$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a64475c4-4e72-4427-8384-c08a7d2cca65.roa File: a64475c4-4e72-4427-8384-c08a7d2cca65.roa (raw, json) Hash identifier: dFOYnAEWA96KC60wkbC/sPjxoD0Ca0El1+u32Rd2hv0= Subject key identifier: 6A:5B:47:E2:B4:0C:7B:EA:3E:46:31:69:C2:40:8A:6B:45:A8:01:3C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 47FAFF92C56AD1C509D9EC59FEBD4F24D45505A7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a64475c4-4e72-4427-8384-c08a7d2cca65.roa Signing time: Tue 01 Apr 2025 00:53:01 +0000 ROA not before: Tue 01 Apr 2025 00:53:01 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 220.157.88.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:fa:ff:92:c5:6a:d1:c5:09:d9:ec:59:fe:bd:4f:24:d4:55:05:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 1 00:53:01 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d7:06:c5:a2:29:75:87:72:82:ef:df:2a:06: 9e:78:39:97:72:3b:ea:f3:e9:e9:89:bf:ce:f7:82: a3:f8:a9:27:d9:11:96:3a:65:ec:3d:6c:14:af:20: 8d:02:45:0b:e8:bd:af:c5:a2:34:ca:f0:ab:ab:32: a0:b8:ed:75:48:aa:70:04:ad:0c:ed:a1:87:72:32: b5:61:e1:49:de:68:b4:70:42:c4:35:4a:b0:21:80: 05:0c:03:2c:a3:29:99:15:99:a7:be:3d:9f:f3:80: 81:e7:d8:03:0b:7d:0d:3a:43:24:f2:2d:99:9f:1b: 4e:d2:c1:4e:86:f1:cd:3a:db:06:4f:f6:48:bc:00: 63:35:d9:ff:b3:17:ce:bd:15:b7:8c:03:30:76:6b: f2:c5:bc:50:4d:a5:75:54:5c:57:31:f5:2c:4a:5e: 10:98:1b:76:6c:a0:b6:49:29:1a:c8:46:6c:91:4b: 2c:4a:f7:da:61:38:b0:1c:7f:5a:38:22:db:5f:e9: b0:de:b7:88:ae:c6:2b:10:44:64:a9:97:c4:59:49: ac:00:fc:48:d0:16:8a:bf:72:74:6a:63:5d:c3:de: 6f:45:8e:0a:15:6c:67:99:49:2d:4a:ad:9c:5d:7a: c6:d8:3d:fe:cf:7f:aa:73:b0:d1:7e:3d:16:a2:3a: d3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:5B:47:E2:B4:0C:7B:EA:3E:46:31:69:C2:40:8A:6B:45:A8:01:3C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a64475c4-4e72-4427-8384-c08a7d2cca65.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.157.88.0/23 Signature Algorithm: sha256WithRSAEncryption b6:58:9c:73:a7:e8:9f:70:19:76:d8:c7:15:68:87:6f:81:6d: 46:09:93:44:67:1c:e4:68:77:28:2a:51:d2:1a:30:db:27:23: f2:8a:c5:71:65:fa:a6:40:64:49:28:79:31:6c:e9:6e:fb:5f: a7:75:5e:d7:b7:9b:dd:14:7c:14:08:60:37:b5:f6:71:4b:7a: 86:fe:7e:cd:ba:27:52:be:b8:ec:6b:7a:d7:e7:46:a3:53:11: c6:eb:30:37:53:b8:b4:37:c7:41:e3:37:88:75:e1:cb:86:97: 2b:3e:71:51:05:76:92:59:1a:00:0c:5b:9b:d3:22:f1:62:eb: 0e:02:43:3a:2c:69:52:a2:21:de:e4:33:1d:c6:35:b8:56:22: a3:6f:94:ec:13:29:81:49:34:3d:56:72:05:8f:03:1a:40:98: 1b:75:e6:ef:54:62:82:54:3a:9b:d1:eb:2c:b8:08:37:a4:38: 9f:14:1a:84:58:1d:d2:12:76:6f:3c:21:e0:97:64:c6:1d:28: a9:99:68:50:94:a3:7f:42:f3:1a:97:75:a6:e5:61:fd:91:98: e9:89:ae:f7:71:6f:6b:78:72:9b:f4:c6:2b:23:70:18:d2:e6: 0e:1d:5b:b3:eb:bb:29:6e:c7:ce:9d:75:d4:f4:50:6e:04:a6: 7e:48:b3:ef -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR/r/ksVq0cUJ2exZ/r1PJNRVBacwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDAxMDA1MzAxWhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNGQ5Y2M4Y2RjODQ2ZTkyODY4ZmMyNjQ5NWQ2YjdlYWI0 M2Y1YTlkZmNhN2IxOWVlMGE5ZmNhNjE2ZDk1YWQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO1wbFoil1h3KC798qBp54OZdyO+rz6emJv873gqP4qSfZ EZY6Zew9bBSvII0CRQvova/FojTK8KurMqC47XVIqnAErQztoYdyMrVh4UneaLRw QsQ1SrAhgAUMAyyjKZkVmae+PZ/zgIHn2AMLfQ06QyTyLZmfG07SwU6G8c062wZP 9ki8AGM12f+zF869FbeMAzB2a/LFvFBNpXVUXFcx9SxKXhCYG3ZsoLZJKRrIRmyR SyxK99phOLAcf1o4Ittf6bDet4iuxisQRGSpl8RZSawA/EjQFoq/cnRqY13D3m9F jgoVbGeZSS1KrZxdesbYPf7Pf6pzsNF+PRaiOtMhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaltH4rQMe+o+RjFpwkCKa0WoATwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2NDQ3NWM0LTRlNzItNDQyNy04Mzg0LWMwOGE3ZDJjY2E2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcnVgwDQYJKoZIhvcNAQELBQADggEBALZYnHOn6J9wGXbYxxVoh2+BbUYJ k0RnHORodygqUdIaMNsnI/KKxXFl+qZAZEkoeTFs6W77X6d1Xte3m90UfBQIYDe1 9nFLeob+fs26J1K+uOxretfnRqNTEcbrMDdTuLQ3x0HjN4h14cuGlys+cVEFdpJZ GgAMW5vTIvFi6w4CQzosaVKiId7kMx3GNbhWIqNvlOwTKYFJND1WcgWPAxpAmBt1 5u9UYoJUOpvR6yy4CDekOJ8UGoRYHdISdm88IeCXZMYdKKmZaFCUo39C8xqXdabl Yf2RmOmJrvdxb2t4cpv0xisjcBjS5g4dW7Pruylux86dddT0UG4Epn5Is+8= -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:46 2025 by rpki-client