$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/93ef871a-5786-49ee-841f-911efeedc0f2.roa File: 93ef871a-5786-49ee-841f-911efeedc0f2.roa (raw, json) Hash identifier: Xe+FofMpWDJ2iue6cgIsf0o+ol0rP+0J1TOzt5K4/7g= Subject key identifier: 0F:30:26:65:B3:8B:B7:B6:89:4B:7B:5C:6D:7D:A0:60:AD:55:CA:8C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1AC4BCD0AA261A0D7C359CB6BE3C8E0ADACC1B86 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/93ef871a-5786-49ee-841f-911efeedc0f2.roa Signing time: Tue 22 Apr 2025 00:01:42 +0000 ROA not before: Tue 22 Apr 2025 00:01:42 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.239.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:c4:bc:d0:aa:26:1a:0d:7c:35:9c:b6:be:3c:8e:0a:da:cc:1b:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:01:42 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=b8f32c30cc27dc8baa56ef2ddd83acbd6b980331e266773c3eeeb31339517d53, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6e:e6:d6:3e:94:3c:55:9b:7b:23:45:c8:e1: 15:82:82:92:ee:f3:ed:21:6f:98:d6:60:ff:a0:0e: 48:e8:af:32:05:4d:19:f9:c2:cc:55:3c:3d:0a:0c: 13:1a:9f:db:85:4f:50:82:48:e1:81:c5:00:3b:de: cc:54:85:02:29:59:c9:2a:a5:9d:5b:b2:40:ae:b0: 64:75:c3:c2:d7:01:da:d0:5e:90:60:52:08:f7:11: d9:68:ea:aa:cb:1a:2e:f9:74:64:a1:e4:c1:44:e0: 4c:f0:ff:64:de:c3:33:d9:2c:4a:a8:c2:c8:ca:71: 97:d5:d9:27:93:8c:4c:62:e3:98:47:a8:07:5d:90: b0:f4:d3:58:ba:e3:71:ae:cf:ba:89:b6:ab:39:7b: 4d:94:e0:bc:86:e0:ef:c7:06:14:c2:6e:98:ef:52: e9:fe:e7:a2:25:80:b1:c0:a1:bd:f1:de:22:1f:b1: 2f:7c:2f:86:18:19:92:f2:d2:f5:c4:e0:27:e9:ab: cb:49:27:52:63:e4:33:3b:a5:77:31:e0:fd:ad:d0: cc:cf:1e:a5:e9:6a:8f:16:91:30:85:24:e4:0c:46: 2b:3b:81:2c:6b:62:b6:e6:9f:5c:aa:19:bb:4c:66: 14:bb:27:d3:22:4d:23:55:16:20:0b:94:b5:7a:f6: 6c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:30:26:65:B3:8B:B7:B6:89:4B:7B:5C:6D:7D:A0:60:AD:55:CA:8C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/93ef871a-5786-49ee-841f-911efeedc0f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.239.20.0/22 Signature Algorithm: sha256WithRSAEncryption c0:64:44:d7:05:87:71:aa:e7:5a:bc:44:b7:a8:d0:b8:d6:63: 6a:ad:44:31:3d:54:76:96:62:5e:93:00:35:84:fc:68:8a:31: e8:fe:f1:b3:4a:c5:72:f4:25:f0:1c:02:82:72:c5:21:64:37: 92:3f:1f:a8:7e:9d:1b:64:32:cc:8c:21:64:3e:f4:89:bc:88: 0d:31:af:fe:ca:bc:07:c6:49:ac:e1:c8:3b:9d:48:54:9b:d8: 0f:44:de:1e:a5:20:bb:94:18:ae:a7:3a:6d:0f:74:ce:a0:3d: 45:44:1b:ae:41:64:bd:a7:76:0d:fd:63:4f:66:d8:a6:e6:0d: e4:6f:9e:70:86:1d:76:1c:9f:23:dc:45:27:5e:e6:80:1b:be: 2a:4b:96:15:cc:0e:7f:51:ee:3d:9c:3e:60:b4:50:07:c0:d8: cc:f7:03:57:20:b6:a5:38:26:1d:b7:0d:a0:ef:21:44:31:ee: eb:b6:14:2e:fe:8a:66:a5:fe:64:8d:4e:53:aa:93:4c:d8:f4: 93:a9:4e:44:83:18:e6:25:9a:a5:3b:ad:ac:a7:95:2c:35:18: 56:97:92:92:5d:76:f2:9d:ae:f3:43:76:ca:09:a2:6f:3b:73: 04:b2:58:85:ba:a3:e5:8c:63:40:72:98:3b:52:85:03:34:05: b6:12:09:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGsS80KomGg18NZy2vjyOCtrMG4YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAwMTQyWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOGYzMmMzMGNjMjdkYzhiYWE1NmVmMmRkZDgzYWNiZDZi OTgwMzMxZTI2Njc3M2MzZWVlYjMxMzM5NTE3ZDUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGbubWPpQ8VZt7I0XI4RWCgpLu8+0hb5jWYP+gDkjorzIF TRn5wsxVPD0KDBMan9uFT1CCSOGBxQA73sxUhQIpWckqpZ1bskCusGR1w8LXAdrQ XpBgUgj3Edlo6qrLGi75dGSh5MFE4Ezw/2TewzPZLEqowsjKcZfV2SeTjExi45hH qAddkLD001i643Guz7qJtqs5e02U4LyG4O/HBhTCbpjvUun+56IlgLHAob3x3iIf sS98L4YYGZLy0vXE4Cfpq8tJJ1Jj5DM7pXcx4P2t0MzPHqXpao8WkTCFJOQMRis7 gSxrYrbmn1yqGbtMZhS7J9MiTSNVFiALlLV69mwvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDzAmZbOLt7aJS3tcbX2gYK1VyowwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkzZWY4NzFhLTU3ODYtNDllZS04NDFmLTkxMWVmZWVkYzBmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJu7xQwDQYJKoZIhvcNAQELBQADggEBAMBkRNcFh3Gq51q8RLeo0LjWY2qt RDE9VHaWYl6TADWE/GiKMej+8bNKxXL0JfAcAoJyxSFkN5I/H6h+nRtkMsyMIWQ+ 9Im8iA0xr/7KvAfGSazhyDudSFSb2A9E3h6lILuUGK6nOm0PdM6gPUVEG65BZL2n dg39Y09m2KbmDeRvnnCGHXYcnyPcRSde5oAbvipLlhXMDn9R7j2cPmC0UAfA2Mz3 A1cgtqU4Jh23DaDvIUQx7uu2FC7+imal/mSNTlOqk0zY9JOpTkSDGOYlmqU7rayn lSw1GFaXkpJddvKdrvNDdsoJom87cwSyWIW6o+WMY0BymDtShQM0BbYSCdY= -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:24 2025 by rpki-client