$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9a97dda-c5c3-4c46-af3d-ed1aa9612cc0.roa File: e9a97dda-c5c3-4c46-af3d-ed1aa9612cc0.roa (raw, json) Hash identifier: +8EWNJYDwkTaxosVJaE3hVfNZJ0HaZyok1F8JsjNgcA= Subject key identifier: 79:10:B3:BD:17:2F:4B:FD:E8:2E:44:53:36:EE:F8:2F:2F:C6:81:D0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 18157BA2EE0E4BAC9F6320ADEEDF618FA2C8A167 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9a97dda-c5c3-4c46-af3d-ed1aa9612cc0.roa Signing time: Fri 01 Aug 2025 15:01:04 +0000 ROA not before: Fri 01 Aug 2025 15:01:04 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 121.91.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:15:7b:a2:ee:0e:4b:ac:9f:63:20:ad:ee:df:61:8f:a2:c8:a1:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:01:04 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=840f50c51ebe12a2990fd32d5602d7b85c9a2644d7f9ee00ff3d6dd934a55307, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e2:bb:83:cc:e1:bb:de:6f:f2:0e:10:ce:bc: ae:ca:eb:e7:3f:e8:93:60:5c:bf:7c:73:54:53:28: 13:0e:d4:de:fa:91:03:16:7e:50:c3:c8:03:79:fa: 40:27:d2:f9:ba:ee:60:9f:fd:0d:2a:b3:30:97:62: b8:8d:26:83:2b:1c:20:97:5e:6f:65:63:1b:4b:45: b0:08:20:8d:a4:ac:1c:ed:5b:b4:8e:ed:ad:ea:58: 9d:97:96:e4:d0:67:fe:55:ac:e3:97:7c:49:8a:c3: 39:95:46:d9:f0:e9:f7:35:91:6a:08:51:1a:c1:b5: 36:e2:11:31:ff:58:d3:58:21:97:c8:5e:64:ac:f2: a2:ae:2e:ec:bf:0d:a2:b8:5a:92:fe:43:09:f8:28: f5:a5:8f:e7:6d:1d:62:f7:de:57:74:20:51:a4:a0: 4a:72:9d:71:e9:29:d8:f1:f4:99:4d:31:28:e8:c8: a2:29:0e:91:c9:bc:f2:9f:31:93:e1:ec:98:df:fe: 20:63:91:79:4f:c8:e0:4a:47:e1:8e:9b:a3:39:c7: 00:d3:3e:22:bd:8f:26:29:db:57:85:16:d7:fe:94: a5:7e:50:d5:c3:5d:6c:1b:6c:2b:62:96:7a:d3:ce: 55:b7:c4:b8:0b:42:6f:dd:67:64:52:98:f3:aa:e4: e1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:10:B3:BD:17:2F:4B:FD:E8:2E:44:53:36:EE:F8:2F:2F:C6:81:D0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9a97dda-c5c3-4c46-af3d-ed1aa9612cc0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.91.144.0/21 Signature Algorithm: sha256WithRSAEncryption 8c:f1:59:6b:82:f3:88:5d:1d:84:2f:7b:0b:2a:b2:b1:4c:29: ae:10:64:ef:43:45:64:52:25:55:96:fd:0b:82:5e:f5:71:4d: 32:d3:43:7c:e8:21:80:06:e6:e1:89:b1:f4:fc:94:b9:78:0d: 79:15:0b:2c:1f:b2:c7:44:18:32:b0:2c:91:1c:c7:71:a5:ed: 96:32:3c:62:90:91:8c:8b:25:44:7f:bd:0f:6a:4d:20:c8:3d: 88:3a:52:2a:a1:04:ee:06:04:af:f6:a0:5d:ef:f3:cf:9d:57: 36:ac:9d:70:a7:9d:28:a0:2a:3e:48:c5:08:78:7d:c3:47:7e: bd:32:e4:ad:1f:3e:8f:a9:63:c4:4c:73:11:3f:10:ea:56:e8: d5:7e:7f:d6:a7:36:8c:41:7f:1b:e5:f0:93:dd:80:9d:39:26: 45:f9:4b:77:0c:3e:ea:4e:25:c1:dd:f5:5e:87:54:17:2d:3b: 68:bd:4d:55:e2:c5:78:a9:b8:e4:a2:3a:4b:19:19:07:26:98: 3f:ec:de:74:49:42:9d:95:65:da:83:9a:7b:af:52:ac:c1:28: 15:7c:ac:66:3d:36:97:20:8d:c0:60:b0:3b:02:f2:4a:fc:4e: 68:b8:ee:a7:0f:d7:b3:a5:90:a9:a7:1d:a5:d9:39:55:a7:6b: 62:e8:3c:f3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGBV7ou4OS6yfYyCt7t9hj6LIoWcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUwMTA0WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDBmNTBjNTFlYmUxMmEyOTkwZmQzMmQ1NjAyZDdiODVj OWEyNjQ0ZDdmOWVlMDBmZjNkNmRkOTM0YTU1MzA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH4ruDzOG73m/yDhDOvK7K6+c/6JNgXL98c1RTKBMO1N76 kQMWflDDyAN5+kAn0vm67mCf/Q0qszCXYriNJoMrHCCXXm9lYxtLRbAIII2krBzt W7SO7a3qWJ2XluTQZ/5VrOOXfEmKwzmVRtnw6fc1kWoIURrBtTbiETH/WNNYIZfI XmSs8qKuLuy/DaK4WpL+Qwn4KPWlj+dtHWL33ld0IFGkoEpynXHpKdjx9JlNMSjo yKIpDpHJvPKfMZPh7Jjf/iBjkXlPyOBKR+GOm6M5xwDTPiK9jyYp21eFFtf+lKV+ UNXDXWwbbCtilnrTzlW3xLgLQm/dZ2RSmPOq5OEdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeRCzvRcvS/3oLkRTNu74Ly/GgdAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5YTk3ZGRhLWM1YzMtNGM0Ni1hZjNkLWVkMWFhOTYxMmNjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAN5W5AwDQYJKoZIhvcNAQELBQADggEBAIzxWWuC84hdHYQvewsqsrFMKa4Q ZO9DRWRSJVWW/QuCXvVxTTLTQ3zoIYAG5uGJsfT8lLl4DXkVCywfssdEGDKwLJEc x3Gl7ZYyPGKQkYyLJUR/vQ9qTSDIPYg6UiqhBO4GBK/2oF3v88+dVzasnXCnnSig Kj5IxQh4fcNHfr0y5K0fPo+pY8RMcxE/EOpW6NV+f9anNoxBfxvl8JPdgJ05JkX5 S3cMPupOJcHd9V6HVBctO2i9TVXixXipuOSiOksZGQcmmD/s3nRJQp2VZdqDmnuv UqzBKBV8rGY9NpcgjcBgsDsC8kr8Tmi47qcP17OlkKmnHaXZOVWna2LoPPM= -----END CERTIFICATE-----Generated at Mon Aug 4 21:55:30 2025 by rpki-client