$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33c69a2e-633e-4ef2-82c1-548d8d35456f.roa File: 33c69a2e-633e-4ef2-82c1-548d8d35456f.roa (raw, json) Hash identifier: FmBWagaWGTywTsTOcPonnrJFZinE+bPAvcsd4pI/acs= Subject key identifier: D8:B4:E2:F0:93:71:84:3E:E2:89:B9:96:5F:A0:70:50:11:6E:E6:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3DC3C76AE4D995AF065EDF17A3667730BB1C3850 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33c69a2e-633e-4ef2-82c1-548d8d35456f.roa Signing time: Wed 02 Jul 2025 00:30:53 +0000 ROA not before: Wed 02 Jul 2025 00:30:53 +0000 ROA not after: Wed 06 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.110.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:c3:c7:6a:e4:d9:95:af:06:5e:df:17:a3:66:77:30:bb:1c:38:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 2 00:30:53 2025 GMT Not After : Aug 6 23:59:59 2025 GMT Subject: serialNumber=c830d31cf27cb285a869c4ccfd413fdb52d0ddeb6b6b2b943eaa8557fbfff350, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5e:78:d1:dd:9a:67:78:31:ed:4d:ed:c5:8a: c6:b1:57:d1:fc:c7:ef:26:b8:1b:cd:80:17:e1:f6: 3a:cc:5d:7a:d8:fe:0f:fc:46:9c:f7:c2:21:78:84: d2:b4:9d:60:84:fe:09:ba:1c:9c:1a:a3:4d:b3:87: b6:56:1f:62:84:cc:e7:fd:91:5a:f1:f9:40:41:ab: 25:ea:8c:20:f2:e7:29:9b:7f:07:85:bb:b3:e1:93: ce:23:81:df:fc:af:bc:50:cd:ca:3b:1a:f8:b2:7a: 08:2f:e5:0b:2f:fd:85:07:de:9b:18:ea:91:91:a4: d9:ff:f8:14:1e:44:b2:76:a6:bc:cb:db:2e:21:9b: c9:68:b1:1c:26:45:63:ce:df:fd:19:90:a2:3f:c1: c5:1f:1d:9e:b7:e1:3a:bc:a9:03:77:2f:52:3b:f2: 0c:f1:5c:da:16:0f:82:13:9b:5f:7e:3c:54:67:8a: 11:51:e5:17:9e:f7:c5:84:56:93:74:7e:60:9d:e9: 6e:aa:37:79:35:e3:7a:e6:e7:e0:8d:3f:dc:f1:27: a0:5c:7e:33:f8:dd:6c:2d:08:55:3a:d4:fe:03:79: 51:78:b7:43:3f:4e:44:d4:f1:48:bc:a0:3d:78:83: 41:83:46:50:31:42:d6:ac:36:23:b8:e6:64:bf:88: 51:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B4:E2:F0:93:71:84:3E:E2:89:B9:96:5F:A0:70:50:11:6E:E6:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33c69a2e-633e-4ef2-82c1-548d8d35456f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.110.204.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:6f:b0:78:e6:b8:3f:3c:8f:99:f6:3a:c4:c7:49:4d:27:ed: 53:39:8e:37:2a:12:f4:a0:67:e3:6c:01:bd:73:63:44:22:ba: 55:59:a2:5e:cc:9a:7f:76:54:bb:50:b2:33:0c:c7:b1:68:93: 41:a6:58:8b:ef:23:5e:ba:38:16:2a:de:92:aa:2b:99:8a:0b: c5:d4:fc:f3:87:17:0a:b4:e5:10:c1:ce:fe:88:a1:c3:cb:ee: cf:e4:1a:50:ff:88:4d:f1:4c:3b:c5:4f:5c:ea:a6:a2:40:d1: b5:52:8b:29:cd:2f:05:18:b8:9c:b0:34:50:2e:70:1a:4b:26: 4e:98:46:ee:9e:2c:6a:fb:aa:9f:12:54:a8:89:ab:6b:c8:5a: 4a:dd:dd:a2:e1:12:cf:f7:2a:08:cc:93:65:13:51:77:f6:a2: 53:b0:f1:b7:3c:6d:8a:19:f3:6e:60:fe:7c:d4:44:a7:50:ed: 89:70:29:8e:95:49:89:8a:a8:70:6b:0f:91:84:ae:7b:e1:9a: 90:fd:c6:36:74:36:64:e1:2b:ae:d2:fd:c3:93:f3:e2:a2:91: 4d:88:f9:1f:65:d5:7f:b5:e6:d5:58:44:4f:41:cd:1f:5f:bf: ce:57:0e:fd:b1:36:08:fa:f3:9d:01:69:31:c1:60:77:9f:ce: c0:45:ee:5c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPcPHauTZla8GXt8Xo2Z3MLscOFAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAyMDAzMDUzWhcNMjUwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjODMwZDMxY2YyN2NiMjg1YTg2OWM0Y2NmZDQxM2ZkYjUy ZDBkZGViNmI2YjJiOTQzZWFhODU1N2ZiZmZmMzUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGXnjR3ZpneDHtTe3FisaxV9H8x+8muBvNgBfh9jrMXXrY /g/8Rpz3wiF4hNK0nWCE/gm6HJwao02zh7ZWH2KEzOf9kVrx+UBBqyXqjCDy5ymb fweFu7Phk84jgd/8r7xQzco7Gviyeggv5Qsv/YUH3psY6pGRpNn/+BQeRLJ2przL 2y4hm8losRwmRWPO3/0ZkKI/wcUfHZ634Tq8qQN3L1I78gzxXNoWD4ITm19+PFRn ihFR5Ree98WEVpN0fmCd6W6qN3k143rm5+CNP9zxJ6BcfjP43WwtCFU61P4DeVF4 t0M/TkTU8Ui8oD14g0GDRlAxQtasNiO45mS/iFFXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2LTi8JNxhD7iibmWX6BwUBFu5pUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzYzY5YTJlLTYzM2UtNGVmMi04MmMxLTU0OGQ4ZDM1NDU2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADLbswwDQYJKoZIhvcNAQELBQADggEBAH1vsHjmuD88j5n2OsTHSU0n7VM5 jjcqEvSgZ+NsAb1zY0QiulVZol7Mmn92VLtQsjMMx7Fok0GmWIvvI166OBYq3pKq K5mKC8XU/POHFwq05RDBzv6IocPL7s/kGlD/iE3xTDvFT1zqpqJA0bVSiynNLwUY uJywNFAucBpLJk6YRu6eLGr7qp8SVKiJq2vIWkrd3aLhEs/3KgjMk2UTUXf2olOw 8bc8bYoZ825g/nzURKdQ7YlwKY6VSYmKqHBrD5GErnvhmpD9xjZ0NmThK67S/cOT 8+KikU2I+R9l1X+15tVYRE9BzR9fv85XDv2xNgj6850BaTHBYHefzsBF7lw= -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:16 2025 by rpki-client