$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f60557b3-749f-4957-ae6b-c16e5e584495.roa File: f60557b3-749f-4957-ae6b-c16e5e584495.roa (raw, json) Hash identifier: mO8k05YhnL2szlzc9u8MVgYd82DoTo8yQG49lXJG5gQ= Subject key identifier: 40:6C:6C:15:27:97:9F:90:DC:F1:60:71:A2:AE:1A:0E:80:ED:36:44 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6826ECCE2EDDE63CC6725A846FC53C42E068EC4B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f60557b3-749f-4957-ae6b-c16e5e584495.roa Signing time: Fri 13 Jun 2025 15:20:12 +0000 ROA not before: Fri 13 Jun 2025 15:20:12 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.238.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 18 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:26:ec:ce:2e:dd:e6:3c:c6:72:5a:84:6f:c5:3c:42:e0:68:ec:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:20:12 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=4f2620bd92aa9276cb47c9d5445d82ad8f48682577bdba13a22b7afd09d12e2a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:dd:2b:c5:69:d9:11:b3:3f:a8:d0:b1:24:27: c1:b0:8e:c8:4c:3c:5f:4b:a9:d1:a3:bf:e4:6d:45: ee:80:3b:5f:ed:42:f5:a8:7d:49:be:fc:a1:c3:54: 0c:da:a2:a1:20:29:ad:1b:1d:2d:ee:66:d2:b8:ff: db:ba:b3:4f:bb:7b:c8:f5:01:18:53:1d:e1:57:52: ac:a9:19:1e:8b:ae:c4:6d:93:3d:f2:aa:84:26:eb: 68:db:7f:73:99:3f:ca:62:2e:ef:db:8c:0e:a7:bb: cb:07:a0:08:f4:84:b5:26:1b:4e:82:17:bb:5b:79: 4c:1d:8d:87:3c:0e:b8:ff:d0:32:7d:c9:1a:f8:25: 0c:f4:64:0d:22:b1:76:33:31:d1:49:0c:46:c1:42: 3c:26:7e:3b:ad:1a:47:c6:b9:2c:17:5d:91:7c:36: 4f:50:87:b1:fe:1c:c1:e8:69:2c:3e:54:23:5b:54: c4:bd:b6:7e:62:75:b4:da:27:09:b2:99:12:d8:6a: c7:88:67:5d:6a:c3:c2:df:14:ea:9b:e2:45:28:25: 59:8c:b9:ca:60:9f:17:d7:54:65:49:3f:25:6d:bf: f6:59:4f:1c:df:19:6f:b8:25:e4:d8:2a:df:34:45: c9:29:a4:39:08:ef:41:59:2a:3b:6c:02:83:fe:13: 45:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:6C:6C:15:27:97:9F:90:DC:F1:60:71:A2:AE:1A:0E:80:ED:36:44 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f60557b3-749f-4957-ae6b-c16e5e584495.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.238.224.0/20 Signature Algorithm: sha256WithRSAEncryption ba:f0:d5:2e:5a:3d:db:cd:fd:d6:19:6d:f4:fd:33:50:25:65: 80:89:b4:26:bc:13:97:fa:22:90:0a:e9:cd:8e:79:8a:f5:62: 4c:28:b0:0a:c9:80:16:71:63:8b:08:53:fd:da:62:4a:b1:19: 4f:67:64:b2:36:7f:62:69:4d:46:90:48:2e:6e:b3:8d:55:34: f3:10:6c:f9:ca:a2:d7:fe:4d:2f:99:97:d4:17:6a:3c:25:1c: 19:b7:fb:92:a1:70:90:f0:e7:bc:cf:77:20:b9:97:46:61:18: 44:bd:aa:34:88:9a:74:e7:64:3c:ea:8f:4e:c7:f9:e4:87:5a: 2a:6c:9e:98:b9:5c:2c:ef:6f:13:61:31:91:05:1f:5f:34:96: f0:cb:0e:d7:2b:91:5e:ea:5a:3b:16:30:9e:e0:5a:37:ec:b1: 09:d7:79:cc:05:89:08:cd:57:7c:05:0d:5f:17:c6:d1:08:e0: ca:c0:e2:ab:e1:44:49:0b:05:a9:32:8c:d9:eb:e4:fb:61:22: 74:f6:41:8d:05:80:3c:2b:1b:b0:ef:51:87:19:e8:4a:11:85: 30:f9:e2:6a:5b:a6:10:c3:55:58:46:9e:27:e5:01:4a:1f:6c: a8:45:e7:f6:7a:1c:8b:dc:df:0f:cf:f8:07:1f:e1:96:46:08: a5:f6:3a:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaCbszi7d5jzGclqEb8U8QuBo7EswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTUyMDEyWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjI2MjBiZDkyYWE5Mjc2Y2I0N2M5ZDU0NDVkODJhZDhm NDg2ODI1NzdiZGJhMTNhMjJiN2FmZDA5ZDEyZTJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt3SvFadkRsz+o0LEkJ8GwjshMPF9LqdGjv+RtRe6AO1/t QvWofUm+/KHDVAzaoqEgKa0bHS3uZtK4/9u6s0+7e8j1ARhTHeFXUqypGR6LrsRt kz3yqoQm62jbf3OZP8piLu/bjA6nu8sHoAj0hLUmG06CF7tbeUwdjYc8Drj/0DJ9 yRr4JQz0ZA0isXYzMdFJDEbBQjwmfjutGkfGuSwXXZF8Nk9Qh7H+HMHoaSw+VCNb VMS9tn5idbTaJwmymRLYaseIZ11qw8LfFOqb4kUoJVmMucpgnxfXVGVJPyVtv/ZZ TxzfGW+4JeTYKt80RckppDkI70FZKjtsAoP+E0W5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQGxsFSeXn5Dc8WBxoq4aDoDtNkQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y2MDU1N2IzLTc0OWYtNDk1Ny1hZTZiLWMxNmU1ZTU4NDQ5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARu7uAwDQYJKoZIhvcNAQELBQADggEBALrw1S5aPdvN/dYZbfT9M1AlZYCJ tCa8E5f6IpAK6c2OeYr1YkwosArJgBZxY4sIU/3aYkqxGU9nZLI2f2JpTUaQSC5u s41VNPMQbPnKotf+TS+Zl9QXajwlHBm3+5KhcJDw57zPdyC5l0ZhGES9qjSImnTn ZDzqj07H+eSHWipsnpi5XCzvbxNhMZEFH180lvDLDtcrkV7qWjsWMJ7gWjfssQnX ecwFiQjNV3wFDV8XxtEI4MrA4qvhREkLBakyjNnr5PthInT2QY0FgDwrG7DvUYcZ 6EoRhTD54mpbphDDVVhGniflAUofbKhF5/Z6HIvc3w/P+Acf4ZZGCKX2Okw= -----END CERTIFICATE-----Generated at Tue Jun 17 01:33:37 2025 by rpki-client