$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/593de0b1-b07b-4d5a-8e80-eec3224dc436.roa File: 593de0b1-b07b-4d5a-8e80-eec3224dc436.roa (raw, json) Hash identifier: 28B8uHhxcFBRG8snS2rxQfRSn8MEQSwPr2g5szXtwzM= Subject key identifier: 37:56:18:7F:BF:35:5B:1C:EE:93:41:F2:9D:48:F9:4B:08:B7:A4:90 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 55B24FB8A6BD26EAA5BB3BEA970350C2FC0DBB6F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/593de0b1-b07b-4d5a-8e80-eec3224dc436.roa Signing time: Wed 20 Aug 2025 00:00:22 +0000 ROA not before: Wed 20 Aug 2025 00:00:22 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:b2:4f:b8:a6:bd:26:ea:a5:bb:3b:ea:97:03:50:c2:fc:0d:bb:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 20 00:00:22 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=4a3e6da5e189e33d7432cd75d225c43d04ba6e239718ec5debf141c79bb7d97a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:01:18:97:d4:62:1b:75:46:8c:8c:f5:e8:ba: 2f:bc:fa:8d:ba:34:d0:e6:58:7a:e5:60:8c:af:9e: 51:4d:35:3c:ad:30:c9:d5:d6:96:aa:45:0c:37:dd: 25:65:44:de:0c:6f:c4:db:4d:d0:39:ec:ea:69:00: 02:fd:8d:a6:ca:d9:d0:ba:38:5b:93:c8:e3:ab:ba: e0:ef:db:de:15:50:55:15:31:c1:cd:1a:9c:b1:42: 08:61:dd:f6:db:7b:58:89:40:a8:5f:9b:ab:3f:a1: 68:93:b4:3d:60:eb:55:10:c9:c5:8f:d8:4f:5a:bb: bf:0c:6e:bc:a6:c9:44:bd:e0:68:71:9d:8e:4c:e8: 80:87:90:21:9d:1e:76:9f:7f:5c:32:4a:c2:0a:2f: 09:1d:09:19:51:c2:2a:97:29:b9:e7:a3:93:c0:0d: 28:ed:85:01:fc:46:2c:dc:67:02:4f:56:63:04:ea: c5:c0:dd:7c:4c:fc:f5:6f:dc:2f:3a:a3:46:46:4c: 4e:b7:4f:9c:03:9c:08:44:ef:33:53:2b:a2:66:73: 26:12:7b:cf:02:cb:d0:f9:87:3e:52:00:8b:43:74: 5a:8a:a1:09:19:84:d5:4c:52:e6:cd:e4:c6:16:0d: 8c:f9:10:11:0d:11:e9:bb:56:c7:d7:98:87:4e:1d: 3b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:56:18:7F:BF:35:5B:1C:EE:93:41:F2:9D:48:F9:4B:08:B7:A4:90 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/593de0b1-b07b-4d5a-8e80-eec3224dc436.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.128.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:6a:99:37:41:d2:4c:67:70:c3:7c:19:6b:81:9f:8e:be:e5: 68:d4:c2:30:23:68:56:d2:55:03:78:cc:d5:bd:eb:d0:6b:72: 12:8b:78:d6:00:4d:35:1e:ed:b8:53:fd:0b:40:75:84:25:c4: d8:12:91:aa:25:b2:7f:79:e1:b5:30:89:13:ce:a4:7d:5e:4c: 10:f4:af:3d:a4:f4:28:11:95:28:0e:f3:26:2f:cb:ce:a7:e0: d7:40:cb:c7:af:9a:8c:2d:bb:66:b9:93:b1:cf:2e:f1:08:ac: 1b:8d:8b:bf:6b:bf:65:33:a2:16:3b:1b:0c:95:6b:0b:36:33: 6c:90:45:7c:76:50:00:10:dd:fe:83:ae:ac:29:cc:08:00:59: 21:3f:f9:dd:48:24:fd:90:7c:6d:3f:00:1d:e1:3c:8a:d3:a7: 1c:e4:45:9a:5e:48:60:19:36:c0:55:3c:cc:85:4b:51:00:4d: 20:09:11:ae:20:f6:be:b7:15:2f:4b:e9:8b:ff:f1:31:40:ad: 3b:4a:f6:b3:0b:45:ec:b1:62:a1:b0:8e:03:7e:df:b7:eb:ac: fd:8e:c4:96:cd:13:fb:15:f9:f2:d0:8f:66:cb:f3:34:ce:7a: b5:56:8d:33:9f:c9:a2:75:5c:ff:b3:4c:4f:fa:cf:bc:f1:0c: 54:3c:96:59 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVbJPuKa9JuqluzvqlwNQwvwNu28wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIwMDAwMDIyWhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTNlNmRhNWUxODllMzNkNzQzMmNkNzVkMjI1YzQzZDA0 YmE2ZTIzOTcxOGVjNWRlYmYxNDFjNzliYjdkOTdhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeARiX1GIbdUaMjPXoui+8+o26NNDmWHrlYIyvnlFNNTyt MMnV1paqRQw33SVlRN4Mb8TbTdA57OppAAL9jabK2dC6OFuTyOOruuDv294VUFUV McHNGpyxQghh3fbbe1iJQKhfm6s/oWiTtD1g61UQycWP2E9au78MbrymyUS94Ghx nY5M6ICHkCGdHnaff1wySsIKLwkdCRlRwiqXKbnno5PADSjthQH8RizcZwJPVmME 6sXA3XxM/PVv3C86o0ZGTE63T5wDnAhE7zNTK6JmcyYSe88Cy9D5hz5SAItDdFqK oQkZhNVMUubN5MYWDYz5EBENEem7VsfXmIdOHTuxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUN1YYf781Wxzuk0HynUj5Swi3pJAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5M2RlMGIxLWIwN2ItNGQ1YS04ZTgwLWVlYzMyMjRkYzQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAByOIAwDQYJKoZIhvcNAQELBQADggEBAItqmTdB0kxncMN8GWuBn46+5WjU wjAjaFbSVQN4zNW969BrchKLeNYATTUe7bhT/QtAdYQlxNgSkaolsn954bUwiRPO pH1eTBD0rz2k9CgRlSgO8yYvy86n4NdAy8evmowtu2a5k7HPLvEIrBuNi79rv2Uz ohY7GwyVaws2M2yQRXx2UAAQ3f6DrqwpzAgAWSE/+d1IJP2QfG0/AB3hPIrTpxzk RZpeSGAZNsBVPMyFS1EATSAJEa4g9r63FS9L6Yv/8TFArTtK9rMLReyxYqGwjgN+ 37frrP2OxJbNE/sV+fLQj2bL8zTOerVWjTOfyaJ1XP+zTE/6z7zxDFQ8llk= -----END CERTIFICATE-----Generated at Sat Aug 23 08:17:42 2025 by rpki-client