$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65b2ca30-4204-45d1-b5e7-a65a4f605125.roa File: 65b2ca30-4204-45d1-b5e7-a65a4f605125.roa (raw, json) Hash identifier: 78wbZRzBoBOGAlIaaCXLIcPLWmxr+uc9BTJruWpDDZA= Subject key identifier: 93:16:B4:A0:FC:66:AB:E4:C5:8D:C6:48:5B:4B:86:E7:E2:5D:3A:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77085B63B8EF3FA2A1DA0D23F754E46CDB8988B9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65b2ca30-4204-45d1-b5e7-a65a4f605125.roa Signing time: Sat 12 Apr 2025 00:01:06 +0000 ROA not before: Sat 12 Apr 2025 00:01:06 +0000 ROA not after: Sat 17 May 2025 23:59:59 +0000 asID: 22394 IP address blocks: 139.56.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:08:5b:63:b8:ef:3f:a2:a1:da:0d:23:f7:54:e4:6c:db:89:88:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 12 00:01:06 2025 GMT Not After : May 17 23:59:59 2025 GMT Subject: serialNumber=c2350c856e4f740ddc59876892d92d0af65b357f11fec316719552cdfba88269, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d1:ed:f5:19:ff:95:67:03:1a:4d:4d:bc:d2: 27:38:f1:6b:94:f5:ae:59:be:6e:1f:90:fa:97:ea: ec:32:2d:02:e0:92:c6:3c:13:44:bf:0a:3f:46:0a: 9e:f1:54:e3:14:ec:8a:8d:3b:1e:fb:d8:30:be:31: 2f:4e:83:7b:2d:b2:01:3c:d9:c4:62:db:23:41:e7: 16:4b:7c:b6:64:06:dc:ea:03:67:e3:43:b6:ed:40: b3:d9:27:e7:00:92:7c:bc:fd:ee:72:dc:20:db:99: 3d:1e:c7:55:08:8e:2d:fa:75:69:63:f6:25:d9:fd: 0e:e4:45:e9:72:ae:74:ab:5a:c0:39:24:3a:9d:70: d1:66:c5:0f:d9:4a:c3:9a:bc:2c:a7:de:9f:d6:4e: 85:c4:20:cb:02:0d:62:f2:34:d5:0f:69:cc:4a:f8: c3:ca:f1:71:3d:59:e7:75:fb:55:00:ff:3b:9c:50: e8:84:bf:c5:97:ee:77:ac:21:cf:70:15:3f:d3:d2: 13:43:3d:67:2c:26:d6:91:91:a2:5b:bd:f1:80:4f: d0:ad:04:0a:62:89:6e:1f:fc:d6:fa:3a:b9:70:79: bb:0a:29:55:e5:c3:9a:5e:ca:80:5a:75:f3:14:89: da:02:e7:f1:57:49:ab:71:09:08:d9:7e:04:ff:a8: bf:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:16:B4:A0:FC:66:AB:E4:C5:8D:C6:48:5B:4B:86:E7:E2:5D:3A:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65b2ca30-4204-45d1-b5e7-a65a4f605125.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 46:69:82:32:a4:3b:30:ab:2b:2c:0d:13:9f:96:d4:6f:4b:2a: d3:f2:8b:ad:a9:c7:2b:d1:74:ce:d0:5c:13:36:3f:49:91:11: 4e:61:cb:64:87:9a:7a:ae:fc:0f:1d:d9:5b:cf:01:69:ed:9d: 56:63:09:ad:a6:5e:12:ba:5c:a5:77:12:a8:99:87:22:80:f1: ab:5f:cc:7b:fa:d0:0a:63:88:83:dc:17:12:70:a0:72:07:78: 92:b6:15:05:73:ca:7e:cd:2b:99:fb:87:85:c7:09:ff:61:ff: cb:e0:e7:d9:bb:f1:42:89:97:6f:2f:9d:03:b5:a5:33:96:0b: d0:f8:30:cb:ad:56:69:59:8d:e8:e7:d5:98:29:8f:68:ff:d4: c3:3a:2c:68:9e:4a:27:6c:26:4c:e9:d1:24:d8:a2:e3:96:a6: 55:49:cf:a0:8e:82:60:77:a1:52:9c:f8:c3:7d:57:bd:a7:38: fd:41:7e:e7:17:89:d0:d8:91:0c:86:26:aa:11:d6:40:c4:07: f8:1c:61:e3:4a:cb:13:09:56:e5:63:48:38:30:4e:73:17:6b: db:8a:fa:67:0e:26:fa:86:d3:86:0f:d1:96:81:25:98:bb:46: b8:dd:ff:85:16:59:1b:dc:db:52:11:5f:3a:a1:46:2f:81:b7: 17:00:9e:42 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdwhbY7jvP6Kh2g0j91TkbNuJiLkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDEyMDAwMTA2WhcNMjUwNTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjM1MGM4NTZlNGY3NDBkZGM1OTg3Njg5MmQ5MmQwYWY2 NWIzNTdmMTFmZWMzMTY3MTk1NTJjZGZiYTg4MjY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv0e31Gf+VZwMaTU280ic48WuU9a5Zvm4fkPqX6uwyLQLg ksY8E0S/Cj9GCp7xVOMU7IqNOx772DC+MS9Og3stsgE82cRi2yNB5xZLfLZkBtzq A2fjQ7btQLPZJ+cAkny8/e5y3CDbmT0ex1UIji36dWlj9iXZ/Q7kRelyrnSrWsA5 JDqdcNFmxQ/ZSsOavCyn3p/WToXEIMsCDWLyNNUPacxK+MPK8XE9Wed1+1UA/zuc UOiEv8WX7nesIc9wFT/T0hNDPWcsJtaRkaJbvfGAT9CtBApiiW4f/Nb6OrlwebsK KVXlw5peyoBadfMUidoC5/FXSatxCQjZfgT/qL/VAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkxa0oPxmq+TFjcZIW0uG5+JdOt4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1YjJjYTMwLTQyMDQtNDVkMS1iNWU3LWE2NWE0ZjYwNTEyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCLODANBgkqhkiG9w0BAQsFAAOCAQEARmmCMqQ7MKsrLA0Tn5bUb0sq0/KL ranHK9F0ztBcEzY/SZERTmHLZIeaeq78Dx3ZW88Bae2dVmMJraZeErpcpXcSqJmH IoDxq1/Me/rQCmOIg9wXEnCgcgd4krYVBXPKfs0rmfuHhccJ/2H/y+Dn2bvxQomX by+dA7WlM5YL0Pgwy61WaVmN6OfVmCmPaP/UwzosaJ5KJ2wmTOnRJNii45amVUnP oI6CYHehUpz4w31Xvac4/UF+5xeJ0NiRDIYmqhHWQMQH+Bxh40rLEwlW5WNIODBO cxdr24r6Zw4m+obThg/RloElmLtGuN3/hRZZG9zbUhFfOqFGL4G3FwCeQg== -----END CERTIFICATE-----Generated at Sun Apr 27 00:22:57 2025 by rpki-client