$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b7d5eb1-ece9-4a7c-a1c6-3b763b4a12c7.roa File: 9b7d5eb1-ece9-4a7c-a1c6-3b763b4a12c7.roa (raw, json) Hash identifier: sDhHjke1bfFj+0lLSSigGLazStFQj4oUFC82fCRCSiw= Subject key identifier: DF:0E:3A:5C:B8:74:B1:0E:56:62:89:F3:E9:6B:16:50:ED:14:A5:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F4BD0ECCF8BE5E56788036A3A1AA4BE326444BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b7d5eb1-ece9-4a7c-a1c6-3b763b4a12c7.roa Signing time: Mon 19 May 2025 15:31:11 +0000 ROA not before: Mon 19 May 2025 15:31:11 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:4b:d0:ec:cf:8b:e5:e5:67:88:03:6a:3a:1a:a4:be:32:64:44:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 15:31:11 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=17aa303f2657cddf0eed86ad98f4f82c187b4ba26e6f8b5a1cead8076bec20de, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ba:14:b8:2a:32:cb:8f:ab:2e:f6:5b:7a:db: 0c:b0:d5:63:b3:15:ab:e2:fc:bd:66:e2:42:cb:42: 7a:27:80:eb:15:78:61:e4:a0:b1:1f:e6:bc:32:b5: 12:04:59:7a:2f:93:7e:d5:81:ff:79:8d:fe:37:53: 7c:3a:71:60:83:10:7c:40:38:fc:f1:ab:c7:24:04: ec:e8:53:3e:66:36:36:d2:5e:da:0a:81:2b:80:42: 64:7e:8c:ca:1b:75:82:f6:d2:e9:51:60:ec:f4:11: 10:e2:b8:7a:20:2e:cf:ca:5b:33:a7:6b:c5:8b:be: a0:89:07:19:5a:7f:df:47:3f:d5:59:d3:53:20:4e: 75:a4:a7:98:12:82:68:54:fb:4e:1d:13:ca:85:40: 35:70:0c:8c:a4:80:66:cf:c4:93:7d:02:7d:ca:e8: c6:f3:fe:62:9a:e7:04:6b:93:31:ac:3f:07:47:15: 64:34:4c:95:4e:52:41:cd:32:11:8d:e5:a0:91:4c: f4:8c:35:34:24:68:56:e1:3d:1e:a1:86:5c:4f:4d: c7:6a:1f:bc:b7:d1:eb:db:fa:18:ea:75:aa:cc:c5: bb:6e:bb:73:25:60:6a:ca:36:f1:a4:28:eb:5a:dc: 84:a2:bb:0f:4f:90:0c:b8:fb:51:e2:4b:cb:77:6b: 87:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:0E:3A:5C:B8:74:B1:0E:56:62:89:F3:E9:6B:16:50:ED:14:A5:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b7d5eb1-ece9-4a7c-a1c6-3b763b4a12c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.186.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:cb:f7:78:9b:94:40:c5:89:f7:0f:a4:88:f0:cf:f0:b8:c1: 52:64:e2:3f:52:dc:91:48:b5:b2:79:19:13:ff:24:22:31:bc: 4a:08:0e:1c:97:eb:79:93:67:a3:8a:5e:35:bd:61:4a:e6:2e: 7b:f6:be:aa:16:73:06:ac:ce:48:95:6a:04:7f:de:9f:63:76: b7:44:42:2c:fa:67:65:2d:ee:3f:34:08:b4:2d:c4:66:3a:2c: b0:fa:b5:f5:0a:19:30:d9:b2:f0:b6:66:ad:1b:ae:40:11:7e: 57:cd:48:9d:da:8c:61:c9:7e:47:10:2f:fa:18:59:d1:98:b1: 59:0d:ce:1e:32:3b:b7:36:ee:65:78:63:33:5c:13:3b:af:35: 74:fa:8b:5b:aa:eb:dd:87:38:f5:8e:67:1d:37:b8:38:6f:87: 82:e2:a6:46:5c:fa:00:9f:ee:b7:39:bd:c4:ff:fc:05:fe:2d: d0:c0:52:d6:ef:03:4b:d2:69:cd:3c:50:37:f0:81:f2:34:97: f2:7a:e7:b9:98:ce:37:19:b5:94:70:7a:a8:b0:e6:ba:cb:9d: e8:1f:36:5d:74:af:ab:8a:39:96:83:c1:41:c5:47:82:5b:37: 1e:2a:b6:55:df:ac:fc:98:50:23:fe:6d:96:ef:99:61:a5:02: ba:6b:16:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX0vQ7M+L5eVniANqOhqkvjJkRLwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTUzMTExWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2FhMzAzZjI2NTdjZGRmMGVlZDg2YWQ5OGY0ZjgyYzE4 N2I0YmEyNmU2ZjhiNWExY2VhZDgwNzZiZWMyMGRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTuhS4KjLLj6su9lt62wyw1WOzFavi/L1m4kLLQnongOsV eGHkoLEf5rwytRIEWXovk37Vgf95jf43U3w6cWCDEHxAOPzxq8ckBOzoUz5mNjbS XtoKgSuAQmR+jMobdYL20ulRYOz0ERDiuHogLs/KWzOna8WLvqCJBxlaf99HP9VZ 01MgTnWkp5gSgmhU+04dE8qFQDVwDIykgGbPxJN9An3K6Mbz/mKa5wRrkzGsPwdH FWQ0TJVOUkHNMhGN5aCRTPSMNTQkaFbhPR6hhlxPTcdqH7y30evb+hjqdarMxbtu u3MlYGrKNvGkKOta3ISiuw9PkAy4+1HiS8t3a4cvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3w46XLh0sQ5WYonz6WsWUO0UpREwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzliN2Q1ZWIxLWVjZTktNGE3Yy1hMWM2LTNiNzYzYjRhMTJjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAByOLowDQYJKoZIhvcNAQELBQADggEBAC7L93iblEDFifcPpIjwz/C4wVJk 4j9S3JFItbJ5GRP/JCIxvEoIDhyX63mTZ6OKXjW9YUrmLnv2vqoWcwaszkiVagR/ 3p9jdrdEQiz6Z2Ut7j80CLQtxGY6LLD6tfUKGTDZsvC2Zq0brkARflfNSJ3ajGHJ fkcQL/oYWdGYsVkNzh4yO7c27mV4YzNcEzuvNXT6i1uq692HOPWOZx03uDhvh4Li pkZc+gCf7rc5vcT//AX+LdDAUtbvA0vSac08UDfwgfI0l/J657mYzjcZtZRweqiw 5rrLnegfNl10r6uKOZaDwUHFR4JbNx4qtlXfrPyYUCP+bZbvmWGlArprFsE= -----END CERTIFICATE-----Generated at Sun Jun 1 04:21:45 2025 by rpki-client