$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a330adc-2d44-48c2-85f1-2237901b6ea5.roa File: 5a330adc-2d44-48c2-85f1-2237901b6ea5.roa (raw, json) Hash identifier: GAP9gbLg4VIkEnfty1PueYbipYjicZLsWizScB4ToPk= Subject key identifier: F6:EB:B8:AB:C4:0A:16:19:B5:A5:DE:0A:C8:CE:EE:F7:44:B0:FD:30 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5ED082ACCEEC51808751C5B86BB5052DC9DEA706 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a330adc-2d44-48c2-85f1-2237901b6ea5.roa Signing time: Mon 31 Mar 2025 21:22:04 +0000 ROA not before: Mon 31 Mar 2025 21:22:04 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.239.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:d0:82:ac:ce:ec:51:80:87:51:c5:b8:6b:b5:05:2d:c9:de:a7:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 21:22:04 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:29:12:f0:69:40:4a:4a:3b:2c:3a:b4:df:a6: 49:fd:c2:60:82:d7:ac:9d:3d:24:6b:cd:58:4b:71: 4f:45:2d:f2:a5:21:ff:d4:6e:8e:60:cf:df:de:2a: d4:2f:41:28:d0:da:14:35:2e:80:37:a4:b2:bd:8c: 6c:5a:d3:13:51:9f:e8:37:77:bf:60:87:4b:45:15: 25:c2:17:2d:92:71:6d:69:6e:00:f2:98:85:7d:df: ec:25:f4:0d:1a:2d:f1:91:eb:bf:ab:04:bc:23:85: 59:20:a1:86:a0:1c:51:0d:64:42:2a:12:95:a2:44: b2:67:61:e3:8f:f3:41:15:af:9a:4b:a7:8c:60:3d: 9f:92:b7:91:03:ba:87:7c:70:36:11:83:cf:a2:24: 3c:1b:7a:54:6a:7c:a4:6f:42:1b:31:d9:62:64:d3: 1d:e7:3f:c2:15:91:38:00:e7:19:8d:73:b7:fe:7a: 30:f9:ee:1d:84:a6:9d:38:64:55:79:fb:93:3a:e9: 0a:90:6d:25:9e:cd:a6:c8:9c:d9:60:52:f2:28:f3: 54:96:d6:2e:5e:29:7d:2d:fd:a2:9c:89:a0:56:c2: 5b:0a:42:0b:e4:63:f7:0e:d3:ff:8c:56:6a:54:dc: 07:76:84:2f:3c:3a:80:93:4f:7d:85:09:c0:39:fa: b9:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:EB:B8:AB:C4:0A:16:19:B5:A5:DE:0A:C8:CE:EE:F7:44:B0:FD:30 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a330adc-2d44-48c2-85f1-2237901b6ea5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.239.28.0/24 Signature Algorithm: sha256WithRSAEncryption 02:8e:72:9a:0c:6d:02:98:45:5a:d3:bc:7b:c6:67:4c:31:41: 6b:4f:dc:1f:4e:11:33:00:e8:fc:93:79:0f:11:57:84:11:29: b6:e2:9c:bf:f9:c0:51:28:9d:40:27:81:5e:bc:c7:10:ca:ee: 5d:f0:b8:49:ee:46:1f:86:c5:5a:4e:a1:7e:f8:a6:30:35:bc: f5:7b:3c:f1:96:0e:01:e8:b4:c6:75:d0:ac:78:b3:36:b2:ad: d8:1f:cb:d2:48:d6:f7:f6:90:c3:68:58:7d:cc:c3:92:1f:4d: cb:3f:2c:de:5b:ef:e7:cc:24:20:b8:f4:ce:a6:4c:10:56:20: fe:f8:dc:51:6f:d2:99:d0:ff:0d:81:d2:5b:76:f0:53:6b:23: 28:16:02:b9:42:8d:af:aa:d6:be:bc:8f:26:2c:2a:7e:74:c5: 08:8a:bf:01:12:ce:f4:14:00:19:29:5d:bc:67:14:72:bf:de: 8d:55:9c:a0:3e:09:62:62:5a:d9:ca:6a:9c:e9:0d:bd:53:54: c0:8d:ac:9f:71:f7:03:9f:72:05:08:38:7b:23:bb:67:b5:ba: 11:37:a8:b4:5d:89:87:7a:4e:35:d6:dd:76:b3:fb:c1:ad:40: a4:0a:56:c4:c4:56:11:f7:d6:b6:8d:0a:ce:f3:6b:ee:4a:ab: 0a:05:21:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXtCCrM7sUYCHUcW4a7UFLcnepwYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMjEyMjA0WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMGI5MjU2NzY3NWU4MGI2MTY0YzZmZGM5OTRhZWExMzEw OWFkYjNlYTY0MzA5MzJhZmI1NDNlYzkzMGFjNjNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTKRLwaUBKSjssOrTfpkn9wmCC16ydPSRrzVhLcU9FLfKl If/Ubo5gz9/eKtQvQSjQ2hQ1LoA3pLK9jGxa0xNRn+g3d79gh0tFFSXCFy2ScW1p bgDymIV93+wl9A0aLfGR67+rBLwjhVkgoYagHFENZEIqEpWiRLJnYeOP80EVr5pL p4xgPZ+St5EDuod8cDYRg8+iJDwbelRqfKRvQhsx2WJk0x3nP8IVkTgA5xmNc7f+ ejD57h2Epp04ZFV5+5M66QqQbSWezabInNlgUvIo81SW1i5eKX0t/aKciaBWwlsK QgvkY/cO0/+MVmpU3Ad2hC88OoCTT32FCcA5+rmnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9uu4q8QKFhm1pd4KyM7u90Sw/TAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhMzMwYWRjLTJkNDQtNDhjMi04NWYxLTIyMzc5MDFiNmVhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABu7xwwDQYJKoZIhvcNAQELBQADggEBAAKOcpoMbQKYRVrTvHvGZ0wxQWtP 3B9OETMA6PyTeQ8RV4QRKbbinL/5wFEonUAngV68xxDK7l3wuEnuRh+GxVpOoX74 pjA1vPV7PPGWDgHotMZ10Kx4szayrdgfy9JI1vf2kMNoWH3Mw5IfTcs/LN5b7+fM JCC49M6mTBBWIP743FFv0pnQ/w2B0lt28FNrIygWArlCja+q1r68jyYsKn50xQiK vwESzvQUABkpXbxnFHK/3o1VnKA+CWJiWtnKapzpDb1TVMCNrJ9x9wOfcgUIOHsj u2e1uhE3qLRdiYd6TjXW3Xaz+8GtQKQKVsTEVhH31raNCs7za+5KqwoFIYg= -----END CERTIFICATE-----Generated at Sat Apr 5 11:15:45 2025 by rpki-client