$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/41ec2556-a73f-49cc-9d4f-0868883ecfc3.roa File: 41ec2556-a73f-49cc-9d4f-0868883ecfc3.roa (raw, json) Hash identifier: TxW9LZRg6bsPDCKQ90tvekOoxzGhVP0yLHwuSixM0s4= Subject key identifier: 6B:2A:5A:15:64:E1:20:3C:FE:6A:EB:18:AC:BD:96:65:34:CE:43:32 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 2DD195231B184795BCB6BDB0E6040039050293B3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/41ec2556-a73f-49cc-9d4f-0868883ecfc3.roa Signing time: Fri 09 May 2025 00:40:06 +0000 ROA not before: Fri 09 May 2025 00:40:06 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.201.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:d1:95:23:1b:18:47:95:bc:b6:bd:b0:e6:04:00:39:05:02:93:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 9 00:40:06 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=c4361701c1598e8eef9ae8e05be650802e6e45ea96f5fc8b491c9b61161c421d, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f9:5a:50:be:2b:fd:3d:04:84:2a:94:ed:78: 0d:93:ed:9a:97:84:c0:a6:09:dc:03:8d:db:0f:3d: 3c:98:b9:31:6f:6d:bc:a4:f1:c8:24:1c:b9:41:cf: 95:2b:4a:85:7f:49:bf:d8:f9:e9:66:21:f8:55:37: a8:25:47:8b:a1:34:80:a1:da:fd:67:81:79:96:68: f0:72:62:00:45:ea:8b:81:44:6b:d0:2c:0e:bc:70: f2:e4:fb:bc:c3:ce:0d:ad:ba:1e:16:c2:d3:b9:97: f7:bd:7a:07:59:bc:1b:c6:79:73:e8:f1:fe:2e:b1: 08:e7:df:a5:e8:e6:68:39:42:6c:f7:7f:81:b1:34: 15:47:15:83:af:f8:fb:22:8c:5b:89:9c:c1:d0:71: d5:07:29:30:68:d9:1b:6b:3f:11:a5:a0:62:62:21: c1:73:e8:fa:e2:d2:5a:d6:a5:62:1d:f6:73:9e:5e: 8b:14:2b:7e:a8:2f:94:f2:a6:6b:b4:aa:88:ff:70: d6:74:be:a0:f6:00:c7:77:c9:65:cd:8c:88:f2:7c: 0d:2d:fa:d3:88:c9:9f:a5:d5:4c:22:e3:ad:4d:05: 78:dd:ee:28:d7:6b:39:13:e3:4a:16:6e:08:bf:80: 7b:cc:1a:77:cf:b1:44:56:2a:5d:d9:d6:29:27:a7: 4d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:2A:5A:15:64:E1:20:3C:FE:6A:EB:18:AC:BD:96:65:34:CE:43:32 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/41ec2556-a73f-49cc-9d4f-0868883ecfc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.201.231.0/24 Signature Algorithm: sha256WithRSAEncryption 08:fb:7b:b4:65:83:fb:a6:08:36:5b:cb:7c:f1:9d:6e:a0:13: 6b:c2:f0:de:64:ed:61:6b:29:c2:2f:fc:15:e1:67:98:7a:5b: 92:6e:91:b1:67:52:93:b2:f6:37:6b:54:67:6b:53:2d:2c:b9: 87:8d:62:41:dc:81:9c:ae:96:74:99:4c:f5:b2:46:0b:5e:fa: 5d:46:16:f9:97:88:5d:ed:06:2a:c4:5f:55:93:e0:43:24:24: 7a:44:9c:8b:4f:e1:bf:98:64:4c:d3:aa:57:cf:36:5f:c2:a4: ad:e7:a7:47:4e:b5:1a:5e:c8:31:fc:4c:91:54:3e:61:13:99: a8:be:2a:be:a7:3b:b2:9a:8f:4a:5f:e4:dd:b4:8e:74:f9:fe: 04:e8:e7:ea:ab:20:cd:90:a0:cb:85:7a:21:78:7b:09:35:c1: 4d:ac:ac:cc:fe:82:a6:22:ba:d8:11:11:c1:f4:6b:a5:c3:2c: 0d:b7:6c:94:c6:f4:f3:98:a6:90:58:09:d4:db:5e:7f:7a:54: 21:cd:5e:25:40:7e:da:7a:b3:fe:92:fc:22:3e:30:8a:07:da: 28:5e:0d:1d:f7:d0:f8:4b:7b:ac:0a:79:8f:54:24:37:90:46: 44:f7:1b:ed:83:2c:cd:6f:48:64:e2:bb:ca:ed:95:c2:f0:98: db:7e:dc:18 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULdGVIxsYR5W8tr2w5gQAOQUCk7MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTA5MDA0MDA2WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDM2MTcwMWMxNTk4ZThlZWY5YWU4ZTA1YmU2NTA4MDJl NmU0NWVhOTZmNWZjOGI0OTFjOWI2MTE2MWM0MjFkMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd+VpQviv9PQSEKpTteA2T7ZqXhMCmCdwDjdsPPTyYuTFv bbyk8cgkHLlBz5UrSoV/Sb/Y+elmIfhVN6glR4uhNICh2v1ngXmWaPByYgBF6ouB RGvQLA68cPLk+7zDzg2tuh4WwtO5l/e9egdZvBvGeXPo8f4usQjn36Xo5mg5Qmz3 f4GxNBVHFYOv+PsijFuJnMHQcdUHKTBo2RtrPxGloGJiIcFz6Pri0lrWpWId9nOe XosUK36oL5Typmu0qoj/cNZ0vqD2AMd3yWXNjIjyfA0t+tOIyZ+l1Uwi461NBXjd 7ijXazkT40oWbgi/gHvMGnfPsURWKl3Z1iknp005AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaypaFWThIDz+ausYrL2WZTTOQzIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQxZWMyNTU2LWE3M2YtNDljYy05ZDRmLTA4Njg4ODNlY2ZjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAANyecwDQYJKoZIhvcNAQELBQADggEBAAj7e7Rlg/umCDZby3zxnW6gE2vC 8N5k7WFrKcIv/BXhZ5h6W5JukbFnUpOy9jdrVGdrUy0suYeNYkHcgZyulnSZTPWy Rgte+l1GFvmXiF3tBirEX1WT4EMkJHpEnItP4b+YZEzTqlfPNl/CpK3np0dOtRpe yDH8TJFUPmETmai+Kr6nO7Kaj0pf5N20jnT5/gTo5+qrIM2QoMuFeiF4ewk1wU2s rMz+gqYiutgREcH0a6XDLA23bJTG9POYppBYCdTbXn96VCHNXiVAftp6s/6S/CI+ MIoH2iheDR330PhLe6wKeY9UJDeQRkT3G+2DLM1vSGTiu8rtlcLwmNt+3Bg= -----END CERTIFICATE-----Generated at Fri May 9 18:09:52 2025 by rpki-client