$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa File: 554f8288-8564-4a8f-a0ee-ed5fa324e824.roa (raw, json) Hash identifier: Qq+O4K891kmWvC3Ji9Go5mQ0caJ4FJA6/krtWmRIoQ0= Subject key identifier: 65:7D:98:92:61:CB:35:FA:C5:49:A3:D6:4E:83:86:F4:85:ED:3D:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 591ED3E66872D148EEA9AF8FEB40216DD8BDFCE5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa Signing time: Mon 04 Aug 2025 15:41:09 +0000 ROA not before: Mon 04 Aug 2025 15:41:09 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 123.200.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:1e:d3:e6:68:72:d1:48:ee:a9:af:8f:eb:40:21:6d:d8:bd:fc:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:41:09 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=206c4c212b94e4137e8c69372711e6b7d96fafd33a45a5d12cf05090193eab8d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:5b:80:b2:f7:4c:08:ae:a5:96:27:f5:3b:30: c3:8b:17:4a:c1:d9:9b:ea:cf:64:dd:9c:ac:8b:8a: e9:f8:21:8c:b9:1f:be:a7:82:4b:64:81:e0:68:ce: c9:78:ae:57:7f:5b:59:ad:bb:a5:7c:ea:47:49:b4: 5c:31:1d:fe:0c:73:a3:b8:93:2c:40:c8:53:b8:de: 96:62:5a:b0:d3:05:72:9f:a5:81:73:f7:7a:26:36: e8:24:b6:4c:2c:7e:0a:68:31:ab:60:07:99:69:6a: 81:6b:44:f3:18:bc:2a:79:1a:f2:ed:41:8b:73:90: a9:c9:d8:95:64:13:8a:ec:4d:f9:12:c7:7e:f6:d8: de:46:1e:60:19:cc:fc:ba:04:97:e2:a7:68:bd:c3: aa:f3:76:8e:22:07:87:5f:8c:ea:5f:44:2a:4a:e7: 86:b9:5a:32:b2:ab:03:1d:c5:9c:6f:33:94:a1:c6: 25:81:6d:84:22:ad:6c:09:03:ce:2e:52:08:40:19: dd:5f:a8:06:8f:62:51:0e:88:02:ea:d8:36:47:5e: 55:34:21:ee:fe:8d:08:d8:ea:e4:c3:da:3a:79:ee: 4f:9e:83:f3:90:05:86:1f:75:4b:80:77:36:b1:79: 33:f7:93:57:5a:78:d1:14:ee:3c:16:16:f4:6d:82: aa:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:7D:98:92:61:CB:35:FA:C5:49:A3:D6:4E:83:86:F4:85:ED:3D:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.200.202.0/23 Signature Algorithm: sha256WithRSAEncryption 92:36:69:af:5d:8d:c4:9f:26:af:9b:56:0d:ed:03:62:93:fc: ca:0a:ad:93:69:37:db:ed:21:d2:26:cc:96:41:c3:c1:05:30: 23:b5:64:15:75:4c:65:e1:27:2b:10:14:ea:37:d6:80:66:eb: 62:b4:20:c9:8f:1a:9e:7d:d3:f8:17:af:a0:d6:91:bb:7f:c5: dc:ec:c5:18:cd:46:7b:dd:60:c7:72:78:c2:b2:ff:3a:66:18: d4:4c:69:54:49:b3:ee:ed:7f:36:46:c0:f4:e6:7e:fc:01:ca: 42:50:91:1e:6c:1c:2e:47:9a:3d:6a:72:be:33:23:40:a7:c1: 10:fe:8a:9d:51:c7:67:2f:75:9b:32:f6:3d:50:9d:1d:34:52: 98:79:33:5a:11:76:6d:5f:f9:85:77:86:5c:57:a6:c6:88:77: cb:25:3b:76:89:74:43:19:3b:58:ba:23:4c:fe:36:a5:a5:c8: b1:73:64:db:49:89:fd:18:24:70:c4:c0:e3:e1:43:ec:9b:c5: 14:fd:51:9c:92:78:8e:ba:5c:ab:fe:66:59:52:ca:87:7d:97: d5:ea:27:79:64:d8:6e:2b:03:3e:d4:75:4c:6b:1f:43:3d:76: d1:83:1e:87:63:f9:3f:b4:42:e2:34:20:0e:c3:26:99:7d:44: 4b:55:eb:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWR7T5mhy0Ujuqa+P60Ahbdi9/OUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTU0MTA5WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDZjNGMyMTJiOTRlNDEzN2U4YzY5MzcyNzExZTZiN2Q5 NmZhZmQzM2E0NWE1ZDEyY2YwNTA5MDE5M2VhYjhkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXW4Cy90wIrqWWJ/U7MMOLF0rB2Zvqz2TdnKyLiun4IYy5 H76ngktkgeBozsl4rld/W1mtu6V86kdJtFwxHf4Mc6O4kyxAyFO43pZiWrDTBXKf pYFz93omNugktkwsfgpoMatgB5lpaoFrRPMYvCp5GvLtQYtzkKnJ2JVkE4rsTfkS x3722N5GHmAZzPy6BJfip2i9w6rzdo4iB4dfjOpfRCpK54a5WjKyqwMdxZxvM5Sh xiWBbYQirWwJA84uUghAGd1fqAaPYlEOiALq2DZHXlU0Ie7+jQjY6uTD2jp57k+e g/OQBYYfdUuAdzaxeTP3k1daeNEU7jwWFvRtgqqpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZX2YkmHLNfrFSaPWToOG9IXtPY8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1NGY4Mjg4LTg1NjQtNGE4Zi1hMGVlLWVkNWZhMzI0ZTgyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAF7yMowDQYJKoZIhvcNAQELBQADggEBAJI2aa9djcSfJq+bVg3tA2KT/MoK rZNpN9vtIdImzJZBw8EFMCO1ZBV1TGXhJysQFOo31oBm62K0IMmPGp590/gXr6DW kbt/xdzsxRjNRnvdYMdyeMKy/zpmGNRMaVRJs+7tfzZGwPTmfvwBykJQkR5sHC5H mj1qcr4zI0CnwRD+ip1Rx2cvdZsy9j1QnR00Uph5M1oRdm1f+YV3hlxXpsaId8sl O3aJdEMZO1i6I0z+NqWlyLFzZNtJif0YJHDEwOPhQ+ybxRT9UZySeI66XKv+ZllS yod9l9XqJ3lk2G4rAz7UdUxrH0M9dtGDHodj+T+0QuI0IA7DJpl9REtV61c= -----END CERTIFICATE-----Generated at Wed Aug 6 04:09:26 2025 by rpki-client