$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa File: 78a29a43-6fb1-4f22-858b-58921f0187e5.roa (raw, json) Hash identifier: m/0OZI727n3KRVPj1NVJ03eX4dj3JV6yBwg5zxDkV00= Subject key identifier: 73:4B:75:62:E7:EA:1A:72:39:EA:43:40:1E:3B:C1:AF:6A:A4:21:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 41E3EC08F6AA07C91A2EC8FB0D09444DB33D9BCC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa Signing time: Wed 16 Apr 2025 00:00:29 +0000 ROA not before: Wed 16 Apr 2025 00:00:29 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:e3:ec:08:f6:aa:07:c9:1a:2e:c8:fb:0d:09:44:4d:b3:3d:9b:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 16 00:00:29 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=6f98b8d7e615fa0eaa88d4f18888befcb9bdd38ed9c3b47dfce28ee6d83a31ac, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:cd:bf:95:ec:b8:d4:e1:65:34:d2:5a:15:bb: 1d:1f:8d:97:25:e8:44:23:7d:f2:79:7a:e9:c5:35: af:61:06:f5:49:ba:da:d5:19:0f:2a:7e:bc:38:c3: 46:f4:45:94:f1:5c:ba:25:52:b9:a9:74:b0:c5:67: 8c:a3:b8:0a:a9:8d:dd:be:95:0b:aa:dc:72:e0:48: 89:28:23:4b:19:6e:9e:6b:03:b8:e9:6a:2f:62:38: 38:35:3c:43:c5:3f:27:5a:56:2c:41:4d:68:9c:09: 95:4a:a2:c2:25:0c:fd:b1:ab:17:19:74:51:88:65: 5d:a5:f9:b2:3e:82:c3:94:76:3f:c2:bc:96:8f:28: 25:0a:91:61:81:50:d7:cc:21:61:f9:46:c2:33:e9: 25:cc:fb:c0:bf:3b:eb:4d:aa:a0:1c:cd:d9:f8:a4: b1:d1:cd:d6:d8:ea:97:cc:cd:46:26:2c:f7:7c:b3: d6:47:aa:ac:37:5e:e3:90:05:8a:3e:14:14:e3:1d: 0d:cd:df:0c:43:98:ca:75:d1:0b:f3:c3:ed:bc:70: 30:02:87:3f:d8:4d:8e:38:1c:f3:a4:60:7b:90:06: 58:d5:40:58:8e:c0:fe:58:55:57:97:1b:e0:0d:5c: 71:83:9f:0e:fb:31:1a:20:a9:8a:28:bb:4d:13:e0: 99:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:4B:75:62:E7:EA:1A:72:39:EA:43:40:1E:3B:C1:AF:6A:A4:21:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78a29a43-6fb1-4f22-858b-58921f0187e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.64.0/18 Signature Algorithm: sha256WithRSAEncryption be:c6:b9:bc:83:71:e4:1b:41:3d:a3:42:4f:c7:2f:7f:d0:8a: fe:b9:68:41:b9:22:01:be:5e:d1:4d:c7:a0:cf:ab:4a:64:61: 36:f2:ba:6d:03:ab:39:1b:ab:24:1a:13:7c:b4:b7:f2:33:e1: 50:22:83:2a:23:81:da:d4:b2:04:d0:2c:92:7f:0f:7a:a9:21: 63:61:98:fe:18:12:31:fb:90:51:f1:45:8d:75:b0:1d:74:2c: 34:d4:b6:70:b0:c2:e9:f8:de:05:9b:89:35:f5:1e:7d:56:5e: fe:fa:e4:7c:df:67:00:2b:8f:fd:0d:72:23:51:01:53:19:b5: 0a:62:54:23:62:9b:df:fe:7b:10:5f:5c:85:88:99:ee:3b:43: b1:0d:42:70:f3:2d:80:54:a2:c9:63:9b:f7:de:a8:c0:17:49: 42:79:cd:5f:0f:02:b4:30:26:e7:ca:d3:22:ad:52:e9:a0:e2: e0:a7:e4:1f:80:65:5a:b9:45:6a:79:9c:56:b7:00:07:d1:a0: 13:cb:9a:0f:87:03:a2:d2:ae:a6:07:fc:b8:0d:29:19:43:08: e7:67:74:b4:56:1c:ac:12:52:09:59:5f:42:06:df:a3:3e:10: 60:98:e4:99:6d:bb:48:32:8d:4e:41:bf:f8:6e:00:6a:dc:10: 3a:c1:34:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQePsCPaqB8kaLsj7DQlETbM9m8wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE2MDAwMDI5WhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2Zjk4YjhkN2U2MTVmYTBlYWE4OGQ0ZjE4ODg4YmVmY2I5 YmRkMzhlZDljM2I0N2RmY2UyOGVlNmQ4M2EzMWFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtzb+V7LjU4WU00loVux0fjZcl6EQjffJ5eunFNa9hBvVJ utrVGQ8qfrw4w0b0RZTxXLolUrmpdLDFZ4yjuAqpjd2+lQuq3HLgSIkoI0sZbp5r A7jpai9iODg1PEPFPydaVixBTWicCZVKosIlDP2xqxcZdFGIZV2l+bI+gsOUdj/C vJaPKCUKkWGBUNfMIWH5RsIz6SXM+8C/O+tNqqAczdn4pLHRzdbY6pfMzUYmLPd8 s9ZHqqw3XuOQBYo+FBTjHQ3N3wxDmMp10Qvzw+28cDAChz/YTY44HPOkYHuQBljV QFiOwP5YVVeXG+ANXHGDnw77MRogqYoou00T4JlbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUc0t1YufqGnI56kNAHjvBr2qkIV4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4YTI5YTQzLTZmYjEtNGYyMi04NThiLTU4OTIxZjAxODdlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZyOEAwDQYJKoZIhvcNAQELBQADggEBAL7GubyDceQbQT2jQk/HL3/Qiv65 aEG5IgG+XtFNx6DPq0pkYTbyum0DqzkbqyQaE3y0t/Iz4VAigyojgdrUsgTQLJJ/ D3qpIWNhmP4YEjH7kFHxRY11sB10LDTUtnCwwun43gWbiTX1Hn1WXv765HzfZwAr j/0NciNRAVMZtQpiVCNim9/+exBfXIWIme47Q7ENQnDzLYBUosljm/feqMAXSUJ5 zV8PArQwJufK0yKtUumg4uCn5B+AZVq5RWp5nFa3AAfRoBPLmg+HA6LSrqYH/LgN KRlDCOdndLRWHKwSUglZX0IG36M+EGCY5Jltu0gyjU5Bv/huAGrcEDrBNMg= -----END CERTIFICATE-----Generated at Sat Apr 26 14:59:15 2025 by rpki-client