$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0eb638bc-c647-466b-800d-9bc4e9827334.roa File: 0eb638bc-c647-466b-800d-9bc4e9827334.roa (raw, json) Hash identifier: gFZCVbaCxPO3wUoIfvKklJwUITvYLkceJnnp3bSY6R4= Subject key identifier: 93:6D:BE:53:E1:88:20:1D:C3:5B:84:13:1B:98:07:4A:53:0C:FD:66 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1CFE56132F6D532226D7FE42CC642734F1C69FF1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0eb638bc-c647-466b-800d-9bc4e9827334.roa Signing time: Wed 20 Aug 2025 00:00:17 +0000 ROA not before: Wed 20 Aug 2025 00:00:17 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:fe:56:13:2f:6d:53:22:26:d7:fe:42:cc:64:27:34:f1:c6:9f:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 20 00:00:17 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=eeb88e64007111ecc96726006c0b2457cbac6498f70b4ba5f25e687bb8ee563a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f1:0d:c1:9a:1a:37:f6:5b:36:84:a8:55:20: 8f:b4:8d:44:18:8b:bf:e7:bd:e8:32:ae:42:91:cf: 1d:15:5c:dc:9b:09:0a:3a:3b:d8:e4:41:bf:19:60: f0:e2:94:da:62:4c:6a:e9:96:ca:11:6c:e5:5b:b5: 74:1c:7b:8d:0b:c6:59:f3:96:2b:60:a9:3a:5d:14: bd:bf:9c:f4:d6:e1:f7:24:31:7a:27:0d:32:da:b7: c4:3c:f8:35:da:40:84:a1:4b:10:db:65:b3:61:a4: 10:35:84:05:a9:41:24:46:55:5e:fd:97:66:a7:ff: 7e:47:78:1a:e1:b7:9e:94:cf:5e:6d:b6:ff:5c:05: 7c:7e:4e:90:21:a6:51:47:6b:0d:e6:ba:03:ec:75: 96:1d:39:23:cc:31:82:63:f6:69:3a:9a:9a:f4:8b: ae:04:9f:e4:8f:44:54:0c:93:d4:d5:fc:5a:ad:87: 69:1e:b8:c9:1a:d8:e3:2d:3c:61:0a:27:ee:2f:a7: 5c:fa:58:08:39:87:91:f1:a2:2a:22:c7:e8:4d:0a: 28:42:26:2f:b6:7d:4a:b3:26:aa:06:4d:4d:2b:e7: 7e:86:bd:e0:a1:34:3f:ad:6b:4a:9e:2a:51:c9:22: 47:5f:2d:5d:94:ca:ad:dc:54:37:61:21:de:f7:c0: 5f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:6D:BE:53:E1:88:20:1D:C3:5B:84:13:1B:98:07:4A:53:0C:FD:66 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0eb638bc-c647-466b-800d-9bc4e9827334.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.0.0/14 Signature Algorithm: sha256WithRSAEncryption be:39:22:4f:fe:0e:22:83:0a:50:4c:93:6d:4b:e8:18:53:90: f1:20:6e:8e:15:39:c9:b6:76:bf:52:28:5a:5e:85:5d:d7:01: 8e:a9:82:da:32:e8:e8:3c:77:32:dd:40:bb:c7:67:eb:5c:95: 8e:c1:a3:2c:66:c9:35:e2:4c:0f:75:8b:45:17:4a:e9:80:a6: a8:3c:47:4f:ec:9e:98:ca:99:50:5e:9d:56:a3:02:8c:bf:be: 90:ef:08:84:3c:22:e2:b7:f0:5c:73:c9:99:0b:06:29:fa:b1: a8:b1:eb:cc:a9:af:39:30:13:c9:71:ac:3e:ac:2a:d4:6f:e8: d5:a9:9d:88:c0:2f:84:dd:1e:8e:cd:15:36:1c:62:dc:a4:22: b8:33:72:9d:3a:50:0c:37:54:44:b5:32:6b:91:b0:9a:6a:6f: af:0e:c8:8c:ed:62:fd:c6:8a:1d:4d:16:f3:26:8b:1f:9c:98: e3:93:9c:11:7e:5d:7c:97:7e:d6:ba:07:0b:c8:22:f0:e2:48: 64:69:cc:5b:2b:10:a5:c3:3c:26:eb:67:52:84:10:5e:f3:02: 9e:ff:74:3f:08:8d:48:09:14:08:43:59:9d:11:57:60:d1:6d: 49:c1:9c:09:bc:0d:66:61:34:ac:53:c2:bb:90:55:ed:8f:1e: 41:e4:ba:00 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHP5WEy9tUyIm1/5CzGQnNPHGn/EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIwMDAwMDE3WhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWI4OGU2NDAwNzExMWVjYzk2NzI2MDA2YzBiMjQ1N2Ni YWM2NDk4ZjcwYjRiYTVmMjVlNjg3YmI4ZWU1NjNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF8Q3Bmho39ls2hKhVII+0jUQYi7/nvegyrkKRzx0VXNyb CQo6O9jkQb8ZYPDilNpiTGrplsoRbOVbtXQce40LxlnzlitgqTpdFL2/nPTW4fck MXonDTLat8Q8+DXaQIShSxDbZbNhpBA1hAWpQSRGVV79l2an/35HeBrht56Uz15t tv9cBXx+TpAhplFHaw3mugPsdZYdOSPMMYJj9mk6mpr0i64En+SPRFQMk9TV/Fqt h2keuMka2OMtPGEKJ+4vp1z6WAg5h5Hxoioix+hNCihCJi+2fUqzJqoGTU0r536G veChND+ta0qeKlHJIkdfLV2Uyq3cVDdhId73wF8JAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUk22+U+GIIB3DW4QTG5gHSlMM/WYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlYjYzOGJjLWM2NDctNDY2Yi04MDBkLTliYzRlOTgyNzMzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJyODANBgkqhkiG9w0BAQsFAAOCAQEAvjkiT/4OIoMKUEyTbUvoGFOQ8SBu jhU5ybZ2v1IoWl6FXdcBjqmC2jLo6Dx3Mt1Au8dn61yVjsGjLGbJNeJMD3WLRRdK 6YCmqDxHT+yemMqZUF6dVqMCjL++kO8IhDwi4rfwXHPJmQsGKfqxqLHrzKmvOTAT yXGsPqwq1G/o1amdiMAvhN0ejs0VNhxi3KQiuDNynTpQDDdURLUya5Gwmmpvrw7I jO1i/caKHU0W8yaLH5yY45OcEX5dfJd+1roHC8gi8OJIZGnMWysQpcM8JutnUoQQ XvMCnv90PwiNSAkUCENZnRFXYNFtScGcCbwNZmE0rFPCu5BV7Y8eQeS6AA== -----END CERTIFICATE-----Generated at Sat Aug 23 11:09:59 2025 by rpki-client