$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8469210f-a38a-4fc9-9e32-10f79df8ee72.roa File: 8469210f-a38a-4fc9-9e32-10f79df8ee72.roa (raw, json) Hash identifier: fvvT8g+gC34JvoS18Ap5kjj3+hiadVncw4BSgzEnoHc= Subject key identifier: DC:D4:76:60:AC:D7:CA:CD:0C:8A:51:1D:66:D7:B0:6C:A3:99:5A:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58CB2E8FD5AF3A77CAA83EEB4A2C7D4CF76B00D4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8469210f-a38a-4fc9-9e32-10f79df8ee72.roa Signing time: Fri 18 Apr 2025 00:31:50 +0000 ROA not before: Fri 18 Apr 2025 00:31:50 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.110.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:cb:2e:8f:d5:af:3a:77:ca:a8:3e:eb:4a:2c:7d:4c:f7:6b:00:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:31:50 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=f400a15381e5e700af86546d32385db6fa97cae0b1ac135c27bf40e5ee778b2e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b7:a4:77:a6:dd:6d:80:e3:62:bb:fb:ff:ca: b8:ee:de:5e:b6:76:cc:04:08:49:9d:a5:44:2c:aa: ae:ec:58:33:2f:61:c4:d6:74:83:b9:b5:18:67:6f: 94:67:fd:26:be:bf:bd:6a:67:e5:d5:32:94:e3:d0: 47:2f:c8:71:a8:71:36:4e:2d:6b:8b:81:24:f2:ae: 14:da:6d:46:74:c3:0e:ce:5a:83:b2:18:7b:d2:e5: 37:62:2c:83:b4:0c:bb:d5:72:2a:05:b6:ab:af:73: d6:7a:b9:78:18:de:1b:da:04:85:83:cc:29:24:c5: 03:9f:35:79:28:b2:17:e2:3a:71:bc:a7:eb:71:6d: fa:b5:af:45:52:e0:88:88:3e:e6:9f:d7:3c:4f:3e: d3:64:3e:dd:28:f6:ab:0c:2d:49:f2:02:d9:11:6c: 1b:41:96:64:5d:17:2f:b9:9f:ae:23:56:56:cb:eb: cc:bd:a4:37:5a:52:a8:67:91:ff:e5:17:a0:9f:68: cc:ac:2c:73:c4:5c:4d:b0:10:19:05:ae:a5:d4:1f: 13:2d:6f:48:de:e8:ae:7d:ca:b1:fd:e8:94:e6:b6: 82:40:64:de:39:a1:82:44:88:9e:d5:e8:07:f3:18: de:16:52:c4:44:c1:ae:43:41:59:40:8a:31:78:74: 04:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:D4:76:60:AC:D7:CA:CD:0C:8A:51:1D:66:D7:B0:6C:A3:99:5A:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8469210f-a38a-4fc9-9e32-10f79df8ee72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.110.200.0/24 Signature Algorithm: sha256WithRSAEncryption b3:06:63:26:7c:6c:ad:5e:96:7d:50:8a:69:ae:bc:9e:20:92: 68:59:da:62:e4:e8:ac:2d:b8:b3:d9:f9:f7:e4:27:e3:0a:ba: d4:3b:c5:82:99:7c:42:55:47:03:86:7b:7f:33:f7:73:3f:b4: 8d:57:c0:ea:d5:fa:f9:11:0a:36:2b:e2:bd:b8:b7:71:0f:d7: 5f:5e:bd:fa:4f:7e:a0:16:fc:e5:75:ac:2c:a8:fe:7c:ca:dc: 76:a7:ec:86:7a:d5:d4:69:ca:01:02:4b:6d:35:2b:75:09:b1: 17:06:f8:79:8a:a5:50:35:57:11:d4:93:64:7e:37:99:7d:bd: a2:b3:13:d4:dc:bb:9a:7f:cc:de:e2:18:e0:0c:13:7e:2d:47: cf:db:a3:ff:fb:38:89:a4:d8:6a:0a:9a:d1:4b:a9:50:90:1e: 51:1f:10:54:b4:73:dd:27:b1:cb:e9:46:d8:1f:5e:01:14:61: 66:70:67:c3:a9:8c:9e:81:86:8e:2a:6a:dc:15:8a:1c:e8:b9: e2:93:bb:b7:4f:6e:ab:ce:35:2b:26:0d:a0:09:e8:17:b2:35: 78:41:72:60:b4:c3:44:c8:44:c7:ae:77:d2:8e:3a:51:6e:3d: ca:3f:65:15:ee:51:3f:be:e6:3d:48:94:89:46:14:cb:29:ea: bd:93:3b:fa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWMsuj9WvOnfKqD7rSix9TPdrANQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDAzMTUwWhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDAwYTE1MzgxZTVlNzAwYWY4NjU0NmQzMjM4NWRiNmZh OTdjYWUwYjFhYzEzNWMyN2JmNDBlNWVlNzc4YjJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdt6R3pt1tgONiu/v/yrju3l62dswECEmdpUQsqq7sWDMv YcTWdIO5tRhnb5Rn/Sa+v71qZ+XVMpTj0EcvyHGocTZOLWuLgSTyrhTabUZ0ww7O WoOyGHvS5TdiLIO0DLvVcioFtquvc9Z6uXgY3hvaBIWDzCkkxQOfNXkoshfiOnG8 p+txbfq1r0VS4IiIPuaf1zxPPtNkPt0o9qsMLUnyAtkRbBtBlmRdFy+5n64jVlbL 68y9pDdaUqhnkf/lF6CfaMysLHPEXE2wEBkFrqXUHxMtb0je6K59yrH96JTmtoJA ZN45oYJEiJ7V6AfzGN4WUsREwa5DQVlAijF4dAT9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3NR2YKzXys0MilEdZtewbKOZWgkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0NjkyMTBmLWEzOGEtNGZjOS05ZTMyLTEwZjc5ZGY4ZWU3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADLbsgwDQYJKoZIhvcNAQELBQADggEBALMGYyZ8bK1eln1QimmuvJ4gkmhZ 2mLk6KwtuLPZ+ffkJ+MKutQ7xYKZfEJVRwOGe38z93M/tI1XwOrV+vkRCjYr4r24 t3EP119evfpPfqAW/OV1rCyo/nzK3Han7IZ61dRpygECS201K3UJsRcG+HmKpVA1 VxHUk2R+N5l9vaKzE9Tcu5p/zN7iGOAME34tR8/bo//7OImk2GoKmtFLqVCQHlEf EFS0c90nscvpRtgfXgEUYWZwZ8OpjJ6Bho4qatwVihzoueKTu7dPbqvONSsmDaAJ 6BeyNXhBcmC0w0TIRMeud9KOOlFuPco/ZRXuUT++5j1IlIlGFMsp6r2TO/o= -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:37 2025 by rpki-client