$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5463aea-d087-4710-97eb-30bb5ffa528b.roa File: a5463aea-d087-4710-97eb-30bb5ffa528b.roa (raw, json) Hash identifier: Kt54xZiWSHVPFN5CCGEnABqXo76k/eP5b1egTuP88CE= Subject key identifier: 0A:84:94:32:1E:0B:17:03:DE:25:9A:BC:54:5B:E0:CF:9C:AE:C0:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D0E3CBCC2F8691E0C95AC4E3D49E1AF85DA84C6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5463aea-d087-4710-97eb-30bb5ffa528b.roa Signing time: Fri 27 Jun 2025 00:21:09 +0000 ROA not before: Fri 27 Jun 2025 00:21:09 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 7224 IP address blocks: 31.220.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:0e:3c:bc:c2:f8:69:1e:0c:95:ac:4e:3d:49:e1:af:85:da:84:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:21:09 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=40b94b0c7dec7068a38b492022992911166b2248ece07235ff09a1621b0e2dc4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b0:1f:f6:73:11:d2:81:2c:39:4b:2f:e7:51: f2:1f:30:61:06:cb:6e:95:f0:11:f6:f4:3b:24:4d: 51:6f:12:67:50:ef:e7:cd:0f:ad:c6:47:f8:4d:5c: 8b:e4:f4:db:40:26:9f:53:b7:9f:43:75:2b:20:8a: 4a:6d:ea:33:97:49:38:67:87:69:e4:62:8b:eb:c5: 2c:63:14:1e:a3:ef:de:74:3a:15:b0:00:b1:34:15: 39:83:83:b4:2a:22:b2:75:1a:a2:cd:75:f9:32:5e: 07:9c:98:98:c3:e0:f0:7d:fa:69:00:64:55:78:05: 9e:77:3e:b2:21:02:51:5a:71:d6:f3:fd:67:93:c5: 65:4f:a1:00:bd:31:ce:e5:f1:69:e9:15:32:65:5b: 36:ae:87:d0:e1:80:ea:7b:8f:7a:c6:d0:86:d5:c5: 60:01:ba:ff:1c:7e:e6:a3:e6:50:ee:5a:76:4c:b5: 13:5d:59:f3:20:cd:c9:24:2d:5d:ac:01:df:71:37: 1a:5f:fb:3b:c0:69:fc:5b:d2:70:c5:1d:dd:31:04: 42:ab:92:61:5d:06:ab:4a:4c:d0:42:61:5e:0e:ad: 99:9a:d1:1d:c7:23:76:60:1f:f2:e1:d9:87:b4:34: 17:30:de:7b:63:a9:b5:26:4b:a1:d5:06:6e:dc:35: 97:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:84:94:32:1E:0B:17:03:DE:25:9A:BC:54:5B:E0:CF:9C:AE:C0:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5463aea-d087-4710-97eb-30bb5ffa528b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.220.216.0/22 Signature Algorithm: sha256WithRSAEncryption 71:67:62:c3:54:81:3c:10:84:9a:2e:83:6b:36:d0:4c:a5:ea: 1e:cf:b3:99:4a:79:97:91:ed:51:33:d2:34:1b:06:c7:65:40: f8:ee:ea:be:e8:a8:d6:cf:67:cc:82:7b:e3:63:ce:44:f8:aa: da:cf:15:11:a5:fe:3e:64:bb:e1:70:55:e0:5b:8d:51:a7:45: 58:dd:b3:3b:cb:ed:8f:33:06:cd:b8:59:3f:6a:a9:07:1b:d6: 8c:42:d8:6d:92:bb:3a:0e:aa:e7:f1:80:f3:c0:03:70:40:63: 1e:4a:7e:3c:bf:6e:d8:71:8e:ca:2f:26:c3:76:e5:b4:a5:4d: c0:9f:37:a3:14:5b:60:21:7d:d3:88:e1:b4:9a:c2:5a:f0:ba: 86:e2:8e:d4:c1:d3:d5:ef:8e:a7:31:0b:56:5f:ad:8b:17:4f: b3:9e:1c:f1:2a:17:c9:39:17:91:34:39:24:fd:4e:5a:c6:cb: 1c:61:89:93:2b:33:41:a4:5c:16:90:2d:aa:33:10:03:7a:bb: ee:d0:cb:9e:26:ae:ce:8a:87:c3:7b:28:c6:3b:5d:98:f1:f0: 0b:44:44:46:7b:11:3e:fb:a5:3e:e0:d7:53:f5:b8:98:65:40: 7a:6b:07:55:92:7a:fb:46:b5:0d:57:a3:5c:34:e9:c9:34:bb: 04:26:0a:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPQ48vML4aR4MlaxOPUnhr4XahMYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDAyMTA5WhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MGI5NGIwYzdkZWM3MDY4YTM4YjQ5MjAyMjk5MjkxMTE2 NmIyMjQ4ZWNlMDcyMzVmZjA5YTE2MjFiMGUyZGM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPsB/2cxHSgSw5Sy/nUfIfMGEGy26V8BH29DskTVFvEmdQ 7+fND63GR/hNXIvk9NtAJp9Tt59DdSsgikpt6jOXSThnh2nkYovrxSxjFB6j7950 OhWwALE0FTmDg7QqIrJ1GqLNdfkyXgecmJjD4PB9+mkAZFV4BZ53PrIhAlFacdbz /WeTxWVPoQC9Mc7l8WnpFTJlWzauh9DhgOp7j3rG0IbVxWABuv8cfuaj5lDuWnZM tRNdWfMgzckkLV2sAd9xNxpf+zvAafxb0nDFHd0xBEKrkmFdBqtKTNBCYV4OrZma 0R3HI3ZgH/Lh2Ye0NBcw3ntjqbUmS6HVBm7cNZf1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCoSUMh4LFwPeJZq8VFvgz5yuwEowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1NDYzYWVhLWQwODctNDcxMC05N2ViLTMwYmI1ZmZhNTI4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIf3NgwDQYJKoZIhvcNAQELBQADggEBAHFnYsNUgTwQhJoug2s20Eyl6h7P s5lKeZeR7VEz0jQbBsdlQPju6r7oqNbPZ8yCe+NjzkT4qtrPFRGl/j5ku+FwVeBb jVGnRVjdszvL7Y8zBs24WT9qqQcb1oxC2G2SuzoOqufxgPPAA3BAYx5Kfjy/bthx jsovJsN25bSlTcCfN6MUW2AhfdOI4bSawlrwuobijtTB09XvjqcxC1ZfrYsXT7Oe HPEqF8k5F5E0OST9TlrGyxxhiZMrM0GkXBaQLaozEAN6u+7Qy54mrs6Kh8N7KMY7 XZjx8AtEREZ7ET77pT7g11P1uJhlQHprB1WSevtGtQ1Xo1w06ck0uwQmCrA= -----END CERTIFICATE-----Generated at Sun Jun 29 20:28:03 2025 by rpki-client