$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9efa147a-8234-4801-a8dd-96fc19dc752f.roa File: 9efa147a-8234-4801-a8dd-96fc19dc752f.roa (raw, json) Hash identifier: Jik6+qOVltw1fO+OsX4TP/H1wlHULB9Lj+YAf1lb9h4= Subject key identifier: C8:F6:BC:AA:DF:30:7A:F9:6A:3C:60:79:A0:1D:3C:2C:D3:A3:F5:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 295452B4AF4DA377FF6E1BAF29E2EFBD4FE784A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9efa147a-8234-4801-a8dd-96fc19dc752f.roa Signing time: Fri 25 Apr 2025 00:10:57 +0000 ROA not before: Fri 25 Apr 2025 00:10:57 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 119.13.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:54:52:b4:af:4d:a3:77:ff:6e:1b:af:29:e2:ef:bd:4f:e7:84:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:10:57 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=54114e3eb232e0466f8e27cafb385d7de4b464ff84647157ad86fc13c6bb9a46, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b8:c3:3c:68:93:c1:25:5b:bc:cb:a8:f1:89: 30:1c:28:d2:e3:30:c3:1c:bf:32:05:0c:43:1b:38: 90:91:68:4c:c7:84:ba:e4:82:42:37:fb:dc:44:af: d4:88:cf:b0:39:3a:2d:c7:a1:2d:50:c8:c7:1b:d7: b9:a2:e7:28:ab:0d:bf:e6:5e:c9:ec:37:73:d0:ac: 71:eb:64:09:57:0c:33:c6:a4:58:48:84:2a:97:fb: 84:f8:eb:27:ab:fb:79:ce:e8:50:c0:c8:dc:f2:cd: ae:b3:6b:36:6d:34:ae:d2:2a:c1:68:e9:5e:d5:ea: ca:91:cd:1e:26:f5:06:a4:98:56:d3:13:f4:af:e8: 7b:22:fe:ff:ce:7a:e3:d8:63:fb:ef:09:fb:68:b1: 0a:fc:68:a0:fa:f8:4f:59:43:3f:ca:5b:5b:ff:f5: 15:8d:7f:2d:4d:b8:a3:f6:b1:6c:f1:c0:7d:59:93: 2f:b9:db:fd:19:fc:35:63:9a:8c:e5:6c:b6:b4:d2: 9a:ff:da:97:0e:2a:75:25:d8:80:0b:f9:22:a7:73: 6f:88:52:75:10:09:9c:56:13:79:e3:cf:37:a1:7c: f3:70:7a:4f:e1:af:fc:ea:2b:ad:ae:83:e2:bf:29: b0:ad:60:8e:01:18:5f:31:c1:c5:16:04:2b:3f:c1: 21:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:F6:BC:AA:DF:30:7A:F9:6A:3C:60:79:A0:1D:3C:2C:D3:A3:F5:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9efa147a-8234-4801-a8dd-96fc19dc752f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.13.11.0/24 Signature Algorithm: sha256WithRSAEncryption a6:95:36:10:c6:d6:d2:c6:dc:07:c4:9e:25:b1:dc:9a:49:02: a0:81:eb:36:ba:57:c5:d9:14:43:05:69:ed:dc:4d:9b:17:a3: 6d:2b:f3:39:22:dd:a3:52:a7:5f:1b:75:c2:49:b8:f8:6c:2f: 41:c4:4d:7d:36:08:d6:fc:a1:e5:cb:fb:1e:75:57:fd:63:95: f0:ff:84:a4:6c:91:ee:c3:93:33:63:7f:99:84:5d:53:bc:cf: a4:15:1f:6e:2f:e1:bc:ed:bf:ca:d7:96:f2:fc:a4:18:33:74: 31:97:49:21:41:ad:ce:d9:94:69:17:e5:53:66:9a:89:a8:93: e4:eb:70:22:ff:34:e8:27:3e:e8:29:67:bd:99:85:e3:22:3c: c4:2d:62:86:bb:7a:b0:35:0e:86:8a:af:11:6b:14:98:e0:e4: 02:89:22:bb:f9:f7:38:3a:bb:d4:21:f8:a2:c2:af:7c:92:7a: 03:ca:81:32:ff:2c:58:d2:0f:6d:d4:b5:a2:99:b3:89:45:13: ac:7d:3f:59:56:6f:e5:81:d1:54:7b:52:8e:e7:f3:89:97:bd: af:e2:6c:f9:0f:35:44:6d:d2:0c:c3:9c:61:ba:a6:31:4f:cc: 6d:d7:5d:52:64:ea:a1:60:f3:94:b3:bf:04:8a:dd:8c:20:57: 3e:6d:7b:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKVRStK9No3f/bhuvKeLvvU/nhKEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDAxMDU3WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDExNGUzZWIyMzJlMDQ2NmY4ZTI3Y2FmYjM4NWQ3ZGU0 YjQ2NGZmODQ2NDcxNTdhZDg2ZmMxM2M2YmI5YTQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAuMM8aJPBJVu8y6jxiTAcKNLjMMMcvzIFDEMbOJCRaEzH hLrkgkI3+9xEr9SIz7A5Oi3HoS1QyMcb17mi5yirDb/mXsnsN3PQrHHrZAlXDDPG pFhIhCqX+4T46yer+3nO6FDAyNzyza6zazZtNK7SKsFo6V7V6sqRzR4m9QakmFbT E/Sv6Hsi/v/OeuPYY/vvCftosQr8aKD6+E9ZQz/KW1v/9RWNfy1NuKP2sWzxwH1Z ky+52/0Z/DVjmozlbLa00pr/2pcOKnUl2IAL+SKnc2+IUnUQCZxWE3njzzehfPNw ek/hr/zqK62ug+K/KbCtYI4BGF8xwcUWBCs/wSGTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyPa8qt8wevlqPGB5oB08LNOj9RowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllZmExNDdhLTgyMzQtNDgwMS1hOGRkLTk2ZmMxOWRjNzUyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAB3DQswDQYJKoZIhvcNAQELBQADggEBAKaVNhDG1tLG3AfEniWx3JpJAqCB 6za6V8XZFEMFae3cTZsXo20r8zki3aNSp18bdcJJuPhsL0HETX02CNb8oeXL+x51 V/1jlfD/hKRske7DkzNjf5mEXVO8z6QVH24v4bztv8rXlvL8pBgzdDGXSSFBrc7Z lGkX5VNmmomok+TrcCL/NOgnPugpZ72ZheMiPMQtYoa7erA1DoaKrxFrFJjg5AKJ Irv59zg6u9Qh+KLCr3ySegPKgTL/LFjSD23UtaKZs4lFE6x9P1lWb+WB0VR7Uo7n 84mXva/ibPkPNURt0gzDnGG6pjFPzG3XXVJk6qFg85SzvwSK3YwgVz5teyQ= -----END CERTIFICATE-----Generated at Sat Apr 26 16:41:48 2025 by rpki-client