$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98b5bff1-41c4-4141-92fb-20e5d8600f7e.roa File: 98b5bff1-41c4-4141-92fb-20e5d8600f7e.roa (raw, json) Hash identifier: E6bPFiXoqRdkGSM9Ywk0qNC6Jsbm+fmK2v6Fz1/xHwU= Subject key identifier: D2:D8:82:BD:9E:6B:91:CD:D6:1D:C0:D9:D0:9F:7B:EF:1D:2D:A6:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 612B0672DDAFF6A8338E146F58A0F9794AB80851 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98b5bff1-41c4-4141-92fb-20e5d8600f7e.roa Signing time: Fri 18 Apr 2025 00:20:24 +0000 ROA not before: Fri 18 Apr 2025 00:20:24 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 124.24.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:2b:06:72:dd:af:f6:a8:33:8e:14:6f:58:a0:f9:79:4a:b8:08:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:20:24 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=a0da19b3c481a7aa5d24209f506990e420c0971391057e1a6ac2ec9e305adae7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:01:1c:46:b2:4b:87:63:64:b6:69:58:e0:2e: 93:df:4e:b3:97:d2:4e:88:6d:c2:af:54:66:93:85: 9c:1e:f5:67:d4:b6:70:73:10:c2:e8:ff:9c:7b:d6: 04:6a:3b:54:ed:6c:f4:8a:cb:17:08:fb:99:47:e6: 9e:07:01:06:2f:39:fb:0e:d5:68:df:84:c5:7d:3a: 39:cb:ba:99:ee:04:7c:63:8d:6c:33:6e:76:51:93: ba:4a:d9:f1:72:9f:4f:54:e4:f7:63:b0:1d:4c:43: f7:c0:10:22:65:57:f6:d1:61:ae:73:d5:ac:9d:3a: 74:2f:99:90:08:a6:a1:e1:e9:88:46:c2:cc:58:2b: 21:70:ec:fb:10:bd:c1:63:e5:c1:61:99:c1:7b:a4: ce:c6:c2:be:08:48:a6:10:db:35:33:a6:67:58:b3: 1d:42:02:ec:c5:46:e1:1d:e5:4c:81:51:5f:b1:12: 37:38:83:b3:d2:25:1a:a2:0a:ed:66:f3:3f:a1:f3: bf:b1:46:73:2a:b9:94:f1:11:a8:08:78:6f:e6:a1: 8a:c7:32:e5:d4:8d:4d:85:d8:59:8a:fb:ef:0f:29: e2:cc:56:96:db:f6:01:b3:d3:cd:e7:8a:f4:de:36: a9:f9:a3:76:da:ad:f4:ba:54:4a:c8:3d:7a:a8:82: 81:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D8:82:BD:9E:6B:91:CD:D6:1D:C0:D9:D0:9F:7B:EF:1D:2D:A6:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98b5bff1-41c4-4141-92fb-20e5d8600f7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.24.192.0/18 Signature Algorithm: sha256WithRSAEncryption 24:6d:17:03:d9:98:c2:ad:ff:52:42:69:04:e7:ad:af:f2:0c: a6:93:bc:bc:3f:0d:ac:16:83:37:45:cc:aa:e2:22:64:8f:c4: 1f:94:1d:91:bc:4c:45:56:d7:09:d4:82:2f:23:f2:92:fd:cd: f1:0c:7b:2e:31:15:38:83:fd:4d:20:1d:b6:f2:f0:e6:fe:cb: 91:14:e0:ec:34:bd:64:9d:08:2a:5c:74:a6:79:87:36:4f:17: 6a:91:92:54:8b:2d:6c:dd:39:08:95:56:b0:9d:ec:e9:27:ec: 07:43:05:8e:2a:ff:93:f0:0b:66:cc:28:6d:a2:5e:55:61:22: a4:73:95:bf:71:ec:33:a6:c9:49:f8:bd:63:e0:44:ff:c9:c1: 0e:29:39:78:03:04:64:62:8c:fb:65:69:a1:d8:2e:21:c5:f5: a8:b6:64:18:5f:66:00:3b:8e:68:11:cc:0d:44:a7:e8:df:98: 2d:22:11:0f:55:36:3c:d4:86:5a:33:17:b4:d5:02:eb:9c:69: ce:3f:df:f0:4d:5b:b0:43:ee:67:12:8e:a3:76:6a:b2:de:24: 9f:da:37:62:38:19:b3:92:ce:74:4a:ef:89:b5:82:21:af:74: ae:d9:78:db:a9:5c:54:b0:96:8d:4e:56:83:26:f8:8e:a6:c0: 26:85:ed:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYSsGct2v9qgzjhRvWKD5eUq4CFEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDAyMDI0WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMGRhMTliM2M0ODFhN2FhNWQyNDIwOWY1MDY5OTBlNDIw YzA5NzEzOTEwNTdlMWE2YWMyZWM5ZTMwNWFkYWU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5ARxGskuHY2S2aVjgLpPfTrOX0k6IbcKvVGaThZwe9WfU tnBzEMLo/5x71gRqO1TtbPSKyxcI+5lH5p4HAQYvOfsO1WjfhMV9OjnLupnuBHxj jWwzbnZRk7pK2fFyn09U5PdjsB1MQ/fAECJlV/bRYa5z1aydOnQvmZAIpqHh6YhG wsxYKyFw7PsQvcFj5cFhmcF7pM7Gwr4ISKYQ2zUzpmdYsx1CAuzFRuEd5UyBUV+x Ejc4g7PSJRqiCu1m8z+h87+xRnMquZTxEagIeG/moYrHMuXUjU2F2FmK++8PKeLM Vpbb9gGz083nivTeNqn5o3barfS6VErIPXqogoGZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0tiCvZ5rkc3WHcDZ0J977x0tpgcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4YjViZmYxLTQxYzQtNDE0MS05MmZiLTIwZTVkODYwMGY3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZ8GMAwDQYJKoZIhvcNAQELBQADggEBACRtFwPZmMKt/1JCaQTnra/yDKaT vLw/DawWgzdFzKriImSPxB+UHZG8TEVW1wnUgi8j8pL9zfEMey4xFTiD/U0gHbby 8Ob+y5EU4Ow0vWSdCCpcdKZ5hzZPF2qRklSLLWzdOQiVVrCd7Okn7AdDBY4q/5Pw C2bMKG2iXlVhIqRzlb9x7DOmyUn4vWPgRP/JwQ4pOXgDBGRijPtlaaHYLiHF9ai2 ZBhfZgA7jmgRzA1Ep+jfmC0iEQ9VNjzUhlozF7TVAuucac4/3/BNW7BD7mcSjqN2 arLeJJ/aN2I4GbOSznRK74m1giGvdK7ZeNupXFSwlo1OVoMm+I6mwCaF7Xo= -----END CERTIFICATE-----Generated at Sat Apr 26 16:16:45 2025 by rpki-client