$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/884a8c0d-72de-41fb-885a-1c084a948135.roa File: 884a8c0d-72de-41fb-885a-1c084a948135.roa (raw, json) Hash identifier: arpnDN2C03fEsbsLdsF+GI4kYZ+BUDYj7Jqie9bdPHY= Subject key identifier: 42:B7:28:88:BF:40:A6:2F:8C:F4:82:F4:01:66:3F:85:D2:BC:BA:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B35BB268F615942A5CB6CAB7A2343152A3F04C4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/884a8c0d-72de-41fb-885a-1c084a948135.roa Signing time: Wed 26 Mar 2025 00:10:17 +0000 ROA not before: Wed 26 Mar 2025 00:10:17 +0000 ROA not after: Wed 30 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.147.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:35:bb:26:8f:61:59:42:a5:cb:6c:ab:7a:23:43:15:2a:3f:04:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 26 00:10:17 2025 GMT Not After : Apr 30 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:dd:70:8e:dc:40:ef:e2:5e:1a:dd:01:86:55: f2:4e:51:b6:aa:64:2d:7d:c7:ef:69:e2:a1:b0:a2: 61:f2:5e:e1:8d:81:39:cc:ef:b5:97:1e:4a:2e:13: 61:6d:3a:ee:b8:83:61:b0:3f:ea:03:7e:6b:fc:4a: 2e:dc:7d:fe:e8:a9:09:71:d7:46:50:ef:a6:ef:b0: d5:fb:f4:2e:2c:b5:94:cf:db:96:c4:94:c6:d1:f3: 73:c1:02:64:a8:a0:16:99:6c:b6:77:18:d9:dc:7e: 74:27:f5:e5:83:5b:c7:e0:b0:6a:ce:1a:77:0d:ba: 39:f0:13:ff:f6:db:60:62:f4:9f:d1:9b:0a:26:58: 93:48:95:30:8f:90:41:5f:a2:2b:a2:9c:90:3b:3f: fc:5d:ad:c6:30:66:ff:54:fb:59:64:38:52:a0:74: d6:59:1d:34:93:5d:a3:f7:1a:5d:9b:b4:52:6e:96: d7:ee:6a:ec:43:f8:bb:0e:c8:be:bf:4c:cb:c8:29: e7:ec:e2:a4:e6:71:0b:6b:31:54:5c:9c:89:1d:bf: 27:04:99:96:b7:b5:58:e1:f4:67:b9:76:bb:13:06: 9b:f0:5d:2c:c9:1b:3d:de:8d:5c:81:4c:91:e3:71: 9a:09:c3:9a:bd:13:f5:7a:82:27:31:9a:96:ad:2e: 99:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B7:28:88:BF:40:A6:2F:8C:F4:82:F4:01:66:3F:85:D2:BC:BA:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/884a8c0d-72de-41fb-885a-1c084a948135.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.147.64.0/19 Signature Algorithm: sha256WithRSAEncryption 8a:ba:8a:97:4f:24:3e:c8:83:4c:8f:a8:52:70:26:ca:dd:2f: 5b:8c:e4:e6:5a:10:3a:22:ea:b6:56:33:d1:00:e5:31:91:32: c4:8f:9b:33:2e:1b:af:2a:68:99:af:18:ff:ab:24:47:0d:29: 00:b6:f0:54:25:64:f6:45:ca:0a:07:c5:2d:e8:41:eb:d7:8d: f6:19:d3:b5:cd:1c:7e:bc:3a:2d:7b:00:bc:f7:10:f8:b3:7b: b9:90:4e:f4:35:81:ca:4c:79:1a:d9:eb:ff:5c:e4:5f:7b:55: 2e:f4:d1:6b:59:15:4f:5d:9a:9d:bb:8d:4a:4a:e5:8a:7b:be: 78:e0:54:9f:9d:79:be:6b:7e:62:7f:1b:c1:bf:b2:49:4f:60: cf:c7:0d:93:f1:45:ba:7c:df:e6:49:9a:cf:65:9e:95:45:9e: 75:63:00:13:8a:5d:d9:2c:b7:7c:a3:3c:20:6d:e1:3d:f2:3c: 0a:57:fa:c7:e7:3d:cc:ac:28:95:50:df:f8:e5:e7:1c:02:13: 31:69:2e:f4:57:eb:2c:d0:3c:18:65:99:0b:76:90:68:7c:d4: 6f:f2:fe:2d:58:99:27:2f:9d:4d:5e:b6:0c:3a:a8:e3:ef:54: 9a:99:a7:aa:08:2e:81:81:3f:09:91:c8:b4:b6:3c:f3:5c:de: 12:55:4b:11 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWzW7Jo9hWUKly2yreiNDFSo/BMQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI2MDAxMDE3WhcNMjUwNDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDMzZjA1YzBmOWM2MWRhNGEzNzZmNjJiMjUxMWVkNTcx NzA4MjAzNzBhYjM2NDkyMjlkNTQ0NWRmYjc4M2Y0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu3XCO3EDv4l4a3QGGVfJOUbaqZC19x+9p4qGwomHyXuGN gTnM77WXHkouE2FtOu64g2GwP+oDfmv8Si7cff7oqQlx10ZQ76bvsNX79C4stZTP 25bElMbR83PBAmSooBaZbLZ3GNncfnQn9eWDW8fgsGrOGncNujnwE//222Bi9J/R mwomWJNIlTCPkEFfoiuinJA7P/xdrcYwZv9U+1lkOFKgdNZZHTSTXaP3Gl2btFJu ltfuauxD+LsOyL6/TMvIKefs4qTmcQtrMVRcnIkdvycEmZa3tVjh9Ge5drsTBpvw XSzJGz3ejVyBTJHjcZoJw5q9E/V6gicxmpatLpmNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQrcoiL9Api+M9IL0AWY/hdK8urowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg4NGE4YzBkLTcyZGUtNDFmYi04ODVhLTFjMDg0YTk0ODEzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXKk0AwDQYJKoZIhvcNAQELBQADggEBAIq6ipdPJD7Ig0yPqFJwJsrdL1uM 5OZaEDoi6rZWM9EA5TGRMsSPmzMuG68qaJmvGP+rJEcNKQC28FQlZPZFygoHxS3o QevXjfYZ07XNHH68Oi17ALz3EPize7mQTvQ1gcpMeRrZ6/9c5F97VS700WtZFU9d mp27jUpK5Yp7vnjgVJ+deb5rfmJ/G8G/sklPYM/HDZPxRbp83+ZJms9lnpVFnnVj ABOKXdkst3yjPCBt4T3yPApX+sfnPcysKJVQ3/jl5xwCEzFpLvRX6yzQPBhlmQt2 kGh81G/y/i1YmScvnU1etgw6qOPvVJqZp6oILoGBPwmRyLS2PPNc3hJVSxE= -----END CERTIFICATE-----Generated at Sat Apr 5 11:18:07 2025 by rpki-client