$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/515d6f04-3964-43a0-97b1-51850a0bc0eb.roa File: 515d6f04-3964-43a0-97b1-51850a0bc0eb.roa (raw, json) Hash identifier: oj3CjoFSjMnIbmt0jV1sRsFu5eZrlEXT6r5MECHt92A= Subject key identifier: C2:7F:A4:13:E4:DB:6B:25:A0:DC:5F:51:B4:55:5D:4E:02:8F:AC:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5645704E9F18C9F5C167563A5ED9E1978EE9F2C1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/515d6f04-3964-43a0-97b1-51850a0bc0eb.roa Signing time: Mon 11 Aug 2025 15:21:51 +0000 ROA not before: Mon 11 Aug 2025 15:21:51 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 162.250.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:45:70:4e:9f:18:c9:f5:c1:67:56:3a:5e:d9:e1:97:8e:e9:f2:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:21:51 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=f4386b48c1d8727e163706a369586da742cbe041a3864a64e50f204ccee66ba4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f6:2f:b8:a0:1e:de:c9:87:e0:c6:1a:63:bf: cb:56:e6:46:c0:1f:ad:76:35:ce:7e:02:cc:19:4e: 00:a4:e1:ae:66:66:16:a1:32:48:8f:c2:31:2f:d5: 59:43:f8:23:ff:b4:01:9e:5c:65:fe:37:66:f2:bc: 85:e8:9c:77:d5:74:02:be:bf:82:43:e7:fb:88:43: 79:09:18:9e:03:fa:e5:4d:23:cc:2b:0a:e4:96:86: a4:41:bd:a1:bc:10:9c:f0:6c:8b:18:96:fd:45:aa: ee:ee:aa:3d:87:8d:c7:aa:87:a7:6f:24:84:16:aa: 9c:a3:03:c1:07:f2:b8:31:ff:1b:61:36:93:88:93: c5:a1:36:bb:4a:f3:15:99:b7:34:f5:73:99:ed:fc: 8c:3a:3e:f9:51:05:57:11:22:25:25:ef:c1:fc:c2: ed:1e:54:2b:b2:df:3d:97:fc:2c:9f:8f:b2:01:96: ec:af:61:a1:7f:d5:3f:b9:8d:b0:57:f7:f2:0f:4b: 9a:9a:7b:63:65:8e:f9:a4:70:27:b2:77:e0:68:53: ff:bc:cb:2b:13:61:b1:ca:fa:24:24:c7:86:ac:fb: 02:dc:61:f7:29:f7:6d:7a:6d:a5:6d:f6:f1:96:5a: 1b:43:55:e4:0d:7a:f7:6f:73:5e:5c:79:d8:7c:fc: 4c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:7F:A4:13:E4:DB:6B:25:A0:DC:5F:51:B4:55:5D:4E:02:8F:AC:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/515d6f04-3964-43a0-97b1-51850a0bc0eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.250.237.0/24 Signature Algorithm: sha256WithRSAEncryption ae:1a:21:5c:0b:ed:3f:9f:fc:b7:31:c7:e7:08:c3:ae:3d:dd: f0:ef:b8:21:bd:0e:cf:b8:05:22:01:3e:11:6a:a2:fa:6e:68: e2:46:4a:c5:17:48:17:fc:ca:ca:3f:78:92:18:8b:17:2a:6c: 2a:f9:57:88:69:a4:cb:ff:81:0d:e3:7c:c9:3a:05:a1:d6:37: 69:8d:3a:67:ef:e6:8a:53:41:ba:5a:e0:20:92:60:62:e0:8f: 24:24:6a:91:1f:89:c3:c9:37:58:35:98:3e:55:ce:fb:c4:bf: 26:8c:3d:0e:ec:af:0c:bc:3d:2e:4f:71:7a:11:9b:c4:e0:d8: 7d:c9:c9:8e:61:6e:4b:6f:14:e4:1a:60:4d:bd:c1:03:8f:21: 2e:9d:6e:a4:73:89:91:6e:46:c4:00:4d:a7:e6:96:fc:b6:3b: aa:54:c9:7c:ed:74:18:64:0d:2c:d1:d9:6d:da:38:9c:ff:3c: 81:47:e3:ce:b8:2e:ba:06:c0:20:b7:04:d2:d1:18:72:44:de: b8:07:a2:fa:66:f3:8a:73:c1:2f:51:20:08:7b:26:72:f1:42: f6:9f:31:6c:99:50:e8:ad:57:df:7e:59:f6:5c:95:54:85:e8: 61:69:49:73:aa:0a:d0:17:99:12:f9:82:91:43:37:18:1e:9d: 95:ee:19:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVkVwTp8YyfXBZ1Y6Xtnhl47p8sEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUyMTUxWhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDM4NmI0OGMxZDg3MjdlMTYzNzA2YTM2OTU4NmRhNzQy Y2JlMDQxYTM4NjRhNjRlNTBmMjA0Y2NlZTY2YmE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw9i+4oB7eyYfgxhpjv8tW5kbAH612Nc5+AswZTgCk4a5m ZhahMkiPwjEv1VlD+CP/tAGeXGX+N2byvIXonHfVdAK+v4JD5/uIQ3kJGJ4D+uVN I8wrCuSWhqRBvaG8EJzwbIsYlv1Fqu7uqj2Hjceqh6dvJIQWqpyjA8EH8rgx/xth NpOIk8WhNrtK8xWZtzT1c5nt/Iw6PvlRBVcRIiUl78H8wu0eVCuy3z2X/Cyfj7IB luyvYaF/1T+5jbBX9/IPS5qae2NljvmkcCeyd+BoU/+8yysTYbHK+iQkx4as+wLc Yfcp9216baVt9vGWWhtDVeQNevdvc15cedh8/EyNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwn+kE+TbayWg3F9RtFVdTgKPrJMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUxNWQ2ZjA0LTM5NjQtNDNhMC05N2IxLTUxODUwYTBiYzBlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi+u0wDQYJKoZIhvcNAQELBQADggEBAK4aIVwL7T+f/Lcxx+cIw6493fDv uCG9Ds+4BSIBPhFqovpuaOJGSsUXSBf8yso/eJIYixcqbCr5V4hppMv/gQ3jfMk6 BaHWN2mNOmfv5opTQbpa4CCSYGLgjyQkapEficPJN1g1mD5VzvvEvyaMPQ7srwy8 PS5PcXoRm8Tg2H3JyY5hbktvFOQaYE29wQOPIS6dbqRziZFuRsQATafmlvy2O6pU yXztdBhkDSzR2W3aOJz/PIFH4864LroGwCC3BNLRGHJE3rgHovpm84pzwS9RIAh7 JnLxQvafMWyZUOitV99+WfZclVSF6GFpSXOqCtAXmRL5gpFDNxgenZXuGUw= -----END CERTIFICATE-----Generated at Sat Aug 23 06:51:49 2025 by rpki-client