$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/375a6ca2-770f-45e1-a8af-10c7303818a0.roa File: 375a6ca2-770f-45e1-a8af-10c7303818a0.roa (raw, json) Hash identifier: z4bgaUchfsCQspKgrj7J/LUt8UI10fWjJfPR1/YJMHA= Subject key identifier: EB:8D:ED:B9:DB:8F:CD:4F:C7:E8:D2:E6:B0:E2:4A:92:85:EB:C0:2B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08CCFE5B7354E174D5F9DB67910A705E7AB68711 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/375a6ca2-770f-45e1-a8af-10c7303818a0.roa Signing time: Mon 05 May 2025 15:00:31 +0000 ROA not before: Mon 05 May 2025 15:00:31 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 163.119.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:cc:fe:5b:73:54:e1:74:d5:f9:db:67:91:0a:70:5e:7a:b6:87:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:00:31 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=8131433b11918e8e9e3d2fbf33f9c090fc6a20f5169808daaa8a65b8fbaaa43f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:13:5b:b8:f3:e0:ce:89:47:ac:73:96:61:2d: 20:a6:f9:d2:f9:f9:2d:b0:4a:45:4b:57:f4:49:2f: b7:87:76:74:71:e5:a0:7a:1d:8b:4b:ec:a2:28:5d: be:52:da:63:13:71:36:7b:4d:5a:d5:c0:c3:ab:33: 65:67:7f:80:cd:a9:b4:5f:10:1a:e0:21:cb:9e:46: ad:74:18:ac:25:35:3d:24:06:16:9e:ab:0c:f1:d9: 92:1e:40:a4:64:e3:c6:41:26:9d:a6:7f:a7:34:83: fd:f5:92:6e:60:02:ca:1d:29:53:85:0e:d5:f3:1b: 66:13:5d:b2:c5:68:c9:1f:da:24:1c:fc:33:88:81: 3e:9a:f9:7d:1e:a2:cc:39:16:6f:fe:b9:99:9e:03: 78:cc:5a:41:8b:24:e9:89:2b:cc:af:88:ca:8b:dd: f8:74:84:3b:ba:84:21:c9:cf:5e:43:f7:75:87:44: 43:db:8b:5e:58:2c:98:42:65:02:6d:55:b0:e0:aa: 79:5e:89:39:e9:f3:d7:16:4c:70:64:b7:c9:68:84: 68:bf:a6:9d:ec:7b:a7:e4:99:16:68:d8:17:76:ae: 22:97:a2:33:4c:86:05:1f:99:6d:4e:e3:fb:8c:8f: 17:3c:2a:1d:4e:0a:6e:4a:4b:d4:7e:fb:f0:3f:07: 44:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:8D:ED:B9:DB:8F:CD:4F:C7:E8:D2:E6:B0:E2:4A:92:85:EB:C0:2B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/375a6ca2-770f-45e1-a8af-10c7303818a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.119.128.0/17 Signature Algorithm: sha256WithRSAEncryption 7c:cb:b4:e2:e3:64:cd:c3:ac:e6:3d:2a:b5:ca:91:d0:57:84: 85:0b:65:78:e9:51:2b:5a:a6:ef:36:1c:d8:85:e9:43:1b:44: 8f:8a:b7:8a:a3:c0:23:fe:de:11:da:bf:55:89:5a:80:af:22: da:40:d8:1b:be:e3:59:9c:c7:e3:ae:79:5b:1e:3a:4b:49:aa: 28:47:aa:87:32:a1:9b:e9:dc:00:59:72:ed:e1:b6:41:48:cd: bb:35:62:34:ab:6e:47:0c:3d:03:e2:ea:bd:d9:36:cf:fb:8f: 65:f8:27:03:ea:4c:dd:58:0f:64:52:72:64:79:bb:d6:04:16: 7a:9a:68:c9:b8:9e:86:09:b7:56:44:e9:6f:d4:55:6c:b0:bd: db:c3:57:c2:9d:14:8e:93:13:65:fb:8d:3b:55:b8:26:ec:c4: 8a:e9:26:ab:a4:b1:7f:bf:53:dd:0d:cf:35:2a:a2:23:45:95: df:bb:c8:73:9f:d3:f5:69:de:2b:2c:36:71:a2:c7:6d:f3:a3: 02:ae:8a:3b:31:06:86:ce:4f:35:5e:a7:94:85:53:b7:52:85: 19:1f:46:27:65:98:ff:ce:8e:c4:c4:aa:ee:f2:11:0e:76:e4: 15:cd:d4:ee:dd:fa:b8:ee:c3:83:56:98:3e:e7:ca:5f:26:ed: 5c:f3:17:1e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCMz+W3NU4XTV+dtnkQpwXnq2hxEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUwMDMxWhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTMxNDMzYjExOTE4ZThlOWUzZDJmYmYzM2Y5YzA5MGZj NmEyMGY1MTY5ODA4ZGFhYThhNjViOGZiYWFhNDNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNE1u48+DOiUesc5ZhLSCm+dL5+S2wSkVLV/RJL7eHdnRx 5aB6HYtL7KIoXb5S2mMTcTZ7TVrVwMOrM2Vnf4DNqbRfEBrgIcueRq10GKwlNT0k Bhaeqwzx2ZIeQKRk48ZBJp2mf6c0g/31km5gAsodKVOFDtXzG2YTXbLFaMkf2iQc /DOIgT6a+X0eosw5Fm/+uZmeA3jMWkGLJOmJK8yviMqL3fh0hDu6hCHJz15D93WH REPbi15YLJhCZQJtVbDgqnleiTnp89cWTHBkt8lohGi/pp3se6fkmRZo2Bd2riKX ojNMhgUfmW1O4/uMjxc8Kh1OCm5KS9R++/A/B0QPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU643tuduPzU/H6NLmsOJKkoXrwCswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3NWE2Y2EyLTc3MGYtNDVlMS1hOGFmLTEwYzczMDM4MThhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAejd4AwDQYJKoZIhvcNAQELBQADggEBAHzLtOLjZM3DrOY9KrXKkdBXhIUL ZXjpUStapu82HNiF6UMbRI+Kt4qjwCP+3hHav1WJWoCvItpA2Bu+41mcx+OueVse OktJqihHqocyoZvp3ABZcu3htkFIzbs1YjSrbkcMPQPi6r3ZNs/7j2X4JwPqTN1Y D2RScmR5u9YEFnqaaMm4noYJt1ZE6W/UVWywvdvDV8KdFI6TE2X7jTtVuCbsxIrp JquksX+/U90NzzUqoiNFld+7yHOf0/Vp3issNnGix23zowKuijsxBobOTzVep5SF U7dShRkfRidlmP/OjsTEqu7yEQ525BXN1O7d+rjuw4NWmD7nyl8m7VzzFx4= -----END CERTIFICATE-----Generated at Fri May 9 10:14:48 2025 by rpki-client