$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5213e57-80ca-4b02-8923-95f9e9f6bf42.roa File: a5213e57-80ca-4b02-8923-95f9e9f6bf42.roa (raw, json) Hash identifier: 3tk+L/wvuigyyj9BtNqBUdgK8bYTxc23b/BX35p7zpU= Subject key identifier: B4:2F:71:83:23:E3:B8:21:D1:15:A4:97:3D:53:C9:34:09:24:E5:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 668B6EF57C3E11DE80532BE6E854CA876A9E669B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5213e57-80ca-4b02-8923-95f9e9f6bf42.roa Signing time: Tue 13 May 2025 00:30:26 +0000 ROA not before: Tue 13 May 2025 00:30:26 +0000 ROA not after: Tue 17 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.110.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:8b:6e:f5:7c:3e:11:de:80:53:2b:e6:e8:54:ca:87:6a:9e:66:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 13 00:30:26 2025 GMT Not After : Jun 17 23:59:59 2025 GMT Subject: serialNumber=70ee994b2997011dae227f1e7dd039e16e1aebb024f9b4a0bdbd3659f64809fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:76:fa:7a:dd:63:8b:bc:cc:53:08:f9:15:00: d7:94:18:1b:97:6b:29:4f:f7:72:1a:8b:9f:5f:20: 19:1d:27:2a:63:55:6c:06:33:d0:37:16:b1:7d:3e: 63:14:e4:87:9b:60:29:eb:83:84:5a:9a:da:70:6d: 4c:8a:14:25:fd:8f:1c:23:a8:95:30:7b:6a:1e:99: 33:01:8f:d4:a8:f5:9f:cf:fa:2f:72:9a:d1:19:c5: ba:5e:56:5e:7b:e7:9b:cc:f2:ef:91:35:96:66:90: 2a:2b:c1:a1:3d:31:6a:2e:cb:ba:1f:1a:af:1c:ca: 45:72:d8:2f:f7:b9:9c:0c:ab:63:7d:16:fa:b4:24: 4a:31:df:dc:2d:85:7f:5b:74:5a:f8:35:5b:c4:3e: df:34:7f:77:2e:35:b7:10:b2:c0:a8:a6:9e:7c:46: 87:bc:57:bf:82:b6:6b:5a:ce:d7:c1:22:49:28:b3: 85:31:bd:96:ac:8b:53:10:bf:6b:28:0a:5b:49:57: 68:c4:d3:60:32:e4:77:7d:6b:5e:86:55:43:d4:3e: 8b:88:19:a2:ae:4a:88:fe:c7:b2:ab:1f:4f:60:7e: 7e:f5:30:db:ca:9a:c4:13:b2:5e:59:bb:c6:22:54: f5:c7:fa:b1:aa:7f:b2:54:03:37:ef:3d:79:b4:ab: 86:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:2F:71:83:23:E3:B8:21:D1:15:A4:97:3D:53:C9:34:09:24:E5:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5213e57-80ca-4b02-8923-95f9e9f6bf42.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.110.193.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:09:67:01:7a:b3:fb:a5:2b:9e:01:52:b1:e0:9b:05:47:ae: 43:01:4c:00:38:8a:50:60:9e:2d:7b:e3:ba:e9:a4:2d:90:3a: 03:25:77:1e:f2:4c:b6:01:f4:dd:f8:a9:6c:e1:82:c0:61:d3: 6c:14:d4:c5:5b:e9:cc:6b:ed:28:07:4a:80:4d:8a:f7:4f:ab: 27:4d:80:e3:4d:20:b4:6f:e5:1b:d7:11:0b:de:c4:b4:3f:16: 67:c5:27:1b:0c:35:d9:c7:e3:d8:07:07:57:0a:36:59:bc:35: f9:13:7a:88:ca:fa:4e:07:8b:79:15:4d:27:5f:72:c4:c3:c5: 1a:c2:6a:92:5f:3d:e6:90:da:98:12:17:23:0f:62:07:bd:97: a7:76:57:d2:ec:1f:d8:3a:a8:a5:b4:fb:11:94:9f:8c:69:c6: d5:f4:e3:fb:44:a8:cb:8e:19:02:e5:c0:7e:23:07:af:20:41: 8a:1d:14:67:28:e4:10:2a:b8:98:62:ed:03:a4:ea:36:f2:b0: f7:2d:78:3d:fd:fe:b6:a4:34:0f:b3:1d:69:6d:97:9c:7b:ef: 99:06:e2:a6:36:0c:1a:cf:73:31:4a:a5:ba:7f:58:2d:e8:4a: b2:81:4a:43:21:86:23:c3:52:fe:39:5e:03:53:cc:6d:30:8a: ff:ec:f3:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZotu9Xw+Ed6AUyvm6FTKh2qeZpswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEzMDAzMDI2WhcNMjUwNjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MGVlOTk0YjI5OTcwMTFkYWUyMjdmMWU3ZGQwMzllMTZl MWFlYmIwMjRmOWI0YTBiZGJkMzY1OWY2NDgwOWZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcdvp63WOLvMxTCPkVANeUGBuXaylP93Iai59fIBkdJypj VWwGM9A3FrF9PmMU5IebYCnrg4RamtpwbUyKFCX9jxwjqJUwe2oemTMBj9So9Z/P +i9ymtEZxbpeVl5755vM8u+RNZZmkCorwaE9MWouy7ofGq8cykVy2C/3uZwMq2N9 Fvq0JEox39wthX9bdFr4NVvEPt80f3cuNbcQssCopp58Roe8V7+CtmtaztfBIkko s4UxvZasi1MQv2soCltJV2jE02Ay5Hd9a16GVUPUPouIGaKuSoj+x7KrH09gfn71 MNvKmsQTsl5Zu8YiVPXH+rGqf7JUAzfvPXm0q4ZxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtC9xgyPjuCHRFaSXPVPJNAkk5ZwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1MjEzZTU3LTgwY2EtNGIwMi04OTIzLTk1ZjllOWY2YmY0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADLbsEwDQYJKoZIhvcNAQELBQADggEBAGwJZwF6s/ulK54BUrHgmwVHrkMB TAA4ilBgni1747rppC2QOgMldx7yTLYB9N34qWzhgsBh02wU1MVb6cxr7SgHSoBN ivdPqydNgONNILRv5RvXEQvexLQ/FmfFJxsMNdnH49gHB1cKNlm8NfkTeojK+k4H i3kVTSdfcsTDxRrCapJfPeaQ2pgSFyMPYge9l6d2V9LsH9g6qKW0+xGUn4xpxtX0 4/tEqMuOGQLlwH4jB68gQYodFGco5BAquJhi7QOk6jbysPcteD39/rakNA+zHWlt l5x775kG4qY2DBrPczFKpbp/WC3oSrKBSkMhhiPDUv45XgNTzG0wiv/s88w= -----END CERTIFICATE-----Generated at Sun Jun 1 05:21:15 2025 by rpki-client