$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f4646cb-34cc-48f9-87f7-bbe089fa6562.roa File: 9f4646cb-34cc-48f9-87f7-bbe089fa6562.roa (raw, json) Hash identifier: +hScRKKLka4K/NWyVHL9uUXLEPBPrlMGcnsCzw4jVyE= Subject key identifier: 32:CF:68:C0:A8:82:7F:D7:9D:7F:DA:A5:3A:AD:1E:10:2B:F6:6F:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CE39C2B83F48CA8A72810A9AFE3E6270188600B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f4646cb-34cc-48f9-87f7-bbe089fa6562.roa Signing time: Fri 27 Jun 2025 00:21:31 +0000 ROA not before: Fri 27 Jun 2025 00:21:31 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 31.220.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:e3:9c:2b:83:f4:8c:a8:a7:28:10:a9:af:e3:e6:27:01:88:60:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:21:31 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=3ef3b812ce7911b89dae9d8ecd3c9686d91807071a6490bc0c6a092b06e92607, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9d:d5:bc:59:b1:53:24:8d:a5:37:7f:07:7a: 47:a5:ef:32:eb:25:da:62:89:df:aa:4f:5b:97:5f: 1c:3b:f0:ca:b9:1b:ab:a0:99:9b:eb:dc:26:b6:ca: 94:e1:78:07:8d:75:ed:f7:be:d8:72:3f:ed:9b:b6: 82:bd:69:3c:4c:17:42:e6:b0:46:6a:76:bc:09:09: 7b:f8:b2:5e:83:82:9c:f0:7a:bc:da:e0:9e:f4:37: 31:de:56:54:ed:0b:2e:31:43:69:c4:ac:aa:00:8d: 7a:84:70:c8:25:48:70:fa:20:95:b2:3e:23:6b:3c: bb:b1:70:21:20:c1:34:03:a6:20:1d:cb:ec:7f:ce: b3:0c:30:88:ad:45:03:76:86:53:63:18:f3:4a:71: ec:ea:fe:fd:ee:c0:aa:95:21:d9:df:94:28:b1:1d: 56:34:d8:94:02:69:3a:5a:e1:d9:58:b1:5e:f9:8b: fb:5c:3e:f9:b4:33:cf:0e:0b:f1:28:e6:06:29:8e: 83:08:6f:6f:1b:7d:ef:7c:99:d1:00:ed:aa:9a:1a: eb:46:11:c0:fb:1e:d1:5c:8a:1a:a1:93:a1:c8:b8: 9c:8e:24:75:e6:e9:4f:f1:66:22:81:0d:31:46:dc: 32:ec:65:0f:5c:2e:be:04:4b:bd:00:86:4f:7f:eb: 20:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:CF:68:C0:A8:82:7F:D7:9D:7F:DA:A5:3A:AD:1E:10:2B:F6:6F:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f4646cb-34cc-48f9-87f7-bbe089fa6562.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.220.247.0/24 Signature Algorithm: sha256WithRSAEncryption 87:c6:10:61:0c:ec:07:ea:37:81:02:1a:2a:dc:38:9d:42:39: 77:c4:75:8b:52:d7:1d:13:e2:d1:8f:cf:dd:e0:13:15:94:9f: c2:1a:4e:b5:93:82:c2:7d:12:e5:1a:57:f7:67:9b:95:ca:cf: db:b6:16:7a:03:3c:43:30:c7:f3:13:09:fd:de:43:af:d8:e3: 7e:11:79:1a:b7:fd:96:e5:86:8a:a7:ca:91:54:6c:3f:16:e9: d3:06:33:e2:7f:2d:4c:89:2f:f5:52:56:d0:87:69:53:47:af: 0a:52:83:f6:bb:2a:c2:bf:fc:c6:01:00:0f:cd:18:82:ca:68: ad:50:fc:5d:7c:ad:e1:4e:04:76:ce:58:2a:ec:50:54:d3:b1: ec:9d:70:d1:f7:31:fd:ab:29:2f:46:39:d9:c4:39:df:47:38: dc:bb:b1:3d:c1:36:8a:52:96:84:71:60:71:b7:15:f1:97:86: 37:da:86:26:12:02:b6:b9:7e:b1:bf:b1:fe:e4:d1:7a:21:c4: f1:c9:8a:fb:0d:a0:ec:71:94:5f:7e:f5:a0:e0:aa:c0:82:47: cb:e0:3b:a8:2b:77:80:ef:b4:81:b9:29:87:8f:b3:1c:2b:a0: 52:07:43:32:fd:de:39:26:d1:ed:e2:54:0e:82:64:c8:5d:35: 50:03:26:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbOOcK4P0jKinKBCpr+PmJwGIYAswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDAyMTMxWhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZWYzYjgxMmNlNzkxMWI4OWRhZTlkOGVjZDNjOTY4NmQ5 MTgwNzA3MWE2NDkwYmMwYzZhMDkyYjA2ZTkyNjA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbndW8WbFTJI2lN38Hekel7zLrJdpiid+qT1uXXxw78Mq5 G6ugmZvr3Ca2ypTheAeNde33vthyP+2btoK9aTxMF0LmsEZqdrwJCXv4sl6Dgpzw erza4J70NzHeVlTtCy4xQ2nErKoAjXqEcMglSHD6IJWyPiNrPLuxcCEgwTQDpiAd y+x/zrMMMIitRQN2hlNjGPNKcezq/v3uwKqVIdnflCixHVY02JQCaTpa4dlYsV75 i/tcPvm0M88OC/Eo5gYpjoMIb28bfe98mdEA7aqaGutGEcD7HtFcihqhk6HIuJyO JHXm6U/xZiKBDTFG3DLsZQ9cLr4ES70Ahk9/6yDHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMs9owKiCf9edf9qlOq0eECv2bygwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmNDY0NmNiLTM0Y2MtNDhmOS04N2Y3LWJiZTA4OWZhNjU2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAf3PcwDQYJKoZIhvcNAQELBQADggEBAIfGEGEM7AfqN4ECGircOJ1COXfE dYtS1x0T4tGPz93gExWUn8IaTrWTgsJ9EuUaV/dnm5XKz9u2FnoDPEMwx/MTCf3e Q6/Y434ReRq3/ZblhoqnypFUbD8W6dMGM+J/LUyJL/VSVtCHaVNHrwpSg/a7KsK/ /MYBAA/NGILKaK1Q/F18reFOBHbOWCrsUFTTseydcNH3Mf2rKS9GOdnEOd9HONy7 sT3BNopSloRxYHG3FfGXhjfahiYSAra5frG/sf7k0XohxPHJivsNoOxxlF9+9aDg qsCCR8vgO6grd4DvtIG5KYePsxwroFIHQzL93jkm0e3iVA6CZMhdNVADJuk= -----END CERTIFICATE-----Generated at Wed Jul 2 15:20:12 2025 by rpki-client