$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cfac5e42-d87d-4980-a4d4-ab785bf678d8.roa File: cfac5e42-d87d-4980-a4d4-ab785bf678d8.roa (raw, json) Hash identifier: EJugz9u1JbteC60LjEdnsg65EqTaFlPG5HwfEYLtbTQ= Subject key identifier: 3A:FD:52:A6:A7:10:2F:12:9B:C2:05:F0:32:ED:CD:0D:47:1B:9C:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D017DF1422D6A7FD997AEE77B5BF974AB603597 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cfac5e42-d87d-4980-a4d4-ab785bf678d8.roa Signing time: Tue 22 Apr 2025 15:30:23 +0000 ROA not before: Tue 22 Apr 2025 15:30:23 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:01:7d:f1:42:2d:6a:7f:d9:97:ae:e7:7b:5b:f9:74:ab:60:35:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 15:30:23 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=0280481b5d568496d056564442ee355690a3b7cfcbc753976550c4599cebfa24, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d6:58:4b:3f:bf:5f:37:49:26:10:64:30:03: 31:a1:c7:2c:48:76:05:bd:f4:79:47:a6:83:c2:7f: b4:9f:ce:f5:1b:61:d7:61:66:ad:bd:5b:e3:fa:0b: fd:15:1c:91:cb:59:de:8d:e1:20:c3:81:48:6f:33: 72:84:7a:dd:8a:37:07:09:0d:bf:70:cc:af:8f:2d: b5:fe:7d:aa:48:ba:37:06:cb:90:ce:cc:d6:fe:39: e7:eb:a5:3a:67:e2:a9:d2:48:48:b3:77:b8:81:f0: 88:ac:0e:e1:8a:45:68:17:dc:e9:fe:55:7d:4d:b4: e5:1e:b8:ed:4e:cc:04:5b:cb:dc:f2:45:1a:d9:d6: cd:11:a7:f5:d5:c5:f4:2b:fc:dd:90:c1:3a:72:eb: b7:0c:bd:57:af:b5:55:9a:cb:95:30:c3:d0:24:d8: c8:92:b7:4e:b3:bb:33:e1:01:9c:41:74:9f:0b:26: 2f:b0:45:5d:db:d3:73:3f:a0:ea:e3:97:24:3f:7a: c2:e1:7e:30:0c:29:94:7c:ea:c4:91:5e:f8:3c:44: 79:7c:da:1e:d7:9a:43:1b:44:8d:60:d4:ee:3b:1a: 4f:14:fa:dd:de:37:5a:0e:0d:5f:ac:1e:c9:9c:47: b3:fd:35:ad:1c:a7:b7:00:a1:1e:85:c6:5c:95:f2: 83:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:FD:52:A6:A7:10:2F:12:9B:C2:05:F0:32:ED:CD:0D:47:1B:9C:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cfac5e42-d87d-4980-a4d4-ab785bf678d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.185.0/24 Signature Algorithm: sha256WithRSAEncryption 56:e9:b1:2e:bb:77:f8:83:9c:e5:c8:07:49:38:15:0d:2f:26: a3:8a:62:64:86:92:32:ce:d2:4a:0a:7f:f7:f0:f7:0d:6c:f1: 61:4b:09:d9:33:7b:76:7a:75:ac:ab:48:6d:b3:d1:4d:ce:09: 86:28:a9:4f:e6:11:3f:78:4e:3f:36:b8:e1:0a:38:74:27:3a: 68:e2:51:f4:22:2e:ee:e9:6a:6b:0e:90:2e:4a:d7:82:d9:00: af:ee:87:00:6e:3a:d9:67:ca:4d:cb:ec:9f:72:c5:60:0d:53: 86:e6:91:f7:52:00:d6:3c:17:c9:dd:43:c8:15:02:ea:5b:e2: 7b:66:d2:4b:07:51:e7:ce:6a:a6:1a:1b:43:8e:76:60:45:8a: e1:fe:fc:f9:f3:07:ea:3b:7b:b4:8b:56:a4:86:07:b8:8c:44: 82:b6:37:a7:e8:5d:77:c9:1b:70:61:44:79:bb:cf:42:33:64: c4:8a:31:69:d8:7d:0d:75:f5:c0:d6:63:a6:06:53:ca:c0:fa: 88:df:22:d4:52:1b:9f:d4:4a:2f:f2:31:ab:ac:b4:26:c3:c0: b8:9f:cb:2b:b4:8c:e8:4c:d1:ee:43:c2:df:ae:7e:e8:f1:62: 3a:18:61:08:70:69:f7:a3:56:59:33:34:e5:ce:df:43:88:a8: 1a:01:b2:4b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDQF98UItan/Zl67ne1v5dKtgNZcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTUzMDIzWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjgwNDgxYjVkNTY4NDk2ZDA1NjU2NDQ0MmVlMzU1Njkw YTNiN2NmY2JjNzUzOTc2NTUwYzQ1OTljZWJmYTI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA1lhLP79fN0kmEGQwAzGhxyxIdgW99HlHpoPCf7SfzvUb YddhZq29W+P6C/0VHJHLWd6N4SDDgUhvM3KEet2KNwcJDb9wzK+PLbX+fapIujcG y5DOzNb+OefrpTpn4qnSSEizd7iB8IisDuGKRWgX3On+VX1NtOUeuO1OzARby9zy RRrZ1s0Rp/XVxfQr/N2QwTpy67cMvVevtVWay5Uww9Ak2MiSt06zuzPhAZxBdJ8L Ji+wRV3b03M/oOrjlyQ/esLhfjAMKZR86sSRXvg8RHl82h7XmkMbRI1g1O47Gk8U +t3eN1oODV+sHsmcR7P9Na0cp7cAoR6FxlyV8oP3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOv1SpqcQLxKbwgXwMu3NDUcbnNMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmYWM1ZTQyLWQ4N2QtNDk4MC1hNGQ0LWFiNzg1YmY2NzhkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAByOLkwDQYJKoZIhvcNAQELBQADggEBAFbpsS67d/iDnOXIB0k4FQ0vJqOK YmSGkjLO0koKf/fw9w1s8WFLCdkze3Z6dayrSG2z0U3OCYYoqU/mET94Tj82uOEK OHQnOmjiUfQiLu7pamsOkC5K14LZAK/uhwBuOtlnyk3L7J9yxWANU4bmkfdSANY8 F8ndQ8gVAupb4ntm0ksHUefOaqYaG0OOdmBFiuH+/PnzB+o7e7SLVqSGB7iMRIK2 N6foXXfJG3BhRHm7z0IzZMSKMWnYfQ119cDWY6YGU8rA+ojfItRSG5/USi/yMaus tCbDwLifyyu0jOhM0e5Dwt+ufujxYjoYYQhwafejVlkzNOXO30OIqBoBsks= -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:50 2025 by rpki-client