$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/640db256-ea3a-41a0-b252-1d52034e7dfa.roa File: 640db256-ea3a-41a0-b252-1d52034e7dfa.roa (raw, json) Hash identifier: htIiUvwO+CogPaxLIvhDnuaDaxPjSuvOyhKZM3NEyfw= Subject key identifier: 1D:29:86:1D:EF:0A:67:E2:02:17:A5:51:24:FA:15:22:E0:E4:24:91 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D38FA9E97EF53804743DE8B309C218D9E95A6EA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/640db256-ea3a-41a0-b252-1d52034e7dfa.roa Signing time: Mon 04 Aug 2025 16:30:19 +0000 ROA not before: Mon 04 Aug 2025 16:30:19 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.239.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:38:fa:9e:97:ef:53:80:47:43:de:8b:30:9c:21:8d:9e:95:a6:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:30:19 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=44ca82a0d84fa1f704ad2a632db415e3f5eb70df6a4c0c8f579f9d981eadefef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a5:c3:76:38:48:2a:a7:4b:70:34:f2:71:b3: 38:21:ec:bf:0b:0f:bc:ae:29:06:d9:6a:cf:35:28: 8b:f9:f8:25:ca:7e:7f:66:10:1d:35:0d:17:11:03: 63:a6:e5:b1:20:88:d9:48:14:c6:0f:ed:ac:91:15: 36:c6:3d:91:f8:20:cc:43:d5:4b:0f:86:e6:9d:51: 7e:01:d9:59:05:82:a3:78:8c:1c:60:56:88:ef:6e: 52:03:eb:78:6e:2c:f7:b8:2d:c3:71:6c:ca:42:e0: 45:bf:a1:aa:f6:9b:c3:c6:12:f2:45:69:20:0a:9e: 6b:6a:9b:33:1b:bc:22:7b:c5:80:c3:bb:d1:cb:1f: 46:ff:82:54:6a:cf:d3:7d:73:d8:9c:8e:79:50:24: b5:87:c5:c2:3d:7d:24:4e:4f:ba:7d:d3:84:ca:3a: 00:b3:63:40:7b:9b:36:f5:d3:17:a9:b8:72:a8:0e: 53:20:98:4e:88:56:55:90:ce:87:59:75:6e:94:15: f6:15:fc:9f:62:74:95:89:7f:49:23:a1:43:17:0a: e3:92:91:98:5d:9f:91:fb:fe:9c:80:4c:45:2f:f5: 75:a9:13:05:62:b2:ca:2a:50:4c:7b:9a:5c:2a:9f: b1:64:01:a9:e8:45:9f:1f:f4:0f:18:99:09:7e:81: 07:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:29:86:1D:EF:0A:67:E2:02:17:A5:51:24:FA:15:22:E0:E4:24:91 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/640db256-ea3a-41a0-b252-1d52034e7dfa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.239.29.0/24 Signature Algorithm: sha256WithRSAEncryption 05:48:5e:e8:e7:7d:ff:eb:9f:98:cd:29:99:5a:72:c2:34:45: 34:29:f6:73:8a:4e:88:59:e1:ab:9d:2d:1a:b2:f5:b9:94:38: 51:5a:7c:31:64:de:2d:d6:3a:35:26:68:09:fa:6e:61:c2:0c: 62:9b:82:cc:b0:50:a3:e4:30:d3:4f:a8:33:2b:9b:b8:da:88: ec:de:17:7f:cd:da:a6:d8:83:df:22:a4:e2:76:ac:b7:88:d1: 01:84:46:ea:61:c9:be:2d:3d:71:4f:9a:14:f4:29:35:74:32: 51:7a:91:01:10:06:30:34:4e:45:32:8e:46:b7:d9:50:db:36: 13:0f:ae:e4:fb:c7:3a:d9:6d:27:c3:06:ea:bd:2d:76:2b:f8: ad:80:d6:09:02:9e:43:6f:a0:04:f2:8b:11:0c:fa:a3:de:39: 9c:7e:08:97:46:e1:94:fa:1f:08:19:4c:55:55:c0:e2:6e:4c: f5:8c:d2:1b:07:48:33:68:e8:fd:19:87:f7:9e:a2:18:d9:5e: 77:8b:3f:1a:bd:6e:04:e5:be:e1:b0:70:f0:d5:81:2d:8d:4c: 60:fe:ec:6f:0c:f1:23:fb:cd:48:aa:63:35:09:49:d4:e0:5d: 22:9c:5a:32:41:60:50:0d:87:b2:e0:6b:bd:de:85:cb:8f:27: 11:c3:99:06 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPTj6npfvU4BHQ96LMJwhjZ6VpuowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYzMDE5WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NGNhODJhMGQ4NGZhMWY3MDRhZDJhNjMyZGI0MTVlM2Y1 ZWI3MGRmNmE0YzBjOGY1NzlmOWQ5ODFlYWRlZmVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrpcN2OEgqp0twNPJxszgh7L8LD7yuKQbZas81KIv5+CXK fn9mEB01DRcRA2Om5bEgiNlIFMYP7ayRFTbGPZH4IMxD1UsPhuadUX4B2VkFgqN4 jBxgVojvblID63huLPe4LcNxbMpC4EW/oar2m8PGEvJFaSAKnmtqmzMbvCJ7xYDD u9HLH0b/glRqz9N9c9icjnlQJLWHxcI9fSROT7p904TKOgCzY0B7mzb10xepuHKo DlMgmE6IVlWQzodZdW6UFfYV/J9idJWJf0kjoUMXCuOSkZhdn5H7/pyATEUv9XWp EwVissoqUEx7mlwqn7FkAanoRZ8f9A8YmQl+gQf1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHSmGHe8KZ+ICF6VRJPoVIuDkJJEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0MGRiMjU2LWVhM2EtNDFhMC1iMjUyLTFkNTIwMzRlN2RmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABu7x0wDQYJKoZIhvcNAQELBQADggEBAAVIXujnff/rn5jNKZlacsI0RTQp 9nOKTohZ4audLRqy9bmUOFFafDFk3i3WOjUmaAn6bmHCDGKbgsywUKPkMNNPqDMr m7jaiOzeF3/N2qbYg98ipOJ2rLeI0QGERuphyb4tPXFPmhT0KTV0MlF6kQEQBjA0 TkUyjka32VDbNhMPruT7xzrZbSfDBuq9LXYr+K2A1gkCnkNvoATyixEM+qPeOZx+ CJdG4ZT6HwgZTFVVwOJuTPWM0hsHSDNo6P0Zh/eeohjZXneLPxq9bgTlvuGwcPDV gS2NTGD+7G8M8SP7zUiqYzUJSdTgXSKcWjJBYFANh7Lga73ehcuPJxHDmQY= -----END CERTIFICATE-----Generated at Thu Aug 7 04:44:44 2025 by rpki-client