$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfcfe9a0-5cb3-497e-a0bc-f735c12c78a0.roa File: bfcfe9a0-5cb3-497e-a0bc-f735c12c78a0.roa (raw, json) Hash identifier: iPWCOGZWTzh+QqSAq3MgrrfhtWDQ9+00tAdHTZBD3uY= Subject key identifier: 1A:96:7A:56:E9:76:A7:CB:B1:D3:B6:CB:CE:18:39:32:B6:1F:EB:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 454C29E0D6D54D2358BB14B03B2713E9F092E65E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfcfe9a0-5cb3-497e-a0bc-f735c12c78a0.roa Signing time: Mon 28 Jul 2025 15:20:37 +0000 ROA not before: Mon 28 Jul 2025 15:20:37 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.110.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:4c:29:e0:d6:d5:4d:23:58:bb:14:b0:3b:27:13:e9:f0:92:e6:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 28 15:20:37 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=0e661574258eba03b03d303db5992dd097e13f704ecdc18e1368f03a58f38eeb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bb:a0:bd:09:f3:cd:e1:7a:05:19:98:23:5d: 6d:bc:0e:8d:80:38:38:45:b1:b2:38:3a:f3:79:fe: e1:db:c3:2b:ab:bf:ab:a5:54:28:12:b1:67:67:b2: 5a:76:a4:4a:b1:5b:77:75:f7:31:c3:7d:8a:c9:6b: a1:a0:92:98:94:74:07:cb:0d:20:40:fd:fc:7e:a7: 57:e7:a6:88:38:c0:de:c9:29:c6:60:12:c1:7a:70: 57:94:ac:8f:a1:77:30:3d:5c:0b:88:94:0f:90:87: 2c:7e:c9:1e:99:9c:76:9b:bd:6f:2c:3f:60:a3:b3: 3a:17:38:db:8b:f6:41:79:00:51:97:62:1f:a7:81: 15:80:ad:11:b6:3f:d8:51:b4:15:26:11:2f:49:84: 76:50:b3:5a:c5:8b:84:f0:f3:4b:aa:be:ec:b2:ac: 0f:8b:59:90:b3:99:59:98:b6:b2:72:6a:54:93:c6: d6:9a:6e:03:9a:e0:dc:d5:4f:0a:58:3b:97:62:67: c1:75:3f:c7:f2:00:68:d1:03:9a:e4:b4:5b:08:31: 8d:81:4c:61:16:07:44:8c:68:21:29:58:96:94:6b: 60:9c:53:be:53:a0:2a:ba:ba:91:30:cd:17:40:83: 63:67:e6:57:81:17:70:51:cc:d0:41:6d:b9:44:54: d4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:96:7A:56:E9:76:A7:CB:B1:D3:B6:CB:CE:18:39:32:B6:1F:EB:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfcfe9a0-5cb3-497e-a0bc-f735c12c78a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.110.198.0/24 Signature Algorithm: sha256WithRSAEncryption ba:37:1e:6f:0f:ef:66:ea:4e:78:a2:49:6d:a7:c7:53:55:80: 31:76:fc:59:61:f2:44:aa:53:70:7e:dc:b9:e1:26:91:03:d8: 07:45:2b:de:cd:fd:6b:f6:33:77:e9:23:5f:23:6d:cd:c5:01: 6d:3a:e4:41:7f:1c:48:eb:a0:d2:24:06:8b:d2:39:f2:2d:75: 8c:80:11:d0:13:25:4e:ea:80:cf:dc:d0:5d:cd:13:f8:19:cf: b8:54:f2:2e:0e:ff:82:52:2d:32:35:55:42:18:1c:af:56:3e: 50:a8:17:87:12:51:e2:01:f6:ed:4d:02:7f:a3:26:fe:66:b6: 0b:18:04:ed:d7:60:cc:a4:3d:7e:59:62:d3:d8:a4:d8:5a:82: ed:88:28:c3:b9:dc:3b:87:a4:98:e4:a8:9e:52:02:51:e8:c2: 9f:e5:08:3c:5a:b2:cf:33:f0:be:92:04:95:c6:59:e2:cd:b9: 71:f6:51:02:19:30:bd:0d:a0:0f:81:df:f9:a0:1a:87:a4:d4: f1:21:e1:36:3b:b9:d9:bc:92:02:1a:f5:1f:e3:24:f0:4e:e8: d6:6e:2d:f0:cb:5b:32:fe:e1:08:0d:15:76:e2:4f:52:90:6f: 7a:e6:4d:4e:85:d1:fa:02:ac:6f:f7:fc:c7:2f:e9:e6:93:28: 20:2a:51:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURUwp4NbVTSNYuxSwOycT6fCS5l4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI4MTUyMDM3WhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZTY2MTU3NDI1OGViYTAzYjAzZDMwM2RiNTk5MmRkMDk3 ZTEzZjcwNGVjZGMxOGUxMzY4ZjAzYTU4ZjM4ZWViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9u6C9CfPN4XoFGZgjXW28Do2AODhFsbI4OvN5/uHbwyur v6ulVCgSsWdnslp2pEqxW3d19zHDfYrJa6GgkpiUdAfLDSBA/fx+p1fnpog4wN7J KcZgEsF6cFeUrI+hdzA9XAuIlA+Qhyx+yR6ZnHabvW8sP2CjszoXONuL9kF5AFGX Yh+ngRWArRG2P9hRtBUmES9JhHZQs1rFi4Tw80uqvuyyrA+LWZCzmVmYtrJyalST xtaabgOa4NzVTwpYO5diZ8F1P8fyAGjRA5rktFsIMY2BTGEWB0SMaCEpWJaUa2Cc U75ToCq6upEwzRdAg2Nn5leBF3BRzNBBbblEVNTRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGpZ6Vul2p8ux07bLzhg5MrYf65QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmY2ZlOWEwLTVjYjMtNDk3ZS1hMGJjLWY3MzVjMTJjNzhhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADLbsYwDQYJKoZIhvcNAQELBQADggEBALo3Hm8P72bqTniiSW2nx1NVgDF2 /Flh8kSqU3B+3LnhJpED2AdFK97N/Wv2M3fpI18jbc3FAW065EF/HEjroNIkBovS OfItdYyAEdATJU7qgM/c0F3NE/gZz7hU8i4O/4JSLTI1VUIYHK9WPlCoF4cSUeIB 9u1NAn+jJv5mtgsYBO3XYMykPX5ZYtPYpNhagu2IKMO53DuHpJjkqJ5SAlHowp/l CDxass8z8L6SBJXGWeLNuXH2UQIZML0NoA+B3/mgGoek1PEh4TY7udm8kgIa9R/j JPBO6NZuLfDLWzL+4QgNFXbiT1KQb3rmTU6F0foCrG/3/Mcv6eaTKCAqUao= -----END CERTIFICATE-----Generated at Mon Aug 4 22:20:07 2025 by rpki-client