$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b7f5d1e-8862-4368-b6f3-1cee81de1485.roa File: 4b7f5d1e-8862-4368-b6f3-1cee81de1485.roa (raw, json) Hash identifier: wPYsjsdR3/EksHU2VCdcvbi/RudhAKTg5p2kAF2ejuc= Subject key identifier: CC:63:3F:98:39:1D:45:65:69:8E:FA:FD:DC:08:30:C2:11:27:0B:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21509638F20036A37BB1FE82C5565CF11BD0D217 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b7f5d1e-8862-4368-b6f3-1cee81de1485.roa Signing time: Sat 22 Mar 2025 00:00:20 +0000 ROA not before: Sat 22 Mar 2025 00:00:20 +0000 ROA not after: Sat 26 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:50:96:38:f2:00:36:a3:7b:b1:fe:82:c5:56:5c:f1:1b:d0:d2:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 22 00:00:20 2025 GMT Not After : Apr 26 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:66:6b:65:dc:54:6e:80:a3:45:f9:64:0a:be: c2:41:04:c7:10:eb:68:9c:95:37:e1:11:69:e7:42: 3e:e7:7c:46:bd:d1:48:85:39:1e:0e:b7:36:dd:01: 36:1d:9a:fb:90:75:1a:47:f9:79:69:97:c3:d6:48: 81:7e:53:7e:0a:de:6d:31:4f:e7:0f:cb:be:bd:12: dd:e0:a6:bf:18:95:3a:3a:79:44:65:8e:9d:9b:e0: 81:7a:30:ae:a3:80:a8:13:01:59:44:d5:b9:3d:8d: 2d:00:43:8d:55:3c:23:d3:87:f7:62:27:d5:8e:0f: 78:22:fc:9b:1c:0d:e3:2a:3b:a4:b2:06:2c:40:be: c4:34:a8:9f:db:37:63:e0:91:04:4f:ec:b3:db:0e: 12:04:34:60:35:4e:03:ed:e9:18:1e:c2:a1:76:08: df:c4:e0:2c:94:7f:07:71:d4:0e:fc:e1:67:78:49: bc:7a:90:b9:38:9e:22:c9:8e:60:0f:36:24:70:97: 29:78:61:c4:63:8f:fd:32:19:6e:48:3a:e5:85:62: 22:6c:00:94:d7:49:cf:49:bd:58:3a:54:d0:e2:fd: 7e:a0:61:af:b0:c0:54:e4:1a:ae:46:28:01:73:33: 90:5b:15:d0:d5:8f:17:fa:11:5c:a6:3d:9d:a3:fd: 67:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:63:3F:98:39:1D:45:65:69:8E:FA:FD:DC:08:30:C2:11:27:0B:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b7f5d1e-8862-4368-b6f3-1cee81de1485.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.120.0/23 Signature Algorithm: sha256WithRSAEncryption 25:19:7a:f6:31:58:7f:e9:10:90:ca:96:6a:89:02:d9:ac:47: f4:24:eb:1e:89:02:a0:33:35:a6:68:d7:35:04:ed:de:a3:bd: 97:37:06:3c:c8:af:aa:91:06:42:80:d6:53:17:93:d1:5c:b9: 5e:8f:2c:be:82:9e:f8:23:a2:13:aa:59:ba:74:21:d7:14:8d: d1:59:87:2f:7e:b6:ed:75:ef:48:2a:06:2d:91:17:26:1b:ae: 2b:f6:bb:c3:20:41:c3:b5:27:a3:03:56:c4:a1:ea:ea:a3:06: 5c:82:c2:01:89:8c:1e:3e:e8:93:77:f3:cd:fa:47:6b:b6:17: 3d:0b:63:59:4b:07:a1:0b:da:61:27:d5:88:58:e3:fc:ae:ff: a5:63:ab:14:54:e7:0f:74:49:9e:25:9a:2a:80:e3:67:d4:d6: a2:ed:09:48:19:ad:9b:44:db:83:a5:a6:4d:06:de:84:c3:6c: 52:bd:6f:38:13:9a:66:b5:d1:d0:d4:80:3e:a8:ff:24:c3:2a: e1:5a:49:b2:02:17:c5:23:c8:fe:3e:9a:02:2e:3b:4c:d3:ba: 7e:31:66:7c:e1:24:5d:5b:a7:29:1f:f4:e5:59:0d:fa:05:4d: d4:05:e4:12:53:6e:78:48:9b:05:37:17:59:24:2c:c7:54:0b: cc:46:c2:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIVCWOPIANqN7sf6CxVZc8RvQ0hcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzIyMDAwMDIwWhcNMjUwNDI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDA0NTMyMTExOGYzOWFhNDdkZDBjOTllMWY5ZWJkM2U5 MWI1YTg2YWZlNTk2NTg5NjdmNDJlMzNjZWM4NjJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWZmtl3FRugKNF+WQKvsJBBMcQ62iclTfhEWnnQj7nfEa9 0UiFOR4OtzbdATYdmvuQdRpH+Xlpl8PWSIF+U34K3m0xT+cPy769Et3gpr8YlTo6 eURljp2b4IF6MK6jgKgTAVlE1bk9jS0AQ41VPCPTh/diJ9WOD3gi/JscDeMqO6Sy BixAvsQ0qJ/bN2PgkQRP7LPbDhIENGA1TgPt6RgewqF2CN/E4CyUfwdx1A784Wd4 Sbx6kLk4niLJjmAPNiRwlyl4YcRjj/0yGW5IOuWFYiJsAJTXSc9JvVg6VNDi/X6g Ya+wwFTkGq5GKAFzM5BbFdDVjxf6EVymPZ2j/WfXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzGM/mDkdRWVpjvr93AgwwhEnCzQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRiN2Y1ZDFlLTg4NjItNDM2OC1iNmYzLTFjZWU4MWRlMTQ4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFyOHgwDQYJKoZIhvcNAQELBQADggEBACUZevYxWH/pEJDKlmqJAtmsR/Qk 6x6JAqAzNaZo1zUE7d6jvZc3BjzIr6qRBkKA1lMXk9FcuV6PLL6CnvgjohOqWbp0 IdcUjdFZhy9+tu1170gqBi2RFyYbriv2u8MgQcO1J6MDVsSh6uqjBlyCwgGJjB4+ 6JN38836R2u2Fz0LY1lLB6EL2mEn1YhY4/yu/6VjqxRU5w90SZ4lmiqA42fU1qLt CUgZrZtE24Olpk0G3oTDbFK9bzgTmma10dDUgD6o/yTDKuFaSbICF8UjyP4+mgIu O0zTun4xZnzhJF1bpykf9OVZDfoFTdQF5BJTbnhImwU3F1kkLMdUC8xGwqQ= -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:44 2025 by rpki-client