$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a65165a-7d2e-48ce-a1b5-ba82dcc89d14.roa File: 4a65165a-7d2e-48ce-a1b5-ba82dcc89d14.roa (raw, json) Hash identifier: NdrSOStVlIxcqeK3NIz11XaSUdUnBgoFdJ/f8JDGfZs= Subject key identifier: 7E:97:4F:16:4E:53:2B:12:4C:E1:08:26:A0:39:E8:DB:A4:A0:BA:C2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43C6B137222F89CFC71BC4CD90E6DD5BC470BB83 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a65165a-7d2e-48ce-a1b5-ba82dcc89d14.roa Signing time: Fri 08 Aug 2025 00:02:06 +0000 ROA not before: Fri 08 Aug 2025 00:02:06 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.174.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:c6:b1:37:22:2f:89:cf:c7:1b:c4:cd:90:e6:dd:5b:c4:70:bb:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:02:06 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=0d4637d4378ed62e24e5065d1e0fcb06133e37620223fd250955bdab6cb3adad, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:57:5f:5f:27:0c:59:19:0b:9f:6a:cc:72:79: 89:9c:60:19:d8:37:06:9e:b7:78:79:f4:39:05:48: 6f:c1:1b:ad:a0:4b:89:1b:b5:6f:ec:dd:38:3f:6a: db:19:27:a6:bd:63:c4:3e:b7:6c:66:7a:13:28:cf: 53:65:47:a5:f0:7d:79:9c:86:d8:93:5a:82:13:d2: 65:43:0f:ff:00:0b:e1:f0:65:a5:75:b4:e8:10:1b: a1:24:c4:33:43:f0:19:a5:b7:68:75:dc:d1:22:b5: a9:46:7e:56:fd:b5:78:ac:ff:83:fb:5d:76:6d:34: 95:5b:d9:9d:3e:f0:ad:b3:b1:ec:fc:1b:47:cb:2d: 5b:64:78:46:4a:b0:63:98:e2:af:97:ad:c3:ef:64: 40:54:68:40:e5:b0:2f:25:b9:ec:06:ca:65:4e:cf: 55:77:37:7c:66:40:7b:b1:c2:30:aa:6e:f0:ae:d6: ef:3d:68:71:42:d3:78:37:70:21:92:77:d8:30:e6: 12:e4:58:09:b1:04:99:6d:ab:93:25:06:31:4b:f2: a2:0e:e5:be:14:28:d1:36:eb:d7:ae:da:41:81:5f: 04:20:4e:88:3f:ac:d3:8c:36:82:bd:9d:57:98:b9: c9:4c:ef:f0:10:1d:62:45:49:c0:cc:f8:c3:84:bc: 61:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:97:4F:16:4E:53:2B:12:4C:E1:08:26:A0:39:E8:DB:A4:A0:BA:C2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a65165a-7d2e-48ce-a1b5-ba82dcc89d14.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.174.144.0/21 Signature Algorithm: sha256WithRSAEncryption 94:b1:75:51:2f:dc:67:a0:56:5a:e3:22:4b:a0:1d:77:45:e4: 2a:54:70:9c:a4:28:29:e8:e2:bc:f3:1b:7c:d2:1f:3b:7f:7b: 3a:55:7f:18:fe:bd:bb:99:d8:d7:1c:8a:81:f6:b2:6c:1e:47: 71:4d:44:a3:53:e9:70:a5:f1:42:ce:a0:53:93:3e:e3:3c:c8: 6c:d4:4e:ac:10:04:77:2e:4d:f5:d4:f6:49:e7:45:c5:6a:d9: 95:7c:31:58:6a:d8:ce:4c:11:2c:4a:55:eb:f3:86:78:07:a7: 9c:7e:6c:f4:28:18:a2:1a:dc:b4:98:55:69:73:3f:6f:cc:fb: 86:4f:4c:12:2e:20:b0:0f:ff:c2:8e:b2:e6:30:ae:2f:9a:13: 15:4d:d9:4d:c5:b9:11:cf:8a:6c:9b:d8:24:50:0c:3c:4e:e9: 02:b5:e4:91:be:db:3f:c4:a5:67:77:57:56:22:00:08:de:e1: 36:04:06:28:ed:32:b6:d1:ea:62:72:3f:bd:4b:af:13:59:06: e1:de:48:26:65:9c:d9:bd:30:94:ad:90:34:fe:09:6e:b7:e8: 1b:24:c5:29:87:e2:81:8e:75:83:2a:dc:cf:70:50:d3:a8:f6: 28:28:ad:32:db:78:58:24:66:2f:64:44:b6:30:52:d7:94:ac: 64:b1:75:ee -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ8axNyIvic/HG8TNkObdW8Rwu4MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAwMjA2WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDQ2MzdkNDM3OGVkNjJlMjRlNTA2NWQxZTBmY2IwNjEz M2UzNzYyMDIyM2ZkMjUwOTU1YmRhYjZjYjNhZGFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjV19fJwxZGQufasxyeYmcYBnYNwaet3h59DkFSG/BG62g S4kbtW/s3Tg/atsZJ6a9Y8Q+t2xmehMoz1NlR6XwfXmchtiTWoIT0mVDD/8AC+Hw ZaV1tOgQG6EkxDND8Bmlt2h13NEitalGflb9tXis/4P7XXZtNJVb2Z0+8K2zsez8 G0fLLVtkeEZKsGOY4q+XrcPvZEBUaEDlsC8luewGymVOz1V3N3xmQHuxwjCqbvCu 1u89aHFC03g3cCGSd9gw5hLkWAmxBJltq5MlBjFL8qIO5b4UKNE269eu2kGBXwQg Tog/rNOMNoK9nVeYuclM7/AQHWJFScDM+MOEvGEhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfpdPFk5TKxJM4QgmoDno26SgusIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhNjUxNjVhLTdkMmUtNDhjZS1hMWI1LWJhODJkY2M4OWQxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPKrpAwDQYJKoZIhvcNAQELBQADggEBAJSxdVEv3GegVlrjIkugHXdF5CpU cJykKCno4rzzG3zSHzt/ezpVfxj+vbuZ2NccioH2smweR3FNRKNT6XCl8ULOoFOT PuM8yGzUTqwQBHcuTfXU9knnRcVq2ZV8MVhq2M5MESxKVevzhngHp5x+bPQoGKIa 3LSYVWlzP2/M+4ZPTBIuILAP/8KOsuYwri+aExVN2U3FuRHPimyb2CRQDDxO6QK1 5JG+2z/EpWd3V1YiAAje4TYEBijtMrbR6mJyP71LrxNZBuHeSCZlnNm9MJStkDT+ CW636BskxSmH4oGOdYMq3M9wUNOo9igorTLbeFgkZi9kRLYwUteUrGSxde4= -----END CERTIFICATE-----Generated at Sat Aug 23 09:01:29 2025 by rpki-client