$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa4af829-84cb-4727-ac8a-65d4d774c7f3.roa File: aa4af829-84cb-4727-ac8a-65d4d774c7f3.roa (raw, json) Hash identifier: mGmB51E2ueORMn4UQIaBplp4A7Dl/Ti3Efb+4FQp5dU= Subject key identifier: F7:B3:5D:6A:B2:BC:39:73:DF:A4:17:9C:B2:00:7B:92:86:28:B4:48 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29D9E0417F76AF740330C4D707DA794FEA707EE5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa4af829-84cb-4727-ac8a-65d4d774c7f3.roa Signing time: Tue 05 Aug 2025 00:10:19 +0000 ROA not before: Tue 05 Aug 2025 00:10:19 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 220.157.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:d9:e0:41:7f:76:af:74:03:30:c4:d7:07:da:79:4f:ea:70:7e:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:10:19 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=4550e9ba7c375548c1875d133b78fc393a057f5410799c7e6fc98cfa1a0b1099, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ba:f0:6b:c0:52:b9:b4:27:0c:e6:a7:e4:d3: f1:bb:06:f4:3f:4d:82:2a:3e:72:91:ae:95:85:1f: 39:c5:97:43:77:b8:2d:d8:b0:2d:aa:e0:85:49:25: 9c:53:4e:80:08:fd:80:25:8b:6f:30:07:de:bc:a6: 8e:30:6c:52:8a:f6:04:52:a8:2c:55:6f:8a:02:a0: e9:c8:a5:62:eb:71:e2:e9:e5:2e:29:e8:2d:09:04: eb:f4:55:b9:9f:7e:0f:db:5c:12:03:0d:fe:66:92: 39:08:8c:5d:3a:dc:ae:dc:16:38:fe:6d:29:1e:31: 2b:c6:ee:69:43:44:2d:63:59:67:d7:e7:af:b4:10: 23:14:30:4e:d1:1f:07:8c:df:d8:85:a8:fe:e1:f0: 15:95:d0:e9:24:aa:05:8a:3b:e9:1e:99:6e:42:a3: df:42:73:19:18:42:c8:55:da:4c:c8:13:9c:61:32: b6:b9:01:04:c9:06:3f:c9:b9:ab:02:05:e5:19:63: c8:fa:f7:db:cb:1f:07:18:95:09:18:0c:c2:be:d4: 1b:79:8c:0f:cd:28:04:4e:96:18:19:06:76:e4:9d: 5b:b5:82:9f:8d:c0:be:31:d8:28:96:4b:64:03:51: 4f:7c:e4:06:44:19:45:da:bb:8f:e4:93:e5:a6:da: 83:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:B3:5D:6A:B2:BC:39:73:DF:A4:17:9C:B2:00:7B:92:86:28:B4:48 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa4af829-84cb-4727-ac8a-65d4d774c7f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.157.68.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:26:c4:46:d2:b9:3a:b7:dd:b9:45:3f:9b:c8:c0:19:0e:8f: 05:f0:d5:1d:4b:81:48:c4:f5:f8:a6:d0:d6:f8:67:98:71:de: 4b:ea:3f:3d:39:38:97:ee:67:e8:ee:45:88:ca:44:4f:8b:79: 77:88:dc:ad:02:75:60:97:7e:d3:9c:55:fa:02:8a:a3:cb:c3: 0a:f8:8e:ff:c5:6a:c1:36:7c:83:39:9a:42:ae:d3:8d:d8:85: 67:a4:65:94:72:36:ae:e5:50:23:a4:cd:65:7d:cf:c3:8b:59: 2c:bc:df:e3:d3:80:72:3c:36:ef:ee:8f:db:79:4e:67:74:01: 09:77:0b:6a:6c:14:1a:af:26:a3:ab:23:0b:e0:9c:89:c6:3a: 13:c8:24:b2:a7:81:9f:23:af:e5:38:35:d4:6a:c5:26:8f:02: db:6a:e2:3e:fc:b2:83:66:66:72:3b:77:d5:7a:c9:ee:bb:5a: cc:77:59:0a:2b:55:e6:b2:60:8c:35:3c:54:7d:32:84:8a:96: 20:39:6e:f7:56:f4:3a:06:40:ce:8d:4f:4f:a0:fe:ae:ed:6e: 60:02:5f:ef:da:79:5a:ba:ba:09:f1:51:46:11:bb:52:aa:9e: 00:cc:31:32:c0:35:fb:9f:03:4d:6f:e7:ad:34:fa:45:26:a5: d9:77:dc:89 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKdngQX92r3QDMMTXB9p5T+pwfuUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAxMDE5WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NTUwZTliYTdjMzc1NTQ4YzE4NzVkMTMzYjc4ZmMzOTNh MDU3ZjU0MTA3OTljN2U2ZmM5OGNmYTFhMGIxMDk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4uvBrwFK5tCcM5qfk0/G7BvQ/TYIqPnKRrpWFHznFl0N3 uC3YsC2q4IVJJZxTToAI/YAli28wB968po4wbFKK9gRSqCxVb4oCoOnIpWLrceLp 5S4p6C0JBOv0Vbmffg/bXBIDDf5mkjkIjF063K7cFjj+bSkeMSvG7mlDRC1jWWfX 56+0ECMUME7RHweM39iFqP7h8BWV0OkkqgWKO+kemW5Co99CcxkYQshV2kzIE5xh Mra5AQTJBj/JuasCBeUZY8j699vLHwcYlQkYDMK+1Bt5jA/NKAROlhgZBnbknVu1 gp+NwL4x2CiWS2QDUU985AZEGUXau4/kk+Wm2oM5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU97NdarK8OXPfpBecsgB7koYotEgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhNGFmODI5LTg0Y2ItNDcyNy1hYzhhLTY1ZDRkNzc0YzdmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcnUQwDQYJKoZIhvcNAQELBQADggEBAIomxEbSuTq33blFP5vIwBkOjwXw 1R1LgUjE9fim0Nb4Z5hx3kvqPz05OJfuZ+juRYjKRE+LeXeI3K0CdWCXftOcVfoC iqPLwwr4jv/FasE2fIM5mkKu043YhWekZZRyNq7lUCOkzWV9z8OLWSy83+PTgHI8 Nu/uj9t5Tmd0AQl3C2psFBqvJqOrIwvgnInGOhPIJLKngZ8jr+U4NdRqxSaPAttq 4j78soNmZnI7d9V6ye67Wsx3WQorVeayYIw1PFR9MoSKliA5bvdW9DoGQM6NT0+g /q7tbmACX+/aeVq6ugnxUUYRu1KqngDMMTLANfufA01v5600+kUmpdl33Ik= -----END CERTIFICATE-----Generated at Fri Aug 8 20:57:01 2025 by rpki-client