$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d401cf92-6d56-4309-80f7-397ad3dbd150.roa File: d401cf92-6d56-4309-80f7-397ad3dbd150.roa (raw, json) Hash identifier: 1FGss+ePABox58+QW2QceJppHzTP/V8HXWRW4edoGts= Subject key identifier: 63:A5:E9:AA:BD:68:5F:78:35:AA:95:7B:06:3A:C7:52:8F:75:B8:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0257E7DF803833C503BACA1D6FFCC143586799C6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d401cf92-6d56-4309-80f7-397ad3dbd150.roa Signing time: Wed 23 Jul 2025 00:00:17 +0000 ROA not before: Wed 23 Jul 2025 00:00:17 +0000 ROA not after: Wed 27 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.238.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 01 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:57:e7:df:80:38:33:c5:03:ba:ca:1d:6f:fc:c1:43:58:67:99:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 23 00:00:17 2025 GMT Not After : Aug 27 23:59:59 2025 GMT Subject: serialNumber=019ae22ffdcde07bb20f7078579b9a44f30421016db5859bf9a30b3365c72da7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f9:da:5f:86:5c:54:c6:24:d9:67:7b:9e:2e: a5:9d:b9:1e:d1:b1:f0:23:1a:42:a6:43:05:89:69: 93:66:fd:eb:a8:f8:89:e2:50:f5:9c:ab:52:24:f2: 34:7b:55:1b:f4:a4:12:2c:1a:7f:2d:f9:6a:3b:2e: 8f:45:ee:8d:3b:7b:4c:9e:c6:8e:5a:d7:19:e3:6c: a6:6d:59:da:da:7b:ba:41:17:3e:41:ef:14:b6:f4: 54:87:43:7a:ad:4d:5d:59:b9:e1:d9:e9:53:8a:9d: 9a:53:bd:42:82:4e:65:9e:5f:ec:2d:90:5b:d7:86: d9:68:6e:55:02:86:0e:66:10:8d:93:57:7e:53:ba: e8:40:b6:bb:4b:5a:dd:b3:a8:0e:50:11:a8:67:76: f0:2b:3c:c8:c1:ce:46:0f:dc:2f:f1:67:4e:92:9f: 1f:e3:36:b6:18:5b:47:4e:68:1d:f0:56:c9:ab:52: f2:84:b3:ea:dc:9a:18:d1:45:8e:13:8d:7d:6a:d2: ed:bf:3f:6a:de:73:6c:b2:9c:b3:e0:0e:ba:d2:76: b3:54:9b:69:30:00:2f:6c:71:5f:09:c4:32:78:c5: f3:fa:21:da:c3:72:b4:34:84:17:4c:5b:43:0a:ae: 09:77:a5:8f:f0:f6:3b:27:7d:d7:bb:8f:29:e4:13: fe:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A5:E9:AA:BD:68:5F:78:35:AA:95:7B:06:3A:C7:52:8F:75:B8:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d401cf92-6d56-4309-80f7-397ad3dbd150.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.238.2.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:1c:3f:a9:af:36:da:e0:41:84:3a:12:cf:e3:3c:ff:e9:2b: 16:b3:29:34:33:ef:41:56:c9:0b:54:5d:c6:54:46:31:05:e5: 2c:bf:3f:a1:1d:9d:8e:48:60:f5:62:62:05:82:7d:6a:ea:b5: 17:2f:73:07:7b:8b:73:23:70:cd:2b:42:65:6e:5b:ca:aa:46: cc:c4:dd:cf:a6:46:0b:e8:74:e0:db:8f:e3:c8:d1:4e:3b:19: 75:b0:f9:a1:95:7b:a4:2f:31:d4:b8:20:64:4a:7b:66:81:1f: 06:8c:8e:25:11:cb:68:0b:f3:3d:02:36:5d:83:f6:a0:66:68: 36:72:09:26:9d:4a:08:fe:0e:3f:86:40:d1:04:f3:c1:79:ea: 9a:fd:16:de:81:d6:4a:6b:7a:97:71:7c:b3:8f:b4:81:a4:b6: 97:b1:91:f5:44:6c:16:24:fe:55:06:ff:ea:26:e4:5b:88:0c: c2:f1:00:99:46:2e:3e:67:bd:eb:57:72:90:85:68:19:ea:e2: f7:b6:b5:c5:24:fd:5a:63:6a:3d:ab:06:35:eb:dd:cb:e9:09: ba:74:95:bc:5a:be:e1:a4:f6:66:08:22:9b:57:0c:2f:0c:ff: c0:b2:f5:8f:0d:81:7d:5e:9e:14:04:b3:ad:38:23:9d:c0:ff: 2e:e6:b9:a6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAlfn34A4M8UDusodb/zBQ1hnmcYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIzMDAwMDE3WhcNMjUwODI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTlhZTIyZmZkY2RlMDdiYjIwZjcwNzg1NzliOWE0NGYz MDQyMTAxNmRiNTg1OWJmOWEzMGIzMzY1YzcyZGE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx+dpfhlxUxiTZZ3ueLqWduR7RsfAjGkKmQwWJaZNm/euo +IniUPWcq1Ik8jR7VRv0pBIsGn8t+Wo7Lo9F7o07e0yexo5a1xnjbKZtWdrae7pB Fz5B7xS29FSHQ3qtTV1ZueHZ6VOKnZpTvUKCTmWeX+wtkFvXhtloblUChg5mEI2T V35TuuhAtrtLWt2zqA5QEahndvArPMjBzkYP3C/xZ06Snx/jNrYYW0dOaB3wVsmr UvKEs+rcmhjRRY4TjX1q0u2/P2rec2yynLPgDrrSdrNUm2kwAC9scV8JxDJ4xfP6 IdrDcrQ0hBdMW0MKrgl3pY/w9jsnfde7jynkE/5VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUY6Xpqr1oX3g1qpV7BjrHUo91uC8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0MDFjZjkyLTZkNTYtNDMwOS04MGY3LTM5N2FkM2RiZDE1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFu7gIwDQYJKoZIhvcNAQELBQADggEBABscP6mvNtrgQYQ6Es/jPP/pKxaz KTQz70FWyQtUXcZURjEF5Sy/P6EdnY5IYPViYgWCfWrqtRcvcwd7i3MjcM0rQmVu W8qqRszE3c+mRgvodODbj+PI0U47GXWw+aGVe6QvMdS4IGRKe2aBHwaMjiURy2gL 8z0CNl2D9qBmaDZyCSadSgj+Dj+GQNEE88F56pr9Ft6B1kprepdxfLOPtIGktpex kfVEbBYk/lUG/+om5FuIDMLxAJlGLj5nvetXcpCFaBnq4ve2tcUk/Vpjaj2rBjXr 3cvpCbp0lbxavuGk9mYIIptXDC8M/8Cy9Y8NgX1enhQEs604I53A/y7muaY= -----END CERTIFICATE-----Generated at Thu Jul 31 01:22:50 2025 by rpki-client