$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4108cfaf-4936-4898-9eba-c92a93e016e4.roa File: 4108cfaf-4936-4898-9eba-c92a93e016e4.roa (raw, json) Hash identifier: HFaZhV7gDVQwqYVKRrm+1mW6C7bWAXS7nM9R+EAnWBE= Subject key identifier: 80:53:34:EF:06:77:B9:FD:33:0D:79:49:F7:08:7B:FA:3A:D0:44:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6506C608394C5AC388013EE46EBFACDF81A35231 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4108cfaf-4936-4898-9eba-c92a93e016e4.roa Signing time: Tue 08 Jul 2025 15:00:22 +0000 ROA not before: Tue 08 Jul 2025 15:00:22 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 01 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:06:c6:08:39:4c:5a:c3:88:01:3e:e4:6e:bf:ac:df:81:a3:52:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 15:00:22 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=3f3065a11778f4ca18a5c36ab3ece1764d65caa7000c136750e46427d18e6149, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:25:cb:77:50:32:95:ee:94:6a:e9:c7:fc:c9: 37:51:c4:54:30:a2:8f:9c:e4:1c:cc:af:0d:be:2a: a0:71:91:7d:98:21:23:8c:55:07:c8:c1:37:c9:7f: 10:f1:d9:fd:10:01:0e:b0:fb:f7:a6:db:56:21:9c: 48:c1:d2:53:62:e7:0c:ac:fd:d2:93:53:24:f1:1f: e7:25:70:06:07:fe:e4:aa:1a:8a:91:7d:99:93:d4: 82:d2:1c:17:eb:f3:d7:48:04:d5:e7:3d:5a:3c:9f: 22:ed:f6:b5:0b:3f:ce:29:ed:e3:41:81:2b:46:65: a4:ec:02:d3:95:14:4c:11:2f:ef:82:38:01:2c:d9: f6:aa:84:d1:1f:90:6d:7f:3f:54:8a:f1:5f:e6:ed: 91:6a:c4:83:5c:22:46:f0:b3:e5:26:22:3d:11:df: a4:30:ac:43:08:d0:90:df:c9:32:a2:ed:a6:16:0f: 19:16:a8:e7:4b:60:d2:21:9a:37:05:0d:44:00:91: 8d:49:cb:81:d8:72:f1:b8:21:c9:fe:d3:80:5e:80: 30:9b:68:66:97:8e:03:3b:a0:d6:0c:fe:3d:cb:14: a6:a8:bb:b6:be:5c:6c:27:54:fc:bf:62:0f:09:cd: 63:6e:cb:18:40:58:fe:c3:f9:18:b3:bd:6b:43:f2: 21:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:53:34:EF:06:77:B9:FD:33:0D:79:49:F7:08:7B:FA:3A:D0:44:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4108cfaf-4936-4898-9eba-c92a93e016e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.188.0/24 Signature Algorithm: sha256WithRSAEncryption 07:90:30:85:b8:37:6d:a7:42:1f:62:ed:ab:01:26:48:db:23: f9:44:77:b2:b3:72:a5:d1:57:5e:d6:b5:fd:ac:ec:e1:47:e3: 13:a4:df:cc:b7:fc:09:10:2f:e3:60:8f:c8:de:9a:5a:e4:3d: 5c:ec:4f:87:c7:e3:19:74:fb:42:d9:33:56:fc:a8:93:f6:c0: 97:30:2d:2c:c5:80:4a:bd:cb:60:23:35:a6:48:e0:43:5c:dd: 17:ca:44:0e:b5:9e:a2:56:66:5c:cd:60:8d:ff:8f:bf:d5:45: 24:1d:aa:bd:ab:9e:c8:bf:05:a6:64:45:20:ad:9d:ca:b1:58: 9f:ed:2a:f6:9c:e7:15:0e:a7:ab:49:cc:ec:b2:23:9e:26:5b: ad:4f:80:b0:6a:10:42:d6:c3:86:2a:dc:ee:53:e5:43:69:6d: 84:6a:6e:2c:7e:8e:92:00:fa:c5:05:b9:59:f1:6d:70:8e:e2: b8:2c:86:e8:73:5a:17:7d:17:de:79:94:42:d6:83:85:a8:73: 49:83:ad:91:6b:73:17:8f:9c:a2:37:7a:cd:e2:bb:18:42:df: 66:79:cd:86:b0:49:68:8a:f0:59:a2:f7:e0:cd:47:b5:34:60: 33:0d:82:d2:fd:23:b8:8a:35:61:37:65:8e:23:cd:30:86:1f: f0:90:43:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZQbGCDlMWsOIAT7kbr+s34GjUjEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTUwMDIyWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjMwNjVhMTE3NzhmNGNhMThhNWMzNmFiM2VjZTE3NjRk NjVjYWE3MDAwYzEzNjc1MGU0NjQyN2QxOGU2MTQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDvJct3UDKV7pRq6cf8yTdRxFQwoo+c5BzMrw2+KqBxkX2Y ISOMVQfIwTfJfxDx2f0QAQ6w+/em21YhnEjB0lNi5wys/dKTUyTxH+clcAYH/uSq GoqRfZmT1ILSHBfr89dIBNXnPVo8nyLt9rULP84p7eNBgStGZaTsAtOVFEwRL++C OAEs2faqhNEfkG1/P1SK8V/m7ZFqxINcIkbws+UmIj0R36QwrEMI0JDfyTKi7aYW DxkWqOdLYNIhmjcFDUQAkY1Jy4HYcvG4Icn+04BegDCbaGaXjgM7oNYM/j3LFKao u7a+XGwnVPy/Yg8JzWNuyxhAWP7D+RizvWtD8iFVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgFM07wZ3uf0zDXlJ9wh7+jrQRNIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQxMDhjZmFmLTQ5MzYtNDg5OC05ZWJhLWM5MmE5M2UwMTZlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAByOLwwDQYJKoZIhvcNAQELBQADggEBAAeQMIW4N22nQh9i7asBJkjbI/lE d7KzcqXRV17Wtf2s7OFH4xOk38y3/AkQL+Ngj8jemlrkPVzsT4fH4xl0+0LZM1b8 qJP2wJcwLSzFgEq9y2AjNaZI4ENc3RfKRA61nqJWZlzNYI3/j7/VRSQdqr2rnsi/ BaZkRSCtncqxWJ/tKvac5xUOp6tJzOyyI54mW61PgLBqEELWw4Yq3O5T5UNpbYRq bix+jpIA+sUFuVnxbXCO4rgshuhzWhd9F955lELWg4Woc0mDrZFrcxePnKI3es3i uxhC32Z5zYawSWiK8Fmi9+DNR7U0YDMNgtL9I7iKNWE3ZY4jzTCGH/CQQ7A= -----END CERTIFICATE-----Generated at Thu Jul 31 01:16:19 2025 by rpki-client