$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fcf3ad48-0d1f-4ba4-87d3-c4086df92e62.roa File: fcf3ad48-0d1f-4ba4-87d3-c4086df92e62.roa (raw, json) Hash identifier: GDh7Brf5yk0jdgkdESXBGHsumii4BMvAs1pgIKorNMY= Subject key identifier: D8:54:D9:56:9D:65:26:64:F5:5F:A9:EF:63:65:84:71:E4:A6:2F:8C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1F86BA3368A959A72F36CE388D8925CCB2266D35 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fcf3ad48-0d1f-4ba4-87d3-c4086df92e62.roa Signing time: Wed 02 Jul 2025 00:20:24 +0000 ROA not before: Wed 02 Jul 2025 00:20:24 +0000 ROA not after: Wed 06 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 115.177.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:86:ba:33:68:a9:59:a7:2f:36:ce:38:8d:89:25:cc:b2:26:6d:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 2 00:20:24 2025 GMT Not After : Aug 6 23:59:59 2025 GMT Subject: serialNumber=7800b045dcc3707d1b513cccd4393ff1336cdc2fec3464eb3d49406725a8840f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:3e:d2:7f:c8:c7:c7:d7:08:21:44:9d:eb:d2: 82:f8:8f:5e:15:b2:08:39:a0:0b:10:9d:d7:56:fc: 9e:ec:14:fb:fb:f9:91:ec:2a:a9:3f:8f:37:04:b2: 02:a5:13:36:d5:63:4a:86:30:ff:7b:7c:89:0b:a3: 7e:cb:41:d3:67:f5:fa:34:f1:13:5b:ef:2e:5a:f0: 45:15:af:49:bc:c8:37:5c:fb:63:6e:e3:55:32:86: b3:d6:3b:ce:63:f4:a4:dc:3e:3d:60:56:72:0d:56: 5a:7a:75:b8:4d:0a:4f:8e:55:92:a8:80:a6:83:aa: c4:51:8d:3c:2f:7b:18:0a:aa:74:bc:ad:c7:78:9d: e0:b4:10:43:10:3c:79:d2:96:02:33:9c:f0:3b:ce: 6e:e8:ac:bd:28:18:96:f9:de:34:7c:7e:2c:1b:55: e4:0d:b8:9c:ef:c4:ce:20:43:f5:e4:c6:3e:fe:4b: 35:72:b4:3d:08:36:b2:a9:cb:b4:fa:82:71:ea:9c: a4:8a:0e:35:85:cf:ca:2e:12:98:69:b6:a0:ff:be: 5d:d4:3b:b5:d8:ce:77:3a:1c:19:d5:6b:00:b4:33: 20:6c:54:14:cc:a0:68:68:45:8a:6e:57:4f:c4:fe: 9a:d4:51:96:80:f3:45:a0:15:ff:07:df:78:c4:32: c8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:54:D9:56:9D:65:26:64:F5:5F:A9:EF:63:65:84:71:E4:A6:2F:8C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fcf3ad48-0d1f-4ba4-87d3-c4086df92e62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.177.128.0/18 Signature Algorithm: sha256WithRSAEncryption 53:18:53:a2:4a:9a:55:f6:f6:93:78:9d:2a:c7:ee:03:6c:b9: e7:ed:4e:a0:0e:07:5d:da:04:73:c6:9e:a5:d0:7b:88:c3:20: eb:c4:a6:0b:da:c7:f6:da:79:86:71:d4:e7:1d:2f:cc:06:2c: 2b:9c:48:aa:1b:e7:da:6d:b7:e5:38:78:fd:94:94:fb:9c:5a: b9:96:8a:12:72:bf:bf:95:d1:e4:67:97:eb:60:03:7a:17:67: 3c:38:b4:bb:0b:ab:e0:b3:e4:52:d7:7c:51:fb:41:dc:63:8b: ea:a2:38:df:23:df:e5:e6:46:01:e7:ba:fb:e6:a9:cb:e2:35: cc:ef:46:93:cc:2d:0d:65:7b:ff:5e:14:70:be:da:a5:de:81: bf:47:00:56:45:56:fc:12:f7:99:40:ed:4f:9d:c2:cf:4f:b8: 1d:d3:e2:f9:f7:f6:38:b5:5c:eb:05:fb:c6:bc:82:d2:4b:b1: 84:02:e2:7c:a5:4a:77:da:79:38:8e:24:aa:31:37:58:10:4b: 25:49:7b:a0:11:24:fd:80:aa:d5:95:11:33:bb:d3:7e:d3:bc: 18:2b:49:2e:eb:d0:d6:2f:4a:21:a7:53:b5:5c:0b:44:2e:12: c2:62:4c:7f:98:ce:a3:ca:17:2d:da:4f:c6:cd:09:a5:4f:64: 31:58:c7:d3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH4a6M2ipWacvNs44jYklzLImbTUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAyMDAyMDI0WhcNMjUwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODAwYjA0NWRjYzM3MDdkMWI1MTNjY2NkNDM5M2ZmMTMz NmNkYzJmZWMzNDY0ZWIzZDQ5NDA2NzI1YTg4NDBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPPtJ/yMfH1wghRJ3r0oL4j14Vsgg5oAsQnddW/J7sFPv7 +ZHsKqk/jzcEsgKlEzbVY0qGMP97fIkLo37LQdNn9fo08RNb7y5a8EUVr0m8yDdc +2Nu41UyhrPWO85j9KTcPj1gVnINVlp6dbhNCk+OVZKogKaDqsRRjTwvexgKqnS8 rcd4neC0EEMQPHnSlgIznPA7zm7orL0oGJb53jR8fiwbVeQNuJzvxM4gQ/Xkxj7+ SzVytD0INrKpy7T6gnHqnKSKDjWFz8ouEphptqD/vl3UO7XYznc6HBnVawC0MyBs VBTMoGhoRYpuV0/E/prUUZaA80WgFf8H33jEMsgVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2FTZVp1lJmT1X6nvY2WEceSmL4wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZjZjNhZDQ4LTBkMWYtNGJhNC04N2QzLWM0MDg2ZGY5MmU2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZzsYAwDQYJKoZIhvcNAQELBQADggEBAFMYU6JKmlX29pN4nSrH7gNsueft TqAOB13aBHPGnqXQe4jDIOvEpgvax/baeYZx1OcdL8wGLCucSKob59ptt+U4eP2U lPucWrmWihJyv7+V0eRnl+tgA3oXZzw4tLsLq+Cz5FLXfFH7Qdxji+qiON8j3+Xm RgHnuvvmqcviNczvRpPMLQ1le/9eFHC+2qXegb9HAFZFVvwS95lA7U+dws9PuB3T 4vn39ji1XOsF+8a8gtJLsYQC4nylSnfaeTiOJKoxN1gQSyVJe6ARJP2AqtWVETO7 037TvBgrSS7r0NYvSiGnU7VcC0QuEsJiTH+YzqPKFy3aT8bNCaVPZDFYx9M= -----END CERTIFICATE-----Generated at Mon Jul 21 23:23:12 2025 by rpki-client