$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/793fcee8-7478-4b11-9fee-e87da0f9edc2.roa File: 793fcee8-7478-4b11-9fee-e87da0f9edc2.roa (raw, json) Hash identifier: 2hOBUADf0PpzduzWeh6qEFJj4Km/GCtLVHiFY7Y8ZpU= Subject key identifier: 29:2F:01:D5:2C:0E:09:CF:F2:29:04:12:9F:BA:CE:56:54:A7:C3:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F0DCEA93B7FD755292570C9D4D0DC9C42105071 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/793fcee8-7478-4b11-9fee-e87da0f9edc2.roa Signing time: Mon 14 Apr 2025 15:22:20 +0000 ROA not before: Mon 14 Apr 2025 15:22:20 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 31.220.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:0d:ce:a9:3b:7f:d7:55:29:25:70:c9:d4:d0:dc:9c:42:10:50:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 14 15:22:20 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=00a73c776d149a610c1c6ab2d91cf0a701c0c6fd719816e12d7e793572ec0830, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8f:e7:f2:1d:24:af:18:07:13:db:e6:e7:31: 82:36:85:47:a1:ad:61:56:71:54:4a:1a:77:c8:e9: f9:17:b7:65:37:7e:3a:3b:b3:57:25:87:4d:9f:e2: 25:9a:de:9f:69:14:d2:14:5a:19:4a:7b:f7:61:ea: a1:3c:4e:6a:b5:dd:13:7c:57:63:61:0e:54:2f:66: d3:e6:99:e0:f8:d9:3c:22:f5:b8:54:84:42:1a:3a: ae:80:6e:be:a2:94:ec:35:09:0e:e6:a9:c4:c9:bc: 21:8b:94:8a:2b:45:53:94:a9:d2:44:99:96:be:22: f5:e4:1e:5a:dd:4a:34:c6:82:3e:f4:69:bf:5d:28: dc:c2:db:eb:a6:78:33:08:0c:20:32:9e:05:62:5a: 0f:9e:fe:25:96:b2:bb:16:5b:5e:76:e6:1e:57:60: 4f:5a:fd:f8:00:46:3b:03:aa:0d:fd:6e:f1:9a:c9: 66:9e:bc:88:11:13:6a:46:1d:83:68:cf:55:bb:0f: fe:97:d5:43:b0:12:87:d4:e2:a2:f5:79:c5:03:88: 95:ec:ba:74:5d:bc:2a:61:ff:39:8b:5c:87:ad:21: 00:f4:d5:ac:e7:f5:5e:6c:10:cd:30:50:b1:73:71: 3a:d5:82:05:c3:bf:48:f6:54:5d:25:8b:45:c2:70: 03:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:2F:01:D5:2C:0E:09:CF:F2:29:04:12:9F:BA:CE:56:54:A7:C3:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/793fcee8-7478-4b11-9fee-e87da0f9edc2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.220.220.0/22 Signature Algorithm: sha256WithRSAEncryption d0:3f:d6:fd:90:66:16:0c:3c:b1:44:8f:05:2a:d9:60:71:b3: b0:09:db:10:da:f6:ac:b4:33:58:8c:71:21:92:d0:58:71:eb: d4:7d:1a:21:cf:12:d9:a1:34:67:a4:a0:b6:c4:1d:29:e9:2f: eb:e2:7c:0a:32:4f:21:8e:50:bd:b8:9b:20:41:4f:23:c1:02: 03:c9:d2:82:11:55:8b:fb:79:62:91:34:0e:01:59:84:02:fd: ad:e5:23:80:59:9f:94:f1:1c:58:16:13:79:f9:b2:de:3f:45: 7e:8c:40:51:c4:ae:75:3e:2f:3f:bb:d0:6b:f0:ab:2f:ee:26: 33:09:e3:c1:e3:c1:a3:43:19:fb:e4:34:c9:02:7e:de:59:68: e6:ef:f1:15:dd:0b:45:df:e3:26:6f:2b:de:f7:c4:ca:6d:53: 90:f1:f6:ff:89:51:61:8d:51:db:e3:84:43:a3:b2:86:68:c6: dc:19:58:5a:71:fa:44:ba:52:7a:39:3f:8c:e7:7c:58:a3:66: e8:a1:f1:75:1b:a8:40:6b:63:a1:94:00:52:af:62:fe:68:d2: cc:a0:11:74:32:bb:b8:ac:e1:d4:20:1b:7d:97:a2:fc:17:42: 3f:87:ce:8d:82:45:1d:be:5e:86:6c:c8:02:85:fa:81:bd:c5: 41:69:c9:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPw3OqTt/11UpJXDJ1NDcnEIQUHEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE0MTUyMjIwWhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGE3M2M3NzZkMTQ5YTYxMGMxYzZhYjJkOTFjZjBhNzAx YzBjNmZkNzE5ODE2ZTEyZDdlNzkzNTcyZWMwODMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoj+fyHSSvGAcT2+bnMYI2hUehrWFWcVRKGnfI6fkXt2U3 fjo7s1clh02f4iWa3p9pFNIUWhlKe/dh6qE8Tmq13RN8V2NhDlQvZtPmmeD42Twi 9bhUhEIaOq6Abr6ilOw1CQ7mqcTJvCGLlIorRVOUqdJEmZa+IvXkHlrdSjTGgj70 ab9dKNzC2+umeDMIDCAyngViWg+e/iWWsrsWW1525h5XYE9a/fgARjsDqg39bvGa yWaevIgRE2pGHYNoz1W7D/6X1UOwEofU4qL1ecUDiJXsunRdvCph/zmLXIetIQD0 1azn9V5sEM0wULFzcTrVggXDv0j2VF0li0XCcAN3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKS8B1SwOCc/yKQQSn7rOVlSnw4AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc5M2ZjZWU4LTc0NzgtNGIxMS05ZmVlLWU4N2RhMGY5ZWRjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIf3NwwDQYJKoZIhvcNAQELBQADggEBANA/1v2QZhYMPLFEjwUq2WBxs7AJ 2xDa9qy0M1iMcSGS0Fhx69R9GiHPEtmhNGekoLbEHSnpL+vifAoyTyGOUL24myBB TyPBAgPJ0oIRVYv7eWKRNA4BWYQC/a3lI4BZn5TxHFgWE3n5st4/RX6MQFHErnU+ Lz+70Gvwqy/uJjMJ48HjwaNDGfvkNMkCft5ZaObv8RXdC0Xf4yZvK973xMptU5Dx 9v+JUWGNUdvjhEOjsoZoxtwZWFpx+kS6Uno5P4znfFijZuih8XUbqEBrY6GUAFKv Yv5o0sygEXQyu7is4dQgG32XovwXQj+Hzo2CRR2+XoZsyAKF+oG9xUFpyf4= -----END CERTIFICATE-----Generated at Sat Apr 26 13:29:55 2025 by rpki-client