$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ef98fd6-26e9-4572-9293-a4d286b28ba6.roa File: 6ef98fd6-26e9-4572-9293-a4d286b28ba6.roa (raw, json) Hash identifier: N4MaoneRBoto1nmw2Iqi4UJa12SL0m/ahh7RIr5tVqA= Subject key identifier: 11:C4:DE:BA:7C:1D:00:85:71:8C:0D:FD:08:43:B9:89:C5:9B:95:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4363AD2BB3F506D931CCEC6582543140764031AA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ef98fd6-26e9-4572-9293-a4d286b28ba6.roa Signing time: Fri 18 Apr 2025 00:20:18 +0000 ROA not before: Fri 18 Apr 2025 00:20:18 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 115.177.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:63:ad:2b:b3:f5:06:d9:31:cc:ec:65:82:54:31:40:76:40:31:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:20:18 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=330b3f75d0b81cfbc06b4061c8c241468693490d8c555783a407c8c1d3b74ad6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:66:b0:19:05:c0:e4:a1:bc:de:04:78:e2:dc: 30:d2:6a:97:7b:6f:50:32:21:6c:f0:60:ed:19:2e: ba:2c:e4:f9:d8:36:a6:02:80:d7:51:69:bd:f0:63: d6:f0:d5:fb:f7:e1:23:c8:2a:30:74:44:5e:bb:5f: 94:49:b9:99:9f:4d:0e:b8:f9:8f:9d:19:c2:84:12: 65:de:13:ba:64:67:7e:66:35:f4:ef:91:17:ed:8f: 2a:11:3c:9d:21:cf:5c:af:cf:fb:ab:9f:2c:de:2d: dd:6d:58:0d:6b:bf:07:77:1e:76:80:f9:2a:ac:b2: 36:db:52:bc:71:d7:59:d5:04:31:5a:73:fe:a6:ff: 0b:54:8c:ba:3b:0e:1e:3a:ad:fa:35:c6:46:99:60: 68:1a:6e:85:3e:b8:04:42:fe:9b:f3:9a:de:b3:9b: e6:6f:c0:a8:44:c6:40:db:23:80:89:1e:31:35:83: 8b:28:b0:a2:77:88:d3:91:70:81:2c:b1:cc:48:33: a1:5d:c6:c1:35:11:6e:86:1d:47:95:d1:0d:2e:4f: 64:5a:dd:cc:a0:41:2e:b5:6f:3f:ff:70:1f:40:55: 48:64:f7:2b:f4:2c:3a:e1:80:42:c2:04:f4:c3:8e: 9e:51:80:93:ba:49:06:ce:13:b2:4e:e3:ec:99:52: f3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:C4:DE:BA:7C:1D:00:85:71:8C:0D:FD:08:43:B9:89:C5:9B:95:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ef98fd6-26e9-4572-9293-a4d286b28ba6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.177.0.0/17 Signature Algorithm: sha256WithRSAEncryption 39:ba:c9:11:9a:a3:e3:a2:dc:f6:dc:85:23:9c:ac:d9:70:9a: 7c:c1:51:d4:61:55:9f:66:c8:dd:2f:6d:8f:20:a8:c1:da:2d: 29:fd:59:f0:cf:5a:19:9d:92:1c:b5:d9:9e:e2:94:f6:37:2d: 8a:ea:15:9c:f3:5d:8e:92:42:a9:db:53:b0:9b:79:3c:d5:06: 8b:68:02:82:07:eb:11:ad:a2:4f:9d:2f:7f:4e:5d:51:9f:1f: a9:04:fd:5a:40:88:95:4f:fa:41:77:b9:26:22:b0:5f:89:2c: de:37:e8:93:30:67:4b:e4:6f:e6:ed:27:7b:2a:56:a2:0a:da: 58:44:8b:41:8a:62:ee:a7:b9:47:f9:50:4f:1a:9d:0a:0b:22: ee:77:8c:8c:a1:f7:20:d5:a4:78:f7:f3:4e:9e:c5:60:65:70: e5:3f:df:91:bb:23:73:09:10:c7:f1:26:2e:eb:ab:6f:63:75: e7:01:b6:ae:0b:14:08:6d:c2:71:13:0f:08:61:e4:da:9a:39: ae:34:e7:b6:43:fc:d0:1e:f6:00:c5:6f:2e:80:49:3e:65:d8: c0:d9:97:b1:76:e8:f8:dd:7e:6f:4d:d1:e1:46:e9:5f:67:7c: 01:6b:5e:33:4a:19:2e:cc:a2:d1:95:7a:f8:e1:bf:7a:93:e9: b5:e4:95:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ2OtK7P1BtkxzOxlglQxQHZAMaowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDAyMDE4WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzBiM2Y3NWQwYjgxY2ZiYzA2YjQwNjFjOGMyNDE0Njg2 OTM0OTBkOGM1NTU3ODNhNDA3YzhjMWQzYjc0YWQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOZrAZBcDkobzeBHji3DDSapd7b1AyIWzwYO0ZLros5PnY NqYCgNdRab3wY9bw1fv34SPIKjB0RF67X5RJuZmfTQ64+Y+dGcKEEmXeE7pkZ35m NfTvkRftjyoRPJ0hz1yvz/urnyzeLd1tWA1rvwd3HnaA+SqssjbbUrxx11nVBDFa c/6m/wtUjLo7Dh46rfo1xkaZYGgaboU+uARC/pvzmt6zm+ZvwKhExkDbI4CJHjE1 g4sosKJ3iNORcIEsscxIM6FdxsE1EW6GHUeV0Q0uT2Ra3cygQS61bz//cB9AVUhk 9yv0LDrhgELCBPTDjp5RgJO6SQbOE7JO4+yZUvOHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEcTeunwdAIVxjA39CEO5icWblTswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZlZjk4ZmQ2LTI2ZTktNDU3Mi05MjkzLWE0ZDI4NmIyOGJhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdzsQAwDQYJKoZIhvcNAQELBQADggEBADm6yRGao+Oi3PbchSOcrNlwmnzB UdRhVZ9myN0vbY8gqMHaLSn9WfDPWhmdkhy12Z7ilPY3LYrqFZzzXY6SQqnbU7Cb eTzVBotoAoIH6xGtok+dL39OXVGfH6kE/VpAiJVP+kF3uSYisF+JLN436JMwZ0vk b+btJ3sqVqIK2lhEi0GKYu6nuUf5UE8anQoLIu53jIyh9yDVpHj3806exWBlcOU/ 35G7I3MJEMfxJi7rq29jdecBtq4LFAhtwnETDwhh5NqaOa4057ZD/NAe9gDFby6A ST5l2MDZl7F26Pjdfm9N0eFG6V9nfAFrXjNKGS7MotGVevjhv3qT6bXklSo= -----END CERTIFICATE-----Generated at Sat Apr 26 16:38:09 2025 by rpki-client