$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8469210f-a38a-4fc9-9e32-10f79df8ee72.roa File: 8469210f-a38a-4fc9-9e32-10f79df8ee72.roa (raw, json) Hash identifier: xC/5PSxvtaffGA8CDdJcE+xeYAT7iiqFuVIvFF9PKsM= Subject key identifier: 36:F0:4D:C5:EF:10:70:EB:9C:08:3F:62:29:36:70:A7:B2:E7:80:73 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19F09F2243C7DA832F34BB07F9856EA664AD9990 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8469210f-a38a-4fc9-9e32-10f79df8ee72.roa Signing time: Mon 28 Jul 2025 15:20:39 +0000 ROA not before: Mon 28 Jul 2025 15:20:39 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.110.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f0:9f:22:43:c7:da:83:2f:34:bb:07:f9:85:6e:a6:64:ad:99:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 28 15:20:39 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=23fbc92aecbbfa15177403141aff948177d51a0413d784c6016cedf3b1eb2362, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1e:33:1d:a4:c9:00:41:a0:3e:80:64:20:3c: 50:d3:1a:e7:0e:f4:e8:0f:5b:b7:34:3f:73:14:03: 0e:74:1e:5b:f4:55:aa:85:bc:1d:88:55:ab:57:fe: 67:bd:02:ec:ca:03:04:ec:00:1c:b1:dd:68:d8:46: b9:85:99:03:d8:38:5e:5e:0a:67:19:86:a0:2a:61: 64:4d:67:20:5e:c4:5c:d7:df:c3:82:4e:05:04:68: 16:66:e0:e4:54:98:59:83:fe:c1:d6:e3:96:0f:72: 8d:e4:0e:80:a6:52:8a:47:cf:84:45:ff:df:dd:31: cc:93:10:16:87:f4:f9:d4:5a:b6:aa:1d:29:99:3a: ad:5e:0f:e6:50:a5:b3:95:2f:c7:13:73:e6:8e:19: 75:e8:2b:df:d6:f9:c6:70:e9:a4:db:31:9a:73:0b: df:4d:c6:45:6a:0d:97:0e:bc:ae:f6:43:40:3c:1c: f0:be:6f:3a:be:4e:0f:c1:7a:41:19:f6:c5:26:aa: 71:d5:8a:37:b0:d3:44:69:02:8e:7c:d3:4c:f9:89: 65:70:b6:2b:4a:97:01:18:35:13:d5:5a:64:e7:da: 60:43:4a:17:e2:84:91:c2:13:2d:d1:40:d9:27:08: 50:8a:c6:e3:df:07:8c:05:59:dc:36:43:36:9b:bb: 76:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:F0:4D:C5:EF:10:70:EB:9C:08:3F:62:29:36:70:A7:B2:E7:80:73 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8469210f-a38a-4fc9-9e32-10f79df8ee72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.110.200.0/24 Signature Algorithm: sha256WithRSAEncryption d4:c3:51:fe:64:de:13:ef:3e:b8:4e:53:da:de:36:88:ec:3a: d8:b4:30:8c:d0:ef:84:78:83:21:27:ca:23:ad:26:1b:d1:d6: bc:12:5a:8c:a8:e8:cc:46:b6:96:23:52:dd:69:56:6b:cc:6c: c0:e6:2e:b3:fc:da:af:5c:94:58:1e:35:8c:73:a0:75:5d:f0: e6:db:a0:9a:1f:c0:98:1d:01:74:b7:b1:bd:d0:fe:6e:94:bc: 2e:41:ae:e8:46:a5:e8:c6:1d:2d:82:f0:9c:2a:3f:d0:ef:f8: 6e:33:46:f3:9e:54:9f:17:1e:c1:0a:46:80:4d:e4:69:ca:a5: 02:cf:dd:53:ad:3d:7d:6d:cd:4c:df:85:78:1c:16:e8:5f:99: da:6d:35:35:9b:6a:7f:bc:68:43:05:8a:31:19:31:6d:94:68: cd:ce:71:ca:dd:5a:f2:f2:f3:b3:5e:24:3e:7a:a0:5f:66:60: 6d:6f:3c:9d:be:2a:98:5e:b0:79:cf:47:ed:5c:b5:88:06:03: 30:b1:17:28:30:e0:25:6b:91:eb:95:9b:4a:e9:7a:91:cc:51: 0b:20:89:95:af:fe:8c:c9:ae:4c:19:f8:8e:3c:85:03:d9:3e: 04:fa:39:d4:96:d4:2b:8d:58:bc:0d:f7:4b:28:17:9f:b2:3a: 4f:ef:49:16 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGfCfIkPH2oMvNLsH+YVupmStmZAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI4MTUyMDM5WhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2ZiYzkyYWVjYmJmYTE1MTc3NDAzMTQxYWZmOTQ4MTc3 ZDUxYTA0MTNkNzg0YzYwMTZjZWRmM2IxZWIyMzYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDoHjMdpMkAQaA+gGQgPFDTGucO9OgPW7c0P3MUAw50Hlv0 VaqFvB2IVatX/me9AuzKAwTsAByx3WjYRrmFmQPYOF5eCmcZhqAqYWRNZyBexFzX 38OCTgUEaBZm4ORUmFmD/sHW45YPco3kDoCmUopHz4RF/9/dMcyTEBaH9PnUWraq HSmZOq1eD+ZQpbOVL8cTc+aOGXXoK9/W+cZw6aTbMZpzC99NxkVqDZcOvK72Q0A8 HPC+bzq+Tg/BekEZ9sUmqnHVijew00RpAo5800z5iWVwtitKlwEYNRPVWmTn2mBD ShfihJHCEy3RQNknCFCKxuPfB4wFWdw2Qzabu3blAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNvBNxe8QcOucCD9iKTZwp7LngHMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0NjkyMTBmLWEzOGEtNGZjOS05ZTMyLTEwZjc5ZGY4ZWU3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADLbsgwDQYJKoZIhvcNAQELBQADggEBANTDUf5k3hPvPrhOU9reNojsOti0 MIzQ74R4gyEnyiOtJhvR1rwSWoyo6MxGtpYjUt1pVmvMbMDmLrP82q9clFgeNYxz oHVd8ObboJofwJgdAXS3sb3Q/m6UvC5BruhGpejGHS2C8JwqP9Dv+G4zRvOeVJ8X HsEKRoBN5GnKpQLP3VOtPX1tzUzfhXgcFuhfmdptNTWban+8aEMFijEZMW2UaM3O ccrdWvLy87NeJD56oF9mYG1vPJ2+KphesHnPR+1ctYgGAzCxFygw4CVrkeuVm0rp epHMUQsgiZWv/ozJrkwZ+I48hQPZPgT6OdSW1CuNWLwN90soF5+yOk/vSRY= -----END CERTIFICATE-----Generated at Wed Aug 6 09:33:57 2025 by rpki-client