$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a65165a-7d2e-48ce-a1b5-ba82dcc89d14.roa File: 4a65165a-7d2e-48ce-a1b5-ba82dcc89d14.roa (raw, json) Hash identifier: rwFy9f4y0xFtgF5PjjyNsUGdOjcjqvcxU23MfeT7rqA= Subject key identifier: 08:53:0B:75:A9:7D:15:F1:4A:93:06:3C:32:7F:73:39:52:55:7A:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29AF4E6F56125EB55DEB1EF93A2F6EAF8A8BA3D5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a65165a-7d2e-48ce-a1b5-ba82dcc89d14.roa Signing time: Wed 18 Jun 2025 00:00:20 +0000 ROA not before: Wed 18 Jun 2025 00:00:20 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.174.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:af:4e:6f:56:12:5e:b5:5d:eb:1e:f9:3a:2f:6e:af:8a:8b:a3:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:00:20 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=11f9616caea71432616165ada505011bf637d1676b12e8fc21092c4d87adc97b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5e:86:42:ea:e1:22:fe:e9:76:d8:ba:3e:12: 87:f2:02:84:c3:46:23:af:26:08:26:f9:06:fc:11: ac:e6:dc:41:2e:ee:b5:89:de:6f:15:f8:e6:6b:c5: be:fa:24:8c:39:b0:9e:e8:5e:e7:82:06:f7:75:98: f5:de:c5:b2:b5:56:9d:82:7c:32:ab:27:92:6a:ab: 15:e8:0d:ed:0a:30:ee:e1:f8:80:90:0c:5c:11:ec: 86:ce:36:80:11:7b:e3:a2:a4:c7:89:c1:e6:c3:ba: be:07:bb:cb:4d:93:0b:65:f9:cb:78:66:e5:fc:f3: 60:20:3e:b4:7d:9e:a0:b0:95:6b:75:c4:67:a6:66: 5e:70:02:2e:1a:f0:7c:e2:46:f1:5b:c8:c1:4d:b3: 80:00:9e:10:4c:61:96:ab:b4:58:2e:05:85:26:bf: 81:59:65:70:1c:d1:b7:88:79:67:91:52:05:1b:4d: ae:65:ae:f3:8d:69:c5:a2:37:14:d3:32:18:5c:1f: 92:5f:2b:6a:9c:a2:1a:f1:1b:3e:25:b2:16:8f:49: 29:0c:14:14:c3:b9:d2:41:b1:d3:63:97:43:94:8f: 7e:f1:82:dd:ff:9e:a8:4e:01:a0:a4:3a:8e:42:ba: c4:c2:5b:e0:ad:4c:95:7c:5e:40:48:b7:a9:07:70: db:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:53:0B:75:A9:7D:15:F1:4A:93:06:3C:32:7F:73:39:52:55:7A:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a65165a-7d2e-48ce-a1b5-ba82dcc89d14.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.174.144.0/21 Signature Algorithm: sha256WithRSAEncryption c9:5c:cc:12:b5:a4:f0:ea:49:d7:f8:7a:42:22:a8:b5:f4:23: aa:b1:ff:09:07:9c:97:6e:3d:af:45:81:08:44:70:27:4a:33: 0c:1f:d1:c8:4e:33:a1:de:eb:9a:5e:e0:e1:eb:50:4d:d6:b7: 8b:fd:52:1f:3d:50:e3:e1:88:5c:78:9e:d4:d1:8f:e4:32:ef: e0:e6:5a:76:8a:70:d8:a7:30:7b:06:f2:37:38:19:d6:6b:87: 6e:d6:89:ea:74:4d:80:29:47:45:ef:1d:b1:e4:1e:f1:6f:bd: d6:d1:14:92:6f:3f:0f:f0:90:9e:8f:6b:34:f5:5f:3d:94:a9: 6f:40:8b:5c:ea:36:63:d7:88:5c:7c:e4:39:17:51:73:71:47: fa:52:83:36:af:60:c8:62:7a:c4:06:bf:fb:09:c3:54:b6:91: 67:6f:9d:11:b8:62:8a:62:fc:c7:b2:ff:78:61:38:33:cd:e1: 72:b2:34:e4:b0:08:e6:31:ef:ff:a8:e0:af:b8:de:f2:b7:42: 57:e5:ec:4b:71:be:0e:53:d8:eb:67:32:3a:f6:14:84:07:0c: 17:06:27:74:e7:ce:0c:98:2c:b4:c9:b8:01:df:6a:ae:9e:b2: 28:5f:0d:f0:ea:b0:a0:a8:f6:c2:67:a6:9f:9f:89:fe:bc:e3: 1d:37:f4:52 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKa9Ob1YSXrVd6x75Oi9ur4qLo9UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAwMDIwWhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMWY5NjE2Y2FlYTcxNDMyNjE2MTY1YWRhNTA1MDExYmY2 MzdkMTY3NmIxMmU4ZmMyMTA5MmM0ZDg3YWRjOTdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBXoZC6uEi/ul22Lo+EofyAoTDRiOvJggm+Qb8Eazm3EEu 7rWJ3m8V+OZrxb76JIw5sJ7oXueCBvd1mPXexbK1Vp2CfDKrJ5JqqxXoDe0KMO7h +ICQDFwR7IbONoARe+OipMeJwebDur4Hu8tNkwtl+ct4ZuX882AgPrR9nqCwlWt1 xGemZl5wAi4a8HziRvFbyMFNs4AAnhBMYZartFguBYUmv4FZZXAc0beIeWeRUgUb Ta5lrvONacWiNxTTMhhcH5JfK2qcohrxGz4lshaPSSkMFBTDudJBsdNjl0OUj37x gt3/nqhOAaCkOo5CusTCW+CtTJV8XkBIt6kHcNuZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCFMLdal9FfFKkwY8Mn9zOVJVehowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhNjUxNjVhLTdkMmUtNDhjZS1hMWI1LWJhODJkY2M4OWQxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPKrpAwDQYJKoZIhvcNAQELBQADggEBAMlczBK1pPDqSdf4ekIiqLX0I6qx /wkHnJduPa9FgQhEcCdKMwwf0chOM6He65pe4OHrUE3Wt4v9Uh89UOPhiFx4ntTR j+Qy7+DmWnaKcNinMHsG8jc4GdZrh27Wiep0TYApR0XvHbHkHvFvvdbRFJJvPw/w kJ6PazT1Xz2UqW9Ai1zqNmPXiFx85DkXUXNxR/pSgzavYMhiesQGv/sJw1S2kWdv nRG4Yopi/Mey/3hhODPN4XKyNOSwCOYx7/+o4K+43vK3Qlfl7Etxvg5T2OtnMjr2 FIQHDBcGJ3TnzgyYLLTJuAHfaq6esihfDfDqsKCo9sJnpp+fif684x039FI= -----END CERTIFICATE-----Generated at Tue Jul 1 06:51:26 2025 by rpki-client