$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/640db256-ea3a-41a0-b252-1d52034e7dfa.roa File: 640db256-ea3a-41a0-b252-1d52034e7dfa.roa (raw, json) Hash identifier: 88qk7y6m2CbzNLRZ83L4+U2V+iF+S4sli4+HgHx6L4I= Subject key identifier: 5D:99:EE:2D:F1:E2:11:26:2E:31:05:2F:D5:94:15:ED:EC:47:28:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D050BF5A40320452FDE0B93706FAA7BB73F8E18 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/640db256-ea3a-41a0-b252-1d52034e7dfa.roa Signing time: Fri 25 Apr 2025 00:10:54 +0000 ROA not before: Fri 25 Apr 2025 00:10:54 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.239.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:05:0b:f5:a4:03:20:45:2f:de:0b:93:70:6f:aa:7b:b7:3f:8e:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:10:54 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=03b7b0c00fea14f3ade4356d1d24aedb7203471672f52b4dadc5d1fdc258e8b6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:da:5f:60:10:cc:b5:4b:ff:a9:fd:c6:e1:68: b9:be:cb:5f:33:20:4e:68:a5:22:39:22:b5:f6:fd: b9:da:58:ee:0d:c9:d6:c5:a8:da:4b:e2:8a:32:8e: 71:71:3e:4d:27:eb:54:58:ab:1a:e0:b9:82:3e:1a: 2e:11:2c:f0:6d:79:e3:da:c1:bd:c3:07:1a:64:07: a0:40:33:2d:dc:18:c5:e4:16:79:f4:85:7a:6f:32: 21:ff:9e:a8:a1:84:c2:1b:90:25:ec:9c:25:17:36: 56:06:df:07:92:bc:90:17:e2:94:dd:37:bb:02:57: 43:6d:11:aa:01:dd:23:a7:14:29:35:10:ec:5b:c9: 88:0c:55:89:a4:01:8a:63:7c:09:25:8e:f2:e4:97: 64:b0:b3:7c:c9:cc:43:13:e4:b4:13:eb:8a:11:18: 01:2c:25:4c:0c:cf:02:fd:44:1e:ae:11:33:f8:01: d4:0f:7e:30:4b:39:4f:d9:66:55:52:7a:32:89:5f: 85:87:18:6a:cb:15:09:11:4f:bc:52:fb:38:75:7d: 82:42:ca:98:13:76:b9:f5:81:5a:e0:43:d6:5c:c9: 24:9f:42:cd:21:11:94:ae:f1:3d:d4:d8:d7:ef:b9: 59:b4:c2:61:a4:8e:02:a1:96:98:98:81:80:e2:eb: 61:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:99:EE:2D:F1:E2:11:26:2E:31:05:2F:D5:94:15:ED:EC:47:28:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/640db256-ea3a-41a0-b252-1d52034e7dfa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.239.29.0/24 Signature Algorithm: sha256WithRSAEncryption 91:ac:f1:d0:14:f3:1b:f7:33:8c:fc:f4:13:54:bd:37:a2:d8: 8b:b8:7d:53:b3:ad:c3:c9:53:78:5d:f5:33:c7:c1:ce:3d:0d: 73:67:12:6e:20:4c:c5:28:5f:12:00:11:3d:8e:ea:5b:71:18: 99:3b:b7:15:c4:95:65:1f:19:09:ca:53:ea:00:fe:7c:f7:b1: 63:83:cc:a3:3e:e2:2b:d9:72:e3:37:f2:34:ca:44:a4:ee:e4: e8:b2:e5:1f:d7:cd:76:e9:8e:d2:6c:52:b9:ac:c4:d0:99:21: 24:49:f7:6f:56:7f:5f:16:be:fc:d9:3a:64:68:c6:a2:2f:07: 66:be:d9:6c:9f:1d:dc:70:15:d6:13:64:5c:8a:94:cd:27:b4: 3c:5c:7e:3c:16:aa:e9:bf:56:83:13:5a:0a:09:8d:c4:79:f7: f6:4c:2e:df:28:49:84:6a:08:ec:df:fa:c3:c2:3e:e2:14:2d: d3:29:b9:39:2e:a8:a3:99:93:ce:c3:14:25:41:02:25:0a:0e: 21:dc:1a:60:c0:d9:35:0c:af:cf:51:c8:75:6c:8d:ef:69:5c: 3b:11:74:9c:29:e2:30:63:44:c1:d9:08:20:06:2a:a9:4a:bd: a6:93:20:60:44:3e:97:39:83:2b:7b:7f:18:d0:0f:b9:d7:1b: 93:68:62:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbQUL9aQDIEUv3guTcG+qe7c/jhgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDAxMDU0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwM2I3YjBjMDBmZWExNGYzYWRlNDM1NmQxZDI0YWVkYjcy MDM0NzE2NzJmNTJiNGRhZGM1ZDFmZGMyNThlOGI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDq2l9gEMy1S/+p/cbhaLm+y18zIE5opSI5IrX2/bnaWO4N ydbFqNpL4ooyjnFxPk0n61RYqxrguYI+Gi4RLPBteePawb3DBxpkB6BAMy3cGMXk Fnn0hXpvMiH/nqihhMIbkCXsnCUXNlYG3weSvJAX4pTdN7sCV0NtEaoB3SOnFCk1 EOxbyYgMVYmkAYpjfAkljvLkl2Sws3zJzEMT5LQT64oRGAEsJUwMzwL9RB6uETP4 AdQPfjBLOU/ZZlVSejKJX4WHGGrLFQkRT7xS+zh1fYJCypgTdrn1gVrgQ9ZcySSf Qs0hEZSu8T3U2NfvuVm0wmGkjgKhlpiYgYDi62HPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXZnuLfHiESYuMQUv1ZQV7exHKJIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0MGRiMjU2LWVhM2EtNDFhMC1iMjUyLTFkNTIwMzRlN2RmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABu7x0wDQYJKoZIhvcNAQELBQADggEBAJGs8dAU8xv3M4z89BNUvTei2Iu4 fVOzrcPJU3hd9TPHwc49DXNnEm4gTMUoXxIAET2O6ltxGJk7txXElWUfGQnKU+oA /nz3sWODzKM+4ivZcuM38jTKRKTu5Oiy5R/XzXbpjtJsUrmsxNCZISRJ929Wf18W vvzZOmRoxqIvB2a+2WyfHdxwFdYTZFyKlM0ntDxcfjwWqum/VoMTWgoJjcR59/ZM Lt8oSYRqCOzf+sPCPuIULdMpuTkuqKOZk87DFCVBAiUKDiHcGmDA2TUMr89RyHVs je9pXDsRdJwp4jBjRMHZCCAGKqlKvaaTIGBEPpc5gyt7fxjQD7nXG5NoYnw= -----END CERTIFICATE-----Generated at Sat Apr 26 16:35:35 2025 by rpki-client