$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fcf3ad48-0d1f-4ba4-87d3-c4086df92e62.roa File: fcf3ad48-0d1f-4ba4-87d3-c4086df92e62.roa (raw, json) Hash identifier: /pG/3IqrtdFlGYiTIq0OFkhg0ONzxPv7xOFwfOCjn5A= Subject key identifier: C5:0D:D1:15:E0:D7:A2:87:ED:A5:82:6C:EE:A9:5F:9E:1B:0E:12:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F7E0F27EEC49958154569552A9FD88953C5222E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fcf3ad48-0d1f-4ba4-87d3-c4086df92e62.roa Signing time: Mon 24 Mar 2025 15:20:18 +0000 ROA not before: Mon 24 Mar 2025 15:20:18 +0000 ROA not after: Mon 28 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 115.177.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:7e:0f:27:ee:c4:99:58:15:45:69:55:2a:9f:d8:89:53:c5:22:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 24 15:20:18 2025 GMT Not After : Apr 28 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ba:ab:ae:f5:40:07:ef:54:af:02:29:39:9f: ee:b8:0b:44:e3:55:e6:ee:57:c2:e9:24:e8:8d:e8: a8:82:ba:5b:53:e5:c1:d5:0e:80:ba:b1:dd:98:90: c7:ce:90:af:06:7c:64:07:b7:7f:7f:f1:de:ba:5b: 6e:a0:94:60:b7:af:3d:0a:4a:66:88:92:16:29:f8: 34:ad:f9:b6:32:41:72:6a:7e:57:27:4a:d1:7c:b1: fe:22:ee:90:8e:e0:45:09:2c:e6:4f:ac:fe:c8:02: 6c:54:2c:ae:18:0a:02:68:d2:79:79:f3:67:3d:eb: d1:1f:53:f0:ef:2b:62:cc:1a:ec:b8:f0:2f:4b:90: 11:47:cc:d3:a0:83:f4:79:67:19:bb:43:66:5b:91: 52:a9:72:34:90:0a:8d:4e:08:af:45:a3:a1:e5:85: 2c:90:f5:8c:d4:2a:9c:30:90:ef:8b:10:93:28:1d: e2:46:c4:bc:a7:f9:b1:e4:ca:71:d8:be:d5:d7:5c: a1:f2:bf:2a:25:e6:62:31:32:e2:e9:f0:07:92:8c: b0:84:34:98:c5:76:cd:e7:1f:7a:08:7a:22:da:a5: 4f:25:48:86:8d:8c:fc:60:12:ca:ed:ed:f7:e1:82: 09:4b:2c:2b:9a:de:5d:07:9b:15:7a:55:3f:52:1a: dc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0D:D1:15:E0:D7:A2:87:ED:A5:82:6C:EE:A9:5F:9E:1B:0E:12:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fcf3ad48-0d1f-4ba4-87d3-c4086df92e62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.177.128.0/18 Signature Algorithm: sha256WithRSAEncryption 63:e0:52:d8:c1:c9:77:c8:e7:6b:0c:05:e5:ca:b4:a1:21:53: d1:51:37:63:4d:1b:cf:90:ff:79:e0:e5:28:c1:76:bb:07:b7: d9:28:f1:ed:cf:a2:70:2d:b0:c2:38:89:13:b0:ae:a4:a5:d0: 49:13:be:80:0d:be:d8:54:7b:4a:f9:38:c7:a1:ea:67:1a:fc: 7c:31:f4:2f:05:f8:a3:41:d7:83:54:10:fa:ea:aa:5d:bd:63: 7e:aa:c0:41:03:65:31:ef:0b:50:fe:85:80:40:d3:af:82:d8: 4c:f4:82:86:3b:32:74:b2:09:bc:fa:5f:47:ce:0d:a0:cc:bf: 89:0a:0a:fd:8d:49:36:61:ec:9c:be:c5:91:64:65:66:90:d2: 32:8f:c5:a3:bf:e0:21:28:da:63:f1:38:d1:6a:cb:fa:90:3a: 8a:59:21:3e:89:dd:90:a9:76:9a:a4:8c:6a:f9:c3:17:1a:94: 23:c7:6c:68:5c:ff:df:3e:27:ff:c7:cf:74:3c:cc:b5:74:0a: d4:11:08:11:63:9c:f9:83:56:2a:2b:bb:66:06:fc:0c:35:41: ec:91:50:d6:e9:69:bb:8d:9a:0d:91:b5:76:10:8c:e8:29:3a: 42:a0:ea:de:47:e6:c8:05:a0:71:c4:16:b1:0d:6b:a3:b8:f9: dd:51:df:2c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX34PJ+7EmVgVRWlVKp/YiVPFIi4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI0MTUyMDE4WhcNMjUwNDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZmRjODQ0OTU3M2FjZTk3ZDYxOTM3ZjVjZWE0NzBjMWQ1 NWMxMDE5NGYwMjE2ZmE2ZTgyMjUxYzM0MzhhZjI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxuquu9UAH71SvAik5n+64C0TjVebuV8LpJOiN6KiCultT 5cHVDoC6sd2YkMfOkK8GfGQHt39/8d66W26glGC3rz0KSmaIkhYp+DSt+bYyQXJq flcnStF8sf4i7pCO4EUJLOZPrP7IAmxULK4YCgJo0nl582c969EfU/DvK2LMGuy4 8C9LkBFHzNOgg/R5Zxm7Q2ZbkVKpcjSQCo1OCK9Fo6HlhSyQ9YzUKpwwkO+LEJMo HeJGxLyn+bHkynHYvtXXXKHyvyol5mIxMuLp8AeSjLCENJjFds3nH3oIeiLapU8l SIaNjPxgEsrt7ffhgglLLCua3l0HmxV6VT9SGtwDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxQ3RFeDXooftpYJs7qlfnhsOEsAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZjZjNhZDQ4LTBkMWYtNGJhNC04N2QzLWM0MDg2ZGY5MmU2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZzsYAwDQYJKoZIhvcNAQELBQADggEBAGPgUtjByXfI52sMBeXKtKEhU9FR N2NNG8+Q/3ng5SjBdrsHt9ko8e3PonAtsMI4iROwrqSl0EkTvoANvthUe0r5OMeh 6mca/Hwx9C8F+KNB14NUEPrqql29Y36qwEEDZTHvC1D+hYBA06+C2Ez0goY7MnSy Cbz6X0fODaDMv4kKCv2NSTZh7Jy+xZFkZWaQ0jKPxaO/4CEo2mPxONFqy/qQOopZ IT6J3ZCpdpqkjGr5wxcalCPHbGhc/98+J//Hz3Q8zLV0CtQRCBFjnPmDVioru2YG /Aw1QeyRUNbpabuNmg2RtXYQjOgpOkKg6t5H5sgFoHHEFrENa6O4+d1R3yw= -----END CERTIFICATE-----Generated at Sat Apr 5 11:10:04 2025 by rpki-client