$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f83beaf6-ae8e-43d8-969a-76724e17dca0.roa File: f83beaf6-ae8e-43d8-969a-76724e17dca0.roa (raw, json) Hash identifier: 3Po47Y0iuWqI5h7HoH5Oe3eQe14l76YZp99X+SQn0sE= Subject key identifier: 2D:96:E0:C1:2D:BF:D7:1E:96:98:19:6E:E9:8B:29:2E:F8:59:F8:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 13B50A4E3A82A61BA8976F5D5CE6F1F71724EE99 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f83beaf6-ae8e-43d8-969a-76724e17dca0.roa Signing time: Tue 22 Apr 2025 00:01:32 +0000 ROA not before: Tue 22 Apr 2025 00:01:32 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 110.238.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:b5:0a:4e:3a:82:a6:1b:a8:97:6f:5d:5c:e6:f1:f7:17:24:ee:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:01:32 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=31741246b54ea8204f98cf171ff6cf8eaa45a02a8ddab720fde50652604e9534, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ec:e5:62:a1:75:92:9d:e0:f7:6c:e7:c2:86: 45:45:e5:a1:55:b6:59:e6:79:c0:4f:85:23:45:9f: 94:6c:2f:19:aa:68:49:4f:32:8b:d4:27:79:a0:dd: 0b:56:d1:1a:eb:57:47:07:20:60:66:4b:df:1b:29: e5:7e:56:c1:36:59:31:65:ad:7b:c0:6a:41:dd:77: 72:83:de:af:3b:7a:3f:58:24:20:ba:16:f2:63:3a: 04:ad:e0:ab:fa:85:62:63:54:d5:12:c6:48:6c:ae: 32:43:46:4d:d9:32:35:9c:41:95:73:dd:25:94:4c: 14:21:6a:2a:89:47:f6:4b:b2:f7:03:39:b6:ba:44: 74:69:4e:c9:e3:3b:d5:49:bd:e6:6e:01:16:26:83: ad:d0:a3:db:df:a9:b8:b0:74:ef:f9:de:3f:a7:28: e7:7e:29:72:48:49:f3:b8:e7:ba:98:d3:b1:45:31: b1:8b:f3:ff:14:eb:77:f3:9c:22:6c:18:57:ed:df: c5:1e:06:15:3b:be:86:85:1a:4d:c7:b1:b9:03:1b: 17:be:50:12:5c:43:db:49:58:94:ac:4c:c8:70:4b: 17:c1:e7:2a:53:93:e2:17:77:31:47:c7:89:16:dd: 21:4f:e2:81:17:d3:e8:83:02:6f:49:1d:14:66:c1: 1e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:96:E0:C1:2D:BF:D7:1E:96:98:19:6E:E9:8B:29:2E:F8:59:F8:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f83beaf6-ae8e-43d8-969a-76724e17dca0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.238.152.0/21 Signature Algorithm: sha256WithRSAEncryption 29:f9:3b:e6:d5:14:a7:ee:7b:93:91:36:f1:10:04:16:5f:5d: b3:2b:81:02:1f:27:ed:f9:a7:55:4e:86:1c:c0:d3:b9:a3:19: 09:dd:47:02:81:31:fd:a7:e6:c0:e5:72:9f:88:06:20:11:29: 51:39:0e:60:7c:b9:d2:45:eb:94:a0:01:23:45:78:4b:a4:50: 53:0a:be:97:c7:8d:f4:aa:7b:33:ed:86:b7:cb:a3:29:a9:16: 12:04:f5:0a:39:23:cf:3b:ba:db:f0:c3:0e:08:3f:c7:06:6f: db:63:83:29:9f:5b:a7:2d:55:3e:23:8a:1b:40:83:1d:e3:96: 38:6a:74:ab:ff:f2:10:38:b1:47:ad:cb:26:9c:7f:e0:fc:4b: 37:06:a1:35:8b:a5:b3:55:c1:09:50:b6:18:d7:75:91:52:bf: 0d:d6:9c:11:75:84:5a:f5:a8:73:19:99:f7:a8:01:09:b9:7b: a9:9f:04:08:d9:ee:6e:31:e3:c1:d8:3d:ce:75:f7:d5:ef:7b: f6:f2:dd:fb:36:21:aa:2e:53:96:6e:d0:7e:4c:eb:94:bd:e7: 8b:fd:2d:a1:59:11:5a:16:fb:e0:7b:71:b4:e7:84:e1:04:48: 67:8f:b2:42:a7:30:65:70:de:b6:0e:66:94:7b:a6:17:ce:be: 52:9e:41:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE7UKTjqCphuol29dXObx9xck7pkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAwMTMyWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTc0MTI0NmI1NGVhODIwNGY5OGNmMTcxZmY2Y2Y4ZWFh NDVhMDJhOGRkYWI3MjBmZGU1MDY1MjYwNGU5NTM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDq7OVioXWSneD3bOfChkVF5aFVtlnmecBPhSNFn5RsLxmq aElPMovUJ3mg3QtW0RrrV0cHIGBmS98bKeV+VsE2WTFlrXvAakHdd3KD3q87ej9Y JCC6FvJjOgSt4Kv6hWJjVNUSxkhsrjJDRk3ZMjWcQZVz3SWUTBQhaiqJR/ZLsvcD Oba6RHRpTsnjO9VJveZuARYmg63Qo9vfqbiwdO/53j+nKOd+KXJISfO457qY07FF MbGL8/8U63fznCJsGFft38UeBhU7voaFGk3HsbkDGxe+UBJcQ9tJWJSsTMhwSxfB 5ypTk+IXdzFHx4kW3SFP4oEX0+iDAm9JHRRmwR5HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULZbgwS2/1x6WmBlu6YspLvhZ+FYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y4M2JlYWY2LWFlOGUtNDNkOC05NjlhLTc2NzI0ZTE3ZGNhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANu7pgwDQYJKoZIhvcNAQELBQADggEBACn5O+bVFKfue5ORNvEQBBZfXbMr gQIfJ+35p1VOhhzA07mjGQndRwKBMf2n5sDlcp+IBiARKVE5DmB8udJF65SgASNF eEukUFMKvpfHjfSqezPthrfLoympFhIE9Qo5I887utvwww4IP8cGb9tjgymfW6ct VT4jihtAgx3jljhqdKv/8hA4sUetyyacf+D8SzcGoTWLpbNVwQlQthjXdZFSvw3W nBF1hFr1qHMZmfeoAQm5e6mfBAjZ7m4x48HYPc5199Xve/by3fs2IaouU5Zu0H5M 65S954v9LaFZEVoW++B7cbTnhOEESGePskKnMGVw3rYOZpR7phfOvlKeQZ8= -----END CERTIFICATE-----Generated at Sun Apr 27 01:01:48 2025 by rpki-client