$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57babf0d-7d6f-4016-a59e-e7825150c105.roa File: 57babf0d-7d6f-4016-a59e-e7825150c105.roa (raw, json) Hash identifier: IuwUTWDP5TX5Rdk9DnY8TC/y+FyK9ZBGNN8EE4634Cw= Subject key identifier: 67:BF:AF:91:D1:70:52:1D:D6:6E:54:58:11:E8:F7:42:3B:D0:F8:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 60027182CB6AB84C94A1CFF0A3FFAF949F13AC91 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57babf0d-7d6f-4016-a59e-e7825150c105.roa Signing time: Fri 25 Apr 2025 00:11:46 +0000 ROA not before: Fri 25 Apr 2025 00:11:46 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.238.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:02:71:82:cb:6a:b8:4c:94:a1:cf:f0:a3:ff:af:94:9f:13:ac:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:11:46 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=b079663df4739edd958b2e8ae1eb15bafcd0858c97234fefbc3d6021ecc735b9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b5:83:33:88:69:59:2d:19:cb:ec:ac:f8:1a: 0f:64:9c:b0:6d:23:fe:da:25:7c:fd:41:e5:cc:3f: 42:6b:8c:af:10:90:cb:66:97:75:60:9f:35:0c:b2: 1b:99:39:a0:f1:2c:bf:52:b5:13:43:56:29:da:82: 53:d5:93:8f:08:69:e7:69:4e:6a:d0:e5:4f:71:24: 21:08:2e:b1:ed:21:65:47:94:6d:d2:c9:6f:92:e4: 08:f4:00:c0:a9:21:66:9f:68:21:53:a1:10:b9:7e: cb:63:3e:96:37:d8:17:ea:97:3b:cf:7e:fc:16:1c: 99:09:11:1c:6a:c8:f2:13:7d:f2:db:f4:c4:8a:a2: cf:e5:a6:56:90:db:0b:ba:2b:58:1d:3f:d6:40:cd: 0b:31:04:20:49:1f:71:1a:1b:ee:99:12:13:08:b5: 32:4e:fe:18:f5:fc:b5:9d:aa:88:c6:92:4c:a9:2e: e9:1f:18:f8:1f:45:f5:53:0f:19:1a:7b:9d:db:ab: 45:1c:ad:fe:b7:45:28:16:ba:f0:47:65:ff:ec:8b: 3a:01:75:3f:fe:e0:1a:7f:7d:9e:94:90:da:3e:e1: a9:43:1e:22:9a:49:de:30:9f:8f:7e:5c:44:95:26: e1:e8:1c:96:1e:51:92:7a:22:9a:73:7b:0d:cc:e5: 6a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:BF:AF:91:D1:70:52:1D:D6:6E:54:58:11:E8:F7:42:3B:D0:F8:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57babf0d-7d6f-4016-a59e-e7825150c105.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.238.242.0/23 Signature Algorithm: sha256WithRSAEncryption b1:ef:92:dc:64:71:e4:5d:ae:81:25:6b:fd:4f:0d:f3:7f:56: aa:b5:6e:40:11:76:3d:78:bc:e2:b6:f1:3a:4c:1f:4a:16:5b: 96:a8:7d:6b:8f:b5:a1:4f:ae:9c:dd:83:a8:6e:b7:ad:88:96: 8d:7e:dd:03:09:59:90:b1:28:de:4f:a9:f3:57:52:5f:7e:d3: b1:f5:78:87:b2:d3:6b:d9:b4:9e:4d:e7:43:45:5f:9a:a3:17: 4c:d6:fb:e8:d1:82:74:e0:69:4c:3d:db:70:f1:44:79:48:a0: 4c:11:12:80:5c:ab:4d:40:be:85:4c:74:98:33:24:65:10:6e: 7a:04:95:42:91:e7:07:30:16:47:d3:2e:1d:bf:53:92:a6:a9: a0:91:55:38:50:35:81:6e:7c:ad:87:f3:06:4c:20:af:98:4f: 0a:d0:f7:8e:0c:30:e3:02:ac:10:20:68:3f:86:db:ff:6d:0a: f3:bc:98:f8:d1:de:d3:86:80:19:c7:6f:3c:59:c8:94:b5:da: 63:3d:09:42:01:21:cb:b1:4b:63:36:a7:a1:c4:b0:51:82:ac: 81:f5:01:38:a4:8a:5e:28:7f:d1:c3:a5:8b:94:69:b3:7b:af: d9:7a:04:48:6e:47:3f:f8:f4:eb:f5:89:0a:20:f5:3a:ef:af: 77:a2:5a:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYAJxgstquEyUoc/wo/+vlJ8TrJEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDAxMTQ2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMDc5NjYzZGY0NzM5ZWRkOTU4YjJlOGFlMWViMTViYWZj ZDA4NThjOTcyMzRmZWZiYzNkNjAyMWVjYzczNWI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHtYMziGlZLRnL7Kz4Gg9knLBtI/7aJXz9QeXMP0JrjK8Q kMtml3VgnzUMshuZOaDxLL9StRNDVinaglPVk48IaedpTmrQ5U9xJCEILrHtIWVH lG3SyW+S5Aj0AMCpIWafaCFToRC5fstjPpY32BfqlzvPfvwWHJkJERxqyPITffLb 9MSKos/lplaQ2wu6K1gdP9ZAzQsxBCBJH3EaG+6ZEhMItTJO/hj1/LWdqojGkkyp LukfGPgfRfVTDxkae53bq0Ucrf63RSgWuvBHZf/sizoBdT/+4Bp/fZ6UkNo+4alD HiKaSd4wn49+XESVJuHoHJYeUZJ6Ippzew3M5Wp5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZ7+vkdFwUh3WblRYEej3QjvQ+JwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3YmFiZjBkLTdkNmYtNDAxNi1hNTllLWU3ODI1MTUwYzEwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFu7vIwDQYJKoZIhvcNAQELBQADggEBALHvktxkceRdroEla/1PDfN/Vqq1 bkARdj14vOK28TpMH0oWW5aofWuPtaFPrpzdg6hut62Ilo1+3QMJWZCxKN5PqfNX Ul9+07H1eIey02vZtJ5N50NFX5qjF0zW++jRgnTgaUw923DxRHlIoEwREoBcq01A voVMdJgzJGUQbnoElUKR5wcwFkfTLh2/U5KmqaCRVThQNYFufK2H8wZMIK+YTwrQ 944MMOMCrBAgaD+G2/9tCvO8mPjR3tOGgBnHbzxZyJS12mM9CUIBIcuxS2M2p6HE sFGCrIH1ATikil4of9HDpYuUabN7r9l6BEhuRz/49Ov1iQog9Trvr3eiWsk= -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:02 2025 by rpki-client