$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36838b64-b9ce-420b-9c64-96f56a52d535.roa File: 36838b64-b9ce-420b-9c64-96f56a52d535.roa (raw, json) Hash identifier: W4j5Gy+VsYkuYnvP47n/je7mlCxELSQ7s0x5KgPRAUM= Subject key identifier: A0:58:54:DB:10:34:4C:F3:AC:0C:D5:DB:16:B3:32:22:ED:B4:72:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A5BFB2833C0064DE0809E80ED68D09ECC4C5F01 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36838b64-b9ce-420b-9c64-96f56a52d535.roa Signing time: Tue 29 Apr 2025 00:01:08 +0000 ROA not before: Tue 29 Apr 2025 00:01:08 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.174.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:5b:fb:28:33:c0:06:4d:e0:80:9e:80:ed:68:d0:9e:cc:4c:5f:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:01:08 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=a6dc6de23025f7fec0997a4630628d03da9360c8a65e6af4e919175cda85aae2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:68:5c:77:68:de:3b:59:54:71:f2:ec:bc:63: 5a:b6:20:4a:2e:5b:7b:25:bc:d4:05:ff:76:26:7e: 4f:5b:ef:58:f0:76:00:87:0c:c2:8c:ec:1c:bf:0a: 29:b3:5f:72:8c:1c:db:61:42:76:e9:13:16:90:a8: c0:78:a1:dd:de:28:4b:0c:26:29:c6:11:ee:fa:53: fd:63:e4:3f:aa:27:ab:22:00:70:1f:a6:61:4c:7f: 5c:54:5b:f6:06:ee:fc:91:60:a0:59:04:4b:f3:c3: 27:a6:f9:c8:ea:51:64:10:f5:90:6c:95:f8:57:84: f6:19:a3:cd:1b:83:41:9c:63:55:bb:d4:73:f1:d7: 17:25:5f:6b:d9:21:67:c1:16:e0:d5:49:8c:92:3b: 7b:c0:db:8b:56:15:f0:bd:95:d5:e2:71:cd:79:a6: 96:cf:cb:21:6f:c1:7b:a0:8d:00:2a:65:a7:d2:b9: 8d:14:ef:6c:1f:72:79:fa:98:3a:32:fb:a6:af:7f: f1:95:26:7f:ad:1a:32:d0:52:c1:33:16:0d:5a:2c: f0:50:bf:9b:c8:2c:9a:7e:24:71:4d:77:7e:bb:37: 8f:3c:0c:ed:9f:b4:5d:e1:2b:dd:a9:9d:66:e2:2a: c2:f5:7c:fd:6c:49:35:fe:10:49:62:9d:46:14:7b: c6:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:58:54:DB:10:34:4C:F3:AC:0C:D5:DB:16:B3:32:22:ED:B4:72:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36838b64-b9ce-420b-9c64-96f56a52d535.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.174.132.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:a2:23:22:4c:63:df:05:d7:b8:e1:f3:0d:02:38:aa:a6:22: aa:13:23:9b:03:4c:dc:bd:b9:b5:28:ed:f0:17:a4:28:12:bc: 73:93:d1:79:2e:a8:51:15:1f:ae:22:be:81:11:e8:ba:e8:c8: fb:d8:68:13:93:98:02:d4:01:8b:d5:77:fd:e6:5b:23:6e:e3: 68:2d:eb:3a:77:e5:ab:1b:dc:16:3e:10:05:e4:3d:49:e2:ea: 9d:88:7f:4e:53:e6:7b:6e:2e:12:46:d0:07:2d:84:c5:96:3a: 69:ec:13:9d:14:e2:0a:09:72:e4:29:82:c5:bb:57:6d:42:c0: 4c:bc:ae:02:d0:cd:0a:7d:bb:4f:d5:7c:75:68:ce:e7:bd:4e: bc:8e:c6:95:d6:de:a8:92:0d:21:e1:fb:cd:fa:76:3d:17:52: 4b:75:a0:a9:4a:7e:9f:b3:4d:c4:a4:a7:25:dc:77:1e:09:2d: df:1e:84:2f:96:d4:1f:3f:59:ef:a0:62:45:91:09:8e:ed:22: b5:ca:3d:36:06:cd:c5:3b:85:cb:3f:f4:23:a8:6d:ac:6d:8d: 9e:4d:16:d6:48:e1:7a:35:c3:8a:a8:f1:c1:b0:f7:d7:2c:61: 60:35:0d:ae:21:27:64:b7:93:3e:0a:24:c7:a9:e2:a0:3e:bb: cd:ec:25:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUelv7KDPABk3ggJ6A7WjQnsxMXwEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAwMTA4WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNmRjNmRlMjMwMjVmN2ZlYzA5OTdhNDYzMDYyOGQwM2Rh OTM2MGM4YTY1ZTZhZjRlOTE5MTc1Y2RhODVhYWUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNaFx3aN47WVRx8uy8Y1q2IEouW3slvNQF/3Ymfk9b71jw dgCHDMKM7By/CimzX3KMHNthQnbpExaQqMB4od3eKEsMJinGEe76U/1j5D+qJ6si AHAfpmFMf1xUW/YG7vyRYKBZBEvzwyem+cjqUWQQ9ZBslfhXhPYZo80bg0GcY1W7 1HPx1xclX2vZIWfBFuDVSYySO3vA24tWFfC9ldXicc15ppbPyyFvwXugjQAqZafS uY0U72wfcnn6mDoy+6avf/GVJn+tGjLQUsEzFg1aLPBQv5vILJp+JHFNd367N488 DO2ftF3hK92pnWbiKsL1fP1sSTX+EElinUYUe8YfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoFhU2xA0TPOsDNXbFrMyIu20cmkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM2ODM4YjY0LWI5Y2UtNDIwYi05YzY0LTk2ZjU2YTUyZDUzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKroQwDQYJKoZIhvcNAQELBQADggEBAEyiIyJMY98F17jh8w0COKqmIqoT I5sDTNy9ubUo7fAXpCgSvHOT0XkuqFEVH64ivoER6LroyPvYaBOTmALUAYvVd/3m WyNu42gt6zp35asb3BY+EAXkPUni6p2If05T5ntuLhJG0ActhMWWOmnsE50U4goJ cuQpgsW7V21CwEy8rgLQzQp9u0/VfHVozue9TryOxpXW3qiSDSHh+836dj0XUkt1 oKlKfp+zTcSkpyXcdx4JLd8ehC+W1B8/We+gYkWRCY7tIrXKPTYGzcU7hcs/9COo baxtjZ5NFtZI4Xo1w4qo8cGw99csYWA1Da4hJ2S3kz4KJMep4qA+u83sJdI= -----END CERTIFICATE-----Generated at Sat May 10 19:46:41 2025 by rpki-client