$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a6cf3fa-6eee-4987-9853-a06a8e428215.roa File: 5a6cf3fa-6eee-4987-9853-a06a8e428215.roa (raw, json) Hash identifier: Ju7QDCJLpSuEF3IIKWRiciA5bTdy8afehxf/SErzdcA= Subject key identifier: 06:A9:CF:63:C6:F6:97:10:39:73:10:CD:5B:C6:38:40:96:36:F8:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34BAABB9E432B74F8B3593C306296D1817F914B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a6cf3fa-6eee-4987-9853-a06a8e428215.roa Signing time: Sat 28 Jun 2025 00:00:20 +0000 ROA not before: Sat 28 Jun 2025 00:00:20 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.238.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:ba:ab:b9:e4:32:b7:4f:8b:35:93:c3:06:29:6d:18:17:f9:14:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:00:20 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=cf33629e459c27d32522f02ce5423d32fa0a24333678e7e80973816f3dff3c0a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:df:85:ef:61:f1:93:87:7f:4d:56:11:5e:ad: d4:f7:a3:4a:e6:4f:84:0c:9c:cf:cf:c8:c2:b3:a2: b3:6c:c3:ca:23:68:21:4f:64:6f:90:e4:85:22:aa: 28:f9:66:9f:87:29:1a:8a:49:14:98:3c:cc:a3:49: 52:0f:db:52:3f:65:54:a1:d7:43:3b:a2:e9:83:3f: 18:15:35:08:86:90:ef:56:ab:e6:21:71:65:e2:f1: 8a:6a:8c:dd:6c:e5:0a:e1:c1:6c:cc:34:dc:12:8c: c2:81:0e:cb:11:45:20:b2:63:e4:24:cd:73:33:df: eb:4b:1f:74:c4:58:7c:05:09:05:42:76:b9:4e:c1: 5f:c8:bb:c2:0e:98:26:09:23:d3:fd:8e:aa:7c:de: 89:57:77:20:bf:2d:03:3d:1f:23:5b:ab:af:a6:26: 85:58:10:23:0e:5a:07:b8:82:04:f3:71:57:f9:e9: 95:b8:8e:b4:6c:94:34:ca:ca:e1:ed:71:aa:bf:cb: 05:91:b8:86:c0:0e:62:02:7a:14:3b:c4:ef:84:74: cb:80:33:a5:62:a4:72:b3:1d:eb:74:6e:f6:58:29: 80:d0:2a:0e:43:cd:24:47:6a:e0:50:82:d1:d6:1e: 78:b2:e6:35:c8:d4:ca:08:5f:b9:ab:a2:60:bc:22: 02:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A9:CF:63:C6:F6:97:10:39:73:10:CD:5B:C6:38:40:96:36:F8:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a6cf3fa-6eee-4987-9853-a06a8e428215.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.238.3.0/24 Signature Algorithm: sha256WithRSAEncryption d5:6f:6a:97:66:0c:8e:69:f8:31:1c:4d:01:4b:36:a1:ff:15: b9:71:96:88:58:05:0e:3c:dc:77:9c:b0:a0:97:cc:af:c4:a0: 59:21:e3:ef:5d:6f:2f:2e:68:fd:5e:8c:9f:20:e7:64:9f:8d: ad:6e:2a:ea:8b:ac:d4:f8:53:dd:a6:fe:86:9f:fc:ca:89:d9: c2:46:9c:85:a0:4c:f4:dd:dc:e3:2f:01:8d:0d:3f:f2:a6:cd: 6b:f0:09:28:3e:fb:cf:16:b8:cc:d9:a9:d5:64:cb:2f:e4:21: a7:2f:53:51:dc:a5:4d:75:78:28:54:dc:92:ef:1d:10:30:0a: 19:05:0d:d0:d0:97:38:ca:0c:67:5f:c1:24:23:b6:ba:7e:b9: 4b:ee:8b:a5:cd:54:8c:e6:4b:6f:79:35:45:d2:3a:0e:cc:bf: 64:d2:d4:3a:57:d7:ad:19:0c:e0:2e:96:6a:bc:ba:fe:95:d3: 02:c5:76:98:ff:26:f4:b4:fa:74:73:b0:de:77:a1:18:a2:81: 75:1e:de:14:c4:05:ae:f4:17:99:19:03:84:e6:fa:eb:10:d6: fe:70:d0:26:c3:d2:01:4f:dd:4a:4f:3b:9c:98:b8:09:59:9a: cd:3a:21:d2:dd:6c:7a:1d:3e:91:62:35:88:f5:db:8b:08:33: a0:81:8d:82 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNLqrueQyt0+LNZPDBiltGBf5FLMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAwMDIwWhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjMzNjI5ZTQ1OWMyN2QzMjUyMmYwMmNlNTQyM2QzMmZh MGEyNDMzMzY3OGU3ZTgwOTczODE2ZjNkZmYzYzBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB34XvYfGTh39NVhFerdT3o0rmT4QMnM/PyMKzorNsw8oj aCFPZG+Q5IUiqij5Zp+HKRqKSRSYPMyjSVIP21I/ZVSh10M7oumDPxgVNQiGkO9W q+YhcWXi8YpqjN1s5QrhwWzMNNwSjMKBDssRRSCyY+QkzXMz3+tLH3TEWHwFCQVC drlOwV/Iu8IOmCYJI9P9jqp83olXdyC/LQM9HyNbq6+mJoVYECMOWge4ggTzcVf5 6ZW4jrRslDTKyuHtcaq/ywWRuIbADmICehQ7xO+EdMuAM6VipHKzHet0bvZYKYDQ Kg5DzSRHauBQgtHWHniy5jXI1MoIX7mromC8IgIjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBqnPY8b2lxA5cxDNW8Y4QJY2+JowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhNmNmM2ZhLTZlZWUtNDk4Ny05ODUzLWEwNmE4ZTQyODIxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABu7gMwDQYJKoZIhvcNAQELBQADggEBANVvapdmDI5p+DEcTQFLNqH/Fblx lohYBQ483HecsKCXzK/EoFkh4+9dby8uaP1ejJ8g52Sfja1uKuqLrNT4U92m/oaf /MqJ2cJGnIWgTPTd3OMvAY0NP/KmzWvwCSg++88WuMzZqdVkyy/kIacvU1HcpU11 eChU3JLvHRAwChkFDdDQlzjKDGdfwSQjtrp+uUvui6XNVIzmS295NUXSOg7Mv2TS 1DpX160ZDOAulmq8uv6V0wLFdpj/JvS0+nRzsN53oRiigXUe3hTEBa70F5kZA4Tm +usQ1v5w0CbD0gFP3UpPO5yYuAlZms06IdLdbHodPpFiNYj124sIM6CBjYI= -----END CERTIFICATE-----Generated at Wed Jul 2 05:18:39 2025 by rpki-client