$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfcfe9a0-5cb3-497e-a0bc-f735c12c78a0.roa File: bfcfe9a0-5cb3-497e-a0bc-f735c12c78a0.roa (raw, json) Hash identifier: qZncQ8XulkEeDpJOJnIaJfwr95qq7m3wNVIU59iDEU4= Subject key identifier: 43:B5:34:74:E8:81:65:9C:DC:B9:DC:E4:59:E1:7D:42:F9:88:F3:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B8C7EED26DC59833B69C10BB13E3926B4509223 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfcfe9a0-5cb3-497e-a0bc-f735c12c78a0.roa Signing time: Fri 18 Apr 2025 00:30:38 +0000 ROA not before: Fri 18 Apr 2025 00:30:38 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.110.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:8c:7e:ed:26:dc:59:83:3b:69:c1:0b:b1:3e:39:26:b4:50:92:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:30:38 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=9792ba717562b0f1d0c0bfd39cad031ff2e2432373891bc3dfcb817389ae477f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:dd:ba:1b:45:92:03:07:31:60:60:ff:65:1b: f2:63:45:be:46:a4:e8:fc:f8:bf:49:b8:de:e4:6e: 1a:1a:cc:e3:72:5a:70:09:17:81:a2:fb:3f:bf:51: 93:c9:23:8a:4d:47:7d:14:a8:85:fc:3f:b4:a2:48: 0f:9c:83:4e:e9:a9:95:14:49:c1:51:02:e0:64:99: b9:48:0d:d1:c0:f8:0b:f2:84:f2:a9:a6:45:ab:be: 8a:c3:d5:16:51:52:14:83:84:f6:e0:1c:56:f6:f7: 6b:30:9c:34:f5:cc:72:82:54:09:84:53:85:fa:99: 04:d5:37:c2:4d:37:9a:4a:d4:bf:7a:96:62:9b:80: 06:e5:59:6f:7b:4a:3d:df:35:d2:cb:1c:ea:7c:0e: e9:ea:ea:2b:40:92:32:4f:a2:52:75:84:a8:90:99: b6:66:a5:19:c1:b9:38:20:9f:51:61:1e:07:91:5b: fd:17:14:90:bc:06:a9:e4:4f:d8:2f:1c:80:6c:7b: 1e:0c:6f:a1:00:ce:34:52:bf:fd:58:bc:91:fd:37: 09:1d:81:b9:3d:e1:d0:c6:46:7e:35:48:b6:e8:5b: d2:2e:72:20:d8:ec:11:0e:e3:07:9d:40:3a:44:e1: d9:4c:b2:42:e6:a1:ea:53:3f:02:56:f5:07:c0:25: ab:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:B5:34:74:E8:81:65:9C:DC:B9:DC:E4:59:E1:7D:42:F9:88:F3:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfcfe9a0-5cb3-497e-a0bc-f735c12c78a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.110.198.0/24 Signature Algorithm: sha256WithRSAEncryption 45:c0:38:6d:d2:92:72:16:e2:aa:72:a1:ad:9a:87:94:a2:8c: c6:ac:6d:90:71:47:1c:cb:36:14:ba:4c:64:6a:96:e3:92:b6: 99:22:eb:51:14:87:62:74:9e:58:db:ec:61:94:09:da:fb:93: a7:35:55:6a:a8:a4:32:e0:fe:81:2f:dd:4a:8e:81:d8:c1:b4: 75:18:a6:24:42:3c:9b:fc:f5:d3:de:f6:66:a4:4c:18:a8:bd: e6:d3:ce:f4:17:ea:d2:1d:ec:ae:8d:9b:b8:e1:fb:e7:47:c7: 7e:e9:7e:e2:a7:e8:b2:cc:8d:24:51:68:3e:e6:ec:6f:14:81: 95:c3:6d:7e:a4:32:da:08:82:e0:95:e0:3d:99:59:b8:b8:8e: b8:41:80:cd:6d:d1:e1:aa:0c:69:60:22:ad:27:6e:2b:d8:4f: 08:6e:3b:57:83:c2:92:51:b8:5a:e5:23:a2:b6:9d:58:94:04: 46:07:83:e1:70:aa:03:47:99:ca:21:7d:a0:c4:37:19:5e:ea: 82:41:c6:d4:e9:1d:37:33:85:c9:fe:18:57:0a:ee:8f:a9:db: f0:85:d6:a5:59:e4:aa:5a:8c:23:2d:4c:4a:c7:90:17:bb:d4: eb:99:f1:f0:36:14:ab:e2:5f:40:29:fb:00:34:9e:f0:9a:2d: 71:f5:0e:94 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe4x+7SbcWYM7acELsT45JrRQkiMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDAzMDM4WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NzkyYmE3MTc1NjJiMGYxZDBjMGJmZDM5Y2FkMDMxZmYy ZTI0MzIzNzM4OTFiYzNkZmNiODE3Mzg5YWU0NzdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCq3bobRZIDBzFgYP9lG/JjRb5GpOj8+L9JuN7kbhoazONy WnAJF4Gi+z+/UZPJI4pNR30UqIX8P7SiSA+cg07pqZUUScFRAuBkmblIDdHA+Avy hPKppkWrvorD1RZRUhSDhPbgHFb292swnDT1zHKCVAmEU4X6mQTVN8JNN5pK1L96 lmKbgAblWW97Sj3fNdLLHOp8Dunq6itAkjJPolJ1hKiQmbZmpRnBuTggn1FhHgeR W/0XFJC8BqnkT9gvHIBsex4Mb6EAzjRSv/1YvJH9Nwkdgbk94dDGRn41SLboW9Iu ciDY7BEO4wedQDpE4dlMskLmoepTPwJW9QfAJasFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQ7U0dOiBZZzcudzkWeF9QvmI8/gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmY2ZlOWEwLTVjYjMtNDk3ZS1hMGJjLWY3MzVjMTJjNzhhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADLbsYwDQYJKoZIhvcNAQELBQADggEBAEXAOG3SknIW4qpyoa2ah5SijMas bZBxRxzLNhS6TGRqluOStpki61EUh2J0nljb7GGUCdr7k6c1VWqopDLg/oEv3UqO gdjBtHUYpiRCPJv89dPe9makTBiovebTzvQX6tId7K6Nm7jh++dHx37pfuKn6LLM jSRRaD7m7G8UgZXDbX6kMtoIguCV4D2ZWbi4jrhBgM1t0eGqDGlgIq0nbivYTwhu O1eDwpJRuFrlI6K2nViUBEYHg+FwqgNHmcohfaDENxle6oJBxtTpHTczhcn+GFcK 7o+p2/CF1qVZ5KpajCMtTErHkBe71OuZ8fA2FKviX0Ap+wA0nvCaLXH1DpQ= -----END CERTIFICATE-----Generated at Sat Apr 26 16:00:54 2025 by rpki-client