$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee522d32-18fa-41ec-9fef-6162dfabf12f.roa File: ee522d32-18fa-41ec-9fef-6162dfabf12f.roa (raw, json) Hash identifier: +Wpo/Ln9TWHhenYdQmBcmBDIy/FFgNefqX0SvzyxfeA= Subject key identifier: E5:B4:B6:03:AF:9C:51:93:78:68:F4:8B:C0:FC:B8:39:81:D0:02:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4AFA6AEA26B6A372DD785D8D402DC8D010042E39 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee522d32-18fa-41ec-9fef-6162dfabf12f.roa Signing time: Wed 18 Jun 2025 00:01:59 +0000 ROA not before: Wed 18 Jun 2025 00:01:59 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.88.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:fa:6a:ea:26:b6:a3:72:dd:78:5d:8d:40:2d:c8:d0:10:04:2e:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:01:59 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=6b807a7173ce10a480ed49a75d7cddce553c3513bf50f360c1872ea5da3d5892, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a0:89:7d:3f:a1:f4:e3:5a:ea:0b:ce:76:ac: a8:c2:0c:25:33:57:4a:2a:4d:d5:fb:c9:4e:e6:b9: aa:63:30:b3:f3:54:88:a8:98:bb:a5:e5:03:45:76: ce:14:77:be:ab:9e:5d:91:12:8c:5c:c2:bf:f9:8e: 6f:81:41:7b:2c:de:aa:c1:83:48:c7:84:c6:d7:50: ee:77:a4:50:8f:14:06:62:a0:2c:e7:bf:d6:cc:ca: f6:02:7a:dc:94:09:cf:fc:4f:1e:fa:3d:54:bc:d7: c2:95:d7:10:7b:cb:c6:a0:6a:77:10:66:c1:9b:db: 80:44:0d:be:30:9b:32:02:f5:60:6e:f5:ea:9f:20: 54:0f:04:37:f2:84:8e:f4:ec:e9:6c:9d:42:19:b3: ef:ed:0b:4c:0e:f0:f6:28:a8:94:b6:f6:23:ab:a6: be:33:ac:80:af:73:25:d6:a3:e3:23:bd:a4:b5:5d: 3a:22:fc:be:51:11:b8:f7:14:50:aa:4b:e1:75:72: 7b:30:d3:97:22:e1:2b:f7:92:bb:07:89:7d:7e:19: 19:0d:ab:0b:c9:37:95:35:fc:7f:0b:f9:b7:b1:9b: ae:e8:98:2f:e4:4d:c7:ea:77:8c:6b:96:9b:74:93: 94:bd:a5:02:65:56:7e:57:52:6a:51:46:06:7e:50: f2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:B4:B6:03:AF:9C:51:93:78:68:F4:8B:C0:FC:B8:39:81:D0:02:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee522d32-18fa-41ec-9fef-6162dfabf12f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.88.92.0/23 Signature Algorithm: sha256WithRSAEncryption 91:8a:c9:ca:77:ed:e6:19:1d:9e:a5:d7:40:91:1a:db:50:ed: fa:93:cc:5d:bb:3f:4a:6b:09:73:69:88:ac:36:76:e0:02:da: fd:bb:a9:05:73:ee:2a:7c:fc:9a:ca:c8:64:cf:e8:6b:4a:e3: 6f:1b:e4:37:22:ea:3a:6b:d6:c0:9a:21:4d:e0:86:b8:07:51: c6:4b:10:ee:bf:a1:4b:2f:76:be:89:bd:61:59:3b:51:2c:37: db:9a:d5:05:dd:d4:0a:62:2d:ba:4d:68:52:d0:15:11:d9:c9: 24:c3:dc:de:59:23:6c:e6:d7:cd:ff:ee:e2:a3:6b:ca:91:b6: 25:90:35:3a:d0:1f:e6:d9:c9:bd:3b:01:6e:c0:a9:04:97:6e: bc:54:6a:b0:b0:a5:df:b4:2e:86:0f:af:66:ce:cd:f4:aa:0d: 80:76:65:31:cd:e2:1c:0d:34:2b:be:cc:bd:e0:19:9a:08:79: 6a:63:cc:0f:e1:88:9f:8e:1d:2d:4a:2f:32:83:24:5d:56:0d: 41:70:83:e7:cc:35:6a:fd:7c:a1:56:37:b1:83:8d:35:3d:e9: 7d:0d:98:b9:ee:64:25:bf:4f:82:65:5a:6d:76:43:72:4c:25: 75:42:31:b2:9f:ab:52:6d:d9:60:4f:7b:24:a4:45:e4:e0:dd: 7a:77:07:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSvpq6ia2o3LdeF2NQC3I0BAELjkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAwMTU5WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjgwN2E3MTczY2UxMGE0ODBlZDQ5YTc1ZDdjZGRjZTU1 M2MzNTEzYmY1MGYzNjBjMTg3MmVhNWRhM2Q1ODkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVoIl9P6H041rqC852rKjCDCUzV0oqTdX7yU7muapjMLPz VIiomLul5QNFds4Ud76rnl2REoxcwr/5jm+BQXss3qrBg0jHhMbXUO53pFCPFAZi oCznv9bMyvYCetyUCc/8Tx76PVS818KV1xB7y8agancQZsGb24BEDb4wmzIC9WBu 9eqfIFQPBDfyhI707OlsnUIZs+/tC0wO8PYoqJS29iOrpr4zrICvcyXWo+MjvaS1 XToi/L5REbj3FFCqS+F1cnsw05ci4Sv3krsHiX1+GRkNqwvJN5U1/H8L+bexm67o mC/kTcfqd4xrlpt0k5S9pQJlVn5XUmpRRgZ+UPIZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5bS2A6+cUZN4aPSLwPy4OYHQAi8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlNTIyZDMyLTE4ZmEtNDFlYy05ZmVmLTYxNjJkZmFiZjEyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHLWFwwDQYJKoZIhvcNAQELBQADggEBAJGKycp37eYZHZ6l10CRGttQ7fqT zF27P0prCXNpiKw2duAC2v27qQVz7ip8/JrKyGTP6GtK428b5Dci6jpr1sCaIU3g hrgHUcZLEO6/oUsvdr6JvWFZO1EsN9ua1QXd1ApiLbpNaFLQFRHZySTD3N5ZI2zm 183/7uKja8qRtiWQNTrQH+bZyb07AW7AqQSXbrxUarCwpd+0LoYPr2bOzfSqDYB2 ZTHN4hwNNCu+zL3gGZoIeWpjzA/hiJ+OHS1KLzKDJF1WDUFwg+fMNWr9fKFWN7GD jTU96X0NmLnuZCW/T4JlWm12Q3JMJXVCMbKfq1Jt2WBPeySkReTg3Xp3B8c= -----END CERTIFICATE-----Generated at Mon Jun 30 16:02:55 2025 by rpki-client