$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a9fa3ad-ae62-4466-8860-3cdc913187d8.roa File: 4a9fa3ad-ae62-4466-8860-3cdc913187d8.roa (raw, json) Hash identifier: rfQaLFg1245YVmRG+o/keRWzR5vLBiMwomLj/laOasA= Subject key identifier: 99:00:E4:96:23:72:34:A5:59:1E:56:3C:A7:E2:8D:42:14:14:04:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2065B6F24522AFE5CDC98FCAF7A1FC9D25F1D5DE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a9fa3ad-ae62-4466-8860-3cdc913187d8.roa Signing time: Sat 14 Jun 2025 00:20:17 +0000 ROA not before: Sat 14 Jun 2025 00:20:17 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.239.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:65:b6:f2:45:22:af:e5:cd:c9:8f:ca:f7:a1:fc:9d:25:f1:d5:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:20:17 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=50564f545cd9ada9ca21e2f64b3e1d5355f895d5940ab4065a945911b26267d2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:67:32:f8:74:72:bd:1b:08:61:26:1c:10:b4: 31:b3:8e:ce:c7:80:8b:41:b8:82:a3:b7:78:cb:14: 1c:28:24:d1:e6:9e:5d:8f:30:ed:f2:da:5b:5f:51: 14:3e:59:7f:f9:f6:c4:fe:8b:19:d8:ce:22:ed:e1: 52:f1:ec:0f:b6:40:2c:ca:b0:69:89:dc:90:d6:b0: 9e:54:c5:8a:81:e8:4e:01:7b:27:a5:84:ce:82:08: 03:2b:d3:c6:a3:74:53:0d:78:5e:53:b8:db:29:cc: e2:d4:5c:3f:05:6a:0f:53:32:4a:f3:4a:9c:dd:a2: 71:ab:f1:41:59:15:79:53:a8:33:51:d7:03:5c:be: 0b:f2:18:f7:1f:d5:82:81:d5:43:c1:24:ec:3d:c0: 39:f1:80:68:33:ff:2d:1a:86:85:c8:a5:32:73:7c: 00:af:e7:43:28:c7:35:f6:0f:ef:5a:a1:74:75:93: 58:fd:ef:85:32:fd:16:76:24:07:51:d0:bf:bb:5e: 91:f2:54:eb:f9:48:97:28:dd:a0:f8:69:f2:af:59: 21:8f:da:8d:89:a5:a8:34:bb:c5:45:64:48:3c:1e: e5:6f:16:20:b9:70:b7:76:c5:58:6c:54:07:9f:4b: 7b:82:ef:3d:70:5d:f1:6f:55:12:55:91:c2:aa:89: 0e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:00:E4:96:23:72:34:A5:59:1E:56:3C:A7:E2:8D:42:14:14:04:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a9fa3ad-ae62-4466-8860-3cdc913187d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.239.40.0/21 Signature Algorithm: sha256WithRSAEncryption b1:d4:9a:6d:f1:b1:95:df:0e:fc:22:06:d5:ea:4e:69:99:e2: d7:2c:d6:60:de:91:0a:2c:cb:84:c5:35:d9:a3:21:95:63:93: fd:a8:74:11:69:b2:f9:99:b0:62:d6:ce:3e:93:89:90:c7:17: d7:cc:21:9e:1a:ae:f6:05:df:12:a7:b3:61:d6:d6:f1:b5:64: e4:6f:0c:97:6b:a3:91:bd:01:0e:de:19:c5:36:5a:28:83:cd: 81:de:df:fd:84:91:4c:d3:3c:73:5e:e8:ed:9d:c1:90:fb:2d: af:41:8a:6c:6a:09:4e:22:f9:75:74:4b:ce:ef:06:f7:9f:e6: 20:c0:78:dd:0f:9e:9e:c6:01:4f:25:f2:9e:12:e8:03:bb:74: 45:06:cb:b7:27:58:a2:c2:af:d1:40:58:24:4a:79:1c:01:8a: 05:21:43:8e:27:d0:f6:5d:94:86:50:92:ce:6c:61:26:e8:a0: 02:5b:01:ca:0d:6b:9b:bc:c2:38:44:37:dc:92:4d:c7:04:c0: 9f:ff:7c:b4:ab:43:c2:7e:2b:c2:60:a6:a5:13:f2:82:cc:eb: 1b:d3:49:ab:90:0b:27:24:70:ec:f1:4b:60:5a:7e:96:fa:06: 6d:d1:32:e5:27:1f:75:8f:6c:37:7e:ed:5f:28:5b:be:63:0d: 36:56:20:52 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIGW28kUir+XNyY/K96H8nSXx1d4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDAyMDE3WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MDU2NGY1NDVjZDlhZGE5Y2EyMWUyZjY0YjNlMWQ1MzU1 Zjg5NWQ1OTQwYWI0MDY1YTk0NTkxMWIyNjI2N2QyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD8ZzL4dHK9GwhhJhwQtDGzjs7HgItBuIKjt3jLFBwoJNHm nl2PMO3y2ltfURQ+WX/59sT+ixnYziLt4VLx7A+2QCzKsGmJ3JDWsJ5UxYqB6E4B eyelhM6CCAMr08ajdFMNeF5TuNspzOLUXD8Fag9TMkrzSpzdonGr8UFZFXlTqDNR 1wNcvgvyGPcf1YKB1UPBJOw9wDnxgGgz/y0ahoXIpTJzfACv50MoxzX2D+9aoXR1 k1j974Uy/RZ2JAdR0L+7XpHyVOv5SJco3aD4afKvWSGP2o2Jpag0u8VFZEg8HuVv FiC5cLd2xVhsVAefS3uC7z1wXfFvVRJVkcKqiQ79AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmQDkliNyNKVZHlY8p+KNQhQUBLgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhOWZhM2FkLWFlNjItNDQ2Ni04ODYwLTNjZGM5MTMxODdkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANu7ygwDQYJKoZIhvcNAQELBQADggEBALHUmm3xsZXfDvwiBtXqTmmZ4tcs 1mDekQosy4TFNdmjIZVjk/2odBFpsvmZsGLWzj6TiZDHF9fMIZ4arvYF3xKns2HW 1vG1ZORvDJdro5G9AQ7eGcU2WiiDzYHe3/2EkUzTPHNe6O2dwZD7La9BimxqCU4i +XV0S87vBvef5iDAeN0Pnp7GAU8l8p4S6AO7dEUGy7cnWKLCr9FAWCRKeRwBigUh Q44n0PZdlIZQks5sYSbooAJbAcoNa5u8wjhEN9ySTccEwJ//fLSrQ8J+K8JgpqUT 8oLM6xvTSauQCyckcOzxS2Bafpb6Bm3RMuUnH3WPbDd+7V8oW75jDTZWIFI= -----END CERTIFICATE-----Generated at Sun Jun 15 09:41:44 2025 by rpki-client