$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9efa147a-8234-4801-a8dd-96fc19dc752f.roa File: 9efa147a-8234-4801-a8dd-96fc19dc752f.roa (raw, json) Hash identifier: jZXGGPQ5vZnuGwlyff6JUyyoRmDE7WLvgwIfft04TbM= Subject key identifier: 97:09:E5:6B:36:88:80:EF:68:9C:CA:66:FB:85:06:5D:9E:85:CB:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0DA70CCEE870FC79C3DE6C05C4A978D871BF78F8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9efa147a-8234-4801-a8dd-96fc19dc752f.roa Signing time: Sat 14 Jun 2025 00:20:18 +0000 ROA not before: Sat 14 Jun 2025 00:20:18 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 119.13.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:a7:0c:ce:e8:70:fc:79:c3:de:6c:05:c4:a9:78:d8:71:bf:78:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:20:18 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=f6555245571aae645795cdd1af7a2b9d2e4a7c709043ac11586cfa00e5c7e418, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:22:04:c6:3d:d9:89:bb:0b:aa:2f:94:a4:56: cc:ae:6d:8f:3d:6b:6b:ae:0b:0c:10:64:47:13:38: 08:7f:82:a0:34:69:9d:c4:f3:30:27:c5:1a:b5:b2: c1:6c:89:1e:49:47:96:54:b2:70:60:05:06:e6:6c: 68:bf:95:d0:02:9e:a1:31:04:f9:9f:6a:b7:dd:31: 94:0c:78:0a:22:da:f3:81:ae:58:d2:0b:25:34:8e: 2b:2a:51:c8:19:2e:7a:36:c5:db:e2:13:3d:f5:b5: bd:da:d9:95:cb:aa:1a:c6:c0:31:a6:b1:a8:ef:ca: 75:c5:c2:22:40:53:2d:7e:fe:5e:0b:46:6e:34:cd: 2e:1d:7d:06:be:7c:81:d3:29:18:04:17:97:30:cc: d2:60:8b:d4:02:9f:16:74:dc:97:91:a5:5b:03:8a: 4c:f1:ac:84:82:ec:72:97:4c:e5:5a:f3:bd:e4:27: de:88:99:5b:a8:ea:14:b0:01:34:7b:76:78:4d:02: bf:69:53:dc:2c:d6:e8:59:f4:75:4c:69:e6:66:9d: 9d:bb:18:3f:7e:0b:f6:c6:93:59:d5:4b:ba:f9:b6: dc:47:45:67:b3:07:2b:cc:1d:c9:2c:be:75:8b:41: 99:1e:36:32:a8:5f:5d:fd:3b:df:ed:11:fe:ec:73: 6a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:09:E5:6B:36:88:80:EF:68:9C:CA:66:FB:85:06:5D:9E:85:CB:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9efa147a-8234-4801-a8dd-96fc19dc752f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.13.11.0/24 Signature Algorithm: sha256WithRSAEncryption 14:df:07:f9:ba:60:0d:7c:b3:09:bf:6c:73:df:7d:a2:bc:3e: 86:2b:39:b2:0f:d8:37:4a:47:8b:06:16:85:7c:4d:da:2c:2a: 6a:e3:2f:f0:03:7e:76:88:9f:18:5d:b6:8c:de:05:44:e9:48: e7:43:57:51:c6:a7:a6:41:41:e8:ab:cd:30:ae:19:98:b5:59: ce:e3:14:1a:fe:c0:e8:05:2e:98:c8:06:27:ad:64:ad:01:f8: ab:fc:12:b9:59:61:39:2a:8a:13:85:b3:ee:d9:8b:ee:a7:66: 8e:1a:e0:40:1e:01:cb:03:42:06:a5:20:02:71:db:d8:bf:66: f9:4d:c9:24:52:b2:1d:70:58:33:70:55:d5:55:22:98:c4:10: c3:f0:37:15:9d:90:59:2d:31:d9:9d:b5:68:59:f6:37:b5:8f: a6:df:ae:cb:ea:45:ae:b6:f6:fa:53:dc:7b:79:3c:38:02:3b: 47:94:2b:52:5a:10:54:4c:a0:b2:ad:84:08:1d:c0:20:99:da: 69:8c:ac:f5:82:3a:38:8f:73:da:7c:02:72:af:12:88:34:d2: 90:2c:b9:db:58:87:8d:6b:c4:0d:d6:c0:b1:8c:84:67:1a:c9: bb:0b:4e:d5:43:70:bb:18:19:a1:2d:1e:9f:e8:32:39:f7:f6: c4:74:90:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDacMzuhw/HnD3mwFxKl42HG/ePgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDAyMDE4WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjU1NTI0NTU3MWFhZTY0NTc5NWNkZDFhZjdhMmI5ZDJl NGE3YzcwOTA0M2FjMTE1ODZjZmEwMGU1YzdlNDE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVIgTGPdmJuwuqL5SkVsyubY89a2uuCwwQZEcTOAh/gqA0 aZ3E8zAnxRq1ssFsiR5JR5ZUsnBgBQbmbGi/ldACnqExBPmfarfdMZQMeAoi2vOB rljSCyU0jisqUcgZLno2xdviEz31tb3a2ZXLqhrGwDGmsajvynXFwiJAUy1+/l4L Rm40zS4dfQa+fIHTKRgEF5cwzNJgi9QCnxZ03JeRpVsDikzxrISC7HKXTOVa873k J96ImVuo6hSwATR7dnhNAr9pU9ws1uhZ9HVMaeZmnZ27GD9+C/bGk1nVS7r5ttxH RWezByvMHcksvnWLQZkeNjKoX139O9/tEf7sc2pdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlwnlazaIgO9onMpm+4UGXZ6Fy7AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllZmExNDdhLTgyMzQtNDgwMS1hOGRkLTk2ZmMxOWRjNzUyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAB3DQswDQYJKoZIhvcNAQELBQADggEBABTfB/m6YA18swm/bHPffaK8PoYr ObIP2DdKR4sGFoV8TdosKmrjL/ADfnaInxhdtozeBUTpSOdDV1HGp6ZBQeirzTCu GZi1Wc7jFBr+wOgFLpjIBietZK0B+Kv8ErlZYTkqihOFs+7Zi+6nZo4a4EAeAcsD QgalIAJx29i/ZvlNySRSsh1wWDNwVdVVIpjEEMPwNxWdkFktMdmdtWhZ9je1j6bf rsvqRa629vpT3Ht5PDgCO0eUK1JaEFRMoLKthAgdwCCZ2mmMrPWCOjiPc9p8AnKv Eog00pAsudtYh41rxA3WwLGMhGcaybsLTtVDcLsYGaEtHp/oMjn39sR0kEg= -----END CERTIFICATE-----Generated at Tue Jul 1 15:27:24 2025 by rpki-client