$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa File: 554f8288-8564-4a8f-a0ee-ed5fa324e824.roa (raw, json) Hash identifier: EgH9Um/uBD34otLeLQxqegoAlsrQS2I9as2zwm5495Q= Subject key identifier: 0D:C5:6F:1B:A8:08:80:84:B7:F1:27:70:A7:26:0A:00:34:E5:48:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4710B62A7D4876D4612931E700D4325C6DDEE257 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa Signing time: Tue 20 May 2025 00:10:25 +0000 ROA not before: Tue 20 May 2025 00:10:25 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 123.200.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:10:b6:2a:7d:48:76:d4:61:29:31:e7:00:d4:32:5c:6d:de:e2:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:10:25 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=6c63510b0121d5968bc3ad91d52a9fd9abad276ace85363a611963fd1a4d1a83, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ee:42:4d:36:ae:3b:83:3d:d4:41:5f:f5:00: ef:01:74:ca:f0:8d:5d:c0:b3:40:97:2b:e3:a5:17: 9a:06:10:46:b7:ee:4b:2d:03:12:04:d3:7c:d3:34: 45:3e:fb:ee:eb:4f:66:2a:00:6e:f8:df:e5:d2:b1: 94:9a:14:04:b9:8b:82:cf:65:02:88:b4:8b:a2:a2: c5:da:df:f1:21:71:17:af:d9:6d:a3:77:2e:1b:ad: 3c:eb:5b:da:dd:d6:6f:13:c6:58:40:13:d6:d1:d1: 54:25:32:3a:4b:f8:36:f0:60:38:a3:04:2d:91:52: 97:6a:9e:de:0b:00:8c:92:5f:3d:e3:e5:7d:8e:17: 8e:e4:0f:37:d0:28:79:05:79:82:ae:a5:10:1a:2a: 5b:97:c0:54:35:80:dc:17:73:e7:e7:d3:2c:56:04: 41:70:00:97:74:9a:fb:f9:a1:ce:27:7a:51:41:cf: cd:1d:ee:98:fa:33:af:dc:c8:e4:fd:c6:cb:a2:98: 77:6f:c0:b4:00:f0:47:ae:ce:5f:63:f8:67:0a:12: a0:bd:3a:44:ee:57:0c:4e:10:7f:f1:76:84:6c:3f: 49:0a:dd:7e:88:5f:7b:10:aa:b4:c0:4b:96:e5:7f: 9d:66:23:9a:b9:cd:a4:e8:5e:38:ce:bd:ab:b5:20: 79:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C5:6F:1B:A8:08:80:84:B7:F1:27:70:A7:26:0A:00:34:E5:48:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/554f8288-8564-4a8f-a0ee-ed5fa324e824.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.200.202.0/23 Signature Algorithm: sha256WithRSAEncryption bf:03:15:87:1c:27:64:c7:4a:0b:7a:ba:93:0a:95:b3:03:70: 65:84:1a:68:47:73:81:ae:e9:29:80:c8:6f:86:75:bb:e7:34: 4e:fc:14:17:e6:e8:dd:85:0e:48:9b:09:0a:5b:17:00:bd:23: be:ae:65:ff:9f:c8:ed:f9:55:94:72:2e:82:18:a8:c6:b5:90: bb:bc:40:05:f0:3c:94:22:f6:7d:8e:28:7c:01:a1:25:33:60: f0:25:c9:44:b3:8b:87:76:0f:5b:a0:fe:91:eb:97:cd:76:27: 43:0b:9d:aa:8d:0b:09:33:4f:ef:ad:2c:e3:06:e3:74:c1:81: 21:8e:d8:4f:86:d0:dd:25:0e:64:2e:70:db:c8:76:d5:36:5c: 5e:77:83:dd:c5:02:4e:71:97:de:12:d3:62:71:e8:35:cc:65: 42:82:15:5c:07:2b:25:12:d7:28:ce:38:11:dd:ec:0e:6e:b5: ed:8b:7a:54:b3:50:64:93:4b:4d:7b:dd:71:ef:1b:dc:5e:57: e4:18:eb:4b:c5:18:52:e1:56:c5:e2:b4:53:ae:4d:33:ac:16: 25:93:1a:27:ed:0a:bb:80:ea:3e:00:b7:aa:24:a8:1f:c3:ca: 56:f6:a9:78:16:a3:63:91:73:82:d4:4f:77:74:d6:bf:39:00: c1:1c:cd:1e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURxC2Kn1IdtRhKTHnANQyXG3e4lcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAxMDI1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YzYzNTEwYjAxMjFkNTk2OGJjM2FkOTFkNTJhOWZkOWFi YWQyNzZhY2U4NTM2M2E2MTE5NjNmZDFhNGQxYTgzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCc7kJNNq47gz3UQV/1AO8BdMrwjV3As0CXK+OlF5oGEEa3 7kstAxIE03zTNEU+++7rT2YqAG743+XSsZSaFAS5i4LPZQKItIuiosXa3/EhcRev 2W2jdy4brTzrW9rd1m8TxlhAE9bR0VQlMjpL+DbwYDijBC2RUpdqnt4LAIySXz3j 5X2OF47kDzfQKHkFeYKupRAaKluXwFQ1gNwXc+fn0yxWBEFwAJd0mvv5oc4nelFB z80d7pj6M6/cyOT9xsuimHdvwLQA8Eeuzl9j+GcKEqC9OkTuVwxOEH/xdoRsP0kK 3X6IX3sQqrTAS5blf51mI5q5zaToXjjOvau1IHkrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDcVvG6gIgIS38SdwpyYKADTlSDIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1NGY4Mjg4LTg1NjQtNGE4Zi1hMGVlLWVkNWZhMzI0ZTgyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAF7yMowDQYJKoZIhvcNAQELBQADggEBAL8DFYccJ2THSgt6upMKlbMDcGWE GmhHc4Gu6SmAyG+GdbvnNE78FBfm6N2FDkibCQpbFwC9I76uZf+fyO35VZRyLoIY qMa1kLu8QAXwPJQi9n2OKHwBoSUzYPAlyUSzi4d2D1ug/pHrl812J0MLnaqNCwkz T++tLOMG43TBgSGO2E+G0N0lDmQucNvIdtU2XF53g93FAk5xl94S02Jx6DXMZUKC FVwHKyUS1yjOOBHd7A5ute2LelSzUGSTS0173XHvG9xeV+QY60vFGFLhVsXitFOu TTOsFiWTGiftCruA6j4At6okqB/Dylb2qXgWo2ORc4LUT3d01r85AMEczR4= -----END CERTIFICATE-----Generated at Sun Jun 1 04:39:25 2025 by rpki-client