$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6661985d-c51f-4c5f-8453-80d68575535b.roa File: 6661985d-c51f-4c5f-8453-80d68575535b.roa (raw, json) Hash identifier: hDF7aSmjpSaCeYb2XWPsHJPGA1OV/9418yEFx9dAGUQ= Subject key identifier: ED:48:14:96:A7:ED:9E:98:55:9E:8C:70:1C:18:62:FB:AF:51:EB:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3898EF0470B42EB9B3A6BC05B14A30C6BAAC19C5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6661985d-c51f-4c5f-8453-80d68575535b.roa Signing time: Fri 22 Aug 2025 00:20:30 +0000 ROA not before: Fri 22 Aug 2025 00:20:30 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 125.1.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:98:ef:04:70:b4:2e:b9:b3:a6:bc:05:b1:4a:30:c6:ba:ac:19:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:20:30 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=64a38acfcae95cd8120bfcaad9959ecf1304d3b3921580022adb75fb5beb501e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5b:a0:e6:d5:cd:cb:ed:71:16:04:58:1e:1b: e6:ef:7c:1d:fb:c8:c3:fd:b3:67:36:26:23:f5:37: fb:58:21:2b:72:33:97:df:45:e4:bb:84:20:72:4d: 47:8f:e6:b9:07:97:5d:22:fd:98:c9:ef:c4:51:c5: 4e:69:2a:1b:96:79:48:b7:59:61:f9:7b:46:4f:27: 1f:d3:4b:75:79:5b:8a:bf:38:8a:8c:38:59:c6:4e: 23:9b:02:bd:4c:be:56:fe:c3:0f:0d:37:70:9a:e0: 22:d1:da:c5:02:0d:2d:09:e2:72:82:37:f3:97:5d: 08:98:69:d6:36:d1:70:d6:24:3a:24:46:a3:a7:87: be:55:d1:37:38:d2:2c:04:a9:8f:76:1e:f9:0e:83: 7c:e9:6e:79:90:c1:5b:dd:63:65:c1:57:9c:36:c6: 8c:ca:ad:35:6d:33:06:78:41:1f:6c:64:16:0e:be: 6b:03:aa:96:8c:65:a5:38:96:9c:b3:90:e3:1b:29: da:96:8a:97:b9:c9:c3:de:4d:19:25:34:2b:9a:20: 68:cc:d2:f1:0c:06:44:e2:f9:1c:c9:55:4f:42:c1: 5b:1c:f3:9e:85:81:18:23:f0:33:cd:09:23:1a:a2: 64:f4:42:1a:53:76:b2:df:fe:5a:30:eb:bc:f2:b2: bd:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:48:14:96:A7:ED:9E:98:55:9E:8C:70:1C:18:62:FB:AF:51:EB:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6661985d-c51f-4c5f-8453-80d68575535b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.1.128.0/18 Signature Algorithm: sha256WithRSAEncryption 64:90:44:c2:42:65:9d:fe:38:aa:87:c2:50:d5:65:3b:e4:4f: 6b:9f:44:31:b8:8e:f8:b6:0a:43:66:30:c0:ee:e2:8a:ff:46: 40:86:77:a7:17:1f:fd:55:26:22:fa:da:f2:14:cc:39:de:51: 03:70:1f:d5:2b:c4:47:e3:20:e2:81:58:e7:fa:4f:42:6a:83: 9c:cd:d3:97:24:79:30:b9:52:b8:41:9f:95:80:08:55:a1:d9: 02:2d:eb:5a:28:a3:15:54:5a:79:83:8c:98:2c:65:fe:2e:4b: 9c:7a:1b:eb:52:aa:c3:30:b6:02:ea:22:2f:f7:2d:aa:8c:bd: b7:67:a6:5d:74:aa:0e:88:68:e3:68:5b:66:e2:ca:9b:d9:15: a1:d9:18:c7:c9:13:ac:66:4c:9d:b8:ff:aa:aa:31:74:fb:0d: 7c:a1:17:e0:3c:63:19:3f:97:fb:21:25:a0:26:39:8c:a4:4c: 1d:cd:a2:1f:91:53:c3:e7:c4:45:02:93:50:a9:bd:1d:f5:7a: 88:a2:14:eb:fc:fe:0d:ce:f5:c4:8c:c9:d4:7e:73:ed:8a:10: d2:58:4c:13:00:ec:21:47:7e:25:58:96:d7:6b:77:97:46:61: 85:a6:84:62:7c:7c:0f:fc:9d:ef:2d:65:93:b8:86:83:4f:72: 4c:fe:b8:16 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOJjvBHC0LrmzprwFsUowxrqsGcUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDAyMDMwWhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGEzOGFjZmNhZTk1Y2Q4MTIwYmZjYWFkOTk1OWVjZjEz MDRkM2IzOTIxNTgwMDIyYWRiNzVmYjViZWI1MDFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8W6Dm1c3L7XEWBFgeG+bvfB37yMP9s2c2JiP1N/tYISty M5ffReS7hCByTUeP5rkHl10i/ZjJ78RRxU5pKhuWeUi3WWH5e0ZPJx/TS3V5W4q/ OIqMOFnGTiObAr1Mvlb+ww8NN3Ca4CLR2sUCDS0J4nKCN/OXXQiYadY20XDWJDok RqOnh75V0Tc40iwEqY92HvkOg3zpbnmQwVvdY2XBV5w2xozKrTVtMwZ4QR9sZBYO vmsDqpaMZaU4lpyzkOMbKdqWipe5ycPeTRklNCuaIGjM0vEMBkTi+RzJVU9CwVsc 856FgRgj8DPNCSMaomT0QhpTdrLf/low67zysr0LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7UgUlqftnphVnoxwHBhi+69R60IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2NjE5ODVkLWM1MWYtNGM1Zi04NDUzLTgwZDY4NTc1NTM1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZ9AYAwDQYJKoZIhvcNAQELBQADggEBAGSQRMJCZZ3+OKqHwlDVZTvkT2uf RDG4jvi2CkNmMMDu4or/RkCGd6cXH/1VJiL62vIUzDneUQNwH9UrxEfjIOKBWOf6 T0Jqg5zN05ckeTC5UrhBn5WACFWh2QIt61oooxVUWnmDjJgsZf4uS5x6G+tSqsMw tgLqIi/3LaqMvbdnpl10qg6IaONoW2biypvZFaHZGMfJE6xmTJ24/6qqMXT7DXyh F+A8Yxk/l/shJaAmOYykTB3Noh+RU8PnxEUCk1CpvR31eoiiFOv8/g3O9cSMydR+ c+2KENJYTBMA7CFHfiVYltdrd5dGYYWmhGJ8fA/8ne8tZZO4hoNPckz+uBY= -----END CERTIFICATE-----Generated at Sat Aug 23 09:09:49 2025 by rpki-client