$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30562a60-1701-4170-b8a8-701d0efcb738.roa File: 30562a60-1701-4170-b8a8-701d0efcb738.roa (raw, json) Hash identifier: 4UlcixZGk7bPoXo0Q1ewRlzonO79fRwV23RivTcgX04= Subject key identifier: 78:3D:E3:EF:4B:31:2B:1E:0B:85:11:1B:E9:26:04:03:FA:A5:64:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4199DE631D761E8A2848DFD83F7BC04A01ED4A55 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30562a60-1701-4170-b8a8-701d0efcb738.roa Signing time: Wed 06 Aug 2025 00:21:11 +0000 ROA not before: Wed 06 Aug 2025 00:21:11 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.80.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:99:de:63:1d:76:1e:8a:28:48:df:d8:3f:7b:c0:4a:01:ed:4a:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 00:21:11 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=f49224699fc269b2afed47f285f716addbe4c18b2869adba09b2be998469f4e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f0:a3:cf:64:6b:d0:3b:db:e2:ba:b2:ab:d8: ff:8c:00:75:2a:15:24:d1:40:47:24:39:eb:2a:82: 20:8e:90:b1:e3:80:74:a7:c7:bd:46:9a:c8:1c:8b: bf:39:87:6d:94:c9:45:6b:bf:cd:c0:de:e2:9c:06: 23:4e:e8:f7:25:9e:60:b7:88:d5:42:8d:97:d8:af: 68:a4:24:12:d6:a3:00:66:5e:60:58:14:15:76:4a: 57:f4:72:88:6a:6b:e4:72:07:ea:5f:20:ad:75:5f: 17:8a:0c:0e:a2:ad:58:e6:00:6c:7e:37:24:e2:e5: 41:ef:59:37:de:a8:09:25:e2:c9:e9:90:f1:8d:34: d9:21:32:d1:09:33:3e:63:7f:db:e6:21:0f:5d:5e: d3:21:03:b0:0f:4f:6c:01:11:e4:7f:1c:ed:45:b3: 41:0f:85:d2:7c:53:6f:83:9e:92:92:92:af:b9:59: 0c:71:97:ac:f3:80:32:5e:4f:81:9b:ad:36:fe:6c: 7a:2a:e2:57:22:0a:52:bc:f3:11:a4:2c:a6:46:77: fa:d8:b9:07:96:02:b5:c3:81:da:a9:85:e4:5e:a9: 5b:6b:2f:82:a7:eb:9d:00:83:34:a4:ff:85:b5:95: 1e:ed:64:e3:37:ce:c7:e0:52:74:84:dc:38:13:c1: cd:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:3D:E3:EF:4B:31:2B:1E:0B:85:11:1B:E9:26:04:03:FA:A5:64:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30562a60-1701-4170-b8a8-701d0efcb738.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.80.164.0/24 Signature Algorithm: sha256WithRSAEncryption ba:9f:7c:d7:56:c2:b3:4b:03:37:a9:23:1e:9a:4d:ae:b2:9b: 3a:fc:45:bc:3a:e6:51:31:47:0b:b8:00:83:7f:25:b0:bc:44: 5f:da:c1:da:a2:ef:40:93:23:6d:97:e3:4a:f2:57:b6:f4:77: 1a:27:6b:89:1b:2d:e3:3b:ff:8e:d7:df:be:4d:15:dd:d6:bf: b9:b1:c8:c9:87:ff:63:ac:c6:b4:8c:0a:11:63:5c:db:c6:30: 2f:26:6f:ea:c6:a7:1b:38:ae:c4:6a:b3:93:5f:3f:6c:3c:68: 72:f2:31:69:3c:de:aa:ec:d7:2a:fc:15:43:d8:7a:1b:72:5d: b7:12:1f:14:74:44:6d:fb:1e:3e:ba:f8:58:1c:76:df:2d:79: e1:81:27:4a:14:8b:da:bd:f4:a9:05:aa:68:f6:c1:5a:58:9c: eb:8b:fc:68:9b:28:28:59:fe:14:a0:46:b9:5a:3d:56:1d:fc: 59:55:f2:a4:47:88:38:c1:10:24:16:cc:15:87:ac:dc:bf:7b: 8f:67:42:8e:4a:87:e7:55:92:6c:83:7d:8b:a8:2a:ee:b9:84: 24:c3:cb:0e:4f:b7:1e:e3:a9:02:7a:65:e7:3f:43:40:a9:2c: ec:00:8b:cc:d1:03:d4:d1:ba:25:aa:ad:e4:01:45:52:bb:e6: e4:34:6e:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQZneYx12HoooSN/YP3vASgHtSlUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDAyMTExWhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDkyMjQ2OTlmYzI2OWIyYWZlZDQ3ZjI4NWY3MTZhZGRi ZTRjMThiMjg2OWFkYmEwOWIyYmU5OTg0NjlmNGU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB8KPPZGvQO9viurKr2P+MAHUqFSTRQEckOesqgiCOkLHj gHSnx71Gmsgci785h22UyUVrv83A3uKcBiNO6PclnmC3iNVCjZfYr2ikJBLWowBm XmBYFBV2Slf0cohqa+RyB+pfIK11XxeKDA6irVjmAGx+NyTi5UHvWTfeqAkl4snp kPGNNNkhMtEJMz5jf9vmIQ9dXtMhA7APT2wBEeR/HO1Fs0EPhdJ8U2+DnpKSkq+5 WQxxl6zzgDJeT4GbrTb+bHoq4lciClK88xGkLKZGd/rYuQeWArXDgdqpheReqVtr L4Kn650AgzSk/4W1lR7tZOM3zsfgUnSE3DgTwc3pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeD3j70sxKx4LhREb6SYEA/qlZOMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMwNTYyYTYwLTE3MDEtNDE3MC1iOGE4LTcwMWQwZWZjYjczOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADKUKQwDQYJKoZIhvcNAQELBQADggEBALqffNdWwrNLAzepIx6aTa6ymzr8 Rbw65lExRwu4AIN/JbC8RF/awdqi70CTI22X40ryV7b0dxona4kbLeM7/47X375N Fd3Wv7mxyMmH/2OsxrSMChFjXNvGMC8mb+rGpxs4rsRqs5NfP2w8aHLyMWk83qrs 1yr8FUPYehtyXbcSHxR0RG37Hj66+Fgcdt8teeGBJ0oUi9q99KkFqmj2wVpYnOuL /GibKChZ/hSgRrlaPVYd/FlV8qRHiDjBECQWzBWHrNy/e49nQo5Kh+dVkmyDfYuo Ku65hCTDyw5Ptx7jqQJ6Zec/Q0CpLOwAi8zRA9TRuiWqreQBRVK75uQ0bqE= -----END CERTIFICATE-----Generated at Fri Aug 8 19:40:39 2025 by rpki-client