$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa File: 554f8288-8564-4a8f-a0ee-ed5fa324e824.roa (raw, json) Hash identifier: gRHWlgaZTDlY8WZTUysHU0VFUXSaNz1haa0yfuuwlvI= Subject key identifier: D1:7A:D2:5D:D4:11:6C:BE:43:58:33:F1:0C:0A:23:D1:47:62:57:A8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2261EA8EB568FEA13C2F93F902B019790A239EB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa Signing time: Fri 29 Aug 2025 00:10:58 +0000 ROA not before: Fri 29 Aug 2025 00:10:58 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 123.200.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:61:ea:8e:b5:68:fe:a1:3c:2f:93:f9:02:b0:19:79:0a:23:9e:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:10:58 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=3a7a3d94cc351a104bfb3b7f5e79a6f469d7db75bec3ace72429b72850f78b49, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ca:47:5a:ce:27:83:37:a5:b4:3f:f3:32:fb: 5b:7e:92:8a:4e:1c:a7:0b:98:26:7c:3a:57:56:11: 3c:3c:bc:80:e7:75:96:5a:62:9c:5a:3e:fd:93:75: 9e:84:22:c3:7c:2d:b9:2e:23:78:9e:29:27:29:4e: 5a:48:2e:3a:ee:7f:58:f0:c4:61:89:22:07:98:23: 5b:d7:aa:46:32:62:de:e0:25:18:cc:85:2a:70:d8: e8:97:8c:a2:4b:18:f9:db:df:82:36:65:e0:f1:5f: 72:64:91:1f:ef:d7:bc:7f:ed:f5:cc:38:89:bb:4e: 9f:6e:af:99:e4:17:d5:48:59:16:ab:fa:a2:e2:f3: eb:62:44:0b:89:d9:c6:9d:6b:9d:87:36:69:e2:ee: c4:bc:fa:a2:d3:36:ef:be:64:fb:3b:7a:3b:34:07: 70:51:0a:e1:da:df:26:5d:d2:cd:84:6d:73:e5:79: 35:c6:e8:d5:20:98:d2:55:a9:b6:40:cd:ca:3d:b1: cf:c3:d8:5c:e1:11:49:34:ce:39:ff:ee:be:ef:88: b8:c9:f3:d5:dc:ef:3e:45:48:7b:c4:82:77:d4:7f: 83:8e:5c:b1:cc:35:39:40:91:3c:e5:79:21:47:b2: ff:73:79:e3:38:0a:59:a6:a7:9d:fc:3b:99:a6:11: a5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:7A:D2:5D:D4:11:6C:BE:43:58:33:F1:0C:0A:23:D1:47:62:57:A8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.200.202.0/23 Signature Algorithm: sha256WithRSAEncryption b5:1a:f7:f7:58:91:69:21:a6:66:1b:29:1b:b4:76:77:20:72: a1:1b:f9:89:33:cf:42:9c:14:68:04:08:5c:92:28:7b:63:3a: a2:a5:9b:cd:06:7d:be:0b:5b:80:17:03:77:2f:1f:d4:26:4e: f1:b6:33:17:c1:40:22:9b:d9:0d:34:da:4b:98:12:06:5b:71: e8:d9:f0:01:83:e6:be:b5:13:eb:e0:40:f4:a9:e7:46:f8:34: 00:c0:a7:dd:d6:f1:d8:d4:c4:48:20:13:b7:32:35:e9:19:31: c5:76:dc:2a:af:a0:ec:44:96:4b:b9:ec:be:75:11:24:43:03: a8:c5:01:bd:24:1f:4d:c6:d5:6a:5c:8e:f3:d0:1c:98:38:10: 85:e8:1a:3d:ee:10:40:9e:9f:e0:05:96:1b:81:08:b3:43:d4: 9b:54:0b:bf:ec:d3:95:c2:13:96:80:60:1d:d9:fe:ba:56:24: d1:f0:58:b0:32:bc:ce:7a:18:31:f6:2f:b5:a8:37:d7:f7:0e: ea:f6:5a:e2:c7:30:2d:cb:09:63:00:a0:ff:27:5d:59:66:d3: e3:a3:e9:ff:75:30:97:d5:98:33:97:8a:33:36:e9:3a:42:1b: bb:99:f5:c8:e7:d2:c6:b8:ee:3c:5b:5b:e1:1b:b1:14:6e:01: b5:74:83:1f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUImHqjrVo/qE8L5P5ArAZeQojnrYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MDAxMDU4WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTdhM2Q5NGNjMzUxYTEwNGJmYjNiN2Y1ZTc5YTZmNDY5 ZDdkYjc1YmVjM2FjZTcyNDI5YjcyODUwZjc4YjQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOykdazieDN6W0P/My+1t+kopOHKcLmCZ8OldWETw8vIDn dZZaYpxaPv2TdZ6EIsN8LbkuI3ieKScpTlpILjruf1jwxGGJIgeYI1vXqkYyYt7g JRjMhSpw2OiXjKJLGPnb34I2ZeDxX3JkkR/v17x/7fXMOIm7Tp9ur5nkF9VIWRar +qLi8+tiRAuJ2cada52HNmni7sS8+qLTNu++ZPs7ejs0B3BRCuHa3yZd0s2EbXPl eTXG6NUgmNJVqbZAzco9sc/D2FzhEUk0zjn/7r7viLjJ89Xc7z5FSHvEgnfUf4OO XLHMNTlAkTzleSFHsv9zeeM4Clmmp538O5mmEaUvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0XrSXdQRbL5DWDPxDAoj0UdiV6gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1NGY4Mjg4LTg1NjQtNGE4Zi1hMGVlLWVkNWZhMzI0ZTgyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAF7yMowDQYJKoZIhvcNAQELBQADggEBALUa9/dYkWkhpmYbKRu0dncgcqEb +Ykzz0KcFGgECFySKHtjOqKlm80Gfb4LW4AXA3cvH9QmTvG2MxfBQCKb2Q002kuY EgZbcejZ8AGD5r61E+vgQPSp50b4NADAp93W8djUxEggE7cyNekZMcV23CqvoOxE lku57L51ESRDA6jFAb0kH03G1WpcjvPQHJg4EIXoGj3uEECen+AFlhuBCLND1JtU C7/s05XCE5aAYB3Z/rpWJNHwWLAyvM56GDH2L7WoN9f3Dur2WuLHMC3LCWMAoP8n XVlm0+Oj6f91MJfVmDOXijM26TpCG7uZ9cjn0sa47jxbW+EbsRRuAbV0gx8= -----END CERTIFICATE-----Generated at Sat Sep 6 14:09:02 2025 by rpki-client