$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/132f73c3-a546-4296-a702-8a3aab70f706.roa File: 132f73c3-a546-4296-a702-8a3aab70f706.roa (raw, json) Hash identifier: v8BIuDHdnnOkIsms1bdvuq/FndpqxIZnIF1fkbhWulI= Subject key identifier: 1B:00:14:EF:C7:C3:4F:BA:B8:8B:16:40:76:44:8F:79:A6:FF:3F:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40E27ACCD5485D5515E48DD968B72A05564E5619 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/132f73c3-a546-4296-a702-8a3aab70f706.roa Signing time: Tue 13 May 2025 00:20:17 +0000 ROA not before: Tue 13 May 2025 00:20:17 +0000 ROA not after: Tue 17 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 121.93.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:e2:7a:cc:d5:48:5d:55:15:e4:8d:d9:68:b7:2a:05:56:4e:56:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 13 00:20:17 2025 GMT Not After : Jun 17 23:59:59 2025 GMT Subject: serialNumber=6a325493f4dfc61da6c94ab5631bb96ae8b7b1557c059ae18f19111350686758, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:14:7b:c6:cc:64:d1:27:c5:08:2b:1c:42:3d: 17:0c:b9:b8:b1:0c:3f:78:a4:82:7d:e7:8f:de:21: b5:ac:54:95:91:91:1e:7b:dc:de:27:a1:88:cf:35: 87:21:74:b9:f0:5b:e9:7d:0e:bb:29:07:a8:bc:3a: 0e:0e:f3:5d:a3:1f:a4:eb:60:07:5c:25:c2:59:ec: e2:ce:68:bf:1f:ba:74:7d:9a:9c:7f:88:9f:c7:bb: ad:00:14:2f:76:8d:19:b4:87:08:63:08:e6:e6:b6: 4b:73:c1:09:8a:34:ab:40:0f:df:f2:8b:90:b2:15: 2b:12:93:36:46:17:8c:64:52:9e:6c:cd:74:71:0d: 9b:e5:2e:ca:95:7c:fc:59:9b:24:35:a4:e5:c2:19: 31:d4:3c:e9:ec:6e:ac:50:72:e5:78:f2:e4:15:c3: b5:41:6b:21:1f:12:88:85:db:22:f5:aa:66:3c:d2: 40:84:77:a8:2d:41:32:24:3f:d2:0b:b8:5a:24:25: 08:b6:ba:d5:38:c9:2c:4e:74:2e:9b:05:c6:fc:5c: 36:17:15:d3:28:1f:c0:1e:ae:6c:2d:9e:a0:6a:24: 5a:ca:b6:d4:47:f3:12:c7:0a:65:7e:c1:9c:01:8e: 0c:4c:46:3a:69:47:33:f2:61:6c:0d:9e:48:81:54: 61:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:00:14:EF:C7:C3:4F:BA:B8:8B:16:40:76:44:8F:79:A6:FF:3F:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/132f73c3-a546-4296-a702-8a3aab70f706.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 121.93.0.0/17 Signature Algorithm: sha256WithRSAEncryption 4f:49:96:76:8f:04:31:1b:30:27:e1:ac:15:4c:22:d0:b3:42: 31:a6:11:0e:8a:f0:fd:1c:1d:19:37:71:7c:62:8c:3b:1b:d0: d8:ee:35:21:6a:3c:b1:4e:52:bd:0e:2e:3b:2c:c8:00:69:ea: cf:f6:78:48:4e:9f:cb:59:58:3d:1b:3b:df:7b:54:7c:11:a7: eb:47:83:9c:75:65:80:a0:ef:50:76:99:22:12:fe:5d:55:df: c0:52:f0:72:78:1a:fa:a4:62:40:82:6b:a3:ee:12:cc:6e:d9: 6a:da:d8:a9:0a:0c:64:4a:7a:e1:57:eb:8d:5c:62:c3:24:28: e8:69:9f:4c:3f:54:e4:94:54:7d:62:d5:f5:48:de:b4:b2:82: 77:a0:3c:6f:11:e9:e7:cc:58:6d:bb:81:f5:7c:e8:45:fa:68: da:54:f3:b0:3c:40:a9:8c:25:67:2f:12:1e:4c:a5:78:9d:bd: 82:64:9e:04:72:f6:8a:e1:67:7a:e2:77:f8:45:8e:92:08:0e: 40:ec:bd:ab:13:91:e5:e2:5a:88:b3:eb:28:64:67:29:79:51: 1f:56:b7:a1:89:7c:4f:a9:0c:f1:9b:02:72:43:3b:92:28:5b: b3:36:4b:d9:76:df:1e:f4:58:ff:1f:ad:fd:5b:d7:18:6f:54: 90:28:49:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQOJ6zNVIXVUV5I3ZaLcqBVZOVhkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEzMDAyMDE3WhcNMjUwNjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTMyNTQ5M2Y0ZGZjNjFkYTZjOTRhYjU2MzFiYjk2YWU4 YjdiMTU1N2MwNTlhZTE4ZjE5MTExMzUwNjg2NzU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsFHvGzGTRJ8UIKxxCPRcMubixDD94pIJ954/eIbWsVJWR kR573N4noYjPNYchdLnwW+l9DrspB6i8Og4O812jH6TrYAdcJcJZ7OLOaL8funR9 mpx/iJ/Hu60AFC92jRm0hwhjCObmtktzwQmKNKtAD9/yi5CyFSsSkzZGF4xkUp5s zXRxDZvlLsqVfPxZmyQ1pOXCGTHUPOnsbqxQcuV48uQVw7VBayEfEoiF2yL1qmY8 0kCEd6gtQTIkP9ILuFokJQi2utU4ySxOdC6bBcb8XDYXFdMoH8AermwtnqBqJFrK ttRH8xLHCmV+wZwBjgxMRjppRzPyYWwNnkiBVGHpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGwAU78fDT7q4ixZAdkSPeab/P7cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEzMmY3M2MzLWE1NDYtNDI5Ni1hNzAyLThhM2FhYjcwZjcwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAd5XQAwDQYJKoZIhvcNAQELBQADggEBAE9JlnaPBDEbMCfhrBVMItCzQjGm EQ6K8P0cHRk3cXxijDsb0NjuNSFqPLFOUr0OLjssyABp6s/2eEhOn8tZWD0bO997 VHwRp+tHg5x1ZYCg71B2mSIS/l1V38BS8HJ4GvqkYkCCa6PuEsxu2Wra2KkKDGRK euFX641cYsMkKOhpn0w/VOSUVH1i1fVI3rSygnegPG8R6efMWG27gfV86EX6aNpU 87A8QKmMJWcvEh5MpXidvYJkngRy9orhZ3rid/hFjpIIDkDsvasTkeXiWoiz6yhk Zyl5UR9Wt6GJfE+pDPGbAnJDO5IoW7M2S9l23x70WP8frf1b1xhvVJAoSek= -----END CERTIFICATE-----Generated at Sun Jun 1 05:20:04 2025 by rpki-client