$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c63e1f3c-46da-4d3b-9d1f-3bef8a6a10e0.roa File: c63e1f3c-46da-4d3b-9d1f-3bef8a6a10e0.roa (raw, json) Hash identifier: 5P9AG19+H4MYYPQiX49BVOjYl548iekFC5ObI+dBBTY= Subject key identifier: 8F:19:7F:0E:4B:D6:CF:4D:04:19:FC:36:31:55:17:50:F3:11:25:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 733165904CECF37C54272067C3AD1E0E95EA2DF5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c63e1f3c-46da-4d3b-9d1f-3bef8a6a10e0.roa Signing time: Fri 25 Apr 2025 00:10:59 +0000 ROA not before: Fri 25 Apr 2025 00:10:59 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 119.13.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:31:65:90:4c:ec:f3:7c:54:27:20:67:c3:ad:1e:0e:95:ea:2d:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:10:59 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=cdb643d51e39d6feb33919a433ef8b9126b4288979390699d2b53a30da666c7c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:27:11:91:98:6a:bf:2e:8d:1b:5d:9b:7b:ff: ef:15:79:5c:69:f9:79:50:f5:24:55:9e:a4:3a:56: 0d:35:9a:e8:4d:72:31:e5:7d:46:4a:e5:a9:55:12: 4c:38:b6:41:d9:2b:ab:83:4e:99:ff:10:c1:ec:c0: d3:7e:11:63:bc:ef:2e:97:1f:e4:53:12:4a:5b:13: 63:90:7c:a4:97:a5:64:bc:7f:9d:20:c7:66:0e:a6: 45:ae:09:34:e8:42:55:94:ce:28:4c:1f:cb:e8:26: 6d:09:cc:56:71:a3:13:b9:66:ca:8d:98:2c:df:f1: 2d:78:2d:5c:92:31:84:34:8f:12:83:fd:3d:8d:55: b5:a5:ce:b4:78:d0:a6:22:86:cc:48:49:7e:d3:ae: 54:e1:d6:0f:aa:9e:ac:fb:1f:89:ed:3b:2d:c9:b9: 52:3c:a6:ab:4e:32:53:d0:2d:ae:2a:59:b5:cd:9e: 09:dc:75:c3:63:df:c3:25:b4:b0:c7:cf:6f:32:b0: 9b:fb:2b:71:b6:1d:6b:29:09:c8:2e:77:bb:7d:c1: fd:88:76:c2:34:19:67:8e:b1:59:8b:5e:7f:4d:f1: a2:c9:d2:0e:92:f8:b4:7a:7e:4e:a2:e4:e3:b5:af: ff:59:02:85:0b:3e:6d:0b:48:0b:59:e4:f8:c8:a7: a0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:19:7F:0E:4B:D6:CF:4D:04:19:FC:36:31:55:17:50:F3:11:25:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c63e1f3c-46da-4d3b-9d1f-3bef8a6a10e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.13.242.0/23 Signature Algorithm: sha256WithRSAEncryption 84:da:b9:37:d6:25:ab:df:28:0b:47:fe:41:e6:a8:8b:d1:27: 9a:1f:24:0f:f3:ae:6d:56:1b:f0:7f:9e:8b:ac:bc:5e:d3:c7: 30:05:02:b9:25:43:8c:17:15:d7:fc:ea:76:93:44:05:47:91: 8d:fe:48:f0:8d:fd:d9:7a:b4:a0:23:48:42:fc:fd:4f:54:de: a5:62:19:cb:2c:31:5c:02:fb:65:96:7d:e9:29:63:62:00:64: 2c:fa:54:45:29:a8:dc:02:23:45:d5:25:37:1f:92:48:3f:0a: 70:75:49:b1:0a:3d:11:63:4a:9d:4d:7c:f5:2b:b2:ec:3a:f0: 86:d9:43:12:5d:18:0c:c3:c2:28:a4:5d:b5:4c:09:d8:5a:2c: 54:f3:fb:df:b2:b4:2d:36:01:26:f8:a4:5e:ae:28:98:8e:d5: 80:0e:2e:c8:25:57:d5:01:cb:96:d4:13:e8:57:ba:c2:dd:99: 33:e0:40:a1:9d:6a:57:29:04:61:59:63:ba:d7:de:ba:f8:6c: 5a:7d:d4:05:23:58:d1:6d:71:d5:ef:60:0b:b1:78:db:c2:96: 9b:8a:15:5f:b4:74:55:82:b1:b6:46:79:69:74:73:14:17:0a: 19:ba:65:ee:d4:eb:5b:03:4e:ef:1f:df:83:27:ec:f0:78:9a: 6c:ce:a2:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUczFlkEzs83xUJyBnw60eDpXqLfUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDAxMDU5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZGI2NDNkNTFlMzlkNmZlYjMzOTE5YTQzM2VmOGI5MTI2 YjQyODg5NzkzOTA2OTlkMmI1M2EzMGRhNjY2YzdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2JxGRmGq/Lo0bXZt7/+8VeVxp+XlQ9SRVnqQ6Vg01muhN cjHlfUZK5alVEkw4tkHZK6uDTpn/EMHswNN+EWO87y6XH+RTEkpbE2OQfKSXpWS8 f50gx2YOpkWuCTToQlWUzihMH8voJm0JzFZxoxO5ZsqNmCzf8S14LVySMYQ0jxKD /T2NVbWlzrR40KYihsxISX7TrlTh1g+qnqz7H4ntOy3JuVI8pqtOMlPQLa4qWbXN ngncdcNj38MltLDHz28ysJv7K3G2HWspCcgud7t9wf2IdsI0GWeOsVmLXn9N8aLJ 0g6S+LR6fk6i5OO1r/9ZAoULPm0LSAtZ5PjIp6BHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjxl/DkvWz00EGfw2MVUXUPMRJfkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M2M2UxZjNjLTQ2ZGEtNGQzYi05ZDFmLTNiZWY4YTZhMTBlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAF3DfIwDQYJKoZIhvcNAQELBQADggEBAITauTfWJavfKAtH/kHmqIvRJ5of JA/zrm1WG/B/nousvF7TxzAFArklQ4wXFdf86naTRAVHkY3+SPCN/dl6tKAjSEL8 /U9U3qViGcssMVwC+2WWfekpY2IAZCz6VEUpqNwCI0XVJTcfkkg/CnB1SbEKPRFj Sp1NfPUrsuw68IbZQxJdGAzDwiikXbVMCdhaLFTz+9+ytC02ASb4pF6uKJiO1YAO LsglV9UBy5bUE+hXusLdmTPgQKGdalcpBGFZY7rX3rr4bFp91AUjWNFtcdXvYAux eNvClpuKFV+0dFWCsbZGeWl0cxQXChm6Ze7U61sDTu8f34Mn7PB4mmzOooQ= -----END CERTIFICATE-----Generated at Sat Apr 26 15:56:55 2025 by rpki-client