$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59d16c9b-cf90-430d-b831-1aafba4ba7a8.roa File: 59d16c9b-cf90-430d-b831-1aafba4ba7a8.roa (raw, json) Hash identifier: vr57y/HQHd7P8zK1Sg0LzuinGlEAUHsdlZKcw3YHazI= Subject key identifier: 43:86:2E:73:FB:C5:27:3E:6A:CC:1C:3F:46:3E:43:D2:AA:59:0A:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F996BB39F64898457CAAEBD8C4F65747B614EF4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59d16c9b-cf90-430d-b831-1aafba4ba7a8.roa Signing time: Mon 28 Apr 2025 15:00:15 +0000 ROA not before: Mon 28 Apr 2025 15:00:15 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 103.13.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:99:6b:b3:9f:64:89:84:57:ca:ae:bd:8c:4f:65:74:7b:61:4e:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:00:15 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=056541dda6955e2ea10ee4ff2fa79266a3bc130248001030f358e13bdf8885aa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:65:fa:5c:2b:45:a5:f9:fe:c6:ed:67:30:7d: 2b:10:e0:df:8f:1d:1b:6d:21:3e:96:ce:51:8b:4b: b7:df:d2:79:6f:80:e4:b3:a5:be:bf:23:a8:53:e6: 63:d1:65:f3:74:0f:87:dd:c1:5a:9b:76:14:8a:c3: 97:bd:f0:8a:e1:cc:58:c2:f5:71:90:83:1a:80:b3: b0:24:1a:a2:ae:bc:7a:01:3b:92:41:08:3a:8e:d3: 3d:16:5b:8c:c5:ce:d9:df:1a:19:63:86:bb:b3:82: 9f:17:86:94:3f:00:7b:2f:6b:e6:73:5a:52:7a:a6: 1a:a1:11:38:c6:f7:cc:a1:30:4e:8e:ed:13:ac:2f: 46:f6:c3:c4:60:64:44:14:c9:6f:38:bf:31:34:0e: b9:b7:99:12:d6:e8:6d:22:01:f8:d7:90:bb:a4:95: 32:b0:21:13:02:b8:30:33:a8:96:ec:a8:6e:ce:81: 64:d6:aa:45:2e:01:49:98:5a:f3:c6:53:88:2a:0c: 40:31:ac:3d:96:49:82:71:4c:93:12:6e:94:24:dc: 59:33:91:a7:93:8c:a3:5f:75:6e:d6:b4:0a:97:02: 6e:1e:65:ad:84:8e:ce:05:3e:44:40:6d:ef:dc:3c: 29:c9:a5:9c:0a:83:1c:44:4e:82:6b:a5:6c:73:c6: af:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:86:2E:73:FB:C5:27:3E:6A:CC:1C:3F:46:3E:43:D2:AA:59:0A:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59d16c9b-cf90-430d-b831-1aafba4ba7a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.190.0/24 Signature Algorithm: sha256WithRSAEncryption d2:91:a1:ae:e8:af:f1:ff:6f:b8:6c:ef:bd:8f:0f:56:3c:78: 0a:4e:1a:15:89:d8:4e:8e:f7:1e:68:4f:a7:9e:7d:07:39:c0: a0:3c:68:95:16:ca:3d:46:ba:4e:05:e9:27:86:c1:78:e1:84: de:00:5f:e9:d5:d2:cf:db:88:ca:6e:f4:eb:cb:08:fd:e5:2c: 51:e2:25:de:27:81:74:66:80:19:bd:e6:4e:d4:56:62:4b:c6: 2b:ac:2e:01:cb:00:ce:b7:56:21:bc:4e:86:25:91:bd:de:3f: 8e:0e:30:66:d1:39:1e:34:cf:2d:5f:5a:70:ed:70:3a:16:9c: eb:72:1a:a0:2b:7f:b9:f6:e9:19:d5:28:77:33:7c:87:f6:b5: e6:4f:a1:fd:1d:36:78:ca:cf:87:ec:80:f6:d4:0c:e0:14:ff: f7:fd:53:be:b7:59:18:04:8b:77:fb:ce:db:6f:dc:ee:09:3f: f3:82:a8:94:44:53:46:73:cb:77:0c:69:bd:07:5d:0f:1a:de: fb:8c:ac:13:e8:e4:ce:ed:d6:7e:c1:07:76:d6:4f:d8:db:f9: 1c:e6:e5:ff:9b:57:c8:58:f2:6b:07:ab:a5:dd:97:66:bb:ae: 0e:8d:98:15:51:59:9f:16:16:e3:f2:fc:79:ef:09:ae:8a:80: 1f:fc:3d:af -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT5lrs59kiYRXyq69jE9ldHthTvQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUwMDE1WhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNTY1NDFkZGE2OTU1ZTJlYTEwZWU0ZmYyZmE3OTI2NmEz YmMxMzAyNDgwMDEwMzBmMzU4ZTEzYmRmODg4NWFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiZfpcK0Wl+f7G7WcwfSsQ4N+PHRttIT6WzlGLS7ff0nlv gOSzpb6/I6hT5mPRZfN0D4fdwVqbdhSKw5e98IrhzFjC9XGQgxqAs7AkGqKuvHoB O5JBCDqO0z0WW4zFztnfGhljhruzgp8XhpQ/AHsva+ZzWlJ6phqhETjG98yhME6O 7ROsL0b2w8RgZEQUyW84vzE0Drm3mRLW6G0iAfjXkLuklTKwIRMCuDAzqJbsqG7O gWTWqkUuAUmYWvPGU4gqDEAxrD2WSYJxTJMSbpQk3FkzkaeTjKNfdW7WtAqXAm4e Za2Ejs4FPkRAbe/cPCnJpZwKgxxEToJrpWxzxq+bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQ4Yuc/vFJz5qzBw/Rj5D0qpZCoEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5ZDE2YzliLWNmOTAtNDMwZC1iODMxLTFhYWZiYTRiYTdhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnDb4wDQYJKoZIhvcNAQELBQADggEBANKRoa7or/H/b7hs772PD1Y8eApO GhWJ2E6O9x5oT6eefQc5wKA8aJUWyj1Guk4F6SeGwXjhhN4AX+nV0s/biMpu9OvL CP3lLFHiJd4ngXRmgBm95k7UVmJLxiusLgHLAM63ViG8ToYlkb3eP44OMGbROR40 zy1fWnDtcDoWnOtyGqArf7n26RnVKHczfIf2teZPof0dNnjKz4fsgPbUDOAU//f9 U763WRgEi3f7zttv3O4JP/OCqJREU0Zzy3cMab0HXQ8a3vuMrBPo5M7t1n7BB3bW T9jb+Rzm5f+bV8hY8msHq6Xdl2a7rg6NmBVRWZ8WFuPy/HnvCa6KgB/8Pa8= -----END CERTIFICATE-----Generated at Tue May 6 03:59:19 2025 by rpki-client