$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d95f8068-47af-46c4-a4b4-517faacf64b7.roa File: d95f8068-47af-46c4-a4b4-517faacf64b7.roa (raw, json) Hash identifier: mEiSZfcy0Jjum4oZ1nzw/c//KO4EJcZuukcXJIdX5CM= Subject key identifier: 2D:34:4B:B8:E6:5F:09:B2:75:87:AD:D7:9A:18:AA:DA:CC:0B:74:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4756407D1CA05D4892FFBA864C0884BCF4BF3334 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d95f8068-47af-46c4-a4b4-517faacf64b7.roa Signing time: Tue 20 May 2025 00:10:27 +0000 ROA not before: Tue 20 May 2025 00:10:27 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 123.200.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:56:40:7d:1c:a0:5d:48:92:ff:ba:86:4c:08:84:bc:f4:bf:33:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:10:27 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=da00e408ca255f34e287fd32288fb9e4457b8d16e223e62ebe42069e29af47e7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:61:02:b5:9e:50:c1:91:86:cc:98:9a:ad:06: 33:65:ee:e0:a3:1a:eb:81:60:6c:0d:34:47:af:6a: c9:4f:bc:27:24:5b:df:80:8e:1a:0c:c3:d4:54:32: 19:a3:5e:df:33:a5:13:a9:39:07:54:95:be:60:0a: 7a:fb:3e:b9:05:4b:71:a8:2f:bf:b4:98:7c:62:da: 3c:21:a6:53:26:7a:ed:31:ca:47:a9:99:8e:71:4b: ed:c2:f5:29:c6:14:f4:ae:26:72:9f:b5:08:00:8f: 9f:5b:72:59:4e:b0:e6:01:17:18:61:fb:76:e3:23: b4:57:9f:f1:f1:0d:43:92:51:7c:3a:2b:5f:89:dc: d9:d6:8e:b9:8b:e3:3b:93:ec:ac:2f:09:3d:24:3c: 15:31:61:86:85:65:01:f9:72:20:b4:b1:ac:9f:21: 83:d3:cb:be:67:06:80:a1:fb:64:f1:e5:bf:51:5b: e4:c7:f1:8d:2c:20:55:55:05:e0:dc:32:b8:c1:15: d5:f0:3d:06:ee:63:8d:bf:be:3b:fe:c1:64:65:25: 56:59:04:96:4a:22:00:0e:e0:32:53:3d:c2:2f:ee: 3d:05:85:3c:84:c8:11:90:0e:73:03:11:ac:cb:9c: 82:ce:8f:37:9e:f3:9d:d5:84:b6:df:69:7d:6b:e1: 34:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:34:4B:B8:E6:5F:09:B2:75:87:AD:D7:9A:18:AA:DA:CC:0B:74:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d95f8068-47af-46c4-a4b4-517faacf64b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.200.244.0/22 Signature Algorithm: sha256WithRSAEncryption 15:4a:69:bf:50:48:f0:68:47:21:06:bc:13:5c:48:eb:84:de: 68:40:1d:58:68:5a:78:99:14:47:b4:03:00:51:56:ad:f3:ae: cf:5c:c5:74:56:68:6f:04:32:db:88:fc:5f:a1:b9:44:cc:10: 9e:16:d9:f6:28:a9:c2:5d:3f:4c:bb:d8:d0:4d:7e:d7:fb:eb: 76:ef:5c:b1:fb:02:71:5a:c1:ca:29:05:ab:1c:10:fe:44:85: 88:a2:6a:63:4e:61:35:4d:e5:53:a1:0e:ca:6c:93:cc:ed:dc: 99:5f:c3:e2:79:09:f7:0e:3c:df:13:ab:e0:77:4f:97:31:79: c5:75:9a:88:50:b1:56:6d:e6:46:00:8c:37:c1:0b:e8:02:c6: d8:50:e6:cb:0a:8c:d5:f4:d0:ae:3c:e9:dc:c3:2b:af:19:5f: bf:f0:95:4e:55:fb:a4:bc:aa:fb:06:de:ce:5a:7e:d0:d9:86: 92:a6:a6:be:af:40:a8:8e:60:bb:6e:e3:02:30:c2:ce:62:c0: 3d:1c:44:d2:0d:1f:61:b4:d6:45:87:7c:23:89:9f:f0:5f:9d: eb:2c:ec:b8:8f:8c:9d:b6:56:05:d6:4b:2f:17:c0:84:b8:f5: b9:c5:d2:22:ad:0a:84:44:d6:fd:f0:e7:01:6f:d7:d8:70:70: a5:c7:a3:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR1ZAfRygXUiS/7qGTAiEvPS/MzQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAxMDI3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTAwZTQwOGNhMjU1ZjM0ZTI4N2ZkMzIyODhmYjllNDQ1 N2I4ZDE2ZTIyM2U2MmViZTQyMDY5ZTI5YWY0N2U3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqYQK1nlDBkYbMmJqtBjNl7uCjGuuBYGwNNEevaslPvCck W9+AjhoMw9RUMhmjXt8zpROpOQdUlb5gCnr7PrkFS3GoL7+0mHxi2jwhplMmeu0x ykepmY5xS+3C9SnGFPSuJnKftQgAj59bcllOsOYBFxhh+3bjI7RXn/HxDUOSUXw6 K1+J3NnWjrmL4zuT7KwvCT0kPBUxYYaFZQH5ciC0sayfIYPTy75nBoCh+2Tx5b9R W+TH8Y0sIFVVBeDcMrjBFdXwPQbuY42/vjv+wWRlJVZZBJZKIgAO4DJTPcIv7j0F hTyEyBGQDnMDEazLnILOjzee853VhLbfaX1r4TSxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULTRLuOZfCbJ1h63Xmhiq2swLdN0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5NWY4MDY4LTQ3YWYtNDZjNC1hNGI0LTUxN2ZhYWNmNjRiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJ7yPQwDQYJKoZIhvcNAQELBQADggEBABVKab9QSPBoRyEGvBNcSOuE3mhA HVhoWniZFEe0AwBRVq3zrs9cxXRWaG8EMtuI/F+huUTMEJ4W2fYoqcJdP0y72NBN ftf763bvXLH7AnFawcopBascEP5EhYiiamNOYTVN5VOhDspsk8zt3Jlfw+J5CfcO PN8Tq+B3T5cxecV1mohQsVZt5kYAjDfBC+gCxthQ5ssKjNX00K486dzDK68ZX7/w lU5V+6S8qvsG3s5aftDZhpKmpr6vQKiOYLtu4wIwws5iwD0cRNINH2G01kWHfCOJ n/Bfness7LiPjJ22VgXWSy8XwIS49bnF0iKtCoRE1v3w5wFv19hwcKXHo1o= -----END CERTIFICATE-----Generated at Sun Jun 1 04:51:33 2025 by rpki-client