:70:19:ee:55:38:d9:ad:36:ee:0e:dd:10:cc:ac:4b:2d: d8:60:90:4b:f0:ab:1c:1b:be:dd:d2:c1:76:32:de:a9:bd:b0: d0:b8:6c:0e:56:06:4a:d1:bf:8f:43:a9:c6:a9:66:6e:96:1d: 55:d1:3c:b0:4c:ec:af:ea:15:08:b7:11:60:8f:39:4e:d6:8a: 87:e6:7a:96:ff:72:8b:fd:2c:0e:51:a6:ec:da:a2:53:28:0b: 99:c3:db:07:68:f6:03:66:9d:cd:5c:5e:94:44:0c:8f:67:7c: 43:d5:62:df:01:e3:2d:ca:cf:17:9b:51:f5:ae:b8:c5:b5:4d: fa:d9:67:c4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTPrZ+t5KTNoioT38oTKFCt8rNTswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE0MTUwMDExWhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDRiZmVjNjIwZGY4NWI0MTdiNWJkM2U4MTJlN2FlOTBk N2JmZjhjZjc1MTRmNDUwMDg3OTdlY2NjMmMxZjNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7goEwxVPu9gn1fexoUUVHrQuL7nfMtd2iKR3OYiNVj95t h9AS94JNZga5j8QP4BuBPq1mzZy5N667XjE6M9/ByJ4EwKzFiRiGu7O3qOzLN/72 P3PN/H+QmibVisK1jN7BNuXeel5h/CZV+yj6FzKuiqo5T5MRa8EWvaNN8P+NOLXp 8+MaXGDqmuTbVGq/fVkOdot/hsPmAuL4vA+V8K1/KRq2Csu0RtQWQ/wzLoOg0rLr KfrG2CTeV6n9ynHXi9nNPCmiB92xfQP340pP/hqitbg/rITleK+99HwmAgRXA0VR m+GaKs5LWNdcR4PatEh8+vauOgUa5mOZajfFdj9/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKaei7MGIe6ME78mlqOzqBd4bAm0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ODhkNTk5LTJjNjAtNGFhMC1hM2QyLTEzNWZmZjc1YzI1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHLWFQwDQYJKoZIhvcNAQELBQADggEBAAd6rAjmt+9HaOYp9HRHRG0KD/Ia nI+yWVYov9i7uSYOUmYaZBiRAVkfur+h2wsR9eZ5L3in++hdxcKeZTJRn5NKmczf HVMyoedj+RNRrM7SM9cQ91FSwmyKiKjMHj83VAjGaezjQl5woCkH1aBihn6DSRYX ojMbVWRrgx1o0nFccBnuVTjZrTbuDt0QzKxLLdhgkEvwqxwbvt3SwXYy3qm9sNC4 bA5WBkrRv49DqcapZm6WHVXRPLBM7K/qFQi3EWCPOU7Wiofmepb/cov9LA5Rpuza olMoC5nD2wdo9gNmnc1cXpREDI9nfEPVYt8B4y3KzxebUfWuuMW1TfrZZ8Q= -----END CERTIFICATE-----Generated at Tue Jul 22 04:31:12 2025 by rpki-client