$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/132f73c3-a546-4296-a702-8a3aab70f706.roa File: 132f73c3-a546-4296-a702-8a3aab70f706.roa (raw, json) Hash identifier: F1eJjRmmtA2s3zLqAayWYvEzlwkNahgO/uT6mVHMWLE= Subject key identifier: 64:FF:C7:D8:F7:C5:EE:B0:FB:75:B0:5F:A2:49:93:6F:2E:50:61:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 615CDB52CF44886A6BDF75C42C171B492E0CC42F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/132f73c3-a546-4296-a702-8a3aab70f706.roa Signing time: Fri 18 Apr 2025 00:20:20 +0000 ROA not before: Fri 18 Apr 2025 00:20:20 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 121.93.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:5c:db:52:cf:44:88:6a:6b:df:75:c4:2c:17:1b:49:2e:0c:c4:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:20:20 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=e4c3236bab7b2171f7429b86b027d95795daac0d01a76e75b035fb4c46957ee4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:71:0b:fd:73:1c:8d:38:02:b2:70:47:9f:34: c6:58:29:52:81:61:09:a4:c7:66:4c:77:8c:46:fb: 72:1e:07:d3:5b:1c:9e:7e:63:2b:1a:16:7c:e5:48: 0c:b2:f4:e4:95:0e:0e:10:d4:41:19:0c:58:b5:ec: ff:bb:fb:fd:72:9b:71:b6:f9:34:fa:75:bf:a3:23: f7:86:7d:6b:fc:7b:47:09:8d:2b:2b:81:c6:3b:4d: 23:cf:05:4a:2f:93:24:26:f9:18:94:bd:a6:ea:ba: 5a:2f:21:0a:51:a3:82:20:3f:00:71:ae:c4:00:33: a8:da:49:17:8a:50:50:db:44:6f:6f:5c:82:4d:23: 6b:1e:2a:48:96:a6:90:e5:43:f4:c3:39:6c:76:e3: 57:5f:fd:f2:ef:3b:0c:92:5e:61:e3:a4:bc:c4:b7: de:80:c8:54:6b:6e:cb:77:c6:73:2d:22:65:54:1a: 5c:d2:92:20:1c:8e:09:9a:0e:fc:cf:51:81:6f:e3: 15:d0:88:50:a0:a5:97:61:28:f3:e8:90:f4:e6:08: 25:f4:6c:01:df:4b:90:48:bb:9f:32:45:e3:e9:cf: 4f:8c:36:ff:a2:6e:49:6d:c9:2f:31:1b:a1:fe:53: 10:55:9c:a8:93:d7:e1:24:64:f5:2f:5c:98:61:dc: ee:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:FF:C7:D8:F7:C5:EE:B0:FB:75:B0:5F:A2:49:93:6F:2E:50:61:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/132f73c3-a546-4296-a702-8a3aab70f706.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.93.0.0/17 Signature Algorithm: sha256WithRSAEncryption c9:55:73:44:94:c5:a5:11:b0:f4:9f:44:96:b9:0d:ec:d7:76: 07:ea:7b:5f:27:6a:b0:36:51:bc:19:88:eb:43:3a:95:90:aa: a9:a9:f3:97:bd:c8:bb:71:12:ce:85:7a:ba:d3:b7:fd:79:c4: de:a2:ed:1b:97:71:04:80:a8:91:12:82:1b:86:70:b5:78:30: 9f:4b:cb:e9:5a:36:21:7d:14:7f:15:83:83:87:63:a6:bb:4c: 73:a0:90:d4:01:d8:8a:8e:a1:ab:26:f6:ff:e1:83:8b:54:b6: 96:b8:0a:67:d2:4a:ce:b6:eb:1c:3d:e5:2e:02:b9:6b:0f:e1: d8:05:6f:44:da:d1:e4:e9:01:4f:bf:e6:76:88:a9:cc:92:9c: e6:4a:ac:8e:8a:65:a6:d1:d5:e9:90:93:4f:fe:28:78:4d:30: 0c:9a:7e:37:74:37:0b:89:8f:c7:ca:e8:69:48:db:e7:a4:51: 9b:20:41:98:1c:c2:b3:91:d2:c6:78:e6:0d:11:39:ec:e4:f2: 9a:67:c1:d4:ad:90:ce:8c:26:49:c4:6e:2a:f8:63:e0:b2:6c: d2:e2:98:d6:6b:05:53:6e:c2:1c:38:86:ef:3c:06:f8:92:da: c1:3b:f6:4a:75:e3:76:c4:4f:4c:46:16:17:ef:e4:43:99:f5: a8:87:fc:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYVzbUs9EiGpr33XELBcbSS4MxC8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDAyMDIwWhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNGMzMjM2YmFiN2IyMTcxZjc0MjliODZiMDI3ZDk1Nzk1 ZGFhYzBkMDFhNzZlNzViMDM1ZmI0YzQ2OTU3ZWU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIcQv9cxyNOAKycEefNMZYKVKBYQmkx2ZMd4xG+3IeB9Nb HJ5+YysaFnzlSAyy9OSVDg4Q1EEZDFi17P+7+/1ym3G2+TT6db+jI/eGfWv8e0cJ jSsrgcY7TSPPBUovkyQm+RiUvabqulovIQpRo4IgPwBxrsQAM6jaSReKUFDbRG9v XIJNI2seKkiWppDlQ/TDOWx241df/fLvOwySXmHjpLzEt96AyFRrbst3xnMtImVU GlzSkiAcjgmaDvzPUYFv4xXQiFCgpZdhKPPokPTmCCX0bAHfS5BIu58yRePpz0+M Nv+ibkltyS8xG6H+UxBVnKiT1+EkZPUvXJhh3O5RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZP/H2PfF7rD7dbBfokmTby5QYTEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEzMmY3M2MzLWE1NDYtNDI5Ni1hNzAyLThhM2FhYjcwZjcwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAd5XQAwDQYJKoZIhvcNAQELBQADggEBAMlVc0SUxaURsPSfRJa5DezXdgfq e18narA2UbwZiOtDOpWQqqmp85e9yLtxEs6FerrTt/15xN6i7RuXcQSAqJESghuG cLV4MJ9Ly+laNiF9FH8Vg4OHY6a7THOgkNQB2IqOoasm9v/hg4tUtpa4CmfSSs62 6xw95S4CuWsP4dgFb0Ta0eTpAU+/5naIqcySnOZKrI6KZabR1emQk0/+KHhNMAya fjd0NwuJj8fK6GlI2+ekUZsgQZgcwrOR0sZ45g0ROezk8ppnwdStkM6MJknEbir4 Y+CybNLimNZrBVNuwhw4hu88BviS2sE79kp143bET0xGFhfv5EOZ9aiH/HI= -----END CERTIFICATE-----Generated at Sat Apr 26 16:49:58 2025 by rpki-client