$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87c60087-f583-4b05-b8b6-f37a488645bf.roa File: 87c60087-f583-4b05-b8b6-f37a488645bf.roa (raw, json) Hash identifier: eg7cPVJ5FORTcve7w9qNSnbQa4luVJ15a8p7fPXZDxM= Subject key identifier: EB:4C:17:4F:3E:07:20:C4:F8:B2:C8:3E:20:78:59:DE:C4:CC:46:FC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CE20EB912B7FE4341AD3717D67D24AA1311CED4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87c60087-f583-4b05-b8b6-f37a488645bf.roa Signing time: Tue 17 Jun 2025 00:00:21 +0000 ROA not before: Tue 17 Jun 2025 00:00:21 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 103.14.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e2:0e:b9:12:b7:fe:43:41:ad:37:17:d6:7d:24:aa:13:11:ce:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 17 00:00:21 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=6d844673b951c8fe1593a922a8af1f1848337f3819149098a77f4c0d12d55643, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a3:8b:c3:dc:42:d8:cc:05:8b:cb:70:12:0e: 9b:24:c8:05:46:ae:55:47:e0:d8:2f:79:e1:db:2d: b5:ca:27:39:2f:d5:2d:fd:6e:3d:29:05:57:34:b6: 8d:7d:c4:af:99:30:07:fd:b7:5b:b1:2a:b3:e7:7b: 72:b1:5a:18:79:09:ae:7e:1d:76:b2:a4:cb:cd:17: 75:53:74:0d:09:91:60:e9:38:07:47:a1:fc:b8:57: c9:70:f4:fa:4d:71:b4:ed:e1:f2:dd:83:27:8e:58: 30:f0:e3:28:b6:ae:c7:22:3a:59:d7:99:e9:65:bf: 76:d7:78:27:39:6e:17:36:96:92:d9:9b:7f:67:98: ff:c7:73:1e:7a:d7:8a:21:42:ff:7e:31:11:5b:7a: 33:9e:ac:95:7b:ac:f0:b2:4c:69:a8:ff:8c:92:3c: d9:60:4a:5e:e2:84:84:1e:88:9f:21:25:9d:28:c3: 62:76:03:eb:9b:fe:1b:84:f7:04:40:2f:63:f3:b6: 14:88:fc:e9:8c:ef:77:ed:58:4f:0a:11:65:75:1d: 7e:b8:be:34:16:e7:af:05:b5:86:a4:20:35:4d:d0: b9:48:87:a7:20:60:71:3a:56:78:d1:23:20:d7:1a: 5f:ee:01:64:97:75:68:32:59:e6:a4:aa:f4:c3:40: cd:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:4C:17:4F:3E:07:20:C4:F8:B2:C8:3E:20:78:59:DE:C4:CC:46:FC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87c60087-f583-4b05-b8b6-f37a488645bf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.4.0/22 Signature Algorithm: sha256WithRSAEncryption 76:77:f2:5c:31:9d:9a:c8:d5:61:48:f0:d8:b9:bc:b4:10:b9: e1:67:48:d6:8e:1e:48:ee:86:a9:36:49:6f:17:db:14:87:a2: 91:c4:3b:f3:43:46:95:e4:9d:dc:87:9a:d9:cd:b9:4c:a2:4b: 34:10:44:ae:d4:43:1e:54:74:34:e2:2a:d7:51:f0:aa:36:62: 6a:0e:95:03:43:93:9c:5c:17:87:79:a6:95:6d:4b:63:ae:a1: ce:ce:7a:16:55:20:f6:e4:54:d8:d6:58:37:66:dc:d0:1d:a6: 3b:77:20:c8:03:ea:39:d1:c3:e3:d5:6f:3d:d8:34:40:6f:51: da:fd:98:06:25:f9:5b:b0:bf:78:87:a4:06:af:38:83:1c:5d: 25:91:64:9f:8d:d3:16:04:c4:9b:a0:9f:43:17:07:49:6c:41: ce:aa:bc:ea:eb:df:91:4c:fd:8b:33:16:9b:45:cf:e1:86:cf: 3d:b3:9b:05:2a:51:08:d8:32:97:2f:75:56:48:8a:02:c7:64: c9:6d:03:77:a3:f2:47:53:f3:72:40:8a:e3:1f:20:d0:30:b7: 35:32:a2:aa:9b:0c:4b:55:2f:c5:e3:2b:55:10:7e:02:44:d4: f3:ec:50:3a:ac:51:ed:dd:f5:ce:74:ef:3d:aa:5a:f5:c6:3a: 78:86:b0:4b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXOIOuRK3/kNBrTcX1n0kqhMRztQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE3MDAwMDIxWhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDg0NDY3M2I5NTFjOGZlMTU5M2E5MjJhOGFmMWYxODQ4 MzM3ZjM4MTkxNDkwOThhNzdmNGMwZDEyZDU1NjQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCso4vD3ELYzAWLy3ASDpskyAVGrlVH4NgveeHbLbXKJzkv 1S39bj0pBVc0to19xK+ZMAf9t1uxKrPne3KxWhh5Ca5+HXaypMvNF3VTdA0JkWDp OAdHofy4V8lw9PpNcbTt4fLdgyeOWDDw4yi2rsciOlnXmellv3bXeCc5bhc2lpLZ m39nmP/Hcx5614ohQv9+MRFbejOerJV7rPCyTGmo/4ySPNlgSl7ihIQeiJ8hJZ0o w2J2A+ub/huE9wRAL2PzthSI/OmM73ftWE8KEWV1HX64vjQW568FtYakIDVN0LlI h6cgYHE6VnjRIyDXGl/uAWSXdWgyWeakqvTDQM1RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU60wXTz4HIMT4ssg+IHhZ3sTMRvwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg3YzYwMDg3LWY1ODMtNGIwNS1iOGI2LWYzN2E0ODg2NDViZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJnDgQwDQYJKoZIhvcNAQELBQADggEBAHZ38lwxnZrI1WFI8Ni5vLQQueFn SNaOHkjuhqk2SW8X2xSHopHEO/NDRpXkndyHmtnNuUyiSzQQRK7UQx5UdDTiKtdR 8Ko2YmoOlQNDk5xcF4d5ppVtS2Ouoc7OehZVIPbkVNjWWDdm3NAdpjt3IMgD6jnR w+PVbz3YNEBvUdr9mAYl+Vuwv3iHpAavOIMcXSWRZJ+N0xYExJugn0MXB0lsQc6q vOrr35FM/YszFptFz+GGzz2zmwUqUQjYMpcvdVZIigLHZMltA3ej8kdT83JAiuMf INAwtzUyoqqbDEtVL8XjK1UQfgJE1PPsUDqsUe3d9c507z2qWvXGOniGsEs= -----END CERTIFICATE-----Generated at Tue Jul 1 06:52:09 2025 by rpki-client