$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11ca9a77-c0fe-4cd8-ba9d-dc218add136a.roa File: 11ca9a77-c0fe-4cd8-ba9d-dc218add136a.roa (raw, json) Hash identifier: VN/I6SRhNex20fI3tfYD7zIruAUQXUK0YknpfJWNcSk= Subject key identifier: 98:C5:DD:96:FB:62:D2:73:FE:6F:01:EA:24:97:DD:21:B7:BA:02:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0BA9C97DD74E8AF720537C1434F8EC9699A9CF3D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11ca9a77-c0fe-4cd8-ba9d-dc218add136a.roa Signing time: Mon 24 Mar 2025 15:32:02 +0000 ROA not before: Mon 24 Mar 2025 15:32:02 +0000 ROA not after: Mon 28 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.110.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:a9:c9:7d:d7:4e:8a:f7:20:53:7c:14:34:f8:ec:96:99:a9:cf:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 24 15:32:02 2025 GMT Not After : Apr 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:92:52:29:5c:c1:45:2a:63:03:3b:c1:89:04: aa:d0:62:97:57:af:77:08:b1:bc:ef:23:48:1c:93: ae:a0:2a:08:b4:a2:ed:91:64:ee:99:a6:a5:97:a7: 88:6c:7a:8e:bb:55:9c:fd:98:a7:02:28:84:cb:91: 48:20:ab:90:e7:e7:9f:3b:70:91:b2:46:8f:e6:dc: 2f:82:f2:2c:b2:78:0b:92:9d:15:94:99:ae:3c:71: b5:b1:a3:1a:4d:98:2f:31:d3:83:a1:5a:66:c0:af: e4:ac:37:2a:b6:1a:64:3c:eb:62:80:a6:b9:2d:cd: 63:bd:83:e3:fd:b3:81:0c:d0:46:6a:6a:91:55:da: 03:e5:26:ab:79:5c:e2:4f:b3:b2:38:03:33:a0:28: c8:39:c4:1b:ff:be:63:26:ed:c5:1f:ed:07:23:8a: a6:f6:eb:f4:37:70:e7:dc:ce:09:a9:eb:46:25:83: bd:fb:67:7e:95:a6:45:c5:90:7a:16:1f:e3:70:1b: ed:7d:1a:7d:d8:e9:a3:44:5e:57:9a:26:81:50:be: 80:47:d1:80:28:ab:c2:85:44:35:4d:56:fa:f2:c0: be:9b:ab:c1:99:cc:c8:36:7b:7b:e4:34:c0:95:32: 84:9b:cc:58:8f:71:5c:88:3a:71:f0:97:9f:b7:99: e6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:C5:DD:96:FB:62:D2:73:FE:6F:01:EA:24:97:DD:21:B7:BA:02:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11ca9a77-c0fe-4cd8-ba9d-dc218add136a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.110.199.0/24 Signature Algorithm: sha256WithRSAEncryption 80:8c:ee:6c:9a:62:db:13:72:07:43:61:0f:f2:23:70:05:17: 05:04:a8:d1:6f:d3:41:1b:0d:f4:28:92:c3:5e:57:f8:df:20: 6a:4a:80:cb:78:de:73:c5:8e:a0:e1:ca:c4:27:9b:6a:91:a9: 6d:2d:ef:74:22:ee:82:a8:51:7c:8f:49:1e:38:b3:8c:20:f9: ca:c7:92:4d:33:f5:88:a4:0f:67:7a:d4:d4:a6:a5:6f:5a:31: 57:7d:9b:1a:18:fd:ff:a4:bf:89:35:3b:52:a5:10:34:97:e0: e3:81:79:6a:8a:2a:f6:6a:fd:7d:d8:b4:fc:7a:bd:f6:88:4b: fe:9a:30:70:ef:89:59:45:da:90:00:dc:32:de:3a:cb:d4:f3: 49:71:a0:18:1a:a2:1c:11:7f:cb:ea:3a:a8:55:ae:c9:50:36: 37:4a:87:57:5d:84:0d:bc:88:f7:58:27:50:f5:f6:18:60:a9: ec:a9:a8:e4:93:31:85:62:60:07:27:28:f5:2d:f8:3d:71:6d: 8f:d8:33:b2:72:99:e4:7a:4d:40:01:b1:10:10:d0:9f:b1:17: 1e:49:f0:4b:3d:61:f8:c7:7d:da:6d:36:30:09:29:de:32:d1: 24:9e:11:b0:05:b2:86:9b:d4:fa:a9:c9:26:69:d4:6c:1b:52: fd:9d:77:c4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC6nJfddOivcgU3wUNPjslpmpzz0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI0MTUzMjAyWhcNMjUwNDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTQzNmRkOTI5ODk1ZWNiMjAyZjYxMzJhNmYwMDJmOTlm Y2FlZDk1MTA1NWJmMGYxOTQ1ZDliNDRkN2Q2NjliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3klIpXMFFKmMDO8GJBKrQYpdXr3cIsbzvI0gck66gKgi0 ou2RZO6ZpqWXp4hseo67VZz9mKcCKITLkUggq5Dn5587cJGyRo/m3C+C8iyyeAuS nRWUma48cbWxoxpNmC8x04OhWmbAr+SsNyq2GmQ862KAprktzWO9g+P9s4EM0EZq apFV2gPlJqt5XOJPs7I4AzOgKMg5xBv/vmMm7cUf7Qcjiqb26/Q3cOfczgmp60Yl g737Z36VpkXFkHoWH+NwG+19Gn3Y6aNEXleaJoFQvoBH0YAoq8KFRDVNVvrywL6b q8GZzMg2e3vkNMCVMoSbzFiPcVyIOnHwl5+3meZ1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmMXdlvti0nP+bwHqJJfdIbe6AjIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExY2E5YTc3LWMwZmUtNGNkOC1iYTlkLWRjMjE4YWRkMTM2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADLbscwDQYJKoZIhvcNAQELBQADggEBAICM7myaYtsTcgdDYQ/yI3AFFwUE qNFv00EbDfQoksNeV/jfIGpKgMt43nPFjqDhysQnm2qRqW0t73Qi7oKoUXyPSR44 s4wg+crHkk0z9YikD2d61NSmpW9aMVd9mxoY/f+kv4k1O1KlEDSX4OOBeWqKKvZq /X3YtPx6vfaIS/6aMHDviVlF2pAA3DLeOsvU80lxoBgaohwRf8vqOqhVrslQNjdK h1ddhA28iPdYJ1D19hhgqeypqOSTMYViYAcnKPUt+D1xbY/YM7JymeR6TUABsRAQ 0J+xFx5J8Es9YfjHfdptNjAJKd4y0SSeEbAFsoab1PqpySZp1GwbUv2dd8Q= -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:40 2025 by rpki-client