$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa File: 9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa (raw, json) Hash identifier: TQ5zay0egYrA1c/jYqd0dzurbAU7J66TnQJGp/udqtA= Subject key identifier: 8E:E6:73:5E:B8:42:37:E2:F4:49:FF:17:88:D2:80:AF:89:87:04:0A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D7B0877A767E73AB48508FB939D2BC4EEAE6A47 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa Signing time: Thu 03 Apr 2025 22:53:12 +0000 ROA not before: Thu 03 Apr 2025 22:53:12 +0000 ROA not after: Thu 08 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.5.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:7b:08:77:a7:67:e7:3a:b4:85:08:fb:93:9d:2b:c4:ee:ae:6a:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 3 22:53:12 2025 GMT Not After : May 8 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b3:04:ad:8d:19:7b:5b:a6:81:a5:65:fc:2b: 4d:19:f6:97:c7:74:72:c4:4e:35:7a:6f:0c:9d:34: c1:d3:59:96:7c:d6:bc:ed:e6:3c:6f:a9:8a:45:3e: 1c:81:11:f8:c8:a0:1c:d2:04:00:e8:13:90:a2:57: 1d:22:0b:cd:38:8b:7c:a2:0f:e3:07:6a:1c:10:8e: 09:80:65:e2:4f:4c:62:a2:03:69:cc:e0:92:3f:39: 19:53:20:ad:ec:2f:22:4b:d4:97:5d:2a:14:21:47: a8:d5:57:45:d4:97:b7:b6:d9:52:34:a1:d2:91:10: 0a:e8:f6:8e:84:c2:68:bc:c1:bf:88:1e:19:31:c0: 74:27:cb:b6:6d:a6:27:fd:b4:48:69:7f:76:a2:40: 21:3e:25:88:83:7c:78:e0:32:71:2f:e9:72:a9:3f: 2d:3f:79:a3:19:9d:eb:91:fc:18:a9:a0:8b:04:ac: c0:db:64:d2:d5:b6:d8:19:ef:2f:43:38:60:16:aa: cb:4d:df:cb:d9:34:16:c8:0e:a6:36:1c:af:da:5c: 4c:11:90:66:e7:83:8c:73:26:72:87:7b:52:91:de: d1:c0:7c:c0:bd:b1:a7:93:57:30:dc:b9:fe:e5:d4: e1:62:e8:1c:e1:3d:28:76:75:39:9a:e4:b0:10:c2: e9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:E6:73:5E:B8:42:37:E2:F4:49:FF:17:88:D2:80:AF:89:87:04:0A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.180.0/22 Signature Algorithm: sha256WithRSAEncryption 11:e7:a3:b7:f4:44:98:ec:55:bf:c9:a1:6e:70:08:3a:4f:d3: c6:f2:f5:c8:81:9b:c6:dc:05:e7:13:b6:f8:87:d4:69:a4:6f: 5d:00:ae:1e:61:df:15:34:db:74:d9:cb:eb:e6:c0:56:7d:92: 99:d0:e2:77:12:75:bf:66:4e:10:3f:2e:64:b7:15:1b:e4:1e: 69:19:6f:98:33:18:d2:bb:87:cc:7c:5b:42:df:83:df:ed:1b: be:e7:e4:c7:d2:d8:01:a9:ff:dc:00:bf:43:12:dc:bd:d6:fb: f6:56:94:63:64:f8:fd:be:ad:4d:8a:2f:33:3a:e5:3b:30:dc: 48:16:74:0d:98:a8:4f:d2:83:f9:56:31:6b:d6:6b:00:9a:79: bf:ea:8f:8d:eb:ae:e1:8c:89:e6:cf:a7:55:cf:f3:2f:78:77: 41:bc:17:b9:9d:ea:3e:c7:fb:fb:75:d0:fd:43:8d:bc:e8:fb: 04:86:bf:0f:73:1a:6d:4c:a6:6a:cd:19:f1:d9:5c:fb:df:34: c5:a2:54:52:05:98:53:11:36:9c:89:e3:53:d8:b0:65:4c:c3: 97:d8:cd:15:e3:fe:f8:78:76:2b:e3:61:68:66:a5:2e:c8:a5: 50:f1:de:60:2f:98:18:14:26:42:94:86:65:5e:22:d5:49:57: ee:59:ff:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXXsId6dn5zq0hQj7k50rxO6uakcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDAzMjI1MzEyWhcNMjUwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDBhYmVmMWM2ZWJkNTkxOWRhYjdmZjVhM2ZjNTZhYjdh NGExNmYyNjhmMDgzMGQ3MjQwZjdiMWMxNGUwOWUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHswStjRl7W6aBpWX8K00Z9pfHdHLETjV6bwydNMHTWZZ8 1rzt5jxvqYpFPhyBEfjIoBzSBADoE5CiVx0iC804i3yiD+MHahwQjgmAZeJPTGKi A2nM4JI/ORlTIK3sLyJL1JddKhQhR6jVV0XUl7e22VI0odKREAro9o6Ewmi8wb+I HhkxwHQny7Ztpif9tEhpf3aiQCE+JYiDfHjgMnEv6XKpPy0/eaMZneuR/BipoIsE rMDbZNLVttgZ7y9DOGAWqstN38vZNBbIDqY2HK/aXEwRkGbng4xzJnKHe1KR3tHA fMC9saeTVzDcuf7l1OFi6BzhPSh2dTma5LAQwumRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjuZzXrhCN+L0Sf8XiNKAr4mHBAowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkMzk2YjY0LTMxYTctNGVmYy05ZmMyLWJkOGY1NTM5ZTUwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKBbQwDQYJKoZIhvcNAQELBQADggEBABHno7f0RJjsVb/JoW5wCDpP08by 9ciBm8bcBecTtviH1Gmkb10Arh5h3xU023TZy+vmwFZ9kpnQ4ncSdb9mThA/LmS3 FRvkHmkZb5gzGNK7h8x8W0Lfg9/tG77n5MfS2AGp/9wAv0MS3L3W+/ZWlGNk+P2+ rU2KLzM65Tsw3EgWdA2YqE/Sg/lWMWvWawCaeb/qj43rruGMiebPp1XP8y94d0G8 F7md6j7H+/t10P1Djbzo+wSGvw9zGm1MpmrNGfHZXPvfNMWiVFIFmFMRNpyJ41PY sGVMw5fYzRXj/vh4divjYWhmpS7IpVDx3mAvmBgUJkKUhmVeItVJV+5Z/y8= -----END CERTIFICATE-----Generated at Sat Apr 5 11:12:52 2025 by rpki-client