$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/345a635d-bc4c-4cac-91f9-d663b0d1bdb9.roa File: 345a635d-bc4c-4cac-91f9-d663b0d1bdb9.roa (raw, json) Hash identifier: NcpE47hy4FXIY6fPbMFyLKd4DLAZdJRN6QQBst2+7PU= Subject key identifier: 5D:71:FC:4C:72:02:5B:E3:0E:3D:78:27:DF:54:6A:21:0B:A0:FD:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CDF700AB36F4236C48DD5DE2E1A7DC3736ABA67 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/345a635d-bc4c-4cac-91f9-d663b0d1bdb9.roa Signing time: Fri 08 Aug 2025 00:01:19 +0000 ROA not before: Fri 08 Aug 2025 00:01:19 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.88.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:df:70:0a:b3:6f:42:36:c4:8d:d5:de:2e:1a:7d:c3:73:6a:ba:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:01:19 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=d782bdd93a4751747e21a6dffa926fe594cd03760c7bd84ef645cc8739f9246c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5d:4a:ee:97:f4:24:78:48:84:12:67:a4:63: af:08:b9:22:54:7e:3b:30:fe:e0:a7:eb:45:3d:15: c5:a9:98:54:7f:ec:20:0b:85:b3:56:64:08:97:e7: 5b:2a:f9:fb:e9:f4:16:92:14:ad:4d:4d:4f:fb:83: 75:b3:26:85:b9:ba:13:1c:14:44:73:00:08:a3:ac: 2b:ac:45:14:77:00:f1:20:be:f7:47:e8:32:d1:d4: 7e:4a:dc:3e:c6:aa:8f:05:e2:e5:55:ba:4a:25:d3: 40:0d:52:ed:b0:28:fa:7a:a0:c8:c9:22:a0:d9:72: 1f:63:27:29:70:a5:1f:a0:7e:a2:f1:e9:3e:75:99: 53:34:26:49:08:05:ca:37:d7:94:01:4b:8d:d5:f9: 7f:3e:af:05:37:b4:68:e3:fe:22:99:9a:8f:0c:fc: 36:09:c7:4c:f6:73:96:e2:93:c6:fc:cf:d2:6a:ec: e4:5b:c0:1b:b5:fb:a8:f0:ab:cb:31:35:11:8d:3c: 0d:af:8d:03:ce:8b:72:bc:87:27:2c:78:6f:83:fd: 16:8c:93:a3:71:9e:94:6b:49:ad:66:5c:3d:09:b4: 5d:e5:38:5f:9b:af:ac:d1:42:3b:c5:ac:f2:99:93: 89:4c:09:ef:a4:65:0a:83:f3:2c:7d:14:95:d0:db: 49:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:71:FC:4C:72:02:5B:E3:0E:3D:78:27:DF:54:6A:21:0B:A0:FD:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/345a635d-bc4c-4cac-91f9-d663b0d1bdb9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.88.64.0/20 Signature Algorithm: sha256WithRSAEncryption af:da:6c:6a:4b:08:4d:38:73:1e:1c:fc:09:76:70:aa:65:a2: b2:d6:42:1d:a6:f3:74:3f:58:05:2e:d3:9b:dc:2e:c2:e7:51: 40:24:41:a8:28:e1:f2:93:d0:e4:41:7d:80:d0:01:15:34:ca: fa:01:a0:c2:ef:ef:29:e0:df:47:34:88:60:50:88:a3:6b:4c: af:47:18:86:37:e7:05:44:14:24:9d:51:72:44:51:2f:bf:87: 34:6e:60:b4:73:01:b7:56:7f:2b:ab:2d:48:0e:6c:fd:3d:65: 04:23:e2:f2:d8:71:79:c8:c8:07:5f:d0:3e:cd:5e:ac:e7:e5: 1d:83:82:94:5c:ca:50:67:38:84:14:ac:85:18:f0:f6:20:da: d0:a5:fe:65:fe:d8:73:19:e4:a8:c7:24:f6:20:23:22:5b:69: fc:4d:c9:03:82:3d:6e:36:22:13:3f:15:c2:32:12:65:fa:f6: 00:9a:ef:ba:f0:1d:54:b5:95:bb:7b:10:f4:75:82:35:83:2f: ee:3e:f8:dc:29:a8:98:86:8b:51:f0:63:17:4f:f7:af:1d:d7: 13:64:f5:a5:4d:b7:a6:f9:b4:2d:74:2c:90:c8:dd:ec:a3:92: d9:64:30:74:06:6e:7c:a2:71:ca:2c:6a:f5:f4:41:dd:f2:fc: b4:7b:a9:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULN9wCrNvQjbEjdXeLhp9w3NqumcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAwMTE5WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzgyYmRkOTNhNDc1MTc0N2UyMWE2ZGZmYTkyNmZlNTk0 Y2QwMzc2MGM3YmQ4NGVmNjQ1Y2M4NzM5ZjkyNDZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcXUrul/QkeEiEEmekY68IuSJUfjsw/uCn60U9FcWpmFR/ 7CALhbNWZAiX51sq+fvp9BaSFK1NTU/7g3WzJoW5uhMcFERzAAijrCusRRR3APEg vvdH6DLR1H5K3D7Gqo8F4uVVukol00ANUu2wKPp6oMjJIqDZch9jJylwpR+gfqLx 6T51mVM0JkkIBco315QBS43V+X8+rwU3tGjj/iKZmo8M/DYJx0z2c5bik8b8z9Jq 7ORbwBu1+6jwq8sxNRGNPA2vjQPOi3K8hycseG+D/RaMk6NxnpRrSa1mXD0JtF3l OF+br6zRQjvFrPKZk4lMCe+kZQqD8yx9FJXQ20nvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXXH8THICW+MOPXgn31RqIQug/a0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM0NWE2MzVkLWJjNGMtNGNhYy05MWY5LWQ2NjNiMGQxYmRiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATLWEAwDQYJKoZIhvcNAQELBQADggEBAK/abGpLCE04cx4c/Al2cKplorLW Qh2m83Q/WAUu05vcLsLnUUAkQago4fKT0ORBfYDQARU0yvoBoMLv7yng30c0iGBQ iKNrTK9HGIY35wVEFCSdUXJEUS+/hzRuYLRzAbdWfyurLUgObP09ZQQj4vLYcXnI yAdf0D7NXqzn5R2DgpRcylBnOIQUrIUY8PYg2tCl/mX+2HMZ5KjHJPYgIyJbafxN yQOCPW42IhM/FcIyEmX69gCa77rwHVS1lbt7EPR1gjWDL+4++NwpqJiGi1HwYxdP 968d1xNk9aVNt6b5tC10LJDI3eyjktlkMHQGbnyiccosavX0Qd3y/LR7qTc= -----END CERTIFICATE-----Generated at Sat Aug 23 10:20:05 2025 by rpki-client