$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d95f8068-47af-46c4-a4b4-517faacf64b7.roa File: d95f8068-47af-46c4-a4b4-517faacf64b7.roa (raw, json) Hash identifier: 4JVpoKmVFFGCwwUQoHj99AuX8Fi42T0/GmNhgyGDBl4= Subject key identifier: 2F:BF:1E:BD:0F:E7:A8:38:E7:76:53:AB:59:87:B7:26:3F:43:8D:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6769E959D223F884ABA257523C92EDB3B9E3AEC8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d95f8068-47af-46c4-a4b4-517faacf64b7.roa Signing time: Mon 04 Aug 2025 15:50:28 +0000 ROA not before: Mon 04 Aug 2025 15:50:28 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 123.200.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:69:e9:59:d2:23:f8:84:ab:a2:57:52:3c:92:ed:b3:b9:e3:ae:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:50:28 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=4efd4bb2826b494cb2f34ea7ee5a4875c48427449a0f823af324f8e1b7773446, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:2b:41:7e:3d:78:d7:12:ed:ff:3a:72:83:ca: 4a:37:e3:49:be:80:3b:5d:96:39:71:13:62:7f:27: 1a:2a:44:62:8b:ea:e6:02:fd:89:f8:70:fc:47:c5: 83:5d:5e:c0:b0:47:2a:a6:ff:93:e1:90:e1:02:91: a5:3a:c4:c6:8e:f7:6d:af:c3:db:f4:d2:22:d3:f4: 62:b6:fc:93:e1:89:63:99:39:0a:54:fd:44:45:98: 6f:b0:b1:86:44:aa:75:9d:61:6b:46:10:09:83:44: d8:dd:0e:9a:29:ed:40:6c:f9:36:b6:e9:3d:5a:96: d4:2b:62:a1:c8:1b:dc:99:0e:c3:c7:eb:cc:01:38: 81:ed:18:0f:46:3a:15:ce:56:c9:c7:9b:a7:ca:d6: 2c:e5:92:98:05:fd:e7:cc:ef:1d:c4:46:d9:5c:85: a9:47:d1:0d:db:2e:48:dc:43:87:7b:bb:5b:de:29: a0:86:23:0e:ba:62:49:5b:56:8b:29:a9:58:87:90: 7b:a0:26:be:ed:78:e2:a9:d6:44:57:8a:ae:58:7a: 4b:44:08:bf:97:6c:cb:47:ab:02:d2:8a:49:d6:97: 9e:6a:7a:3f:a2:ab:9f:cd:2c:b0:fa:0e:6c:bd:a0: 41:b1:4d:ec:75:58:af:cd:28:77:e6:15:3b:53:7f: 06:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BF:1E:BD:0F:E7:A8:38:E7:76:53:AB:59:87:B7:26:3F:43:8D:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d95f8068-47af-46c4-a4b4-517faacf64b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.200.244.0/22 Signature Algorithm: sha256WithRSAEncryption d7:ff:9e:0f:ef:b4:c7:24:23:b0:80:ad:41:bd:16:a8:61:4e: d8:bc:e1:0b:64:e8:20:ac:90:41:8d:f2:54:c1:22:e2:df:02: bd:37:0a:35:7c:a9:2d:5d:ad:13:c7:2a:a2:17:e1:e7:f0:06: fa:cb:8c:e3:7b:db:8c:72:e7:50:2c:6d:91:81:de:16:65:63: e5:86:39:26:6f:48:99:98:2d:c0:d2:b1:64:33:92:a0:8c:ab: f8:c0:63:82:ef:50:e0:dc:7b:3d:1b:3d:42:f5:fb:41:27:ef: cc:1f:e6:c3:e1:b8:8c:cc:61:f2:d9:b2:9c:52:b3:dc:a8:09: 1b:6c:7e:7c:4f:7d:a4:ae:79:a2:11:d0:2d:51:8e:b8:52:f3: e4:36:d3:3f:06:a4:93:35:bc:78:56:c7:26:1b:e3:67:24:aa: cd:90:2d:f1:e5:5d:1f:ed:4f:f6:dd:40:cf:46:0b:e9:17:0d: 94:29:9a:bd:6f:f1:27:25:67:fc:d9:22:cd:7b:ff:af:f5:a3: e1:f2:99:a3:af:a5:88:f6:2e:a4:5f:af:49:bc:6d:c4:48:89: 34:3c:fb:f2:7c:3e:01:87:33:92:92:a6:a7:d1:9a:5f:92:b7: 21:e1:cc:f5:e0:be:c4:fb:81:9b:9d:e8:1f:d8:11:68:d4:6e: 12:27:25:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ2npWdIj+ISroldSPJLts7njrsgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTU1MDI4WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZWZkNGJiMjgyNmI0OTRjYjJmMzRlYTdlZTVhNDg3NWM0 ODQyNzQ0OWEwZjgyM2FmMzI0ZjhlMWI3NzczNDQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJK0F+PXjXEu3/OnKDyko340m+gDtdljlxE2J/JxoqRGKL 6uYC/Yn4cPxHxYNdXsCwRyqm/5PhkOECkaU6xMaO922vw9v00iLT9GK2/JPhiWOZ OQpU/URFmG+wsYZEqnWdYWtGEAmDRNjdDpop7UBs+Ta26T1altQrYqHIG9yZDsPH 68wBOIHtGA9GOhXOVsnHm6fK1izlkpgF/efM7x3ERtlchalH0Q3bLkjcQ4d7u1ve KaCGIw66YklbVospqViHkHugJr7teOKp1kRXiq5YektECL+XbMtHqwLSiknWl55q ej+iq5/NLLD6Dmy9oEGxTex1WK/NKHfmFTtTfwZ5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUL78evQ/nqDjndlOrWYe3Jj9DjX4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5NWY4MDY4LTQ3YWYtNDZjNC1hNGI0LTUxN2ZhYWNmNjRiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJ7yPQwDQYJKoZIhvcNAQELBQADggEBANf/ng/vtMckI7CArUG9FqhhTti8 4Qtk6CCskEGN8lTBIuLfAr03CjV8qS1drRPHKqIX4efwBvrLjON724xy51AsbZGB 3hZlY+WGOSZvSJmYLcDSsWQzkqCMq/jAY4LvUODcez0bPUL1+0En78wf5sPhuIzM YfLZspxSs9yoCRtsfnxPfaSueaIR0C1RjrhS8+Q20z8GpJM1vHhWxyYb42ckqs2Q LfHlXR/tT/bdQM9GC+kXDZQpmr1v8SclZ/zZIs17/6/1o+HymaOvpYj2LqRfr0m8 bcRIiTQ8+/J8PgGHM5KSpqfRml+StyHhzPXgvsT7gZud6B/YEWjUbhInJUg= -----END CERTIFICATE-----Generated at Wed Aug 6 11:22:11 2025 by rpki-client