$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9a97dda-c5c3-4c46-af3d-ed1aa9612cc0.roa File: e9a97dda-c5c3-4c46-af3d-ed1aa9612cc0.roa (raw, json) Hash identifier: y7o6PV1YUxVtyglXIcLSouisANsZR/cMg9WpcCp3/8Y= Subject key identifier: 5F:F2:F6:EA:5D:5F:63:66:4F:E0:91:AA:D1:B6:A6:EE:D8:10:3E:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 582C8DCAE7E6965B2BD4D5DFA28CE96CFC3C54C6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9a97dda-c5c3-4c46-af3d-ed1aa9612cc0.roa Signing time: Tue 22 Apr 2025 00:00:25 +0000 ROA not before: Tue 22 Apr 2025 00:00:25 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 121.91.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:2c:8d:ca:e7:e6:96:5b:2b:d4:d5:df:a2:8c:e9:6c:fc:3c:54:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:00:25 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=29a54ba0b914989c28c20529ead6d3f4f60e88d73e387b32bb3e0287dfc131d9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c3:80:20:46:b8:04:92:17:3b:b1:a7:6a:0f: 6c:4d:2f:8f:e3:c3:27:61:34:cb:c1:64:08:e6:09: 72:4b:8e:a5:75:b1:e1:b2:42:97:f3:c9:c3:a2:d6: 0e:9c:fe:9e:4e:21:dc:d7:93:96:c8:3c:f1:59:a0: 29:4c:57:22:cf:ff:b6:0a:3e:7c:07:84:ed:34:3a: 9f:b3:e6:0b:c9:2b:2f:3f:1e:6b:31:5f:57:0f:74: 3b:25:83:8e:3a:27:a3:eb:af:5d:50:09:04:7b:20: 63:99:b5:da:41:f2:fe:bb:af:2e:fb:75:99:df:ab: 97:a4:7d:8f:8c:e5:a4:f4:62:f1:10:fb:81:6c:d9: 83:1a:91:d6:35:82:ca:66:b3:53:20:61:ae:8d:ba: e1:4c:98:f1:74:8d:8d:b6:95:f8:74:ad:0d:48:a4: ba:5a:a6:ac:76:1c:ce:7f:76:f1:3a:3a:12:1e:27: 5a:82:25:4c:de:d5:01:1d:31:29:5b:e8:67:b0:2c: be:6b:b0:1a:5c:3a:76:00:d2:60:c4:6e:7b:8f:4e: a0:93:81:47:98:55:dc:60:0d:68:8f:b8:dd:f3:0d: 51:9b:bc:9d:31:40:b7:3d:3d:c1:f0:12:3e:d6:43: ff:fe:bb:8a:79:7a:a9:36:0d:65:b9:b9:65:32:b3: db:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:F2:F6:EA:5D:5F:63:66:4F:E0:91:AA:D1:B6:A6:EE:D8:10:3E:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9a97dda-c5c3-4c46-af3d-ed1aa9612cc0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.91.144.0/21 Signature Algorithm: sha256WithRSAEncryption c4:8b:c2:d7:e4:7a:7e:a5:c9:79:6f:6d:6d:b5:82:39:d2:83: 70:ce:61:01:66:6e:92:97:6d:60:0c:1d:8b:cc:f3:9c:7e:46: d3:ab:96:51:77:7d:32:63:3c:94:ef:72:98:f1:28:00:cb:f9: 58:1b:8e:52:b1:a6:d2:df:23:1e:d5:98:42:58:29:24:a3:73: fd:28:f0:dc:29:20:50:4a:fd:88:10:98:1a:6c:e8:78:18:6c: 38:11:9f:3f:b6:22:49:e1:f1:8d:dd:f4:6b:4d:8b:81:eb:23: e6:70:00:84:c4:10:0f:01:5c:a2:df:f3:71:3c:f3:63:fd:06: 5f:90:57:34:14:ae:7f:21:ba:f0:4e:8c:13:11:a9:0b:cf:2c: 09:47:56:1d:8d:4c:99:5a:2d:d8:17:68:91:92:f8:6e:e6:96: 53:f8:94:83:1b:c4:b8:7f:00:75:e8:7c:e3:81:e9:df:62:0b: ee:cc:dd:a2:f3:aa:fa:82:af:87:b3:ba:0b:b1:a4:54:c3:88: f4:5d:bd:76:fc:f0:62:73:e7:fa:67:ab:b2:32:f9:4c:8d:5c: 64:3f:7c:c1:4a:e7:cd:5b:16:28:f3:e1:6c:a4:2d:ed:20:10: 23:28:c5:38:fa:ec:5e:d7:3b:26:cd:ed:dc:70:0b:e6:34:2a: 1b:a8:6f:09 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWCyNyufmllsr1NXfoozpbPw8VMYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAwMDI1WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOWE1NGJhMGI5MTQ5ODljMjhjMjA1MjllYWQ2ZDNmNGY2 MGU4OGQ3M2UzODdiMzJiYjNlMDI4N2RmYzEzMWQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4w4AgRrgEkhc7sadqD2xNL4/jwydhNMvBZAjmCXJLjqV1 seGyQpfzycOi1g6c/p5OIdzXk5bIPPFZoClMVyLP/7YKPnwHhO00Op+z5gvJKy8/ HmsxX1cPdDslg446J6Prr11QCQR7IGOZtdpB8v67ry77dZnfq5ekfY+M5aT0YvEQ +4Fs2YMakdY1gspms1MgYa6NuuFMmPF0jY22lfh0rQ1IpLpapqx2HM5/dvE6OhIe J1qCJUze1QEdMSlb6GewLL5rsBpcOnYA0mDEbnuPTqCTgUeYVdxgDWiPuN3zDVGb vJ0xQLc9PcHwEj7WQ//+u4p5eqk2DWW5uWUys9tDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUX/L26l1fY2ZP4JGq0bam7tgQPggwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5YTk3ZGRhLWM1YzMtNGM0Ni1hZjNkLWVkMWFhOTYxMmNjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAN5W5AwDQYJKoZIhvcNAQELBQADggEBAMSLwtfken6lyXlvbW21gjnSg3DO YQFmbpKXbWAMHYvM85x+RtOrllF3fTJjPJTvcpjxKADL+VgbjlKxptLfIx7VmEJY KSSjc/0o8NwpIFBK/YgQmBps6HgYbDgRnz+2Iknh8Y3d9GtNi4HrI+ZwAITEEA8B XKLf83E882P9Bl+QVzQUrn8huvBOjBMRqQvPLAlHVh2NTJlaLdgXaJGS+G7mllP4 lIMbxLh/AHXofOOB6d9iC+7M3aLzqvqCr4ezuguxpFTDiPRdvXb88GJz5/pnq7Iy +UyNXGQ/fMFK581bFijz4WykLe0gECMoxTj67F7XOybN7dxwC+Y0Khuobwk= -----END CERTIFICATE-----Generated at Sat Apr 26 15:54:43 2025 by rpki-client