$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/466309f8-ad84-4ccd-a3ab-f603c201bc26.roa File: 466309f8-ad84-4ccd-a3ab-f603c201bc26.roa (raw, json) Hash identifier: gfFvLaJSfRhB6oXA/jh0qesONzS3AFxWHwu+C5Po2ug= Subject key identifier: 25:E7:4C:80:17:F1:42:D4:63:0C:82:B4:22:46:A0:04:15:79:B9:FB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B6FE37D7AE09FF9751B851E0DBDE54848DD57EF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/466309f8-ad84-4ccd-a3ab-f603c201bc26.roa Signing time: Fri 18 Apr 2025 00:20:26 +0000 ROA not before: Fri 18 Apr 2025 00:20:26 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 124.25.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:6f:e3:7d:7a:e0:9f:f9:75:1b:85:1e:0d:bd:e5:48:48:dd:57:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:20:26 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=25cbed192c745ce58b4f1c1f11c0d4d1c8fa79591793df94c92c27cb657080d8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:15:34:c1:36:33:e7:12:28:78:d3:38:4e:42: 4c:4c:f4:ce:a6:f2:b4:93:a8:4f:51:32:18:a9:e7: c3:48:79:01:02:ca:07:42:57:1f:73:23:56:5f:a7: 8d:df:9b:0d:1f:1b:b0:cd:58:b7:45:a7:a7:39:27: d4:58:1e:da:e5:7c:b3:75:38:3c:65:db:bc:0e:f8: 4f:9a:99:93:c0:e1:e6:16:7a:52:6a:40:a1:2b:9d: a7:b1:d4:f7:c4:b0:14:dc:b6:5b:c9:ef:1f:dc:27: 56:28:bd:23:71:de:20:1a:02:2a:d9:8b:08:83:27: f7:81:69:af:7f:7c:53:5d:c8:e5:cd:80:99:3c:f9: cd:0d:59:b4:48:3d:06:79:ad:87:a1:97:91:aa:3e: cf:c6:d2:c0:61:47:fa:ed:58:44:10:c1:9f:4b:cd: 71:2d:e7:98:fe:22:41:47:dc:73:28:ea:af:2f:7b: 1c:50:9e:55:56:1e:17:44:68:99:5d:88:d5:1b:65: 84:b3:64:65:82:df:ce:09:85:64:3e:f7:75:c1:b8: df:be:b1:ae:2c:68:76:4d:c7:14:70:e0:3f:c1:59: b5:c5:51:a7:ee:c9:cf:1e:26:eb:7c:fd:26:dd:3c: 79:41:90:9b:d6:88:b5:75:f6:0f:b7:98:a3:a8:ba: 92:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E7:4C:80:17:F1:42:D4:63:0C:82:B4:22:46:A0:04:15:79:B9:FB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/466309f8-ad84-4ccd-a3ab-f603c201bc26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.25.0.0/18 Signature Algorithm: sha256WithRSAEncryption d3:26:0b:74:66:bb:68:6d:6e:b8:cd:24:f6:f2:56:f5:03:e0: ec:ba:fb:14:7a:8d:ad:e6:c0:3e:33:2b:b5:96:38:a1:be:31: d4:98:97:dc:e1:a3:3e:fe:21:87:50:87:5f:13:b4:53:2e:2c: d8:64:f3:c9:d8:6b:b4:ff:c1:89:dd:7d:8c:51:16:49:4f:97: d8:21:d7:e2:d2:54:00:1b:ba:ec:e3:36:2b:b1:bb:64:f9:d6: 90:9f:0e:fa:8c:aa:7a:a4:a5:44:81:aa:75:34:7d:47:0b:37: 1d:ef:03:b4:9c:84:81:34:dd:e2:bc:14:c2:c4:eb:46:26:bc: f2:2b:c2:e0:a8:c6:2d:65:c0:04:4b:87:91:ca:14:4d:aa:95: 7f:3f:54:7f:ce:49:b8:f8:19:23:52:5c:12:ec:e9:0d:f5:5d: 58:f6:70:00:a8:88:32:a8:1a:7b:91:bb:c9:c9:47:08:12:bc: 6c:41:f6:95:bd:af:1a:c7:24:dd:67:6e:1a:a1:c9:4f:b2:a7: 1f:a6:47:44:59:69:44:fe:e8:7d:58:77:7a:76:5f:27:c6:34: fc:6f:0e:d4:3a:b7:6b:7e:3a:6b:b0:75:dd:42:c2:ff:86:fd: 81:b6:72:54:cc:9b:5f:59:fd:62:33:e6:75:56:9d:84:50:67: a3:15:25:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK2/jfXrgn/l1G4UeDb3lSEjdV+8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDAyMDI2WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWNiZWQxOTJjNzQ1Y2U1OGI0ZjFjMWYxMWMwZDRkMWM4 ZmE3OTU5MTc5M2RmOTRjOTJjMjdjYjY1NzA4MGQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmFTTBNjPnEih40zhOQkxM9M6m8rSTqE9RMhip58NIeQEC ygdCVx9zI1Zfp43fmw0fG7DNWLdFp6c5J9RYHtrlfLN1ODxl27wO+E+amZPA4eYW elJqQKErnaex1PfEsBTctlvJ7x/cJ1YovSNx3iAaAirZiwiDJ/eBaa9/fFNdyOXN gJk8+c0NWbRIPQZ5rYehl5GqPs/G0sBhR/rtWEQQwZ9LzXEt55j+IkFH3HMo6q8v exxQnlVWHhdEaJldiNUbZYSzZGWC384JhWQ+93XBuN++sa4saHZNxxRw4D/BWbXF Uafuyc8eJut8/SbdPHlBkJvWiLV19g+3mKOoupLrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJedMgBfxQtRjDIK0IkagBBV5ufswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ2NjMwOWY4LWFkODQtNGNjZC1hM2FiLWY2MDNjMjAxYmMyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZ8GQAwDQYJKoZIhvcNAQELBQADggEBANMmC3Rmu2htbrjNJPbyVvUD4Oy6 +xR6ja3mwD4zK7WWOKG+MdSYl9zhoz7+IYdQh18TtFMuLNhk88nYa7T/wYndfYxR FklPl9gh1+LSVAAbuuzjNiuxu2T51pCfDvqMqnqkpUSBqnU0fUcLNx3vA7SchIE0 3eK8FMLE60YmvPIrwuCoxi1lwARLh5HKFE2qlX8/VH/OSbj4GSNSXBLs6Q31XVj2 cACoiDKoGnuRu8nJRwgSvGxB9pW9rxrHJN1nbhqhyU+ypx+mR0RZaUT+6H1Yd3p2 XyfGNPxvDtQ6t2t+Omuwdd1Cwv+G/YG2clTMm19Z/WIz5nVWnYRQZ6MVJT8= -----END CERTIFICATE-----Generated at Sat Apr 26 16:38:05 2025 by rpki-client