$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af2b29ee-eb9b-4b98-8632-62271a0714e4.roa File: af2b29ee-eb9b-4b98-8632-62271a0714e4.roa (raw, json) Hash identifier: GIcAnHrsLNVwY9I3bnby3DT9FjT6NOxyuj4F3W7NITc= Subject key identifier: C4:23:24:73:D7:4B:F7:0F:39:F3:32:16:36:9E:06:9F:DE:04:A8:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CBF391D8CE92DC98CB3049582A0373C18B45BA4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af2b29ee-eb9b-4b98-8632-62271a0714e4.roa Signing time: Mon 28 Apr 2025 15:11:10 +0000 ROA not before: Mon 28 Apr 2025 15:11:10 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.174.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:bf:39:1d:8c:e9:2d:c9:8c:b3:04:95:82:a0:37:3c:18:b4:5b:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:11:10 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=c15df2e80bb0a282cc7b0ab84bddba6417dad6656a8462b22c686353a70d12e7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ed:66:0a:cf:4a:bd:e8:78:6c:15:f2:08:78: 89:f6:33:99:6f:e4:d0:8d:e4:06:b6:ee:aa:c1:36: 7b:e2:ef:4b:fc:8b:f5:12:c2:23:f8:12:73:0f:0f: 82:ab:5d:68:29:ae:3e:c1:5e:d7:0e:01:db:e0:46: 3c:dd:7d:e9:e3:6d:98:22:da:ad:98:e0:73:de:c8: 4f:57:c7:f0:4a:50:8e:b2:33:bf:86:46:3c:94:97: 6f:d1:68:f3:dc:aa:d7:90:41:13:53:f1:57:0d:b1: 03:ef:a9:f4:44:d9:c5:93:9b:86:ef:d0:64:84:03: 78:33:62:49:d2:63:44:b4:2b:b6:df:d0:5d:f1:3a: 71:bb:bd:04:68:2d:02:64:17:62:a8:3b:6a:d3:de: 55:4c:82:a9:13:94:5f:48:a6:86:75:e2:50:81:09: db:5c:d1:39:e3:06:4c:d3:df:f6:a9:f9:c3:a7:2f: 3a:2f:54:0d:9a:71:a5:ec:99:7e:85:97:98:b6:e1: b6:1d:11:18:59:ed:df:a8:88:12:4a:62:19:19:d8: 9e:c8:92:24:a9:38:a6:8c:16:cd:30:5b:47:03:5b: 06:75:2f:57:ac:d2:9a:01:8c:e5:0c:ac:3b:ea:cd: fd:6a:43:14:43:9c:c5:7e:f5:e5:56:a7:7d:3a:fc: f6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:23:24:73:D7:4B:F7:0F:39:F3:32:16:36:9E:06:9F:DE:04:A8:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af2b29ee-eb9b-4b98-8632-62271a0714e4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.174.129.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:d8:4f:a8:07:43:67:d8:c9:32:31:0a:f2:dc:97:e6:9e:a4: cd:50:1f:3b:10:83:aa:cc:cc:d5:46:a2:36:f1:71:83:56:5b: c0:86:0a:2c:1c:03:f1:1e:a5:4d:f6:4f:47:b3:c5:5c:d3:97: 45:7a:cf:ee:a7:fe:7d:3d:28:67:d8:b2:92:62:29:b6:63:3c: a8:6a:47:80:18:8f:8d:b6:80:d1:a1:fb:43:ae:f8:60:c1:4c: e9:91:88:f1:89:ad:03:f5:11:b1:e5:1d:69:93:1a:93:50:a0: 22:76:d6:4f:db:35:fe:5d:bc:42:55:c0:47:52:63:73:ad:b7: 53:d7:38:b2:f5:ba:e0:07:c2:1b:56:62:9b:27:91:c1:8e:d6: 65:d7:b5:50:ff:be:a2:34:35:9c:3a:0a:d7:60:ab:e4:7f:68: 40:d3:5a:eb:4f:b6:b9:cc:1b:32:c2:f7:9f:8c:a9:49:94:11: 2e:74:ff:ad:28:72:e2:86:c7:84:49:ed:e3:be:70:da:0a:f7: e8:2a:63:8d:5f:9b:b3:dd:6c:88:c1:92:ab:f4:f8:9b:5e:ce: 10:b1:2d:a0:bd:a0:59:b0:94:e3:fa:66:11:ca:84:3e:63:41: 01:67:39:ca:9b:27:20:a6:b1:92:ea:c7:71:70:f6:ea:ad:82: 7c:12:28:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPL85HYzpLcmMswSVgqA3PBi0W6QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUxMTEwWhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTVkZjJlODBiYjBhMjgyY2M3YjBhYjg0YmRkYmE2NDE3 ZGFkNjY1NmE4NDYyYjIyYzY4NjM1M2E3MGQxMmU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ7WYKz0q96HhsFfIIeIn2M5lv5NCN5Aa27qrBNnvi70v8 i/USwiP4EnMPD4KrXWgprj7BXtcOAdvgRjzdfenjbZgi2q2Y4HPeyE9Xx/BKUI6y M7+GRjyUl2/RaPPcqteQQRNT8VcNsQPvqfRE2cWTm4bv0GSEA3gzYknSY0S0K7bf 0F3xOnG7vQRoLQJkF2KoO2rT3lVMgqkTlF9IpoZ14lCBCdtc0TnjBkzT3/ap+cOn LzovVA2acaXsmX6Fl5i24bYdERhZ7d+oiBJKYhkZ2J7IkiSpOKaMFs0wW0cDWwZ1 L1es0poBjOUMrDvqzf1qQxRDnMV+9eVWp306/PYLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxCMkc9dL9w858zIWNp4Gn94EqO8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmMmIyOWVlLWViOWItNGI5OC04NjMyLTYyMjcxYTA3MTRlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADKroEwDQYJKoZIhvcNAQELBQADggEBADrYT6gHQ2fYyTIxCvLcl+aepM1Q HzsQg6rMzNVGojbxcYNWW8CGCiwcA/EepU32T0ezxVzTl0V6z+6n/n09KGfYspJi KbZjPKhqR4AYj422gNGh+0Ou+GDBTOmRiPGJrQP1EbHlHWmTGpNQoCJ21k/bNf5d vEJVwEdSY3Ott1PXOLL1uuAHwhtWYpsnkcGO1mXXtVD/vqI0NZw6Ctdgq+R/aEDT WutPtrnMGzLC95+MqUmUES50/60ocuKGx4RJ7eO+cNoK9+gqY41fm7PdbIjBkqv0 +JtezhCxLaC9oFmwlOP6ZhHKhD5jQQFnOcqbJyCmsZLqx3Fw9uqtgnwSKOk= -----END CERTIFICATE-----Generated at Sat May 10 19:14:55 2025 by rpki-client