$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/345a635d-bc4c-4cac-91f9-d663b0d1bdb9.roa File: 345a635d-bc4c-4cac-91f9-d663b0d1bdb9.roa (raw, json) Hash identifier: OCkTvR/I8wEW4HqwpZObN7gOMRe1cDUr9pCfsHT9GDE= Subject key identifier: 2B:18:B5:33:8B:62:7C:99:E0:E5:89:F0:DF:10:D8:87:53:99:10:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7382E6F031E125E82B0BEB9272B77EE20CE31980 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/345a635d-bc4c-4cac-91f9-d663b0d1bdb9.roa Signing time: Wed 18 Jun 2025 00:00:27 +0000 ROA not before: Wed 18 Jun 2025 00:00:27 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.88.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:82:e6:f0:31:e1:25:e8:2b:0b:eb:92:72:b7:7e:e2:0c:e3:19:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:00:27 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=28878fcab1e494f2537915a584803b61ab6a860c6f11e9c4a98388b777474e0c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:83:5e:0e:f6:81:cc:68:98:2a:3f:1d:41:dd: 11:fc:83:13:52:e1:46:29:61:46:7b:eb:dc:b9:34: a5:64:43:a2:ca:51:6a:59:e5:54:53:0a:25:6f:1d: 29:5b:e5:da:58:2c:02:cc:4f:8a:8d:e4:f0:0b:89: fb:a2:17:e5:2b:b0:55:00:57:dc:77:1f:7c:71:a2: 59:d1:d5:45:7b:96:f3:3d:a6:cb:6c:29:f8:34:23: 51:da:36:bd:1f:02:e5:06:47:0a:78:b5:7c:75:54: f1:9f:d2:e3:8f:7b:56:4a:08:74:a9:b0:95:d6:14: d4:a4:b0:9d:6e:fb:84:c5:e5:48:ca:17:a3:a4:05: be:c4:54:cc:13:cb:f3:28:44:cd:28:95:5e:cc:bc: 55:81:3b:18:80:f0:1c:a6:20:23:86:ce:d7:42:53: e9:86:08:10:da:67:67:5a:76:62:35:b7:f9:81:1a: 34:02:ce:24:f0:52:47:25:1d:15:f7:4e:f3:27:47: cb:a1:e1:5c:0e:2d:9a:4d:a9:bf:c7:45:ab:90:b2: 2f:e8:73:20:ab:ec:83:11:19:a0:c4:ad:e2:37:4d: 75:8a:d7:c4:59:a3:6d:77:40:fe:ad:39:6b:23:c6: 9c:8c:9b:59:62:06:c2:1e:0f:d0:17:e3:22:9c:16: 0e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:18:B5:33:8B:62:7C:99:E0:E5:89:F0:DF:10:D8:87:53:99:10:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/345a635d-bc4c-4cac-91f9-d663b0d1bdb9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.88.64.0/20 Signature Algorithm: sha256WithRSAEncryption 64:d5:0e:be:dd:8e:41:8f:83:31:40:48:12:49:c5:01:b1:ff: fc:e0:03:5c:5f:8e:8d:b2:74:b2:ec:d4:45:4e:a2:68:10:92: 6d:51:b5:02:24:6e:be:f6:5e:8a:9d:1a:36:23:c1:a5:23:ae: d7:3d:c0:03:13:39:7b:6a:b3:32:16:9e:6e:d5:f2:ac:cd:49: 67:92:3f:09:ee:48:75:3f:75:be:61:b8:8a:e1:54:58:66:30: 83:fb:aa:d2:64:4a:99:80:ec:96:a8:15:ad:13:a2:40:cf:26: df:a2:ab:ad:45:f5:76:a7:bd:af:fc:39:67:1b:0b:9e:dc:2e: ac:0d:e4:a5:b2:78:03:4f:8a:20:40:d3:4d:c3:2d:5e:3b:e9: 5a:be:45:7d:6d:e5:09:19:99:9d:18:3d:d8:2d:1e:ed:d0:d3: da:3a:67:7d:22:44:6f:3e:41:a5:61:f3:be:d3:ca:ca:cb:3c: b4:df:8f:b0:35:6a:45:03:ff:83:36:75:9b:a7:11:8a:6c:c4: d6:36:84:12:9a:0b:ae:c7:44:0a:ca:54:8e:2a:95:c4:8a:60: f6:a8:a8:29:01:ea:71:17:21:d2:6f:5b:de:41:0f:3b:95:ea: ff:0d:54:ce:e4:86:57:48:02:ff:26:17:7f:25:d1:1e:4d:40: 73:94:31:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc4Lm8DHhJegrC+uScrd+4gzjGYAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAwMDI3WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyODg3OGZjYWIxZTQ5NGYyNTM3OTE1YTU4NDgwM2I2MWFi NmE4NjBjNmYxMWU5YzRhOTgzODhiNzc3NDc0ZTBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0g14O9oHMaJgqPx1B3RH8gxNS4UYpYUZ769y5NKVkQ6LK UWpZ5VRTCiVvHSlb5dpYLALMT4qN5PALifuiF+UrsFUAV9x3H3xxolnR1UV7lvM9 pstsKfg0I1HaNr0fAuUGRwp4tXx1VPGf0uOPe1ZKCHSpsJXWFNSksJ1u+4TF5UjK F6OkBb7EVMwTy/MoRM0olV7MvFWBOxiA8BymICOGztdCU+mGCBDaZ2dadmI1t/mB GjQCziTwUkclHRX3TvMnR8uh4VwOLZpNqb/HRauQsi/ocyCr7IMRGaDEreI3TXWK 18RZo213QP6tOWsjxpyMm1liBsIeD9AX4yKcFg67AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKxi1M4tifJng5Ynw3xDYh1OZEB4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM0NWE2MzVkLWJjNGMtNGNhYy05MWY5LWQ2NjNiMGQxYmRiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATLWEAwDQYJKoZIhvcNAQELBQADggEBAGTVDr7djkGPgzFASBJJxQGx//zg A1xfjo2ydLLs1EVOomgQkm1RtQIkbr72XoqdGjYjwaUjrtc9wAMTOXtqszIWnm7V 8qzNSWeSPwnuSHU/db5huIrhVFhmMIP7qtJkSpmA7JaoFa0TokDPJt+iq61F9Xan va/8OWcbC57cLqwN5KWyeANPiiBA003DLV476Vq+RX1t5QkZmZ0YPdgtHu3Q09o6 Z30iRG8+QaVh877TysrLPLTfj7A1akUD/4M2dZunEYpsxNY2hBKaC67HRArKVI4q lcSKYPaoqCkB6nEXIdJvW95BDzuV6v8NVM7khldIAv8mF38l0R5NQHOUMXo= -----END CERTIFICATE-----Generated at Sun Jun 29 08:02:36 2025 by rpki-client