$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/925842c8-ade6-4164-87f2-fd556fb6f950.roa File: 925842c8-ade6-4164-87f2-fd556fb6f950.roa (raw, json) Hash identifier: x1UoWpPvtvgqJcimEMsZQ7I8W93M5zu37jAKH6Wszfw= Subject key identifier: CE:EE:43:67:CD:95:FE:25:73:6B:F5:AF:49:44:59:CE:99:93:E3:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 010AFE3AF3BB4391824D3C3905016464AA52F4AE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/925842c8-ade6-4164-87f2-fd556fb6f950.roa Signing time: Fri 01 Aug 2025 15:01:47 +0000 ROA not before: Fri 01 Aug 2025 15:01:47 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.238.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:0a:fe:3a:f3:bb:43:91:82:4d:3c:39:05:01:64:64:aa:52:f4:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:01:47 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=81c0eed4cab5b6a895e0bdb9fa6d1937ebda2a9a24c2d230921248d90d92f6e0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6d:9d:fe:46:57:09:c3:49:73:81:ab:87:4e: 69:c2:5c:33:d9:6e:47:c8:8a:03:f0:e2:66:53:94: fa:57:cc:c7:34:b2:69:13:15:24:9e:3c:bf:e6:01: 4d:ca:e3:f7:1a:e4:1f:0b:d3:c8:bd:0e:38:9e:c7: 6c:f2:94:f8:53:10:fc:ff:36:cf:21:15:98:41:f2: f9:a1:b1:47:ff:5d:13:46:22:f6:16:9e:a3:59:7d: 43:eb:c5:81:9d:e1:e7:ad:12:26:58:28:36:79:bb: 32:c3:34:1b:45:61:fd:74:c2:9e:81:b2:90:f5:13: 0f:be:b3:b4:d1:c2:0e:fe:87:a4:0d:58:bf:5c:0e: 3f:4f:c3:5b:45:08:c3:e0:2a:24:31:18:79:f2:f2: 6c:7b:6a:3a:8d:e4:36:fd:a5:6f:11:e7:82:73:80: 29:f1:ac:c2:c9:af:58:76:8c:8c:83:ea:8c:95:2a: 72:52:dd:bf:34:08:fd:b2:61:a4:7f:9a:4f:51:b5: a2:7a:4e:e0:f8:5d:2a:1f:5f:da:cf:eb:a2:bc:7d: c9:a4:f5:af:2f:ed:28:45:79:31:60:b3:5c:5d:1b: 5d:9b:18:85:d4:8d:22:9c:d5:ab:18:94:04:cf:b8: ce:a3:3f:00:0b:e2:b4:c1:4a:c8:c6:83:21:15:06: aa:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EE:43:67:CD:95:FE:25:73:6B:F5:AF:49:44:59:CE:99:93:E3:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/925842c8-ade6-4164-87f2-fd556fb6f950.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.238.244.0/22 Signature Algorithm: sha256WithRSAEncryption ac:d2:3a:a3:97:6c:d6:da:da:ee:75:d0:29:4d:01:33:36:4f: 25:31:9c:ff:8d:47:4a:6e:63:ab:04:15:b6:26:bb:42:5e:24: e0:48:3c:7d:74:3a:3c:1b:1c:46:90:f8:18:45:57:44:a0:58: f6:68:3c:40:55:1d:e6:5e:11:1b:6c:91:9b:8f:99:0a:5c:9c: ef:61:88:fc:23:59:f5:ee:ea:2d:b8:f2:c5:7a:ef:00:a6:8f: 1d:aa:92:6e:5b:95:24:70:d4:4c:88:cd:59:62:76:38:e9:85: d8:6b:e6:45:b8:2d:59:61:f8:5e:15:d7:c8:5e:2f:c8:f3:47: d5:f3:04:9b:8f:7c:71:10:d7:18:56:8c:eb:b3:16:fd:54:ae: af:67:5a:87:b9:5e:e1:57:0b:14:29:6a:3e:2d:33:65:85:6e: 3c:24:d5:e0:40:53:b4:13:8e:d7:68:6b:ac:b0:ff:76:81:2b: cd:1e:8b:b6:8d:b3:ac:c7:22:e8:f2:6e:5e:df:c2:58:bf:f1: f2:f8:e8:9d:58:80:99:5e:dc:0b:55:24:23:90:5a:33:82:8b: 81:50:40:94:24:ca:bf:18:c2:98:2d:7d:93:ce:ba:b2:28:40: cd:a6:df:f9:9b:5b:99:af:24:d6:d8:62:38:be:79:73:eb:56: 27:1b:c9:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAQr+OvO7Q5GCTTw5BQFkZKpS9K4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUwMTQ3WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MWMwZWVkNGNhYjViNmE4OTVlMGJkYjlmYTZkMTkzN2Vi ZGEyYTlhMjRjMmQyMzA5MjEyNDhkOTBkOTJmNmUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfbZ3+RlcJw0lzgauHTmnCXDPZbkfIigPw4mZTlPpXzMc0 smkTFSSePL/mAU3K4/ca5B8L08i9Djiex2zylPhTEPz/Ns8hFZhB8vmhsUf/XRNG IvYWnqNZfUPrxYGd4eetEiZYKDZ5uzLDNBtFYf10wp6BspD1Ew++s7TRwg7+h6QN WL9cDj9Pw1tFCMPgKiQxGHny8mx7ajqN5Db9pW8R54JzgCnxrMLJr1h2jIyD6oyV KnJS3b80CP2yYaR/mk9RtaJ6TuD4XSofX9rP66K8fcmk9a8v7ShFeTFgs1xdG12b GIXUjSKc1asYlATPuM6jPwAL4rTBSsjGgyEVBqqPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzu5DZ82V/iVza/WvSURZzpmT47owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyNTg0MmM4LWFkZTYtNDE2NC04N2YyLWZkNTU2ZmI2Zjk1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJu7vQwDQYJKoZIhvcNAQELBQADggEBAKzSOqOXbNba2u510ClNATM2TyUx nP+NR0puY6sEFbYmu0JeJOBIPH10OjwbHEaQ+BhFV0SgWPZoPEBVHeZeERtskZuP mQpcnO9hiPwjWfXu6i248sV67wCmjx2qkm5blSRw1EyIzVlidjjphdhr5kW4LVlh +F4V18heL8jzR9XzBJuPfHEQ1xhWjOuzFv1Urq9nWoe5XuFXCxQpaj4tM2WFbjwk 1eBAU7QTjtdoa6yw/3aBK80ei7aNs6zHIujybl7fwli/8fL46J1YgJle3AtVJCOQ WjOCi4FQQJQkyr8YwpgtfZPOurIoQM2m3/mbW5mvJNbYYji+eXPrVicbyf4= -----END CERTIFICATE-----Generated at Fri Aug 8 19:33:56 2025 by rpki-client