$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5213e57-80ca-4b02-8923-95f9e9f6bf42.roa File: a5213e57-80ca-4b02-8923-95f9e9f6bf42.roa (raw, json) Hash identifier: MiA5TvZ7dD8Xw+3vmkgfd8+OBjFsX/fI/ek/6zTFhks= Subject key identifier: 18:23:6B:25:AD:4C:10:59:E1:7B:AB:75:84:1F:12:74:9B:9D:5F:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 471FA44AE0EB51E5217872BF5A5B8C0272517ADF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5213e57-80ca-4b02-8923-95f9e9f6bf42.roa Signing time: Fri 22 Aug 2025 00:21:10 +0000 ROA not before: Fri 22 Aug 2025 00:21:10 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.110.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:1f:a4:4a:e0:eb:51:e5:21:78:72:bf:5a:5b:8c:02:72:51:7a:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:21:10 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=561e52869d479148f3109fde0af3112787adcade90aefc12a348916db9439ed7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:73:2d:f5:71:1a:80:c7:ba:b0:56:24:3e:f8: 27:90:49:08:a8:a8:a0:db:70:7c:bd:d5:45:12:70: 13:45:21:de:e8:e5:5c:e1:1d:3d:e5:b2:a9:60:c0: 34:33:f1:2c:4c:7b:30:49:ca:cb:35:f0:e5:68:4b: fc:45:3e:05:96:52:6f:6a:bd:84:1d:1b:90:e4:3d: 3e:45:14:c2:a2:78:21:b5:97:98:15:93:47:a8:8c: 31:01:93:85:3f:d2:aa:1c:51:d0:de:04:a7:54:a1: 7c:71:0d:a8:d7:f6:af:5b:5e:25:cc:c5:9b:fd:c3: 69:5f:fd:76:37:73:1d:0d:85:31:40:07:1a:24:0b: a7:0a:5c:43:0c:4b:df:a3:07:17:4c:b5:2d:77:98: d9:b0:69:53:16:07:79:de:c6:cc:bf:db:07:60:c3: 3d:cb:1b:6d:57:6f:4a:0b:54:3a:14:46:30:71:43: 5c:74:19:46:aa:2e:5a:6b:60:40:18:d8:8a:31:b6: 40:d9:6b:e4:d2:77:c9:bc:37:38:81:4c:b1:c2:2e: 20:e2:1b:db:2f:d2:9b:b1:6c:34:b4:70:25:a7:6b: c5:47:b5:89:a6:49:e8:ee:46:5a:d4:59:ac:9c:1d: 73:0d:94:6c:84:33:c4:43:20:69:4c:34:70:9e:67: 59:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:23:6B:25:AD:4C:10:59:E1:7B:AB:75:84:1F:12:74:9B:9D:5F:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5213e57-80ca-4b02-8923-95f9e9f6bf42.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.110.193.0/24 Signature Algorithm: sha256WithRSAEncryption a9:96:c4:cd:15:e5:45:f4:3f:d0:a5:23:ea:07:44:9e:ce:d4: bb:7e:18:ab:f7:15:7c:99:be:e8:a4:32:c3:29:a8:a9:97:d3: 77:ec:26:af:bc:33:89:e6:81:2d:0e:9f:d8:b4:e3:11:ee:ee: 28:6e:15:5a:63:dd:be:ed:71:ac:69:49:d1:16:84:4f:39:0e: e1:9d:c6:d4:bc:d0:21:60:62:4b:3f:0d:f9:b3:be:35:e9:91: a0:e3:a5:57:4e:f5:6d:af:03:49:65:e8:53:ff:8a:77:67:96: cf:a4:94:4a:e6:ca:98:9d:a4:1c:00:91:29:ca:4d:16:40:d0: 51:14:db:f5:0e:82:36:c4:69:18:41:8c:53:24:48:31:9a:c5: f1:7a:6d:92:23:41:fb:e2:0a:23:97:e1:90:c3:d6:18:d3:d4: a3:13:5e:4d:dd:ea:13:0b:4b:11:30:6b:50:4a:f8:a2:85:c7: 97:2f:c9:3f:71:e8:72:aa:71:77:87:d5:fe:c6:a1:bd:02:95: bc:38:49:30:8b:bf:6e:05:a9:02:2a:d0:b5:6b:fe:c4:cc:62: 78:29:01:89:ad:7a:14:28:1e:a6:35:b3:ea:61:13:40:fa:be: b8:68:0e:22:96:ff:0e:cd:a1:86:46:5f:e7:d1:1d:fc:59:52: d5:e5:3a:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURx+kSuDrUeUheHK/WluMAnJRet8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDAyMTEwWhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjFlNTI4NjlkNDc5MTQ4ZjMxMDlmZGUwYWYzMTEyNzg3 YWRjYWRlOTBhZWZjMTJhMzQ4OTE2ZGI5NDM5ZWQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5cy31cRqAx7qwViQ++CeQSQioqKDbcHy91UUScBNFId7o 5VzhHT3lsqlgwDQz8SxMezBJyss18OVoS/xFPgWWUm9qvYQdG5DkPT5FFMKieCG1 l5gVk0eojDEBk4U/0qocUdDeBKdUoXxxDajX9q9bXiXMxZv9w2lf/XY3cx0NhTFA BxokC6cKXEMMS9+jBxdMtS13mNmwaVMWB3nexsy/2wdgwz3LG21Xb0oLVDoURjBx Q1x0GUaqLlprYEAY2IoxtkDZa+TSd8m8NziBTLHCLiDiG9sv0puxbDS0cCWna8VH tYmmSejuRlrUWaycHXMNlGyEM8RDIGlMNHCeZ1nfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGCNrJa1MEFnhe6t1hB8SdJudX7owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1MjEzZTU3LTgwY2EtNGIwMi04OTIzLTk1ZjllOWY2YmY0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADLbsEwDQYJKoZIhvcNAQELBQADggEBAKmWxM0V5UX0P9ClI+oHRJ7O1Lt+ GKv3FXyZvuikMsMpqKmX03fsJq+8M4nmgS0On9i04xHu7ihuFVpj3b7tcaxpSdEW hE85DuGdxtS80CFgYks/DfmzvjXpkaDjpVdO9W2vA0ll6FP/indnls+klErmypid pBwAkSnKTRZA0FEU2/UOgjbEaRhBjFMkSDGaxfF6bZIjQfviCiOX4ZDD1hjT1KMT Xk3d6hMLSxEwa1BK+KKFx5cvyT9x6HKqcXeH1f7Gob0Clbw4STCLv24FqQIq0LVr /sTMYngpAYmtehQoHqY1s+phE0D6vrhoDiKW/w7NoYZGX+fRHfxZUtXlOns= -----END CERTIFICATE-----Generated at Sat Aug 23 09:12:09 2025 by rpki-client