$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e8a746b-196e-4958-804c-1ff8ad621b8e.roa File: 5e8a746b-196e-4958-804c-1ff8ad621b8e.roa (raw, json) Hash identifier: p8hZZ1ci17rFJ2xMTSWHF0eDKSXat8KGLze72KOcYIY= Subject key identifier: 12:8E:13:DD:67:84:C3:C8:30:04:DD:CD:8F:D6:3C:6B:7A:AF:9D:DB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 630480A73CB017A2B291428A9BF1B79032E08463 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e8a746b-196e-4958-804c-1ff8ad621b8e.roa Signing time: Fri 18 Apr 2025 00:20:24 +0000 ROA not before: Fri 18 Apr 2025 00:20:24 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 121.95.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:04:80:a7:3c:b0:17:a2:b2:91:42:8a:9b:f1:b7:90:32:e0:84:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:20:24 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=a9927145ad17d3f98545319fca70187ed87363cece67149a7837aea9b5c44830, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3a:7e:e7:41:38:0e:9a:26:58:d5:1c:63:61: 87:c3:91:b5:4e:a9:d7:9f:c7:4f:c5:41:ab:e7:c3: 27:33:3a:5a:a2:bd:12:fb:ae:c1:e1:02:d1:98:26: e3:30:a0:bc:3c:45:59:42:99:a9:14:91:47:e5:03: 1a:a1:ae:aa:dc:f7:3b:71:4e:b6:6a:cb:97:31:18: 5a:d5:70:42:7f:bb:94:3d:d1:c9:b9:63:dd:ea:36: 92:d9:3a:1d:ad:0b:0b:bb:77:68:71:98:5c:8c:39: 77:35:9a:04:a2:c3:e4:60:e6:c3:71:3a:b6:39:6b: d0:33:ad:d7:1d:21:99:2f:0d:71:af:0f:a9:d4:f7: f7:d0:6e:86:0b:7e:ac:69:a3:04:f6:d4:6e:3a:d0: a8:d2:cf:7d:c9:4c:1d:89:48:84:46:a9:64:a2:e3: d2:bd:29:c6:5a:85:cf:b4:64:64:0e:ac:d5:4e:87: 65:20:c7:c4:0d:28:6b:e0:52:27:38:e9:e3:06:11: 06:25:fc:cc:6b:83:f4:12:6e:ec:39:b1:d6:45:90: d2:2e:55:b5:ff:a3:5b:c0:6c:89:13:a1:96:0e:14: 50:d6:8f:66:d5:79:c9:45:58:9b:0e:44:6e:73:35: 60:06:fa:e0:e9:35:b5:ba:bd:98:11:63:2e:98:17: 75:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:8E:13:DD:67:84:C3:C8:30:04:DD:CD:8F:D6:3C:6B:7A:AF:9D:DB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e8a746b-196e-4958-804c-1ff8ad621b8e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.95.128.0/17 Signature Algorithm: sha256WithRSAEncryption d6:c7:15:c1:fa:40:e5:49:0a:6b:86:f7:9e:d3:24:c0:7d:24: 3a:72:df:f6:c4:e1:d0:11:ff:63:10:ae:d6:1e:00:c2:44:92: 62:0f:00:c9:95:3c:c5:85:cc:e3:ca:0b:e3:8c:71:e8:45:70: 79:a3:55:c4:2b:b5:6b:b3:5f:95:90:d1:17:80:69:c9:68:76: 31:43:cd:6b:d3:85:d7:84:0c:3b:51:fc:b7:87:a1:f3:ff:45: f0:2a:eb:ac:24:67:aa:7b:80:71:5e:1d:f3:c7:ad:63:49:ef: 95:e4:5f:3f:66:df:52:8f:bb:f4:34:b6:8d:d5:1f:c0:f7:4f: 11:18:53:61:be:88:3f:f8:99:a5:89:16:48:44:72:64:cb:4c: ad:a8:7a:7c:ed:5a:e3:38:ec:f4:7e:26:8b:a4:3b:b9:82:3a: b2:18:35:84:a1:ed:f0:ba:e1:91:89:a7:4b:2d:8a:59:7a:a7: c5:27:33:26:50:e2:d2:f8:cc:07:e6:01:e7:e6:f0:49:d0:cb: 65:0d:15:65:03:e7:eb:86:93:11:5f:54:88:45:2d:64:2f:de: 3c:23:8b:57:14:76:bd:45:da:a2:12:49:38:a5:54:e5:61:66: 1d:1d:1f:85:3c:79:7e:b7:b4:07:ee:32:bc:67:58:9a:d5:8e: 25:d5:42:1b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYwSApzywF6KykUKKm/G3kDLghGMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDAyMDI0WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhOTkyNzE0NWFkMTdkM2Y5ODU0NTMxOWZjYTcwMTg3ZWQ4 NzM2M2NlY2U2NzE0OWE3ODM3YWVhOWI1YzQ0ODMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmOn7nQTgOmiZY1RxjYYfDkbVOqdefx0/FQavnwyczOlqi vRL7rsHhAtGYJuMwoLw8RVlCmakUkUflAxqhrqrc9ztxTrZqy5cxGFrVcEJ/u5Q9 0cm5Y93qNpLZOh2tCwu7d2hxmFyMOXc1mgSiw+Rg5sNxOrY5a9AzrdcdIZkvDXGv D6nU9/fQboYLfqxpowT21G460KjSz33JTB2JSIRGqWSi49K9KcZahc+0ZGQOrNVO h2Ugx8QNKGvgUic46eMGEQYl/Mxrg/QSbuw5sdZFkNIuVbX/o1vAbIkToZYOFFDW j2bVeclFWJsORG5zNWAG+uDpNbW6vZgRYy6YF3VXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEo4T3WeEw8gwBN3Nj9Y8a3qvndswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlOGE3NDZiLTE5NmUtNDk1OC04MDRjLTFmZjhhZDYyMWI4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAd5X4AwDQYJKoZIhvcNAQELBQADggEBANbHFcH6QOVJCmuG957TJMB9JDpy 3/bE4dAR/2MQrtYeAMJEkmIPAMmVPMWFzOPKC+OMcehFcHmjVcQrtWuzX5WQ0ReA aclodjFDzWvThdeEDDtR/LeHofP/RfAq66wkZ6p7gHFeHfPHrWNJ75XkXz9m31KP u/Q0to3VH8D3TxEYU2G+iD/4maWJFkhEcmTLTK2oenztWuM47PR+JoukO7mCOrIY NYSh7fC64ZGJp0still6p8UnMyZQ4tL4zAfmAefm8EnQy2UNFWUD5+uGkxFfVIhF LWQv3jwji1cUdr1F2qISSTilVOVhZh0dH4U8eX63tAfuMrxnWJrVjiXVQhs= -----END CERTIFICATE-----Generated at Sat Apr 26 18:10:32 2025 by rpki-client