$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/628f294d-91fb-4214-b47e-601508341308.roa File: 628f294d-91fb-4214-b47e-601508341308.roa (raw, json) Hash identifier: pwvatoPvAhc8ZguAd44QGJIFEh5zpuMX0FjCkG1pRE0= Subject key identifier: 40:5D:FC:30:49:75:F8:B9:49:08:D5:65:1B:E3:8B:60:51:3E:0D:44 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C17D7EC7E3FBAC088D69BD73B44B37627D07970 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/628f294d-91fb-4214-b47e-601508341308.roa Signing time: Fri 22 Aug 2025 00:20:32 +0000 ROA not before: Fri 22 Aug 2025 00:20:32 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 125.253.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:17:d7:ec:7e:3f:ba:c0:88:d6:9b:d7:3b:44:b3:76:27:d0:79:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:20:32 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=3809bd1067601e925ee0feaad2e6edda37bc147319230bbdfd3c67ecbdec1cc6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2b:83:8f:6e:d9:c0:48:28:6d:8c:79:8b:a2: 5c:bf:6c:35:9f:6d:f9:53:51:95:17:ae:8b:8c:91: fa:cb:9e:85:fa:60:d7:73:c5:17:13:33:2f:d1:c2: 34:98:df:de:b4:a6:c0:f3:9d:51:a3:da:64:92:9a: 6a:63:03:ca:4d:fa:50:3e:7b:79:c2:a8:94:8e:85: 52:ca:f2:17:46:3e:1a:73:ea:3b:71:bb:54:91:04: 91:59:bd:1f:09:95:0d:88:29:f6:d4:8f:3a:c9:a1: 2c:5d:cf:18:f0:13:f8:96:53:7d:20:26:07:5e:56: 50:f6:f4:4b:aa:90:50:24:2a:0f:98:36:fe:91:75: 71:74:e8:d7:ae:f8:48:2b:22:92:47:7f:9e:82:84: 2e:72:2a:c4:b2:37:50:99:a6:af:65:f3:3c:20:a6: e5:b0:bb:74:6e:a3:c5:f6:11:09:e1:06:8b:fa:a9: 0e:ea:2d:95:7c:83:3f:41:c6:13:ad:82:18:4e:7a: 6b:a1:da:81:28:cd:11:c5:b2:bc:dd:a0:05:75:ca: ba:c7:61:35:7a:88:e6:3f:1d:e5:cc:8d:ff:93:4a: 13:1f:52:f4:f4:ba:64:2e:97:77:9d:a2:22:3d:47: e2:53:72:cf:a1:70:6e:93:6c:02:41:3a:ea:cf:00: cb:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:5D:FC:30:49:75:F8:B9:49:08:D5:65:1B:E3:8B:60:51:3E:0D:44 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/628f294d-91fb-4214-b47e-601508341308.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.253.192.0/18 Signature Algorithm: sha256WithRSAEncryption b0:aa:a6:78:7a:d8:e5:2c:2b:61:66:2f:90:0b:6d:3e:8c:01: 9f:c1:a3:3c:a9:5f:77:1e:6e:d2:53:ad:a3:64:8a:b2:12:cd: 10:21:7c:d2:83:33:2e:8a:eb:ba:78:4b:41:dc:63:d0:02:37: bc:79:e9:e7:ed:2b:1b:8c:7b:6d:56:60:cc:1e:8e:f8:0e:96: 73:cd:c2:21:dc:b7:04:47:72:46:f6:64:b6:85:79:1d:e3:8f: 5b:29:11:19:a0:06:41:67:ca:c8:2e:37:ac:34:b8:b1:1c:6a: 16:8a:94:47:7f:4c:f3:fa:e9:8f:9e:6c:77:a3:0a:a9:c1:db: 14:0d:c5:d3:2f:29:6b:15:f6:d0:58:c9:46:1b:29:e8:bd:d5: cb:0e:f5:74:4e:a2:ae:43:34:c2:cb:87:b2:ef:9b:f7:19:c3: c6:84:c3:8a:4f:7e:b2:11:dc:fe:77:b3:16:d1:9f:06:00:48: 4c:84:ab:46:03:af:6d:45:47:f6:5d:42:82:5f:7c:35:9c:4a: bc:1e:1d:e3:8e:3f:c5:ee:0c:e7:58:30:b1:ed:1b:4c:ec:44: 65:f1:dc:22:73:d1:c6:4b:9c:1b:b9:04:bd:e5:5c:6f:35:88: 36:16:45:64:9e:76:7c:fb:90:ad:f1:27:dd:9e:7e:59:47:a7: cf:05:49:89 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXBfX7H4/usCI1pvXO0SzdifQeXAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDAyMDMyWhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODA5YmQxMDY3NjAxZTkyNWVlMGZlYWFkMmU2ZWRkYTM3 YmMxNDczMTkyMzBiYmRmZDNjNjdlY2JkZWMxY2M2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuK4OPbtnASChtjHmLoly/bDWfbflTUZUXrouMkfrLnoX6 YNdzxRcTMy/RwjSY3960psDznVGj2mSSmmpjA8pN+lA+e3nCqJSOhVLK8hdGPhpz 6jtxu1SRBJFZvR8JlQ2IKfbUjzrJoSxdzxjwE/iWU30gJgdeVlD29EuqkFAkKg+Y Nv6RdXF06Neu+EgrIpJHf56ChC5yKsSyN1CZpq9l8zwgpuWwu3Ruo8X2EQnhBov6 qQ7qLZV8gz9BxhOtghhOemuh2oEozRHFsrzdoAV1yrrHYTV6iOY/HeXMjf+TShMf UvT0umQul3edoiI9R+JTcs+hcG6TbAJBOurPAMsfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQF38MEl1+LlJCNVlG+OLYFE+DUQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyOGYyOTRkLTkxZmItNDIxNC1iNDdlLTYwMTUwODM0MTMwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZ9/cAwDQYJKoZIhvcNAQELBQADggEBALCqpnh62OUsK2FmL5ALbT6MAZ/B ozypX3cebtJTraNkirISzRAhfNKDMy6K67p4S0HcY9ACN7x56eftKxuMe21WYMwe jvgOlnPNwiHctwRHckb2ZLaFeR3jj1spERmgBkFnysguN6w0uLEcahaKlEd/TPP6 6Y+ebHejCqnB2xQNxdMvKWsV9tBYyUYbKei91csO9XROoq5DNMLLh7Lvm/cZw8aE w4pPfrIR3P53sxbRnwYASEyEq0YDr21FR/ZdQoJffDWcSrweHeOOP8XuDOdYMLHt G0zsRGXx3CJz0cZLnBu5BL3lXG81iDYWRWSednz7kK3xJ92efllHp88FSYk= -----END CERTIFICATE-----Generated at Sat Aug 23 08:28:32 2025 by rpki-client