$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36838b64-b9ce-420b-9c64-96f56a52d535.roa File: 36838b64-b9ce-420b-9c64-96f56a52d535.roa (raw, json) Hash identifier: JKpg4fOZiWkcsLtJ1bWcdQOCbNkThMtaE4Pz9Z2JfKY= Subject key identifier: DA:20:1E:27:A8:14:52:85:4E:71:F2:56:33:27:88:7E:C5:77:60:C7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 071FC26742DE19CE2BF85FB4D3CB9ADD160D5062 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36838b64-b9ce-420b-9c64-96f56a52d535.roa Signing time: Wed 18 Jun 2025 00:00:19 +0000 ROA not before: Wed 18 Jun 2025 00:00:19 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.174.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:1f:c2:67:42:de:19:ce:2b:f8:5f:b4:d3:cb:9a:dd:16:0d:50:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:00:19 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=e778d5e895c9700ae5a2caaf8d5aeb958fc1db7dcaa32efb55439437c8608379, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:6a:49:79:b7:e3:88:e1:bf:b3:b3:4f:b5:29: 33:f5:4b:b5:4b:04:99:39:6a:a2:61:92:cd:38:44: 93:59:79:23:f4:02:06:cc:31:9c:68:75:9f:4b:0d: c2:0e:9f:83:ef:59:92:de:44:8c:d5:7b:46:ee:d3: dd:7f:cb:40:49:d2:89:0b:5e:2f:31:65:a4:30:fa: 92:16:ec:ef:7d:cc:1f:56:e4:f3:8e:87:0d:a9:ac: 45:66:32:1f:3e:59:cb:1a:70:3e:41:78:a4:33:c0: 51:61:1d:6d:5b:75:a2:5b:1a:d8:38:87:fa:71:72: f3:5e:48:f1:b9:8b:c1:44:49:4a:bc:09:05:a2:2b: 18:53:8f:74:8e:f7:fa:27:53:00:96:bc:cb:d4:51: dd:90:84:a2:3c:2c:de:22:8c:98:3d:63:59:de:39: 2b:b3:7d:28:0a:14:e8:ba:a0:d6:ee:6e:13:13:c0: 41:86:17:95:59:fb:a1:47:a5:0a:af:57:9f:ca:74: e5:47:d8:85:d4:6b:60:b5:ba:ef:42:2d:12:fc:98: df:d6:36:e2:1d:7d:f8:00:e9:8f:41:bf:fb:13:17: 94:bb:32:a1:45:41:6b:eb:86:b0:cb:d8:d4:c5:31: 2f:89:d7:3b:d2:f7:99:f5:cb:fd:aa:33:e7:d6:28: 30:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:20:1E:27:A8:14:52:85:4E:71:F2:56:33:27:88:7E:C5:77:60:C7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36838b64-b9ce-420b-9c64-96f56a52d535.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.174.132.0/22 Signature Algorithm: sha256WithRSAEncryption 74:19:f1:15:90:82:f8:32:83:2e:92:1e:09:28:75:05:a9:44: bc:9b:ad:bb:d6:09:c2:b9:33:3e:b3:0e:d4:e7:9c:11:39:00: fc:1e:2e:60:91:7d:60:a6:9c:d7:9e:c7:79:fb:8d:df:46:01: 92:d0:83:ae:8a:6f:1a:e3:ae:b4:3b:57:93:ce:1b:27:0b:d5: 16:34:60:d7:0f:99:c6:3e:0e:71:83:34:ef:d7:21:ec:ab:c1: 63:45:bf:55:92:f8:db:6e:72:47:6b:33:17:e6:ec:ca:28:b0: 03:d7:99:a9:be:86:c6:4f:76:12:da:a7:dd:92:63:6b:fc:a8: 9a:63:68:f8:d7:85:59:06:4a:a3:c6:43:32:60:e5:30:31:ec: b9:0c:36:e5:9b:51:70:c9:1c:cb:a4:f8:5f:ed:74:e7:80:bd: 8c:b5:e2:d9:06:a8:89:e2:60:18:92:52:29:cd:c0:19:be:f1: 2b:b5:ce:27:8e:ad:34:3c:73:09:d5:6c:3b:2a:d6:8b:59:e8: 1e:dd:31:8a:58:d7:c1:f4:c3:55:65:62:a4:b8:a3:af:4a:80: 9c:17:74:36:ca:10:dc:74:3e:15:36:cb:b1:74:b2:66:8a:42: 83:47:24:56:a9:57:1c:19:bd:9c:80:ef:3c:ac:cd:cb:d4:45: 24:c7:b9:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBx/CZ0LeGc4r+F+008ua3RYNUGIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAwMDE5WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzc4ZDVlODk1Yzk3MDBhZTVhMmNhYWY4ZDVhZWI5NThm YzFkYjdkY2FhMzJlZmI1NTQzOTQzN2M4NjA4Mzc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQakl5t+OI4b+zs0+1KTP1S7VLBJk5aqJhks04RJNZeSP0 AgbMMZxodZ9LDcIOn4PvWZLeRIzVe0bu091/y0BJ0okLXi8xZaQw+pIW7O99zB9W 5POOhw2prEVmMh8+WcsacD5BeKQzwFFhHW1bdaJbGtg4h/pxcvNeSPG5i8FESUq8 CQWiKxhTj3SO9/onUwCWvMvUUd2QhKI8LN4ijJg9Y1neOSuzfSgKFOi6oNbubhMT wEGGF5VZ+6FHpQqvV5/KdOVH2IXUa2C1uu9CLRL8mN/WNuIdffgA6Y9Bv/sTF5S7 MqFFQWvrhrDL2NTFMS+J1zvS95n1y/2qM+fWKDC7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2iAeJ6gUUoVOcfJWMyeIfsV3YMcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM2ODM4YjY0LWI5Y2UtNDIwYi05YzY0LTk2ZjU2YTUyZDUzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKroQwDQYJKoZIhvcNAQELBQADggEBAHQZ8RWQgvgygy6SHgkodQWpRLyb rbvWCcK5Mz6zDtTnnBE5APweLmCRfWCmnNeex3n7jd9GAZLQg66KbxrjrrQ7V5PO GycL1RY0YNcPmcY+DnGDNO/XIeyrwWNFv1WS+NtuckdrMxfm7MoosAPXmam+hsZP dhLap92SY2v8qJpjaPjXhVkGSqPGQzJg5TAx7LkMNuWbUXDJHMuk+F/tdOeAvYy1 4tkGqIniYBiSUinNwBm+8Su1zieOrTQ8cwnVbDsq1otZ6B7dMYpY18H0w1VlYqS4 o69KgJwXdDbKENx0PhU2y7F0smaKQoNHJFapVxwZvZyA7zyszcvURSTHudw= -----END CERTIFICATE-----Generated at Tue Jul 1 12:33:27 2025 by rpki-client