$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ea4f0ec-c158-4950-9858-041d23e677f2.roa File: 9ea4f0ec-c158-4950-9858-041d23e677f2.roa (raw, json) Hash identifier: Slo9CfKkJq4kAb4zHmR5V14lmactPe7k2A/juYkCCkY= Subject key identifier: E5:1C:E6:31:E5:96:78:4A:60:C6:28:8B:B6:C8:31:05:33:A2:9E:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BECF1DF5FFC1506967AF5F5830E3267B35BE666 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ea4f0ec-c158-4950-9858-041d23e677f2.roa Signing time: Wed 18 Jun 2025 00:02:01 +0000 ROA not before: Wed 18 Jun 2025 00:02:01 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.88.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:ec:f1:df:5f:fc:15:06:96:7a:f5:f5:83:0e:32:67:b3:5b:e6:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:02:01 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=f6ecc14c715d9ef54ca306b05cf71917fed78f0a26062444d9491388c6a17745, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:7e:74:fd:44:d0:4c:73:2c:30:8f:09:92:40: 80:2b:92:50:b3:eb:94:4a:ff:7b:cd:90:2b:49:7b: 4b:9b:da:b5:b4:70:18:fa:e8:83:37:67:f5:4f:f6: e7:6d:dc:86:8b:f2:60:21:85:e8:dc:77:ca:c6:ac: eb:26:3a:1f:ec:6c:76:f5:d4:f3:70:1b:a5:6a:36: 71:29:83:ae:1d:9a:ac:df:f9:ad:69:e4:05:83:db: ef:3c:3c:7b:5a:8f:e3:0c:8b:66:81:75:64:6a:a4: d8:7a:c6:d2:10:ed:c5:d7:aa:37:cb:5f:1b:e3:43: 07:27:38:a2:ea:32:0d:f4:08:45:be:cc:2e:08:a5: 16:b7:b5:77:b9:88:8f:ac:85:30:69:35:c2:26:de: 2e:16:62:83:8d:19:ef:b7:f7:95:08:16:6b:b3:9d: 00:6f:91:91:54:b1:61:4c:00:8f:ec:bf:2e:f2:f5: d6:3c:12:f4:84:be:15:7f:4f:f7:ca:27:13:9f:c3: b1:cf:d7:e0:ed:d2:49:56:77:56:ac:69:4f:1d:d0: dd:06:53:22:7c:a7:f9:e0:e8:6c:3e:4a:19:b4:27: f9:cb:9e:3d:a5:61:91:e1:16:79:c7:a7:83:07:2d: 3f:02:3e:9a:c7:27:7d:b3:40:f6:36:bd:f4:c1:31: 25:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:1C:E6:31:E5:96:78:4A:60:C6:28:8B:B6:C8:31:05:33:A2:9E:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ea4f0ec-c158-4950-9858-041d23e677f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.88.94.0/24 Signature Algorithm: sha256WithRSAEncryption ad:88:74:bd:95:55:06:5b:a2:ac:7d:01:9f:99:17:d6:47:34: 58:94:35:fe:61:53:80:6d:ad:80:eb:1d:df:f6:dc:b7:e7:1b: 00:56:02:9c:3e:b9:06:41:56:45:0b:9c:ec:08:76:32:a0:ae: 30:34:22:62:26:d0:cb:6b:cd:b1:6e:da:93:71:68:6a:a0:82: 55:c5:be:d3:5f:b8:dd:ce:63:02:e5:7b:8a:d7:bc:f1:e0:cc: 16:66:25:95:16:d1:80:45:ab:13:b1:bb:42:09:57:3e:7f:9a: 4b:07:5e:60:56:eb:5b:6f:9f:df:bd:36:bc:72:fe:34:c7:07: e0:ca:11:a2:08:f3:54:8c:91:a9:a3:57:b0:5b:10:fe:5a:63: 24:e1:a5:50:1a:0c:6e:85:b1:22:ee:ba:59:be:da:b2:15:35: 99:03:0e:a4:bb:95:82:c0:c1:5a:15:e4:97:b4:f4:71:e0:cc: 72:1d:b4:0e:49:47:ba:21:21:42:ac:29:55:69:ee:55:84:61: 2d:e7:a3:19:26:cf:e8:d6:82:7a:56:dc:35:69:e0:11:be:de: 45:7e:ab:cf:f5:e0:d8:81:e8:3e:4b:c3:4a:e8:f2:7c:c0:37: bf:ee:5f:f7:61:29:10:70:aa:ee:11:57:32:56:f8:f8:78:ba: 82:30:b4:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW+zx31/8FQaWevX1gw4yZ7Nb5mYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAwMjAxWhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNmVjYzE0YzcxNWQ5ZWY1NGNhMzA2YjA1Y2Y3MTkxN2Zl ZDc4ZjBhMjYwNjI0NDRkOTQ5MTM4OGM2YTE3NzQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnfnT9RNBMcywwjwmSQIArklCz65RK/3vNkCtJe0ub2rW0 cBj66IM3Z/VP9udt3IaL8mAhhejcd8rGrOsmOh/sbHb11PNwG6VqNnEpg64dmqzf +a1p5AWD2+88PHtaj+MMi2aBdWRqpNh6xtIQ7cXXqjfLXxvjQwcnOKLqMg30CEW+ zC4IpRa3tXe5iI+shTBpNcIm3i4WYoONGe+395UIFmuznQBvkZFUsWFMAI/svy7y 9dY8EvSEvhV/T/fKJxOfw7HP1+Dt0klWd1asaU8d0N0GUyJ8p/ng6Gw+Shm0J/nL nj2lYZHhFnnHp4MHLT8CPprHJ32zQPY2vfTBMSUlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5RzmMeWWeEpgxiiLtsgxBTOingYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllYTRmMGVjLWMxNTgtNDk1MC05ODU4LTA0MWQyM2U2NzdmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADLWF4wDQYJKoZIhvcNAQELBQADggEBAK2IdL2VVQZboqx9AZ+ZF9ZHNFiU Nf5hU4BtrYDrHd/23LfnGwBWApw+uQZBVkULnOwIdjKgrjA0ImIm0MtrzbFu2pNx aGqgglXFvtNfuN3OYwLle4rXvPHgzBZmJZUW0YBFqxOxu0IJVz5/mksHXmBW61tv n9+9Nrxy/jTHB+DKEaII81SMkamjV7BbEP5aYyThpVAaDG6FsSLuulm+2rIVNZkD DqS7lYLAwVoV5Je09HHgzHIdtA5JR7ohIUKsKVVp7lWEYS3noxkmz+jWgnpW3DVp 4BG+3kV+q8/14NiB6D5Lw0ro8nzAN7/uX/dhKRBwqu4RVzJW+Ph4uoIwtDc= -----END CERTIFICATE-----Generated at Thu Jun 19 17:47:40 2025 by rpki-client