$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/925842c8-ade6-4164-87f2-fd556fb6f950.roa File: 925842c8-ade6-4164-87f2-fd556fb6f950.roa (raw, json) Hash identifier: KUgAEy8UTRUVPfifDxRaKgbFaS1hubKtBHqCzVV/Pz0= Subject key identifier: 1B:37:A4:B4:3A:6F:65:C7:12:BD:45:BA:CA:86:B9:0F:51:EB:E9:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DFB47A0D6E16DD1DC4113516EF29E4AD0B3FBB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/925842c8-ade6-4164-87f2-fd556fb6f950.roa Signing time: Tue 22 Apr 2025 00:01:35 +0000 ROA not before: Tue 22 Apr 2025 00:01:35 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.238.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:fb:47:a0:d6:e1:6d:d1:dc:41:13:51:6e:f2:9e:4a:d0:b3:fb:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:01:35 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=07f82fdd2862131ac4233d930341a6deec0beb7162c33f602637c8c429aa586b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:00:26:58:4a:3c:df:0c:66:d4:45:c5:59:17: a7:cb:c2:02:81:2d:6f:9f:b4:4b:fd:60:7d:c7:18: b0:06:81:61:75:13:5a:42:89:8f:26:e5:f8:c4:ac: 68:1a:7d:5b:db:0c:f0:e3:17:a3:ed:92:65:95:d9: 11:f2:8a:0d:e2:0d:68:15:a9:18:94:e7:bf:37:21: 8e:d2:37:32:43:dc:9b:31:9d:15:a7:cb:4b:e7:8c: 42:39:78:43:6f:ce:cb:85:56:fc:f6:34:c9:16:eb: f3:bb:2c:07:08:81:a5:53:3e:e1:0a:b6:3a:e6:0a: a1:73:d2:cf:1a:fe:10:b9:ea:12:27:92:f6:ec:ab: ea:d9:d4:f8:46:5d:f0:29:11:49:01:6c:b7:c9:bf: 22:e2:b6:08:14:88:9f:2a:48:e5:65:95:8d:23:8c: 09:2a:58:fa:95:e2:87:d0:f4:db:9b:1f:e8:54:44: 62:a8:35:a6:3c:5b:20:03:94:6c:10:07:fc:2e:23: 2e:a8:cb:a1:ac:71:2c:7e:54:60:54:a9:b3:38:1b: 8a:c3:9a:69:ee:18:9d:3f:fc:2a:8c:1a:43:ff:3d: a6:6f:ff:0e:d9:d6:fb:99:c9:46:1e:28:b8:07:d2: 2d:47:43:6c:1c:d0:b7:82:0f:8e:23:2f:c5:16:6e: 8c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:37:A4:B4:3A:6F:65:C7:12:BD:45:BA:CA:86:B9:0F:51:EB:E9:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/925842c8-ade6-4164-87f2-fd556fb6f950.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.238.244.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:c3:9f:12:f3:d1:2f:e6:7b:14:04:73:de:01:f4:60:c2:a2: 05:35:23:08:c6:66:e2:42:c7:f5:f3:01:e4:7f:0e:54:21:7b: 3c:c4:d3:24:9e:20:4b:82:ff:66:5d:c3:b5:a0:94:d3:94:8d: 36:de:ca:7f:1d:28:9b:c6:6c:9e:06:57:38:5a:36:d8:b8:3a: 46:c4:02:c2:56:73:6d:b6:26:42:1b:f7:d4:73:37:bf:99:f3: 95:ea:1b:e6:09:ab:37:6e:3f:63:8e:18:cd:af:d8:a2:ed:39: e8:38:bb:bf:ea:d4:c7:59:8d:1e:e4:c9:18:c5:13:2a:34:0d: a5:97:f4:e2:00:31:55:8d:1a:0c:6c:fd:e4:8a:eb:25:a9:12: f1:09:2b:d4:dc:26:64:44:17:7b:4f:b7:bd:cd:78:79:b3:dd: ef:45:1c:bf:df:90:ff:11:8f:d1:82:1f:1a:96:35:cd:82:9d: f9:49:ae:ea:46:5d:cd:f6:3b:83:f3:b6:7e:09:0a:b3:e7:68: b3:31:d3:6a:c9:53:ea:50:8c:f3:b0:cc:4d:4f:41:d1:e5:b8: dd:76:85:e3:f8:ef:b0:ac:19:ee:d5:62:31:4d:20:32:f7:df: 4c:39:20:6c:da:df:06:79:a7:b0:a8:df:88:58:67:4e:51:f9: d6:2b:d3:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXftHoNbhbdHcQRNRbvKeStCz+7YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAwMTM1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwN2Y4MmZkZDI4NjIxMzFhYzQyMzNkOTMwMzQxYTZkZWVj MGJlYjcxNjJjMzNmNjAyNjM3YzhjNDI5YWE1ODZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWACZYSjzfDGbURcVZF6fLwgKBLW+ftEv9YH3HGLAGgWF1 E1pCiY8m5fjErGgafVvbDPDjF6PtkmWV2RHyig3iDWgVqRiU5783IY7SNzJD3Jsx nRWny0vnjEI5eENvzsuFVvz2NMkW6/O7LAcIgaVTPuEKtjrmCqFz0s8a/hC56hIn kvbsq+rZ1PhGXfApEUkBbLfJvyLitggUiJ8qSOVllY0jjAkqWPqV4ofQ9NubH+hU RGKoNaY8WyADlGwQB/wuIy6oy6GscSx+VGBUqbM4G4rDmmnuGJ0//CqMGkP/PaZv /w7Z1vuZyUYeKLgH0i1HQ2wc0LeCD44jL8UWbowPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGzektDpvZccSvUW6yoa5D1Hr6fgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyNTg0MmM4LWFkZTYtNDE2NC04N2YyLWZkNTU2ZmI2Zjk1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJu7vQwDQYJKoZIhvcNAQELBQADggEBABzDnxLz0S/mexQEc94B9GDCogU1 IwjGZuJCx/XzAeR/DlQhezzE0ySeIEuC/2Zdw7WglNOUjTbeyn8dKJvGbJ4GVzha Nti4OkbEAsJWc222JkIb99RzN7+Z85XqG+YJqzduP2OOGM2v2KLtOeg4u7/q1MdZ jR7kyRjFEyo0DaWX9OIAMVWNGgxs/eSK6yWpEvEJK9TcJmREF3tPt73NeHmz3e9F HL/fkP8Rj9GCHxqWNc2CnflJrupGXc32O4Pztn4JCrPnaLMx02rJU+pQjPOwzE1P QdHluN12heP477CsGe7VYjFNIDL330w5IGza3wZ5p7Co34hYZ05R+dYr02Y= -----END CERTIFICATE-----Generated at Sat Apr 26 16:48:38 2025 by rpki-client