$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/991a7270-70c3-4177-b80a-03d48b249d96.roa File: 991a7270-70c3-4177-b80a-03d48b249d96.roa (raw, json) Hash identifier: 1lJtvySG2JNR+yf1UcPmuAPePkmtpIjlwMCOW67V/X0= Subject key identifier: FD:C0:4B:66:8D:A2:E7:1B:D0:DE:20:4F:04:32:24:11:73:3D:3D:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BD341BE0384E67179CD6F9EC6070DDF055EC330 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/991a7270-70c3-4177-b80a-03d48b249d96.roa Signing time: Tue 18 Mar 2025 15:22:18 +0000 ROA not before: Tue 18 Mar 2025 15:22:18 +0000 ROA not after: Tue 22 Apr 2025 23:59:59 +0000 asID: 6167 IP address blocks: 139.56.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 08 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:d3:41:be:03:84:e6:71:79:cd:6f:9e:c6:07:0d:df:05:5e:c3:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 18 15:22:18 2025 GMT Not After : Apr 22 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2f:d5:75:c0:74:61:73:4c:0f:c5:bd:d9:2e: 38:76:f0:eb:e1:cd:21:81:42:03:45:7f:e1:d1:02: df:4c:21:bd:a2:87:59:f4:7c:55:66:a1:ea:b1:40: b8:31:b6:12:39:55:5b:42:51:5f:35:9f:7c:d6:5b: fa:e4:1b:9b:c2:97:bc:77:25:05:e2:94:66:2d:b4: 7b:75:7c:65:3a:08:55:b6:19:9e:63:d4:a2:21:63: 0e:7c:2c:5f:bc:6d:68:65:55:7c:26:17:2d:2a:28: 5f:45:cf:a5:ea:09:5a:b2:d1:74:45:2b:7d:4a:c3: cc:25:a8:53:f9:b0:c1:40:40:fb:9f:d8:ea:9b:0b: a4:8b:86:ee:c1:06:76:70:96:ed:9d:41:00:69:31: 62:d1:b7:64:e2:a5:a8:ad:15:de:cf:91:7d:62:1d: f5:ca:b8:78:03:3b:fb:ed:e9:22:08:6d:72:a7:07: 01:39:96:98:ea:94:45:66:e0:31:24:2e:3e:95:de: 08:f0:f6:a8:86:0d:06:22:1f:83:e9:c7:07:ad:05: a3:77:26:1f:ef:6b:ec:33:f3:b4:b4:ff:40:f5:d3: 8b:ff:0b:90:b1:6f:11:76:6c:69:f2:52:26:2d:6e: 56:37:53:9a:12:b2:39:e5:09:87:bc:03:f9:10:e4: 07:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C0:4B:66:8D:A2:E7:1B:D0:DE:20:4F:04:32:24:11:73:3D:3D:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/991a7270-70c3-4177-b80a-03d48b249d96.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:ea:f1:fb:ff:e3:c7:86:97:47:73:7c:94:99:f3:f3:23:fa: 58:f3:71:f4:b4:e3:9f:78:ee:05:f3:21:14:1c:df:97:ab:3a: 27:39:a9:c1:37:f9:87:dc:cd:f9:90:01:cb:1a:ab:c1:4b:e2: 77:8c:09:14:af:94:8e:37:02:b4:90:b3:73:68:0d:91:e5:42: 7b:07:67:e7:14:59:54:b4:52:07:4f:a6:e8:ca:fa:46:52:e2: 2e:b2:10:f8:2c:25:a7:60:f4:f2:bd:9a:bd:07:79:22:e9:c5: d3:73:c8:bd:41:d2:cb:62:53:98:41:87:53:ab:aa:fa:4d:f3: e4:37:22:76:d1:6e:60:ac:52:7b:02:03:0d:88:cd:2f:3e:2e: 70:17:a5:ba:ee:19:6e:bb:0c:3f:31:83:c5:16:94:16:5a:a7: 50:3c:4e:2a:49:61:69:d0:a5:16:5e:e1:d8:b1:68:74:bc:94: 45:00:2e:bb:ec:87:6a:66:77:24:39:8a:e1:e4:22:7c:5b:a9: 87:7b:40:3f:4d:f6:1b:0c:3d:b8:8e:b7:18:ac:4c:d7:f6:19: 93:a1:6c:4d:b4:6c:76:86:de:19:c1:ee:95:2b:0f:2b:0a:86: 71:94:2b:2a:7c:47:0b:b8:27:e6:d4:d2:5b:94:ce:21:2a:1a: e2:8b:5e:b9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUS9NBvgOE5nF5zW+exgcN3wVewzAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE4MTUyMjE4WhcNMjUwNDIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MTBjNzVjMWNjZTY0MzY1NTEzZDQ2NmFlNjlkN2JiZjU4 OWNmMDU0M2Q4YmRiNjIxMGM0Yjc5OGU0YjMwOTQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzL9V1wHRhc0wPxb3ZLjh28OvhzSGBQgNFf+HRAt9MIb2i h1n0fFVmoeqxQLgxthI5VVtCUV81n3zWW/rkG5vCl7x3JQXilGYttHt1fGU6CFW2 GZ5j1KIhYw58LF+8bWhlVXwmFy0qKF9Fz6XqCVqy0XRFK31Kw8wlqFP5sMFAQPuf 2OqbC6SLhu7BBnZwlu2dQQBpMWLRt2TipaitFd7PkX1iHfXKuHgDO/vt6SIIbXKn BwE5lpjqlEVm4DEkLj6V3gjw9qiGDQYiH4PpxwetBaN3Jh/va+wz87S0/0D104v/ C5CxbxF2bGnyUiYtblY3U5oSsjnlCYe8A/kQ5AcFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/cBLZo2i5xvQ3iBPBDIkEXM9PZwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5MWE3MjcwLTcwYzMtNDE3Ny1iODBhLTAzZDQ4YjI0OWQ5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCLODANBgkqhkiG9w0BAQsFAAOCAQEAQOrx+//jx4aXR3N8lJnz8yP6WPNx 9LTjn3juBfMhFBzfl6s6JzmpwTf5h9zN+ZAByxqrwUvid4wJFK+UjjcCtJCzc2gN keVCewdn5xRZVLRSB0+m6Mr6RlLiLrIQ+Cwlp2D08r2avQd5IunF03PIvUHSy2JT mEGHU6uq+k3z5DcidtFuYKxSewIDDYjNLz4ucBeluu4ZbrsMPzGDxRaUFlqnUDxO KklhadClFl7h2LFodLyURQAuu+yHamZ3JDmK4eQifFuph3tAP032Gww9uI63GKxM 1/YZk6FsTbRsdobeGcHulSsPKwqGcZQrKnxHC7gn5tTSW5TOISoa4oteuQ== -----END CERTIFICATE-----Generated at Mon Apr 7 00:18:01 2025 by rpki-client