$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2e8cc38-d7d8-41cd-b83a-124c755cfd53.roa File: b2e8cc38-d7d8-41cd-b83a-124c755cfd53.roa (raw, json) Hash identifier: j17v3BpHyZVRv6k8RaUL7o78p0H8f6kzmUt7t/9CdkA= Subject key identifier: D3:3C:6C:8E:C8:32:31:89:14:E4:25:7D:CC:4F:AA:F4:AC:FE:0A:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21C0B450631E2D09732CB2737C540CC5B44FF782 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2e8cc38-d7d8-41cd-b83a-124c755cfd53.roa Signing time: Tue 26 Aug 2025 15:01:32 +0000 ROA not before: Tue 26 Aug 2025 15:01:32 +0000 ROA not after: Tue 30 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 121.91.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:c0:b4:50:63:1e:2d:09:73:2c:b2:73:7c:54:0c:c5:b4:4f:f7:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 26 15:01:32 2025 GMT Not After : Sep 30 23:59:59 2025 GMT Subject: serialNumber=17fb35fe36e5ac212cdf0e79df1bbd8c58de324071bab942b31a7d5abf8b4029, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c5:ee:2f:91:ed:4f:13:89:40:b8:ae:9b:0d: ef:7d:29:3f:34:31:a8:0f:2f:8b:12:18:d2:21:5a: c3:80:8c:4a:e6:b9:e2:48:db:f2:9b:27:bd:d2:29: c8:d4:03:f7:14:98:38:ba:99:6c:31:34:5a:be:94: fd:39:c2:7f:c8:05:ae:d2:57:eb:66:2e:61:01:6f: 66:ed:54:d4:e8:da:2f:0c:f3:49:e9:3b:ce:23:ec: ca:56:15:23:a2:4a:ee:28:d7:e7:d3:2d:a6:d6:e0: ab:b4:43:51:ac:5c:ad:be:e4:dc:2d:cf:c0:b7:4a: 4c:06:03:a3:ca:bc:e3:26:9a:05:6e:d4:d4:1c:bc: 56:ea:cb:0e:c9:78:d8:68:a9:ec:40:6d:ad:4e:cb: 3a:5c:cd:85:2b:7a:4f:ac:b6:52:79:99:4b:9f:20: 68:65:6c:54:2c:94:5b:14:d9:79:e1:90:f2:34:b1: ca:58:29:21:b3:7b:52:d0:f5:fe:9d:dd:43:3f:e6: c8:4b:f0:98:3d:bf:cf:c9:ea:0a:f6:fe:1f:6f:08: a1:f6:26:d4:cf:f6:ba:46:2e:ce:89:38:bd:e9:9f: 86:44:f2:72:5b:18:01:89:34:17:5c:45:d1:1d:78: 61:68:44:6b:ed:3d:14:d4:c9:a0:34:08:9e:11:7f: ad:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3C:6C:8E:C8:32:31:89:14:E4:25:7D:CC:4F:AA:F4:AC:FE:0A:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2e8cc38-d7d8-41cd-b83a-124c755cfd53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.91.128.0/21 Signature Algorithm: sha256WithRSAEncryption 8b:99:5a:22:d7:7c:63:23:cc:0b:b8:12:b2:43:41:74:6d:da: d0:fd:f2:4c:14:1f:ce:80:72:0f:1b:96:7b:08:12:24:fa:d1: 6e:96:ba:67:55:db:5a:76:2c:88:52:d6:a8:f5:79:9e:ad:5c: 82:bc:6a:92:9d:80:ac:5d:21:e1:ea:9a:ed:6c:b9:52:9a:84: ad:94:cd:b6:e1:92:08:a0:dc:2e:a7:2f:39:c2:93:e0:15:8f: a3:bb:af:95:11:fc:e7:89:9e:55:b2:8e:7d:d4:10:18:3b:99: fa:e9:d3:43:b7:66:c2:bc:73:ac:36:f9:81:86:86:af:43:8a: 26:3d:13:64:d2:7e:e2:7c:65:fc:61:89:27:0b:ea:2c:1d:31: ca:07:8f:9f:54:c9:32:fe:df:dc:e4:63:81:ae:99:c2:ec:e4: 90:84:a9:bb:ab:e9:9c:59:6c:5c:7d:37:9a:54:09:ef:d6:77: b6:ee:7b:43:59:b1:3b:e4:eb:cc:e4:2a:c2:0f:1e:9e:c2:d1: 36:80:f3:02:e9:0d:45:9f:c2:b3:de:2b:a8:91:dc:ed:62:ac: 3b:87:36:3f:4c:d3:94:6a:c0:fd:40:37:a1:dc:47:b0:a1:34: 47:30:a0:5b:58:5b:b2:f1:8f:ef:a8:26:62:c1:ab:50:eb:3d: 02:50:f0:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIcC0UGMeLQlzLLJzfFQMxbRP94IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI2MTUwMTMyWhcNMjUwOTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2ZiMzVmZTM2ZTVhYzIxMmNkZjBlNzlkZjFiYmQ4YzU4 ZGUzMjQwNzFiYWI5NDJiMzFhN2Q1YWJmOGI0MDI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9xe4vke1PE4lAuK6bDe99KT80MagPL4sSGNIhWsOAjErm ueJI2/KbJ73SKcjUA/cUmDi6mWwxNFq+lP05wn/IBa7SV+tmLmEBb2btVNTo2i8M 80npO84j7MpWFSOiSu4o1+fTLabW4Ku0Q1GsXK2+5Nwtz8C3SkwGA6PKvOMmmgVu 1NQcvFbqyw7JeNhoqexAba1OyzpczYUrek+stlJ5mUufIGhlbFQslFsU2XnhkPI0 scpYKSGze1LQ9f6d3UM/5shL8Jg9v8/J6gr2/h9vCKH2JtTP9rpGLs6JOL3pn4ZE 8nJbGAGJNBdcRdEdeGFoRGvtPRTUyaA0CJ4Rf60dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0zxsjsgyMYkU5CV9zE+q9Kz+CuMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyZThjYzM4LWQ3ZDgtNDFjZC1iODNhLTEyNGM3NTVjZmQ1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAN5W4AwDQYJKoZIhvcNAQELBQADggEBAIuZWiLXfGMjzAu4ErJDQXRt2tD9 8kwUH86Acg8blnsIEiT60W6WumdV21p2LIhS1qj1eZ6tXIK8apKdgKxdIeHqmu1s uVKahK2Uzbbhkgig3C6nLznCk+AVj6O7r5UR/OeJnlWyjn3UEBg7mfrp00O3ZsK8 c6w2+YGGhq9DiiY9E2TSfuJ8ZfxhiScL6iwdMcoHj59UyTL+39zkY4GumcLs5JCE qbur6ZxZbFx9N5pUCe/Wd7bue0NZsTvk68zkKsIPHp7C0TaA8wLpDUWfwrPeK6iR 3O1irDuHNj9M05RqwP1AN6HcR7ChNEcwoFtYW7Lxj++oJmLBq1DrPQJQ8Mc= -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:48 2025 by rpki-client