$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe30170b-f64b-447c-bfa6-1b91a1c5a516.roa File: fe30170b-f64b-447c-bfa6-1b91a1c5a516.roa (raw, json) Hash identifier: SlKZ6AePH1KvOvUllsETxvqnJx20odhAqWRJf1h8fe8= Subject key identifier: A3:91:19:45:F6:0F:6E:7B:D4:14:D1:88:C2:82:06:AA:DB:FC:98:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A5E029E953651E6AB8D3CF32E49660B3D49DE13 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe30170b-f64b-447c-bfa6-1b91a1c5a516.roa Signing time: Wed 06 Aug 2025 00:00:33 +0000 ROA not before: Wed 06 Aug 2025 00:00:33 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 122.200.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:5e:02:9e:95:36:51:e6:ab:8d:3c:f3:2e:49:66:0b:3d:49:de:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 00:00:33 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=b381683cf8d7440999cea82581dc013f837de6ee756741e3fb8499f4ca328faa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:08:91:0d:3a:35:6d:71:d8:da:72:a3:a5:e9: 0b:65:70:bf:0c:6f:60:68:53:1c:fd:05:3f:95:78: 1e:e8:b6:97:57:7b:42:8a:f2:0b:05:b8:52:d2:c8: 31:51:a9:73:21:d0:5a:3b:52:f9:cc:22:0c:6b:58: 69:e8:88:07:ff:22:e8:cc:9a:02:d1:e4:9d:3e:b0: 82:3a:a1:4c:ee:ca:9f:ed:24:ba:05:3d:40:c3:22: e2:d3:d8:e9:2a:08:a1:71:6e:d0:71:ec:9c:7a:a4: a5:38:f8:73:27:50:f5:18:38:69:16:c2:0d:a1:c9: 49:22:00:ff:56:ea:ce:1e:44:56:5d:6b:bb:37:80: 8f:10:36:1f:00:85:ee:a5:00:00:fe:87:d7:cd:f1: 8e:8b:87:ab:0b:65:18:75:84:af:ad:82:e9:88:67: 0c:eb:db:62:81:78:0d:c2:29:1b:ba:4a:48:52:35: 27:6a:45:f9:46:a3:0b:c0:fa:18:5e:63:a0:c9:8e: 68:47:25:5c:ac:1e:af:c0:c8:da:35:cd:d2:98:76: 5f:5a:ad:ee:78:67:38:8f:9a:30:07:aa:ed:73:5f: 31:b3:56:5c:eb:1f:36:80:89:10:03:ab:59:b2:2a: b3:82:83:74:4c:45:46:ee:53:be:6d:fa:f4:06:51: 99:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:91:19:45:F6:0F:6E:7B:D4:14:D1:88:C2:82:06:AA:DB:FC:98:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe30170b-f64b-447c-bfa6-1b91a1c5a516.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 122.200.62.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:7a:19:25:06:d1:a5:b6:a8:63:40:d1:54:11:02:94:5a:cb: 26:8e:97:09:7a:31:4d:83:62:df:21:14:88:3d:5d:90:79:ee: 1f:96:21:65:52:75:42:02:fd:f5:3b:ef:db:3f:e4:b6:63:2b: e4:ca:ac:a0:61:4b:c7:e4:82:89:45:c8:99:00:e2:ed:23:79: a4:1d:c2:87:1a:23:b4:93:29:9d:4d:28:04:e2:c4:55:48:3a: cc:13:5b:07:c5:9a:eb:10:8d:1f:ab:fc:75:61:3e:8e:4c:92: dc:be:ba:e4:df:88:f7:5e:9f:df:f6:06:b5:89:bd:96:1b:4a: 45:c6:90:a1:8a:84:a5:fd:be:68:66:36:5c:67:ae:3b:35:08: 3b:91:c6:41:34:c7:f5:ff:f4:be:85:4b:7d:3d:91:ac:4e:c7: b0:4f:46:93:d3:ae:30:d4:0d:44:ed:33:55:e2:50:5d:e0:ef: a7:74:46:c9:06:89:26:30:b1:13:4b:06:ed:ee:53:de:cd:72: 8a:bc:7b:ed:2d:86:b4:1b:e7:59:0c:58:1a:e9:17:69:0d:d3: 95:7d:3b:da:aa:42:03:d5:2f:a8:52:f2:a1:aa:ed:4c:d5:9e: d9:8e:51:e7:02:da:78:88:39:dd:28:69:ad:ab:c8:2d:00:ff: e2:72:08:b7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWl4CnpU2UearjTzzLklmCz1J3hMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDAwMDMzWhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzgxNjgzY2Y4ZDc0NDA5OTljZWE4MjU4MWRjMDEzZjgz N2RlNmVlNzU2NzQxZTNmYjg0OTlmNGNhMzI4ZmFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKCJENOjVtcdjacqOl6QtlcL8Mb2BoUxz9BT+VeB7otpdX e0KK8gsFuFLSyDFRqXMh0Fo7UvnMIgxrWGnoiAf/IujMmgLR5J0+sII6oUzuyp/t JLoFPUDDIuLT2OkqCKFxbtBx7Jx6pKU4+HMnUPUYOGkWwg2hyUkiAP9W6s4eRFZd a7s3gI8QNh8Ahe6lAAD+h9fN8Y6Lh6sLZRh1hK+tgumIZwzr22KBeA3CKRu6SkhS NSdqRflGowvA+hheY6DJjmhHJVysHq/AyNo1zdKYdl9are54ZziPmjAHqu1zXzGz VlzrHzaAiRADq1myKrOCg3RMRUbuU75t+vQGUZl9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUo5EZRfYPbnvUFNGIwoIGqtv8mEMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZlMzAxNzBiLWY2NGItNDQ3Yy1iZmE2LTFiOTFhMWM1YTUxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAF6yD4wDQYJKoZIhvcNAQELBQADggEBADp6GSUG0aW2qGNA0VQRApRayyaO lwl6MU2DYt8hFIg9XZB57h+WIWVSdUIC/fU779s/5LZjK+TKrKBhS8fkgolFyJkA 4u0jeaQdwocaI7STKZ1NKATixFVIOswTWwfFmusQjR+r/HVhPo5Mkty+uuTfiPde n9/2BrWJvZYbSkXGkKGKhKX9vmhmNlxnrjs1CDuRxkE0x/X/9L6FS309kaxOx7BP RpPTrjDUDUTtM1XiUF3g76d0RskGiSYwsRNLBu3uU97Ncoq8e+0thrQb51kMWBrp F2kN05V9O9qqQgPVL6hS8qGq7UzVntmOUecC2niIOd0oaa2ryC0A/+JyCLc= -----END CERTIFICATE-----Generated at Sat Aug 23 12:22:42 2025 by rpki-client