$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5213e57-80ca-4b02-8923-95f9e9f6bf42.roa File: a5213e57-80ca-4b02-8923-95f9e9f6bf42.roa (raw, json) Hash identifier: dOqieATiMLl1A425TDHGAD2tgrmuJSVRAyNzXh7T4TU= Subject key identifier: 9C:E8:E1:EE:39:32:F4:D9:03:8C:FE:7E:43:A8:FC:3C:CC:E9:B7:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D2F3DDD4FABB4355A73EF0122D134330F01A146 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5213e57-80ca-4b02-8923-95f9e9f6bf42.roa Signing time: Mon 24 Mar 2025 15:32:01 +0000 ROA not before: Mon 24 Mar 2025 15:32:01 +0000 ROA not after: Mon 28 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.110.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:2f:3d:dd:4f:ab:b4:35:5a:73:ef:01:22:d1:34:33:0f:01:a1:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 24 15:32:01 2025 GMT Not After : Apr 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f5:f4:09:4a:df:9f:52:87:9a:68:b7:13:b1: 34:c9:9c:f1:d6:a1:d9:03:b4:72:9c:b2:56:26:38: 47:0f:7f:fb:20:be:23:aa:41:9d:56:5c:8f:32:ad: 87:61:3f:67:46:54:83:ec:77:5e:26:f3:8a:e5:eb: 3e:7c:a3:51:95:e0:7e:a1:95:7a:30:92:b6:4f:e3: 8d:25:f8:50:a6:5d:3a:b3:88:ff:cf:ee:38:5b:5e: bd:97:22:7d:41:af:3c:5f:54:a7:9a:08:f1:c9:97: f4:8b:61:42:54:6c:3e:5d:97:dc:53:c9:66:2c:7f: 33:a9:15:89:d3:1b:27:82:17:96:7d:93:f4:e2:b6: 2b:67:82:34:74:eb:2a:77:4d:f0:08:ca:76:88:e1: bb:32:b1:d4:58:bd:cd:e8:e7:6c:3a:b4:a6:30:de: 9e:1d:6d:7a:1e:2a:8c:c1:5d:43:bb:24:11:27:bd: 12:99:cc:5e:22:c7:95:d1:28:1b:ad:7c:6e:3f:54: fd:50:76:6b:10:cd:cd:c4:90:3d:79:37:5c:45:f9: e6:5c:54:9b:8f:10:0d:79:fd:99:b2:c8:b1:6d:6b: 6f:a2:04:a4:de:70:79:51:07:2f:43:31:dc:99:64: 15:46:d6:6a:14:b8:e1:7a:e5:66:7e:fc:4e:bf:6b: b4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E8:E1:EE:39:32:F4:D9:03:8C:FE:7E:43:A8:FC:3C:CC:E9:B7:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5213e57-80ca-4b02-8923-95f9e9f6bf42.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.110.193.0/24 Signature Algorithm: sha256WithRSAEncryption bd:d1:34:46:01:b8:3a:3a:33:58:c4:16:eb:18:dd:a3:c4:3d: 25:8d:fa:b5:47:ea:6d:c2:52:bd:86:b1:b3:cc:8b:f8:30:97: 6c:ee:f8:be:dd:4e:89:ce:91:1b:ed:62:9b:6f:f4:71:64:59: 5c:dc:71:84:d1:15:5b:b3:b4:c5:ab:6f:3c:23:5c:07:45:20: b8:92:e9:7b:f0:5f:a0:ec:a8:ae:87:f2:32:a1:d9:3d:2d:78: be:53:79:c6:ab:7f:65:26:c5:e1:d2:6b:05:09:32:9a:57:7b: 1d:b9:3c:86:7b:3f:fa:30:de:03:a1:6a:4f:f7:41:a8:f4:3c: df:89:ea:85:91:bf:61:d7:9f:14:8d:04:55:16:b2:2c:6e:27: fa:c0:b6:17:e7:68:8b:c2:83:f1:f3:f5:56:32:c8:01:93:db: 23:fe:69:f5:35:57:cd:98:ae:7a:40:24:96:f4:b2:51:f4:d0: 56:2b:42:60:66:ac:99:9d:49:d0:28:27:c4:ef:56:6a:a6:4e: 12:f5:86:c5:ca:85:e8:4f:45:b7:89:b5:84:8f:9d:e6:41:68: 7e:de:36:e5:ef:58:e6:a0:37:fc:9f:82:5b:69:be:b2:0c:e0: ee:8e:c6:b7:8e:7f:2e:73:77:e5:d8:b6:8a:ca:4f:86:a0:ff: f7:3f:ef:52 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDS893U+rtDVac+8BItE0Mw8BoUYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI0MTUzMjAxWhcNMjUwNDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMmRhNDI4ODg2ZGZmZGRjNjRjZDEzMmZlZjMwM2NkYzU5 OWVjZWU5NWRlMjUxYTRmYzA1MTdmMTU2MWM4ZTY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCn9fQJSt+fUoeaaLcTsTTJnPHWodkDtHKcslYmOEcPf/sg viOqQZ1WXI8yrYdhP2dGVIPsd14m84rl6z58o1GV4H6hlXowkrZP440l+FCmXTqz iP/P7jhbXr2XIn1BrzxfVKeaCPHJl/SLYUJUbD5dl9xTyWYsfzOpFYnTGyeCF5Z9 k/TititngjR06yp3TfAIynaI4bsysdRYvc3o52w6tKYw3p4dbXoeKozBXUO7JBEn vRKZzF4ix5XRKButfG4/VP1QdmsQzc3EkD15N1xF+eZcVJuPEA15/ZmyyLFta2+i BKTecHlRBy9DMdyZZBVG1moUuOF65WZ+/E6/a7SNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnOjh7jky9NkDjP5+Q6j8PMzpt2kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1MjEzZTU3LTgwY2EtNGIwMi04OTIzLTk1ZjllOWY2YmY0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADLbsEwDQYJKoZIhvcNAQELBQADggEBAL3RNEYBuDo6M1jEFusY3aPEPSWN +rVH6m3CUr2GsbPMi/gwl2zu+L7dTonOkRvtYptv9HFkWVzccYTRFVuztMWrbzwj XAdFILiS6XvwX6DsqK6H8jKh2T0teL5Tecarf2UmxeHSawUJMppXex25PIZ7P/ow 3gOhak/3Qaj0PN+J6oWRv2HXnxSNBFUWsixuJ/rAthfnaIvCg/Hz9VYyyAGT2yP+ afU1V82YrnpAJJb0slH00FYrQmBmrJmdSdAoJ8TvVmqmThL1hsXKhehPRbeJtYSP neZBaH7eNuXvWOagN/yfgltpvrIM4O6OxreOfy5zd+XYtorKT4ag//c/71I= -----END CERTIFICATE-----Generated at Sun Apr 6 06:29:17 2025 by rpki-client