$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57babf0d-7d6f-4016-a59e-e7825150c105.roa File: 57babf0d-7d6f-4016-a59e-e7825150c105.roa (raw, json) Hash identifier: 4/MaoxetjmbLgr7sas5ZTTj4SAQUD7XmCPqsueJaTaI= Subject key identifier: 32:23:9B:40:D2:38:98:52:C2:E3:F1:C7:17:83:7D:E6:0A:04:01:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 574790EF7CD71893366E65937381E703E87A87E6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57babf0d-7d6f-4016-a59e-e7825150c105.roa Signing time: Sat 14 Jun 2025 00:11:00 +0000 ROA not before: Sat 14 Jun 2025 00:11:00 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.238.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:47:90:ef:7c:d7:18:93:36:6e:65:93:73:81:e7:03:e8:7a:87:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:11:00 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=944eee95cc4248a0acf7b063878e7989952a3cce052c0831d2ee7255c9c9f6af, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8f:b1:e8:20:23:a6:47:4e:ec:26:7d:22:de: 03:58:ef:37:33:24:ce:b9:1d:5e:20:6c:be:b4:08: 99:b9:ad:9d:3a:bd:2d:fb:22:2f:c2:21:de:28:b9: 53:04:ce:44:51:64:33:84:55:0d:90:ff:07:9f:0f: 3d:aa:8c:ec:ab:39:bb:bc:a0:de:a3:9a:08:5b:1d: af:54:a8:a0:7b:89:95:48:2a:f6:14:7e:0a:2e:af: 88:ba:d5:8f:42:e8:35:90:76:40:ea:c9:2b:88:5b: 2c:3b:a8:82:f6:80:51:bc:cb:e3:5d:e5:bb:f7:11: c1:ae:53:7f:82:4d:47:11:8a:ea:60:c0:4a:f7:d9: 04:a8:0d:98:84:a3:49:f9:9b:d5:e4:35:bc:29:66: 7f:1f:df:36:60:13:a7:37:08:07:22:b3:6e:55:29: 6a:bc:c7:8f:31:05:68:9a:5e:c4:75:d0:3e:64:43: 90:4a:3f:08:0e:54:ee:0c:f9:f8:27:86:b0:3d:66: ac:de:fe:30:eb:26:e6:02:36:53:bc:ee:58:2c:69: 92:71:6b:17:f5:b8:9d:08:92:60:6c:13:59:9d:ac: 0c:c0:bc:8d:b3:8d:0e:91:11:06:c0:9b:6d:86:48: a1:5f:ff:ad:c9:5c:56:c2:f5:50:1b:8b:29:f3:00: d2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:23:9B:40:D2:38:98:52:C2:E3:F1:C7:17:83:7D:E6:0A:04:01:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57babf0d-7d6f-4016-a59e-e7825150c105.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.238.242.0/23 Signature Algorithm: sha256WithRSAEncryption 06:42:55:d4:c0:b0:ab:2c:24:94:bf:48:15:51:92:f1:4a:e1: f4:26:8e:aa:31:04:ee:0e:f8:cf:f8:82:c7:3a:c9:81:82:bb: ac:02:e1:4e:38:44:c8:e0:39:0f:15:9b:a1:e2:b8:b7:31:00: 97:7c:8d:bc:cb:bd:3d:42:30:d7:60:86:b1:09:9b:fd:74:d2: 58:cf:ab:c3:56:6e:9b:1f:99:19:9e:4a:7d:6c:77:93:58:59: bb:35:8d:69:b7:86:22:2c:f1:d8:c6:c0:c9:ae:c9:cc:46:79: d1:0e:9b:75:62:e9:bf:a1:53:3c:ef:99:cd:ef:78:1e:b8:07: 32:99:a9:02:f3:0f:99:41:85:ad:92:0f:2d:9a:a1:bc:7f:f9: ca:bf:e1:73:0d:6f:bc:0a:6a:98:5b:43:03:7b:48:4a:07:52: 1b:9e:83:b6:d3:83:0e:2d:28:9e:63:a2:9c:6d:7c:de:02:41: 00:cb:cb:ed:71:7b:88:be:5c:66:fc:be:6f:cb:b7:a1:2f:77: 4c:58:ed:c8:2c:84:37:a9:6d:65:1b:e5:26:08:f8:e8:e1:d8: b6:f2:fd:73:74:e9:87:b7:f4:88:dc:82:db:bd:aa:d8:4d:8b: c2:7d:61:99:cd:15:06:1f:a3:f8:8a:13:7a:ec:3c:8b:e1:32: 46:d3:2e:a9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV0eQ73zXGJM2bmWTc4HnA+h6h+YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDAxMTAwWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDRlZWU5NWNjNDI0OGEwYWNmN2IwNjM4NzhlNzk4OTk1 MmEzY2NlMDUyYzA4MzFkMmVlNzI1NWM5YzlmNmFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoj7HoICOmR07sJn0i3gNY7zczJM65HV4gbL60CJm5rZ06 vS37Ii/CId4ouVMEzkRRZDOEVQ2Q/wefDz2qjOyrObu8oN6jmghbHa9UqKB7iZVI KvYUfgour4i61Y9C6DWQdkDqySuIWyw7qIL2gFG8y+Nd5bv3EcGuU3+CTUcRiupg wEr32QSoDZiEo0n5m9XkNbwpZn8f3zZgE6c3CAcis25VKWq8x48xBWiaXsR10D5k Q5BKPwgOVO4M+fgnhrA9Zqze/jDrJuYCNlO87lgsaZJxaxf1uJ0IkmBsE1mdrAzA vI2zjQ6REQbAm22GSKFf/63JXFbC9VAbiynzANKdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMiObQNI4mFLC4/HHF4N95goEAa4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3YmFiZjBkLTdkNmYtNDAxNi1hNTllLWU3ODI1MTUwYzEwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFu7vIwDQYJKoZIhvcNAQELBQADggEBAAZCVdTAsKssJJS/SBVRkvFK4fQm jqoxBO4O+M/4gsc6yYGCu6wC4U44RMjgOQ8Vm6HiuLcxAJd8jbzLvT1CMNdghrEJ m/100ljPq8NWbpsfmRmeSn1sd5NYWbs1jWm3hiIs8djGwMmuycxGedEOm3Vi6b+h Uzzvmc3veB64BzKZqQLzD5lBha2SDy2aobx/+cq/4XMNb7wKaphbQwN7SEoHUhue g7bTgw4tKJ5jopxtfN4CQQDLy+1xe4i+XGb8vm/Lt6Evd0xY7cgshDepbWUb5SYI +Ojh2Lby/XN06Ye39Ijcgtu9qthNi8J9YZnNFQYfo/iKE3rsPIvhMkbTLqk= -----END CERTIFICATE-----Generated at Sat Jun 14 07:04:44 2025 by rpki-client