$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ddc4285d-fde3-43f9-bd22-fa6001b81365.roa File: ddc4285d-fde3-43f9-bd22-fa6001b81365.roa (raw, json) Hash identifier: WMJ+k0FUuUv0f/SufpnV3aglVsRiVx3IvqOiFmY92Bw= Subject key identifier: F6:85:F7:DD:E8:82:51:A5:38:A9:B8:BC:94:06:49:A8:83:C9:75:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 623E689B7C317EA94165F2DB0C4A4F631430E8A6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ddc4285d-fde3-43f9-bd22-fa6001b81365.roa Signing time: Tue 12 Aug 2025 00:01:05 +0000 ROA not before: Tue 12 Aug 2025 00:01:05 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:3e:68:9b:7c:31:7e:a9:41:65:f2:db:0c:4a:4f:63:14:30:e8:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:01:05 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=72fb3640a8cbf057a70153a461b5b56474e958b77b897a090dcb1fed5dd09156, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:48:27:87:c6:d7:54:c4:74:87:ee:33:38:5c: 6f:dc:fe:6e:1c:31:1d:e6:59:b2:f1:03:e2:00:65: a2:cd:2e:05:d2:ba:1f:ce:7c:98:5d:cd:4b:2d:89: 91:b6:53:7a:6c:7c:5d:b7:2d:b6:a2:74:f8:56:23: b5:64:9a:02:3b:ca:67:57:21:57:c1:d8:bb:ee:40: 76:03:78:c8:ab:57:7a:9e:bd:a3:72:61:13:ed:e3: 69:40:d1:f5:72:6c:d8:c4:6d:14:83:96:bb:17:aa: ae:16:1c:c3:0c:53:9f:62:b1:b8:5b:33:06:f8:ad: ce:e1:19:c1:5f:81:81:b5:cf:02:a9:dd:80:33:9c: 65:3f:aa:1a:8a:68:38:0d:75:2e:8e:0f:a1:8a:b5: c3:3d:e2:1d:b8:7c:ef:b6:e9:27:04:ac:e6:13:89: 8e:bb:dd:a3:2b:1b:5a:56:78:22:7f:e9:e5:d0:26: 5e:4b:18:03:58:11:7c:c5:d4:51:b7:e0:3e:ff:f3: 31:ab:1f:df:b2:d0:8c:c4:99:df:28:aa:14:1a:45: 5b:59:72:af:8a:86:07:4b:6f:80:1f:89:ab:b5:1c: f5:ca:9c:af:8f:bd:66:1e:1b:6b:de:c7:37:f1:fc: 5e:f3:1c:1e:03:65:86:63:3a:fb:04:38:ce:7c:f7: 73:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:85:F7:DD:E8:82:51:A5:38:A9:B8:BC:94:06:49:A8:83:C9:75:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ddc4285d-fde3-43f9-bd22-fa6001b81365.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.225.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:e8:64:10:f7:c5:64:88:b4:0e:e5:95:e3:74:ec:0b:75:ca: 6a:7a:33:1a:32:24:d3:0b:4e:4a:dd:bd:c7:4b:5f:13:5d:f7: 2e:7c:98:7e:82:a9:6e:5f:54:d0:b9:a6:53:9a:e4:79:39:b3: 7e:b3:03:88:a1:9a:9d:b6:7d:15:d8:00:5f:cf:ed:86:2b:ed: dd:77:86:89:19:e0:f6:d6:4f:8a:b2:0f:0c:9d:79:73:2c:45: 79:af:cf:11:51:c6:45:82:23:1b:19:79:85:ca:a5:4f:ac:4f: 7c:42:e3:76:1c:c7:93:75:1c:78:f3:75:4a:65:62:c1:87:5d: 7c:fd:77:20:b8:7a:88:45:d6:67:d3:e7:99:1c:e4:91:57:c1: 4b:e9:3b:d6:9b:70:61:32:67:1b:8a:f1:7a:bf:42:41:80:f9: a7:91:b7:fc:36:c4:32:4c:83:47:a1:7f:4f:a5:52:1c:b6:81: 38:93:72:fd:d7:66:06:ba:a3:39:b3:02:c2:fb:13:d3:c2:2c: 06:97:f4:47:48:bd:b4:cd:a4:2b:aa:10:2d:2e:35:15:ab:38: 8c:1a:91:e0:9a:f0:3d:1d:f5:a7:41:ff:69:61:83:f9:0b:d1: 3f:1c:84:87:30:6b:d0:f8:35:28:61:de:9b:5c:46:83:93:26: f7:28:23:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYj5om3wxfqlBZfLbDEpPYxQw6KYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAwMTA1WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MmZiMzY0MGE4Y2JmMDU3YTcwMTUzYTQ2MWI1YjU2NDc0 ZTk1OGI3N2I4OTdhMDkwZGNiMWZlZDVkZDA5MTU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNSCeHxtdUxHSH7jM4XG/c/m4cMR3mWbLxA+IAZaLNLgXS uh/OfJhdzUstiZG2U3psfF23LbaidPhWI7VkmgI7ymdXIVfB2LvuQHYDeMirV3qe vaNyYRPt42lA0fVybNjEbRSDlrsXqq4WHMMMU59isbhbMwb4rc7hGcFfgYG1zwKp 3YAznGU/qhqKaDgNdS6OD6GKtcM94h24fO+26ScErOYTiY673aMrG1pWeCJ/6eXQ Jl5LGANYEXzF1FG34D7/8zGrH9+y0IzEmd8oqhQaRVtZcq+KhgdLb4Afiau1HPXK nK+PvWYeG2vexzfx/F7zHB4DZYZjOvsEOM5893MTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9oX33eiCUaU4qbi8lAZJqIPJdSIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RkYzQyODVkLWZkZTMtNDNmOS1iZDIyLWZhNjAwMWI4MTM2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAByOOEwDQYJKoZIhvcNAQELBQADggEBAB3oZBD3xWSItA7lleN07At1ymp6 MxoyJNMLTkrdvcdLXxNd9y58mH6CqW5fVNC5plOa5Hk5s36zA4ihmp22fRXYAF/P 7YYr7d13hokZ4PbWT4qyDwydeXMsRXmvzxFRxkWCIxsZeYXKpU+sT3xC43Ycx5N1 HHjzdUplYsGHXXz9dyC4eohF1mfT55kc5JFXwUvpO9abcGEyZxuK8Xq/QkGA+aeR t/w2xDJMg0ehf0+lUhy2gTiTcv3XZga6ozmzAsL7E9PCLAaX9EdIvbTNpCuqEC0u NRWrOIwakeCa8D0d9adB/2lhg/kL0T8chIcwa9D4NShh3ptcRoOTJvcoI3c= -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:18 2025 by rpki-client