$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59d16c9b-cf90-430d-b831-1aafba4ba7a8.roa File: 59d16c9b-cf90-430d-b831-1aafba4ba7a8.roa (raw, json) Hash identifier: wnoS7nUZEQ1Z5dI5fGojfStnvAWgaTlFNsi4D1WUiMw= Subject key identifier: 96:3B:37:8D:6D:40:69:F1:20:7B:5E:23:14:9B:D3:12:6D:F1:8B:A3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E235340434C81521BC441A3783E08C74F6E4D6A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59d16c9b-cf90-430d-b831-1aafba4ba7a8.roa Signing time: Tue 17 Jun 2025 00:00:21 +0000 ROA not before: Tue 17 Jun 2025 00:00:21 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 103.13.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:23:53:40:43:4c:81:52:1b:c4:41:a3:78:3e:08:c7:4f:6e:4d:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 17 00:00:21 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=35fc16dcce3387fb49c52ec16a373eaa24d2dfbf2b4fbc353c09d71c23c1896f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:03:59:1c:0d:d5:e6:fc:bd:16:53:d5:cf:3f: 73:21:8f:cc:18:d9:4b:44:03:e7:09:36:06:b7:a7: aa:2e:44:dc:e1:b0:72:9c:a3:ed:f4:31:8c:1e:43: ff:54:41:80:ab:8b:6e:0b:2d:e4:66:21:0a:6c:ba: e5:d2:08:6f:43:04:bc:ac:a0:27:6d:43:d5:83:d3: d6:41:00:2d:71:0d:d7:a3:da:54:91:24:ba:3b:6d: 34:2f:60:d7:57:cc:93:ed:12:f1:41:77:67:3d:c9: 3a:31:20:29:d8:2d:54:9c:c0:b0:e9:e3:44:77:d5: 57:f6:79:a5:b2:54:7f:8e:e5:8e:12:ad:87:99:1a: 00:77:26:f5:c3:18:9a:88:d8:15:04:64:48:5e:3d: a3:42:64:bc:8a:42:12:8d:11:10:72:74:89:22:0e: 32:81:48:ae:e9:da:97:e5:0c:2a:c0:5e:8a:d5:35: 37:24:4c:fe:98:b6:2c:15:68:08:fc:7a:92:7c:7b: ee:5d:13:a1:cf:44:06:95:b6:34:04:0c:1d:a7:27: e5:f8:f9:8d:9f:82:50:b0:0b:74:27:af:99:7a:c6: 6f:55:71:05:db:c2:7e:ad:9a:1f:78:03:78:c5:06: 5e:80:11:c7:ec:55:67:de:39:df:44:28:5c:9c:4b: c3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:3B:37:8D:6D:40:69:F1:20:7B:5E:23:14:9B:D3:12:6D:F1:8B:A3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59d16c9b-cf90-430d-b831-1aafba4ba7a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.190.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:03:8a:04:ca:b8:c9:48:15:68:c8:d0:4c:d5:99:5f:91:8b: 33:30:4c:37:34:c0:2e:03:4c:85:29:8f:8f:a9:4b:4b:c4:1a: 04:76:3a:14:4f:8a:0f:4b:f3:6c:dd:a8:8e:f3:64:9b:85:b4: 5f:b2:e6:c8:c2:37:c6:5c:84:b6:f5:77:e4:b2:d7:e9:e8:6e: d5:e0:2c:43:36:f5:0e:c7:29:41:ea:3d:27:a3:19:4c:48:10: af:db:eb:2b:91:e6:78:04:f3:70:1b:bb:44:5d:9b:4c:fe:8f: 47:c3:4a:d2:b3:19:6e:06:49:49:04:31:dc:b3:92:70:73:ee: f2:51:1b:2e:29:31:90:41:16:1e:88:0a:70:87:51:5f:33:54: 15:4c:78:ac:11:36:d9:6d:f2:a0:2f:27:3a:f8:13:94:0b:f2: dc:b8:d8:be:e5:b6:6c:31:b6:22:55:df:4f:f8:a9:90:ea:ba: 2e:50:e4:37:5f:08:37:7c:f3:75:bf:96:b5:66:09:d4:b0:6a: fa:f7:90:ce:2f:32:ab:13:e5:c0:02:d3:7a:e5:4e:51:b7:6c: 5d:cb:06:e9:4d:0e:6d:ca:ad:9b:3a:c6:ce:b1:d7:02:57:e2: cd:42:b9:f8:57:81:d2:12:05:6a:81:5a:f0:2c:b9:52:70:4a: 3a:b8:cc:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDiNTQENMgVIbxEGjeD4Ix09uTWowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE3MDAwMDIxWhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWZjMTZkY2NlMzM4N2ZiNDljNTJlYzE2YTM3M2VhYTI0 ZDJkZmJmMmI0ZmJjMzUzYzA5ZDcxYzIzYzE4OTZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3A1kcDdXm/L0WU9XPP3Mhj8wY2UtEA+cJNga3p6ouRNzh sHKco+30MYweQ/9UQYCri24LLeRmIQpsuuXSCG9DBLysoCdtQ9WD09ZBAC1xDdej 2lSRJLo7bTQvYNdXzJPtEvFBd2c9yToxICnYLVScwLDp40R31Vf2eaWyVH+O5Y4S rYeZGgB3JvXDGJqI2BUEZEhePaNCZLyKQhKNERBydIkiDjKBSK7p2pflDCrAXorV NTckTP6YtiwVaAj8epJ8e+5dE6HPRAaVtjQEDB2nJ+X4+Y2fglCwC3Qnr5l6xm9V cQXbwn6tmh94A3jFBl6AEcfsVWfeOd9EKFycS8OVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUljs3jW1AafEge14jFJvTEm3xi6MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5ZDE2YzliLWNmOTAtNDMwZC1iODMxLTFhYWZiYTRiYTdhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnDb4wDQYJKoZIhvcNAQELBQADggEBAGsDigTKuMlIFWjI0EzVmV+RizMw TDc0wC4DTIUpj4+pS0vEGgR2OhRPig9L82zdqI7zZJuFtF+y5sjCN8ZchLb1d+Sy 1+nobtXgLEM29Q7HKUHqPSejGUxIEK/b6yuR5ngE83Abu0Rdm0z+j0fDStKzGW4G SUkEMdyzknBz7vJRGy4pMZBBFh6ICnCHUV8zVBVMeKwRNtlt8qAvJzr4E5QL8ty4 2L7ltmwxtiJV30/4qZDqui5Q5DdfCDd883W/lrVmCdSwavr3kM4vMqsT5cAC03rl TlG3bF3LBulNDm3KrZs6xs6x1wJX4s1CufhXgdISBWqBWvAsuVJwSjq4zAM= -----END CERTIFICATE-----Generated at Sun Jun 29 07:56:33 2025 by rpki-client