$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f60557b3-749f-4957-ae6b-c16e5e584495.roa File: f60557b3-749f-4957-ae6b-c16e5e584495.roa (raw, json) Hash identifier: MyAwSLlxa55pr/R/w8z+LMtl6m+GkhloGucHq8gMSds= Subject key identifier: 9B:A0:A5:33:18:8E:A8:D4:E4:BC:F0:CB:DB:89:D5:6E:3E:F3:79:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 185D96C2E3D1C57B86B47ADA46FE6DB5554D44F2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f60557b3-749f-4957-ae6b-c16e5e584495.roa Signing time: Tue 22 Apr 2025 15:30:21 +0000 ROA not before: Tue 22 Apr 2025 15:30:21 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.238.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:5d:96:c2:e3:d1:c5:7b:86:b4:7a:da:46:fe:6d:b5:55:4d:44:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:30:21 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=66c9da423b69303426d4988d8542119e2aef5c7e5b3ca2ec41ee99d1ecd8220e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:58:73:cf:ce:db:7e:09:e1:ce:6a:f1:fa:71: 65:22:1d:19:0b:23:4d:46:19:71:b9:ab:a5:6d:df: 1e:b4:44:e6:4d:6c:f7:bd:4c:b0:f7:3a:ca:1e:35: 99:71:59:01:79:fd:92:bd:3a:5e:c5:df:0b:ec:46: c3:51:79:cd:b2:2c:dd:bf:ae:8f:d2:bc:c0:8b:2a: 1f:69:af:06:0c:b3:ba:87:75:69:6b:09:a6:94:16: 29:69:a8:10:04:2e:6a:92:ae:d9:a6:a7:38:71:66: 2f:61:3a:57:04:af:f0:49:79:a2:49:d8:09:56:23: 86:05:20:f3:22:08:d3:c8:ff:68:c0:73:00:9a:e0: a7:ed:c8:06:22:0f:62:63:56:3d:0e:b7:0b:f9:d0: 4e:69:96:d9:3d:12:fa:ba:13:d9:0d:be:85:f0:0b: 7f:88:57:68:03:72:bf:a0:75:5f:69:ed:06:3d:42: 83:c7:9e:ed:42:95:09:4e:3e:1c:cf:68:5a:a0:80: c3:a3:f5:33:1b:c3:ba:91:ab:64:1d:cf:cf:bc:b2: 6c:39:bc:0a:f7:1c:19:bd:14:f9:20:4e:1c:1d:ad: 68:3f:dd:61:9b:e3:9b:c0:cd:b9:bb:4d:a1:19:c2: 7a:70:2f:1d:85:61:de:db:85:f7:08:7a:62:cb:d1: b7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:A0:A5:33:18:8E:A8:D4:E4:BC:F0:CB:DB:89:D5:6E:3E:F3:79:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f60557b3-749f-4957-ae6b-c16e5e584495.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.238.224.0/20 Signature Algorithm: sha256WithRSAEncryption 8a:e4:3a:96:c2:83:44:93:78:48:b8:20:d8:9f:85:3f:e6:3a: 7f:76:ba:93:22:af:7f:19:3a:8f:59:e2:c0:45:ef:a7:da:ff: ea:06:7e:27:bc:c9:69:fb:24:94:f7:17:60:41:be:b5:5f:a8: c1:44:5c:44:e8:19:2e:3c:69:6d:c3:c4:fe:6d:8b:8e:e8:d8: 80:03:1a:6d:1b:7f:f7:13:d3:58:4a:b0:98:5e:44:11:6e:d5: d4:a3:0e:24:f6:87:07:c2:5a:7b:22:8a:41:00:e5:e0:6f:f9: d3:e8:9a:65:e9:05:03:7f:5a:77:57:5e:c3:99:53:6f:a9:fb: 4e:e5:54:15:08:37:09:3d:d1:b1:9c:04:9b:28:04:a1:bf:34: 9b:d6:1f:e5:31:5b:dc:d4:4e:cd:5a:d1:17:4e:9d:44:da:cc: 48:53:7a:46:a0:e3:3d:0e:a6:b9:d0:e7:a3:dc:d4:61:b7:1e: a8:60:cc:43:9d:7c:ca:54:73:87:90:29:67:8d:9e:e5:e4:1f: 8d:e5:ed:79:e3:6f:4a:c4:0e:49:74:55:41:d7:e4:b9:66:9b: 0e:c0:ff:a3:0d:d5:b2:68:6c:9c:3b:a9:77:9e:01:08:45:07: a6:3d:48:84:1e:72:7e:18:1f:34:52:f5:d9:ca:07:c7:d3:5b: 7d:b5:3d:c5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGF2WwuPRxXuGtHraRv5ttVVNRPIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUzMDIxWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NmM5ZGE0MjNiNjkzMDM0MjZkNDk4OGQ4NTQyMTE5ZTJh ZWY1YzdlNWIzY2EyZWM0MWVlOTlkMWVjZDgyMjBlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpWHPPztt+CeHOavH6cWUiHRkLI01GGXG5q6Vt3x60ROZN bPe9TLD3OsoeNZlxWQF5/ZK9Ol7F3wvsRsNRec2yLN2/ro/SvMCLKh9prwYMs7qH dWlrCaaUFilpqBAELmqSrtmmpzhxZi9hOlcEr/BJeaJJ2AlWI4YFIPMiCNPI/2jA cwCa4KftyAYiD2JjVj0Otwv50E5pltk9Evq6E9kNvoXwC3+IV2gDcr+gdV9p7QY9 QoPHnu1ClQlOPhzPaFqggMOj9TMbw7qRq2Qdz8+8smw5vAr3HBm9FPkgThwdrWg/ 3WGb45vAzbm7TaEZwnpwLx2FYd7bhfcIemLL0bdjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm6ClMxiOqNTkvPDL24nVbj7zeWswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y2MDU1N2IzLTc0OWYtNDk1Ny1hZTZiLWMxNmU1ZTU4NDQ5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARu7uAwDQYJKoZIhvcNAQELBQADggEBAIrkOpbCg0STeEi4INifhT/mOn92 upMir38ZOo9Z4sBF76fa/+oGfie8yWn7JJT3F2BBvrVfqMFEXEToGS48aW3DxP5t i47o2IADGm0bf/cT01hKsJheRBFu1dSjDiT2hwfCWnsiikEA5eBv+dPommXpBQN/ WndXXsOZU2+p+07lVBUINwk90bGcBJsoBKG/NJvWH+UxW9zUTs1a0RdOnUTazEhT ekag4z0OprnQ56Pc1GG3HqhgzEOdfMpUc4eQKWeNnuXkH43l7Xnjb0rEDkl0VUHX 5Llmmw7A/6MN1bJobJw7qXeeAQhFB6Y9SIQecn4YHzRS9dnKB8fTW321PcU= -----END CERTIFICATE-----Generated at Sat Apr 26 16:42:10 2025 by rpki-client