$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73d38cbc-8e57-413b-a607-243ebf7b63e0.roa File: 73d38cbc-8e57-413b-a607-243ebf7b63e0.roa (raw, json) Hash identifier: V2gyJyioG1yQ1/7fmVNVlCS/b+eFMWVY+PrhVzVUrAE= Subject key identifier: 1E:05:50:47:A6:3B:D2:79:1E:99:F9:BB:29:8C:74:30:D9:A7:67:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 18C8682C5D915270A0E53845846CBB2A846EDD83 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73d38cbc-8e57-413b-a607-243ebf7b63e0.roa Signing time: Sat 26 Apr 2025 00:00:24 +0000 ROA not before: Sat 26 Apr 2025 00:00:24 +0000 ROA not after: Sat 31 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 210.56.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:c8:68:2c:5d:91:52:70:a0:e5:38:45:84:6c:bb:2a:84:6e:dd:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 26 00:00:24 2025 GMT Not After : May 31 23:59:59 2025 GMT Subject: serialNumber=4054973e07417710baf9873a9c8329e6f5090e910000db6ee12fd1629cdb942c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:42:f1:b1:51:c4:22:ae:bb:6d:c5:6d:1d:4d: 1d:d2:5b:0a:e2:48:81:cf:ae:f0:ca:44:65:d6:11: ee:2e:b5:6f:35:e4:52:02:8a:80:f1:4d:84:b6:b3: df:e3:79:17:05:c1:e9:c5:c6:f1:8d:1e:0f:83:5d: 19:a9:c5:28:26:a3:0f:01:b1:c1:91:62:04:34:11: ef:d3:b3:e2:c1:53:82:ed:5d:15:f2:4c:87:62:52: 16:f0:b2:ae:f0:99:f0:b0:9b:e8:12:e1:fc:8e:56: 96:a7:8d:85:5e:82:0c:63:d7:21:c7:01:00:a3:ae: 20:d7:54:29:7b:03:0f:8c:3a:3a:c3:69:b6:67:9c: 25:0b:7c:c2:dc:b0:e3:c8:64:91:65:80:84:41:07: 10:19:8f:bb:f9:86:b3:ed:69:72:10:7b:d9:95:87: e0:ad:40:bf:f7:cb:2d:db:20:56:8d:8b:99:7e:86: 0f:6d:5d:d3:49:d1:e7:84:6e:3e:68:2e:f1:61:db: 1b:b9:79:e6:7e:3d:a8:48:3b:ce:51:3d:27:44:d5: d9:30:2f:e5:1c:09:97:7f:c9:f3:6b:08:c2:5f:b3: 3b:19:6d:b4:82:65:d2:47:f6:39:33:be:40:98:08: ed:f1:07:de:87:60:db:17:7b:40:db:bf:7d:20:9c: 3c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:05:50:47:A6:3B:D2:79:1E:99:F9:BB:29:8C:74:30:D9:A7:67:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73d38cbc-8e57-413b-a607-243ebf7b63e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.56.66.0/23 Signature Algorithm: sha256WithRSAEncryption 08:30:d1:47:d7:7e:77:9e:dd:ec:c3:82:24:c8:cc:b7:a6:34: 5f:c7:16:a8:3d:98:36:50:c2:bf:2e:74:d8:2c:ab:94:87:96: 74:ff:00:15:bd:8a:7c:ed:67:ed:ea:3b:b6:d4:05:0c:50:b2: 87:0c:87:8c:6c:40:65:62:8b:cc:4c:1b:fb:a6:f0:c9:15:cc: 1a:75:54:8e:4a:33:59:9b:ea:d6:8d:4e:09:67:a9:da:83:13: 95:da:24:05:44:b8:50:2b:17:15:92:c7:49:b4:ab:e2:74:9c: 3a:fa:40:e2:0d:6b:13:57:c0:22:9f:84:ba:39:87:30:0b:ac: 60:61:2d:6d:ac:1a:06:df:96:6f:18:58:6e:80:b0:c3:c7:bc: da:0f:2c:df:3e:18:c3:1b:25:57:7e:9f:e4:20:50:91:fd:44: 44:fd:6e:02:c0:ce:6d:d3:7e:4b:b6:aa:ff:54:96:41:64:37: cb:83:67:67:a4:1d:49:35:73:23:31:de:e0:94:20:9f:17:6b: 6d:f8:71:06:cd:30:a7:f6:20:c9:31:de:f1:af:cc:bc:82:bb: 51:6d:49:db:31:22:0e:82:18:65:07:a3:cf:f4:23:6e:39:87: 36:da:42:15:2c:c6:9c:e1:54:32:ba:8e:48:c6:36:e9:7c:6a: 1e:f0:1a:eb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGMhoLF2RUnCg5ThFhGy7KoRu3YMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI2MDAwMDI0WhcNMjUwNTMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDU0OTczZTA3NDE3NzEwYmFmOTg3M2E5YzgzMjllNmY1 MDkwZTkxMDAwMGRiNmVlMTJmZDE2MjljZGI5NDJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpQvGxUcQirrttxW0dTR3SWwriSIHPrvDKRGXWEe4utW81 5FICioDxTYS2s9/jeRcFwenFxvGNHg+DXRmpxSgmow8BscGRYgQ0Ee/Ts+LBU4Lt XRXyTIdiUhbwsq7wmfCwm+gS4fyOVpanjYVeggxj1yHHAQCjriDXVCl7Aw+MOjrD abZnnCULfMLcsOPIZJFlgIRBBxAZj7v5hrPtaXIQe9mVh+CtQL/3yy3bIFaNi5l+ hg9tXdNJ0eeEbj5oLvFh2xu5eeZ+PahIO85RPSdE1dkwL+UcCZd/yfNrCMJfszsZ bbSCZdJH9jkzvkCYCO3xB96HYNsXe0Dbv30gnDx5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHgVQR6Y70nkemfm7KYx0MNmnZ58wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzczZDM4Y2JjLThlNTctNDEzYi1hNjA3LTI0M2ViZjdiNjNlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHSOEIwDQYJKoZIhvcNAQELBQADggEBAAgw0UfXfnee3ezDgiTIzLemNF/H Fqg9mDZQwr8udNgsq5SHlnT/ABW9inztZ+3qO7bUBQxQsocMh4xsQGVii8xMG/um 8MkVzBp1VI5KM1mb6taNTglnqdqDE5XaJAVEuFArFxWSx0m0q+J0nDr6QOINaxNX wCKfhLo5hzALrGBhLW2sGgbflm8YWG6AsMPHvNoPLN8+GMMbJVd+n+QgUJH9RET9 bgLAzm3Tfku2qv9UlkFkN8uDZ2ekHUk1cyMx3uCUIJ8Xa234cQbNMKf2IMkx3vGv zLyCu1FtSdsxIg6CGGUHo8/0I245hzbaQhUsxpzhVDK6jkjGNul8ah7wGus= -----END CERTIFICATE-----Generated at Sat May 10 22:28:04 2025 by rpki-client