$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a788d599-2c60-4aa0-a3d2-135fff75c258.roa File: a788d599-2c60-4aa0-a3d2-135fff75c258.roa (raw, json) Hash identifier: f7Di77aC4YzFDM0tHAU99OciiwFEiz5EK5VopRUCrnc= Subject key identifier: 63:0B:12:A5:5E:C1:11:3F:4F:7B:BE:FB:3A:59:8A:AB:F1:64:65:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 45623F09DCC94F3B8EEFC3219A52267936720B62 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a788d599-2c60-4aa0-a3d2-135fff75c258.roa Signing time: Fri 04 Apr 2025 01:22:15 +0000 ROA not before: Fri 04 Apr 2025 01:22:15 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.88.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:62:3f:09:dc:c9:4f:3b:8e:ef:c3:21:9a:52:26:79:36:72:0b:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 01:22:15 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6c:1c:89:dd:34:25:72:1e:2d:b2:ab:ee:6c: 62:d4:bb:46:f8:fa:78:dc:b8:73:7f:27:f8:1e:6a: 45:b9:08:85:77:62:0d:9a:92:8c:13:12:37:d4:f3: 61:65:3c:af:5a:3a:fd:f0:0a:7c:a4:2c:37:0a:d5: 7d:df:5d:52:b8:d9:75:e7:ee:25:ae:29:a9:4e:c5: b0:ae:81:db:cf:e0:51:c5:59:74:9e:e7:79:bb:80: 4f:b9:4f:47:02:f8:6f:cf:69:17:b3:24:1a:dd:67: e1:1e:58:d4:0b:a5:5e:fb:cd:8d:dc:5a:65:21:17: 03:4e:e7:25:4a:2e:33:83:81:8f:bd:5c:44:ec:d9: 88:58:db:b5:05:a7:2c:82:17:c9:0a:34:3b:57:ae: ef:9a:14:8c:4b:c4:c9:4c:58:36:23:87:d9:4b:44: 70:48:58:7c:fc:fc:0d:d6:c3:2a:e6:ff:e1:f7:f1: ce:8b:ed:16:64:93:29:61:f2:45:64:62:c4:c9:4d: 17:b7:c9:be:e3:30:a6:0b:6f:39:eb:24:b8:87:b4: d3:a1:a7:5a:8a:9c:55:69:65:f5:a1:ce:e5:0f:ac: 2b:91:37:7a:2d:e3:d3:ae:15:5f:5a:de:37:bc:2c: 36:e8:a3:ba:9d:53:00:10:be:66:8a:f2:5a:17:88: 85:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:0B:12:A5:5E:C1:11:3F:4F:7B:BE:FB:3A:59:8A:AB:F1:64:65:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a788d599-2c60-4aa0-a3d2-135fff75c258.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.88.84.0/23 Signature Algorithm: sha256WithRSAEncryption 42:14:0c:1a:66:43:86:54:3f:b0:43:69:a9:34:cd:63:29:9c: 39:02:46:81:94:27:9b:f4:55:a5:d2:9e:66:07:88:d5:81:b7: 2d:ba:9a:19:a9:bb:24:d5:9a:65:dc:2b:29:65:63:78:3d:cf: aa:69:be:0d:8b:96:77:4e:12:c0:54:a0:e0:34:bb:98:bb:94: d8:b9:a9:58:80:40:58:9f:67:58:1e:20:26:90:37:80:a6:b5: 84:00:d5:f5:ce:ea:99:70:d5:86:7f:d2:12:67:9a:9e:19:3f: c8:a8:ce:ba:83:fa:cf:57:58:87:f6:df:ed:66:4f:3d:a3:11: 3a:b4:4d:af:36:ae:f0:fc:3e:74:19:4a:a1:eb:f5:2d:d4:60: 23:b7:1e:b5:20:ca:c7:29:86:61:94:12:41:27:a5:c7:27:47: 8e:4e:dc:cb:aa:12:e9:47:b3:0a:27:2d:0f:13:23:05:8e:b4: e8:35:04:94:09:6b:e6:02:8b:d2:1f:a8:9e:e0:b8:87:15:d4: 6d:bc:be:6f:bd:a6:9f:43:78:19:d6:14:25:5a:53:28:2a:d3: 7b:f4:66:cd:e8:1d:2b:6e:ad:df:fb:16:61:4c:24:7e:c1:2b: c4:60:19:55:b3:14:30:1e:9b:9a:7d:8f:3d:b8:18:c4:0a:8e: 00:84:42:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURWI/CdzJTzuO78MhmlImeTZyC2IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDEyMjE1WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjODY4OTlmZmRhZjczZjc0YWJjN2VkZmI5ODIxYmFlNjg1 MGIzZmNmNDU5ODA0ODc0ZmVjYTgxYzdlNDA2YTQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClbByJ3TQlch4tsqvubGLUu0b4+njcuHN/J/geakW5CIV3 Yg2akowTEjfU82FlPK9aOv3wCnykLDcK1X3fXVK42XXn7iWuKalOxbCugdvP4FHF WXSe53m7gE+5T0cC+G/PaRezJBrdZ+EeWNQLpV77zY3cWmUhFwNO5yVKLjODgY+9 XETs2YhY27UFpyyCF8kKNDtXru+aFIxLxMlMWDYjh9lLRHBIWHz8/A3Wwyrm/+H3 8c6L7RZkkylh8kVkYsTJTRe3yb7jMKYLbznrJLiHtNOhp1qKnFVpZfWhzuUPrCuR N3ot49OuFV9a3je8LDboo7qdUwAQvmaK8loXiIXJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYwsSpV7BET9Pe777OlmKq/FkZSQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ODhkNTk5LTJjNjAtNGFhMC1hM2QyLTEzNWZmZjc1YzI1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHLWFQwDQYJKoZIhvcNAQELBQADggEBAEIUDBpmQ4ZUP7BDaak0zWMpnDkC RoGUJ5v0VaXSnmYHiNWBty26mhmpuyTVmmXcKyllY3g9z6ppvg2LlndOEsBUoOA0 u5i7lNi5qViAQFifZ1geICaQN4CmtYQA1fXO6plw1YZ/0hJnmp4ZP8iozrqD+s9X WIf23+1mTz2jETq0Ta82rvD8PnQZSqHr9S3UYCO3HrUgyscphmGUEkEnpccnR45O 3MuqEulHswonLQ8TIwWOtOg1BJQJa+YCi9IfqJ7guIcV1G28vm+9pp9DeBnWFCVa Uygq03v0Zs3oHSturd/7FmFMJH7BK8RgGVWzFDAem5p9jz24GMQKjgCEQrQ= -----END CERTIFICATE-----Generated at Sat Apr 5 11:16:46 2025 by rpki-client