$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f83beaf6-ae8e-43d8-969a-76724e17dca0.roa File: f83beaf6-ae8e-43d8-969a-76724e17dca0.roa (raw, json) Hash identifier: Jsxnt+9w72TtyxKFUDIDR78Rt9mNlMMqaB1bOeU8U5o= Subject key identifier: CA:30:89:F9:9F:93:88:54:A3:CD:5C:75:4F:6C:13:D2:38:FE:74:3C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5178CEE83263BD2F5D8521989CFC314A128D0678 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f83beaf6-ae8e-43d8-969a-76724e17dca0.roa Signing time: Fri 01 Aug 2025 15:01:44 +0000 ROA not before: Fri 01 Aug 2025 15:01:44 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.238.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:78:ce:e8:32:63:bd:2f:5d:85:21:98:9c:fc:31:4a:12:8d:06:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:01:44 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=d1556850636e0021c9341e048c9f670f220ad29798c36b640f3960dafbf261cc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ae:50:fd:a9:c0:5d:ac:fe:d9:65:8c:ee:cc: 27:9d:c4:84:19:40:47:a0:7a:f7:d8:c0:78:f7:33: c1:ac:a2:99:df:ad:24:68:14:13:c1:e2:c2:cd:11: e5:12:ca:1d:10:ef:f2:15:1a:67:2f:db:31:78:b0: 31:5a:b3:4d:03:80:4e:56:47:b0:6c:8d:b8:ce:c0: a7:92:c9:41:e8:a1:25:72:72:73:4d:77:55:9d:7b: 24:44:1a:d8:80:04:76:75:f3:a4:18:f9:59:86:1f: 6f:6d:79:3c:9e:b4:c2:c7:16:d8:a9:a2:32:17:e7: 60:bf:81:75:bd:7f:d3:29:b8:ce:90:6c:41:10:cc: 93:a8:be:05:08:0c:90:a0:7b:2a:ce:3d:af:e2:b2: dc:a3:0d:82:3f:69:c1:3c:5d:3c:e3:7f:c5:88:6f: 8c:b7:d6:1e:3c:e0:d1:08:be:b7:5a:53:ed:08:c0: a7:30:8d:42:67:cd:5e:d6:b6:8f:d7:3e:54:69:89: cb:0f:c8:eb:b8:b5:20:d0:26:cb:a5:6a:eb:f9:69: dc:e0:ab:78:af:9c:86:24:93:5a:93:9e:1c:d5:c4: c2:bf:8c:ed:90:fc:ea:d9:a6:22:72:25:df:0a:3c: e3:33:c2:1a:84:c9:c1:79:fb:ad:6a:c1:d4:7b:b1: 9f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:30:89:F9:9F:93:88:54:A3:CD:5C:75:4F:6C:13:D2:38:FE:74:3C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f83beaf6-ae8e-43d8-969a-76724e17dca0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.238.152.0/21 Signature Algorithm: sha256WithRSAEncryption ab:48:2b:8e:55:cc:a5:1a:2f:94:ee:e4:35:6b:a6:17:d9:2e: 39:8e:d7:d8:23:50:ac:fd:8e:e1:bb:68:f4:c1:00:f0:2f:17: 84:73:1c:91:16:78:84:94:87:27:9d:54:48:6b:af:06:42:91: 73:96:22:28:c6:2e:61:54:0c:29:d8:4a:e7:a5:9f:88:a9:93: 80:c8:2b:40:cf:36:54:fc:70:3e:19:14:ac:6a:aa:24:ab:67: 14:8a:93:05:f8:81:0a:6c:2d:52:58:0d:e8:d5:07:6c:57:c3: 7f:e3:9d:22:57:b9:35:1e:a8:d0:f4:78:fb:0d:45:19:64:fa: f8:70:29:34:8c:11:3c:97:16:e9:ae:0c:a3:79:e5:76:82:ea: 6e:90:84:87:d6:1f:ee:be:18:b0:df:fb:f4:be:fe:d7:43:31: 2d:d9:55:2e:ef:e8:6d:80:43:4a:45:0a:b0:45:4a:62:aa:dd: 64:57:37:a3:35:e0:70:a7:ac:df:09:f4:17:86:ed:77:3b:f4: 3e:68:09:96:23:ee:05:93:ac:7c:3e:bc:c9:72:a2:cf:e2:b0: a0:5e:10:78:1e:0b:d5:88:d9:3a:f2:76:a4:9a:5c:59:f4:f1: 12:b8:fb:58:8e:87:d3:33:3b:95:7a:3e:2a:2e:0b:f2:05:10: ec:12:f6:9a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUXjO6DJjvS9dhSGYnPwxShKNBngwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUwMTQ0WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTU1Njg1MDYzNmUwMDIxYzkzNDFlMDQ4YzlmNjcwZjIy MGFkMjk3OThjMzZiNjQwZjM5NjBkYWZiZjI2MWNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2rlD9qcBdrP7ZZYzuzCedxIQZQEegevfYwHj3M8Gsopnf rSRoFBPB4sLNEeUSyh0Q7/IVGmcv2zF4sDFas00DgE5WR7BsjbjOwKeSyUHooSVy cnNNd1WdeyREGtiABHZ186QY+VmGH29teTyetMLHFtipojIX52C/gXW9f9MpuM6Q bEEQzJOovgUIDJCgeyrOPa/istyjDYI/acE8XTzjf8WIb4y31h484NEIvrdaU+0I wKcwjUJnzV7Wto/XPlRpicsPyOu4tSDQJsulauv5adzgq3ivnIYkk1qTnhzVxMK/ jO2Q/OrZpiJyJd8KPOMzwhqEycF5+61qwdR7sZ9/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyjCJ+Z+TiFSjzVx1T2wT0jj+dDwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y4M2JlYWY2LWFlOGUtNDNkOC05NjlhLTc2NzI0ZTE3ZGNhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANu7pgwDQYJKoZIhvcNAQELBQADggEBAKtIK45VzKUaL5Tu5DVrphfZLjmO 19gjUKz9juG7aPTBAPAvF4RzHJEWeISUhyedVEhrrwZCkXOWIijGLmFUDCnYSuel n4ipk4DIK0DPNlT8cD4ZFKxqqiSrZxSKkwX4gQpsLVJYDejVB2xXw3/jnSJXuTUe qND0ePsNRRlk+vhwKTSMETyXFumuDKN55XaC6m6QhIfWH+6+GLDf+/S+/tdDMS3Z VS7v6G2AQ0pFCrBFSmKq3WRXN6M14HCnrN8J9BeG7Xc79D5oCZYj7gWTrHw+vMly os/isKBeEHgeC9WI2TrydqSaXFn08RK4+1iOh9MzO5V6PiouC/IFEOwS9po= -----END CERTIFICATE-----Generated at Tue Aug 5 20:13:02 2025 by rpki-client