$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5aeaa84d-4555-408c-adfb-7243b9469a8d.roa File: 5aeaa84d-4555-408c-adfb-7243b9469a8d.roa (raw, json) Hash identifier: 5KESXkNfIIvNR911bhRjWwEpllbusuI+YcawUhtYv+A= Subject key identifier: 23:EF:FD:F4:CB:D3:47:74:B4:E2:39:49:E5:84:E1:EC:12:63:F8:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A985E418ED031F3D1B05AB2392B7F2579A14E01 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5aeaa84d-4555-408c-adfb-7243b9469a8d.roa Signing time: Tue 05 Aug 2025 00:10:21 +0000 ROA not before: Tue 05 Aug 2025 00:10:21 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 220.157.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:98:5e:41:8e:d0:31:f3:d1:b0:5a:b2:39:2b:7f:25:79:a1:4e:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:10:21 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=84b863f02eed0bc6b9fec6b28de1797c2e623b4edc6a605ebe021e44f6de2ca9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:71:93:10:ef:d9:b6:56:e0:1e:98:19:a0:9c: 7f:bf:2f:57:b0:25:2d:8c:59:c6:18:4e:7e:46:96: 71:36:a6:33:4e:73:e5:1d:fe:b5:07:91:65:68:03: d8:37:69:23:a2:d6:99:d5:17:ee:e2:33:bf:bf:4d: b2:67:91:00:6e:ca:d3:79:29:ab:23:bc:f5:38:16: f3:01:77:05:ef:cb:f4:d2:16:af:5b:c3:a3:7a:36: 88:9c:d8:5b:eb:c8:cf:37:43:ef:32:29:31:ee:c5: da:ca:89:b1:fd:21:77:19:e6:af:55:d8:c1:93:13: fe:ca:dc:e7:3d:35:44:1e:ca:30:ac:fa:c8:45:49: 5c:d3:cf:a5:00:bd:27:4f:de:37:7e:b9:aa:91:f8: e9:ae:18:cc:de:7b:9c:ba:b7:73:e6:f2:73:1e:d0: c8:a9:e8:70:2a:ab:b3:11:0a:81:ac:02:d5:d3:09: 2c:a5:9b:51:a8:8e:ad:78:7c:82:b8:fa:9c:93:57: 40:22:70:77:f7:6d:c3:35:d0:a4:da:25:7f:45:cb: 95:4b:7a:0a:e0:2f:0e:58:f7:d6:99:6a:56:d1:d6: b4:56:91:7f:68:c5:62:b7:01:bb:9a:c8:f9:a6:a6: 4b:e7:f9:ee:b4:21:b4:49:86:ec:fc:17:7a:fe:62: b0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:EF:FD:F4:CB:D3:47:74:B4:E2:39:49:E5:84:E1:EC:12:63:F8:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5aeaa84d-4555-408c-adfb-7243b9469a8d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.157.78.0/24 Signature Algorithm: sha256WithRSAEncryption b1:f4:3f:13:a5:94:02:89:92:f0:e1:76:5e:7b:7f:3c:dc:f0: 69:63:c5:b1:bf:62:28:e9:13:61:12:8c:2f:da:bd:6e:1a:9d: 0d:d4:b1:ce:a1:c7:4e:ca:01:a0:97:29:53:2f:12:89:25:fa: d8:77:68:66:f5:0a:88:12:e1:2c:bb:0b:13:18:c9:a9:fa:b0: f2:c3:ce:a0:0f:fc:93:0a:0b:33:36:1e:ef:64:08:ff:96:e9: a6:d2:9f:84:12:d8:1b:eb:42:94:bc:9e:c6:ce:63:ea:8b:77: 3b:19:60:13:2b:72:29:b4:af:f3:88:3b:a6:11:6e:06:15:43: a7:26:cf:07:06:d6:fe:3c:7d:fc:41:df:d4:19:32:6e:cb:a8: cc:ca:e8:0b:f1:22:bc:d9:1b:f2:27:8b:ac:32:07:96:0f:ed: da:d3:46:d0:bd:a2:b1:fe:a3:1e:70:b5:29:a6:6c:12:95:b7: 54:63:14:e5:78:7d:b1:ff:d2:13:dd:63:62:f1:e5:ee:96:b2: 2a:44:a9:9c:b5:70:6f:9a:ea:e9:60:71:0a:a5:f2:34:76:77: c4:71:46:ae:85:4a:6d:d2:08:fe:78:f6:3d:97:b3:1e:cb:07: f5:94:c2:6b:75:4a:b7:39:a3:b2:74:39:36:81:4b:d4:27:20: 3e:e8:12:d1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKpheQY7QMfPRsFqyOSt/JXmhTgEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAxMDIxWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGI4NjNmMDJlZWQwYmM2YjlmZWM2YjI4ZGUxNzk3YzJl NjIzYjRlZGM2YTYwNWViZTAyMWU0NGY2ZGUyY2E5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwcZMQ79m2VuAemBmgnH+/L1ewJS2MWcYYTn5GlnE2pjNO c+Ud/rUHkWVoA9g3aSOi1pnVF+7iM7+/TbJnkQBuytN5KasjvPU4FvMBdwXvy/TS Fq9bw6N6Noic2FvryM83Q+8yKTHuxdrKibH9IXcZ5q9V2MGTE/7K3Oc9NUQeyjCs +shFSVzTz6UAvSdP3jd+uaqR+OmuGMzee5y6t3Pm8nMe0Mip6HAqq7MRCoGsAtXT CSylm1Gojq14fIK4+pyTV0AicHf3bcM10KTaJX9Fy5VLegrgLw5Y99aZalbR1rRW kX9oxWK3AbuayPmmpkvn+e60IbRJhuz8F3r+YrDdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUI+/99MvTR3S04jlJ5YTh7BJj+JowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhZWFhODRkLTQ1NTUtNDA4Yy1hZGZiLTcyNDNiOTQ2OWE4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADcnU4wDQYJKoZIhvcNAQELBQADggEBALH0PxOllAKJkvDhdl57fzzc8Glj xbG/YijpE2ESjC/avW4anQ3Usc6hx07KAaCXKVMvEokl+th3aGb1CogS4Sy7CxMY yan6sPLDzqAP/JMKCzM2Hu9kCP+W6abSn4QS2BvrQpS8nsbOY+qLdzsZYBMrcim0 r/OIO6YRbgYVQ6cmzwcG1v48ffxB39QZMm7LqMzK6AvxIrzZG/Ini6wyB5YP7drT RtC9orH+ox5wtSmmbBKVt1RjFOV4fbH/0hPdY2Lx5e6WsipEqZy1cG+a6ulgcQql 8jR2d8RxRq6FSm3SCP549j2Xsx7LB/WUwmt1Src5o7J0OTaBS9QnID7oEtE= -----END CERTIFICATE-----Generated at Tue Aug 5 20:15:01 2025 by rpki-client