$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d4d2f7-1a78-4934-8b97-d3baee111a75.roa File: 05d4d2f7-1a78-4934-8b97-d3baee111a75.roa (raw, json) Hash identifier: KDPsMswXW0MMoMQbDaoPsbx64UKFIcPOvM3ZSTVmMCc= Subject key identifier: 13:EB:1F:93:43:37:2F:4C:B9:BE:09:A9:51:98:43:99:61:AA:E4:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 037AE88C73894980006E0675EEB30302122138C0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d4d2f7-1a78-4934-8b97-d3baee111a75.roa Signing time: Fri 23 May 2025 00:10:16 +0000 ROA not before: Fri 23 May 2025 00:10:16 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.5.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:7a:e8:8c:73:89:49:80:00:6e:06:75:ee:b3:03:02:12:21:38:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 23 00:10:16 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=7ac3f6c4527efe80036141f54b0c61425e5ec79eb354cdc49898c99616efd0f9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:69:bd:33:37:6d:01:82:ee:3a:bf:b5:a5:06: 63:1d:78:16:50:0e:0f:2f:16:59:fc:94:56:ba:09: f6:3b:61:49:6a:cc:50:56:ee:0f:02:c9:f6:b8:0b: 93:89:07:20:d4:ce:31:1e:0c:65:9f:2f:96:30:88: fc:be:cd:b1:c8:9d:4b:da:cb:4d:f8:f3:ab:83:54: 8c:33:69:a4:8c:fd:38:8c:48:fb:3f:3f:84:30:83: dd:40:5b:e4:aa:48:12:a1:12:91:bf:71:38:2c:14: 17:b3:c5:2e:4a:65:17:8f:19:cd:9b:f9:b3:8f:91: 77:22:97:7d:f3:f9:3d:9d:af:4f:dc:38:f8:cd:fa: 98:9e:46:cc:1f:ae:e0:b7:52:b6:0c:f6:0d:9b:51: 99:e2:a1:48:b3:d9:ec:95:57:27:12:d0:15:e7:20: 8e:02:a7:15:5e:da:4d:84:8e:c2:0d:d7:68:6f:d5: c9:ca:87:68:cd:b3:42:47:cb:c6:4a:fd:ba:16:1d: 86:eb:4e:bd:52:94:2b:96:db:c6:50:1e:86:07:26: e5:f5:c1:fc:78:ee:8b:33:91:b8:90:b1:97:38:63: 99:16:03:ac:5e:ff:37:0d:22:9e:93:b4:50:ea:71: d5:43:aa:63:b1:19:7b:72:fd:a1:65:33:54:0e:f6: e5:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:EB:1F:93:43:37:2F:4C:B9:BE:09:A9:51:98:43:99:61:AA:E4:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d4d2f7-1a78-4934-8b97-d3baee111a75.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.165.0/24 Signature Algorithm: sha256WithRSAEncryption 09:35:c6:12:a3:0f:df:f7:a6:c0:23:b6:15:c1:89:5a:a1:17: c1:43:82:d8:05:4a:d3:02:89:b4:4d:ea:f8:59:64:90:99:a8: c6:95:b3:77:fe:42:34:70:67:3a:c4:20:80:e0:f3:b8:29:f3: 25:c4:35:33:b1:f2:c7:f5:f7:7d:76:5a:4a:61:38:d7:51:ac: 11:d7:65:24:7a:de:ed:38:ef:d9:97:c0:0e:aa:9c:7c:e3:f5: d1:d9:2d:62:46:bf:27:fa:fe:fd:80:02:c9:ef:dd:75:27:79: d7:5f:be:5b:71:87:d7:ae:ca:9f:61:46:5f:52:32:ef:a8:c0: 16:86:2f:8c:e0:10:53:28:a6:28:04:97:f3:90:01:12:d7:ad: 69:94:58:e7:6c:3a:9e:f1:8e:df:18:ec:43:51:2e:ae:85:b3: f0:14:0f:04:da:72:c3:61:53:9b:09:20:5c:0d:dd:da:31:f5: 04:53:d1:cc:32:b5:9c:1a:83:02:46:53:c5:7a:f7:c0:54:6c: e6:45:c2:92:ca:35:c6:52:6e:db:61:3c:73:7f:36:c5:81:e5: 3e:9d:be:3a:8b:90:92:6e:5a:b9:ec:93:fc:a0:8b:83:7a:5c: 90:67:6d:8e:72:71:54:83:0b:31:8c:ab:f0:c9:15:8c:c4:40: 59:4f:b6:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA3rojHOJSYAAbgZ17rMDAhIhOMAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIzMDAxMDE2WhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWMzZjZjNDUyN2VmZTgwMDM2MTQxZjU0YjBjNjE0MjVl NWVjNzllYjM1NGNkYzQ5ODk4Yzk5NjE2ZWZkMGY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrab0zN20Bgu46v7WlBmMdeBZQDg8vFln8lFa6CfY7YUlq zFBW7g8Cyfa4C5OJByDUzjEeDGWfL5YwiPy+zbHInUvay03486uDVIwzaaSM/TiM SPs/P4Qwg91AW+SqSBKhEpG/cTgsFBezxS5KZRePGc2b+bOPkXcil33z+T2dr0/c OPjN+pieRswfruC3UrYM9g2bUZnioUiz2eyVVycS0BXnII4CpxVe2k2EjsIN12hv 1cnKh2jNs0JHy8ZK/boWHYbrTr1SlCuW28ZQHoYHJuX1wfx47oszkbiQsZc4Y5kW A6xe/zcNIp6TtFDqcdVDqmOxGXty/aFlM1QO9uWHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUE+sfk0M3L0y5vgmpUZhDmWGq5GEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1ZDRkMmY3LTFhNzgtNDkzNC04Yjk3LWQzYmFlZTExMWE3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADKBaUwDQYJKoZIhvcNAQELBQADggEBAAk1xhKjD9/3psAjthXBiVqhF8FD gtgFStMCibRN6vhZZJCZqMaVs3f+QjRwZzrEIIDg87gp8yXENTOx8sf19312Wkph ONdRrBHXZSR63u0479mXwA6qnHzj9dHZLWJGvyf6/v2AAsnv3XUneddfvltxh9eu yp9hRl9SMu+owBaGL4zgEFMopigEl/OQARLXrWmUWOdsOp7xjt8Y7ENRLq6Fs/AU DwTacsNhU5sJIFwN3dox9QRT0cwytZwagwJGU8V698BUbOZFwpLKNcZSbtthPHN/ NsWB5T6dvjqLkJJuWrnsk/ygi4N6XJBnbY5ycVSDCzGMq/DJFYzEQFlPtuw= -----END CERTIFICATE-----Generated at Sun Jun 1 04:57:15 2025 by rpki-client