$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0e3fb9a-1677-41cb-ad7a-b5231049acda.roa File: d0e3fb9a-1677-41cb-ad7a-b5231049acda.roa (raw, json) Hash identifier: 9NBKDHyRChYZBtalsRfe1vz4X2pJX+Gb4FNhscdiGZ4= Subject key identifier: 25:B2:25:81:BB:42:3E:AC:2C:69:86:61:A6:35:CC:65:2F:1B:16:DB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 366081BF24F95AFE75F5C4CB8D57DD7FA9BCD89B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0e3fb9a-1677-41cb-ad7a-b5231049acda.roa Signing time: Mon 28 Apr 2025 15:11:23 +0000 ROA not before: Mon 28 Apr 2025 15:11:23 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.5.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:60:81:bf:24:f9:5a:fe:75:f5:c4:cb:8d:57:dd:7f:a9:bc:d8:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:11:23 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=d2bd20733b7fcb8e3b4fb823a47d6b25334ba18deebf9f77c927ee40faf3897e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c2:58:be:b0:99:8a:09:4e:0c:9b:d3:4a:de: 19:1a:39:4c:fd:9d:f0:37:5f:44:90:44:cd:79:81: 38:0a:7b:74:7e:15:ed:dd:68:00:b4:70:c3:28:d4: 99:0f:9f:e2:c7:5b:66:cb:ec:9f:aa:ce:e5:de:13: 44:51:00:6b:55:40:09:9b:ad:fd:5f:87:6e:21:e3: d3:4d:01:a9:a5:09:f9:c8:c9:b2:60:d8:5a:95:46: ec:76:65:1d:0f:17:78:cb:ba:76:0b:88:a9:0d:aa: d8:e3:99:0a:0a:ea:51:5f:d7:b1:26:11:a8:7f:09: a6:ed:0a:b7:96:99:8f:13:ef:5a:3f:47:9a:87:a0: cb:56:a5:7c:de:86:11:c7:92:26:fe:f7:28:86:95: 79:b7:f5:c9:48:c2:62:5e:96:de:a3:45:5b:1e:b2: 1b:d1:52:d4:fd:a6:88:e4:bd:47:e8:70:71:07:1b: da:a6:e8:0e:aa:bd:6d:47:6b:10:cd:4e:3f:8c:35: 6e:6e:35:5f:36:8e:17:c6:ee:58:0d:c4:f4:04:54: 95:62:7a:20:9b:00:75:7a:e7:41:41:e1:92:dc:71: 9d:2a:96:b2:98:74:ac:be:fd:55:d1:45:ea:d7:27: f9:6b:d8:ce:84:3f:48:d5:b3:86:5b:f5:06:57:eb: 0e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:B2:25:81:BB:42:3E:AC:2C:69:86:61:A6:35:CC:65:2F:1B:16:DB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0e3fb9a-1677-41cb-ad7a-b5231049acda.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.191.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:4f:4a:e2:fd:cb:37:79:5d:59:27:50:6e:3e:51:21:47:24: 09:55:bb:7d:96:67:8a:e1:a5:6e:fa:65:55:92:65:0c:b3:73: 27:96:77:81:bd:9e:58:60:e0:a2:87:81:60:07:57:29:b9:d5: b8:55:1c:e3:27:18:6d:19:89:80:32:59:d1:99:65:91:29:55: 31:8e:c9:74:57:45:d3:46:c1:69:6a:ab:5d:d9:b1:64:bb:26: c0:4c:a0:e7:ab:35:a4:54:27:42:66:38:b7:d8:1b:59:50:bc: a2:8c:6b:7d:48:57:e6:0b:c4:f6:db:fb:3a:29:d0:0e:11:c7: 05:7f:1a:98:32:82:88:4d:6a:8a:eb:3c:ec:dc:53:3a:0d:23: 8c:7a:00:c1:82:7a:c2:33:11:52:cf:cd:38:9e:14:05:73:15: c2:e7:2b:3f:58:68:b1:f4:c4:7e:94:2d:42:8d:cb:15:60:a6: c5:bc:85:97:60:b3:95:7e:1c:27:e5:ba:50:6d:75:c0:ec:9c: 3a:57:8e:a5:3a:4a:81:5f:5f:4a:06:69:89:c0:39:f5:96:3c: 4e:f4:a8:27:4c:3f:43:f1:2e:f6:0b:93:25:ba:94:59:e6:e2: 7d:cc:a8:ab:b5:bf:7f:6b:d7:b5:62:0e:b8:33:58:60:d7:28: 4b:09:72:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNmCBvyT5Wv519cTLjVfdf6m82JswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUxMTIzWhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMmJkMjA3MzNiN2ZjYjhlM2I0ZmI4MjNhNDdkNmIyNTMz NGJhMThkZWViZjlmNzdjOTI3ZWU0MGZhZjM4OTdlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVwli+sJmKCU4Mm9NK3hkaOUz9nfA3X0SQRM15gTgKe3R+ Fe3daAC0cMMo1JkPn+LHW2bL7J+qzuXeE0RRAGtVQAmbrf1fh24h49NNAamlCfnI ybJg2FqVRux2ZR0PF3jLunYLiKkNqtjjmQoK6lFf17EmEah/CabtCreWmY8T71o/ R5qHoMtWpXzehhHHkib+9yiGlXm39clIwmJelt6jRVseshvRUtT9pojkvUfocHEH G9qm6A6qvW1HaxDNTj+MNW5uNV82jhfG7lgNxPQEVJVieiCbAHV650FB4ZLccZ0q lrKYdKy+/VXRRerXJ/lr2M6EP0jVs4Zb9QZX6w7ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJbIlgbtCPqwsaYZhpjXMZS8bFtswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwZTNmYjlhLTE2NzctNDFjYi1hZDdhLWI1MjMxMDQ5YWNkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADKBb8wDQYJKoZIhvcNAQELBQADggEBABpPSuL9yzd5XVknUG4+USFHJAlV u32WZ4rhpW76ZVWSZQyzcyeWd4G9nlhg4KKHgWAHVym51bhVHOMnGG0ZiYAyWdGZ ZZEpVTGOyXRXRdNGwWlqq13ZsWS7JsBMoOerNaRUJ0JmOLfYG1lQvKKMa31IV+YL xPbb+zop0A4RxwV/GpgygohNaorrPOzcUzoNI4x6AMGCesIzEVLPzTieFAVzFcLn Kz9YaLH0xH6ULUKNyxVgpsW8hZdgs5V+HCflulBtdcDsnDpXjqU6SoFfX0oGaYnA OfWWPE70qCdMP0PxLvYLkyW6lFnm4n3MqKu1v39r17ViDrgzWGDXKEsJcsM= -----END CERTIFICATE-----Generated at Sun May 11 09:40:01 2025 by rpki-client