$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07db827d-5458-468d-8395-d3b2b4a26a9b.roa File: 07db827d-5458-468d-8395-d3b2b4a26a9b.roa (raw, json) Hash identifier: QNc8PhE6zPVxqwsAA8aj/bHWFZYQ6kVsEmBIeoDo7nM= Subject key identifier: 42:FF:05:64:62:BB:70:92:C5:D0:F2:23:6D:22:59:8C:D3:9A:2C:BD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A5BD8AA818AA7D690ADBE9F790FD008F3EE6BE0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07db827d-5458-468d-8395-d3b2b4a26a9b.roa Signing time: Sat 28 Jun 2025 00:41:24 +0000 ROA not before: Sat 28 Jun 2025 00:41:24 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 31.220.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:5b:d8:aa:81:8a:a7:d6:90:ad:be:9f:79:0f:d0:08:f3:ee:6b:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:41:24 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=7472c9592142e8164773231069f2bb99ea58ca6047c844a9a8129c96af4d3f03, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:4d:ab:ff:04:c1:e5:ad:01:8e:d7:3f:16:70: 3e:95:14:70:f8:33:2d:96:81:25:78:21:16:2d:62: 7a:7e:41:2c:a4:72:43:d5:dd:e2:62:e2:b2:4e:cd: 23:56:cf:9e:c3:45:30:5a:c9:d1:cd:f2:18:45:eb: c0:34:f1:c3:5b:91:83:fe:54:fc:3d:3b:28:fa:06: bf:9b:4e:b9:1b:c4:70:77:d3:66:b1:26:4b:31:82: c2:6e:21:f5:a8:67:c9:32:2c:7e:1c:dc:01:20:b7: 06:21:cc:42:d8:15:ff:09:b8:82:6f:c4:09:4f:b5: 3b:d8:af:c8:e1:76:9e:8b:9f:2c:6e:42:a5:fd:4f: b4:be:69:0f:0e:f2:53:a8:51:7a:73:f8:4a:7e:58: e3:3c:94:9f:c7:7a:9a:0e:a9:46:fc:03:94:95:87: 4b:f9:14:2b:35:15:b2:16:8b:cc:e3:ef:22:30:81: 74:d1:f0:1c:ea:be:d3:76:83:78:05:19:e0:9b:91: 1f:2e:3e:0c:13:5e:e9:b5:87:f0:6e:4f:a0:71:64: f6:20:a4:bd:6b:36:e0:ac:ca:eb:2f:15:0c:8f:ff: 3b:4b:f5:16:80:98:75:f9:02:8d:ef:cd:88:2c:d3: 65:64:f8:55:cf:a7:af:54:56:86:0e:6e:a6:d5:2e: e3:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:FF:05:64:62:BB:70:92:C5:D0:F2:23:6D:22:59:8C:D3:9A:2C:BD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07db827d-5458-468d-8395-d3b2b4a26a9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.220.220.0/22 Signature Algorithm: sha256WithRSAEncryption 33:36:64:62:2f:8b:b9:19:00:b8:2b:52:32:bc:e7:c5:68:f4: 34:40:a5:f1:12:ce:95:94:73:33:fc:fc:49:6c:a1:38:e5:ee: 6f:5a:62:44:e0:a4:39:eb:e5:03:ad:8e:60:c2:90:f0:1b:66: 7c:7d:c1:e7:95:bc:48:26:eb:24:7e:21:63:50:03:38:df:ce: ce:96:40:49:13:76:ef:28:87:d6:aa:ef:8c:f2:67:f9:99:20: 3e:9e:81:9e:ff:97:cc:31:8a:25:02:14:db:3a:dd:8d:2d:d9: 1f:93:09:f8:a3:e3:70:f0:7a:9e:d2:40:eb:b6:1d:97:8f:11: 65:c4:45:98:27:d0:81:30:23:05:54:09:59:36:dd:38:78:f7: 3d:89:57:3e:aa:f2:d9:cf:75:8c:6e:49:c8:65:60:73:5a:3e: 2d:b4:62:be:4e:88:f8:4b:cb:36:71:1b:16:f4:2f:a2:2f:f8: 07:aa:04:23:07:79:11:52:75:9e:36:71:3e:d8:88:bc:3a:39: 05:ed:d5:5c:fa:41:7b:d7:65:d2:48:56:ab:9f:fc:45:16:71: 9c:16:5f:fc:57:42:80:02:1d:2b:10:bc:7a:2b:2d:88:c9:d6: 7f:79:e7:94:bc:47:25:8c:80:ee:9b:65:72:38:6d:4d:fa:ef: 98:12:60:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKlvYqoGKp9aQrb6feQ/QCPPua+AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDA0MTI0WhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDcyYzk1OTIxNDJlODE2NDc3MzIzMTA2OWYyYmI5OWVh NThjYTYwNDdjODQ0YTlhODEyOWM5NmFmNGQzZjAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbTav/BMHlrQGO1z8WcD6VFHD4My2WgSV4IRYtYnp+QSyk ckPV3eJi4rJOzSNWz57DRTBaydHN8hhF68A08cNbkYP+VPw9Oyj6Br+bTrkbxHB3 02axJksxgsJuIfWoZ8kyLH4c3AEgtwYhzELYFf8JuIJvxAlPtTvYr8jhdp6Lnyxu QqX9T7S+aQ8O8lOoUXpz+Ep+WOM8lJ/HepoOqUb8A5SVh0v5FCs1FbIWi8zj7yIw gXTR8BzqvtN2g3gFGeCbkR8uPgwTXum1h/BuT6BxZPYgpL1rNuCsyusvFQyP/ztL 9RaAmHX5Ao3vzYgs02Vk+FXPp69UVoYObqbVLuMxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQv8FZGK7cJLF0PIjbSJZjNOaLL0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3ZGI4MjdkLTU0NTgtNDY4ZC04Mzk1LWQzYjJiNGEyNmE5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIf3NwwDQYJKoZIhvcNAQELBQADggEBADM2ZGIvi7kZALgrUjK858Vo9DRA pfESzpWUczP8/ElsoTjl7m9aYkTgpDnr5QOtjmDCkPAbZnx9weeVvEgm6yR+IWNQ Azjfzs6WQEkTdu8oh9aq74zyZ/mZID6egZ7/l8wxiiUCFNs63Y0t2R+TCfij43Dw ep7SQOu2HZePEWXERZgn0IEwIwVUCVk23Th49z2JVz6q8tnPdYxuSchlYHNaPi20 Yr5OiPhLyzZxGxb0L6Iv+AeqBCMHeRFSdZ42cT7YiLw6OQXt1Vz6QXvXZdJIVquf /EUWcZwWX/xXQoACHSsQvHorLYjJ1n9555S8RyWMgO6bZXI4bU3675gSYEo= -----END CERTIFICATE-----Generated at Tue Jul 1 15:06:38 2025 by rpki-client