$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e7c3721-b1a3-4a25-bf48-db620d09215a.roa File: 3e7c3721-b1a3-4a25-bf48-db620d09215a.roa (raw, json) Hash identifier: pIFuaxqqRMU+/WQSoPTcioIn9fZZTZT8powsFh5zMFM= Subject key identifier: 6D:4B:0C:C6:1F:9B:C8:26:00:1D:6C:E6:D4:BF:37:27:CA:65:3E:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B7CFE262B812ED46910BA90101B2DC4CD78D816 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e7c3721-b1a3-4a25-bf48-db620d09215a.roa Signing time: Fri 04 Apr 2025 02:08:17 +0000 ROA not before: Fri 04 Apr 2025 02:08:17 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 203.119.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:7c:fe:26:2b:81:2e:d4:69:10:ba:90:10:1b:2d:c4:cd:78:d8:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 02:08:17 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:7d:ac:a5:41:cf:e4:de:fc:17:c4:af:01:ae: 0c:37:e5:39:8b:aa:b4:81:fd:b8:ba:51:1e:65:8b: 9f:ab:63:c5:22:e6:58:e8:99:18:88:25:47:b3:2d: 2f:20:e3:eb:f4:90:2a:48:d6:2a:cb:a3:91:73:34: 52:f9:32:32:59:bf:0a:ac:1a:84:da:ef:1f:e4:f0: 26:ef:fc:1b:e6:a2:97:36:7b:73:62:a4:0c:1a:9c: 5b:1c:79:2f:b8:cc:e4:84:0c:44:e8:e0:9b:0f:25: ca:cb:b8:2f:e8:7a:a2:fc:9e:59:3f:c3:e7:e1:3d: 16:98:91:2d:11:56:77:e8:3e:6c:b7:c6:3e:11:c7: 2a:43:a1:3a:8d:0b:7a:61:b7:ca:07:6d:5d:2e:74: 60:f8:e6:49:df:7a:d8:47:5a:fe:00:eb:49:3d:b3: c8:38:93:c4:2e:07:fe:12:45:77:84:c5:95:04:08: a7:b5:8b:52:eb:16:b0:de:2c:32:d9:d1:d1:21:01: 8f:0e:a6:5e:44:e0:0e:ed:c3:fb:51:1a:ce:a3:2f: 3c:dd:79:7e:28:c9:3c:98:34:ec:78:40:6b:29:61: 5a:6f:02:a1:a4:6a:cb:3f:97:b8:ed:23:70:47:88: 46:4b:dc:bd:b8:1e:e2:44:7a:1e:9c:d7:ee:c8:1d: dd:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:4B:0C:C6:1F:9B:C8:26:00:1D:6C:E6:D4:BF:37:27:CA:65:3E:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e7c3721-b1a3-4a25-bf48-db620d09215a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.119.12.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:a3:28:da:3e:e9:3e:71:32:7e:6e:ff:ff:37:ae:a7:2e:85: b9:a6:2a:31:06:0e:15:57:15:9c:f5:3e:0d:6c:f7:c3:6d:dd: 7a:c0:78:ba:5c:49:36:c8:2e:95:7f:e5:88:25:71:53:cc:c8: ee:0d:5f:ed:a0:09:b8:ea:73:ec:e3:ed:32:86:2e:1f:32:f2: 64:11:43:de:41:e9:72:dc:ee:3e:2f:08:06:5a:68:0a:07:31: 71:4e:f9:26:28:d7:ed:7f:d2:09:b1:17:3d:32:b1:7c:93:d5: ed:1a:8f:f8:4d:8f:fc:34:cf:97:e7:37:ba:34:9e:09:d6:38: 1f:55:8c:19:9d:00:1c:53:d0:f5:aa:05:c1:0d:42:fb:e1:0b: 4c:18:46:fd:0e:27:c5:a9:fa:e7:3a:86:83:6f:0d:d7:06:05: dd:d4:a8:51:ef:2c:9b:dd:c5:50:ef:78:e0:c8:46:2b:bd:dd: df:1d:ff:cc:bf:31:27:a1:a2:a2:ca:05:e6:55:c1:84:5c:fe: 73:8d:f6:83:d3:b8:6e:9d:73:6f:06:8f:4c:30:e8:34:44:4a: 50:c8:db:f9:6c:c7:5d:b9:e5:0a:0d:e8:b5:91:14:ba:ef:65: 35:b3:ad:f9:08:2e:89:99:6c:b6:6c:35:e0:3f:d6:62:b2:2a: 62:53:8a:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW3z+JiuBLtRpELqQEBstxM142BYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDIwODE3WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTNhOWFlOTZkMDlhNDdkYTVkOGJlOTMyMzc3Y2JkNWRh OTNkOWMwMGM1ODk1MGRkZjQ1OTdiNTNjZTllOGU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJfaylQc/k3vwXxK8Brgw35TmLqrSB/bi6UR5li5+rY8Ui 5ljomRiIJUezLS8g4+v0kCpI1irLo5FzNFL5MjJZvwqsGoTa7x/k8Cbv/Bvmopc2 e3NipAwanFsceS+4zOSEDETo4JsPJcrLuC/oeqL8nlk/w+fhPRaYkS0RVnfoPmy3 xj4RxypDoTqNC3pht8oHbV0udGD45knfethHWv4A60k9s8g4k8QuB/4SRXeExZUE CKe1i1LrFrDeLDLZ0dEhAY8Opl5E4A7tw/tRGs6jLzzdeX4oyTyYNOx4QGspYVpv AqGkass/l7jtI3BHiEZL3L24HuJEeh6c1+7IHd1ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbUsMxh+byCYAHWzm1L83J8plPg0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNlN2MzNzIxLWIxYTMtNGEyNS1iZjQ4LWRiNjIwZDA5MjE1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADLdwwwDQYJKoZIhvcNAQELBQADggEBAF+jKNo+6T5xMn5u//83rqcuhbmm KjEGDhVXFZz1Pg1s98Nt3XrAeLpcSTbILpV/5YglcVPMyO4NX+2gCbjqc+zj7TKG Lh8y8mQRQ95B6XLc7j4vCAZaaAoHMXFO+SYo1+1/0gmxFz0ysXyT1e0aj/hNj/w0 z5fnN7o0ngnWOB9VjBmdABxT0PWqBcENQvvhC0wYRv0OJ8Wp+uc6hoNvDdcGBd3U qFHvLJvdxVDveODIRiu93d8d/8y/MSehoqLKBeZVwYRc/nON9oPTuG6dc28Gj0ww 6DRESlDI2/lsx1255QoN6LWRFLrvZTWzrfkILomZbLZsNeA/1mKyKmJTipI= -----END CERTIFICATE-----Generated at Sat Apr 5 12:15:16 2025 by rpki-client