$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07dc4f6d-7b9d-49fa-9765-75c8f4dab02a.roa File: 07dc4f6d-7b9d-49fa-9765-75c8f4dab02a.roa (raw, json) Hash identifier: dKndXeMaDrCzPye8Hnjl1T/by7NuNTshTrPc5OYG50k= Subject key identifier: 9A:DB:56:7B:C6:DA:00:03:92:E8:0C:C5:CF:AF:84:66:29:9C:A9:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 350E4FB0F6FD33CB0B9BC6EB41B366E263A669FB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07dc4f6d-7b9d-49fa-9765-75c8f4dab02a.roa Signing time: Tue 29 Apr 2025 00:00:27 +0000 ROA not before: Tue 29 Apr 2025 00:00:27 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.76.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:0e:4f:b0:f6:fd:33:cb:0b:9b:c6:eb:41:b3:66:e2:63:a6:69:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:00:27 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=470b3f3a5e360e7105083bdfabe97fb4705f88aecdd4a13159364dbdac393bb5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:bc:d7:b1:13:d5:8a:69:93:5e:c9:29:78:5e: 77:5c:94:b7:07:0c:32:6b:2b:a4:c0:55:a5:f7:f9: aa:da:86:ec:60:9e:fa:e2:00:f1:14:f9:b9:63:71: 21:c5:00:dd:ae:b6:63:c4:fa:84:01:5b:77:75:b7: 30:8a:27:92:07:fd:4e:7f:12:d9:2b:f2:70:b2:b4: 8d:d7:86:df:f7:20:4b:34:d6:f6:75:00:b3:33:15: 3e:c3:b3:a5:56:26:91:6d:af:e0:a0:61:44:ee:1b: 38:06:c4:13:75:a8:18:cb:cf:7a:e1:2c:83:b3:3e: 3c:c2:cf:bc:d2:3b:11:4d:51:b3:30:11:e1:60:08: 9c:1c:f8:8d:ba:f5:52:5b:de:35:c3:8f:1e:9f:00: a9:89:ea:08:75:70:6e:31:f9:f4:cc:2f:a6:92:31: 4b:c2:1a:f3:66:d7:9f:46:29:52:65:32:64:d7:c7: 43:2d:2d:98:a4:f0:1b:3b:d6:40:53:6f:ca:0c:aa: e5:37:5a:d5:95:53:81:25:1d:55:bc:a8:58:3d:7a: 39:25:c5:6d:0a:1d:37:82:59:e6:cc:da:c8:fb:c8: 56:55:34:70:ab:d8:c9:a7:91:71:f3:d8:b2:4d:9b: 19:e7:aa:52:62:64:3d:a4:37:ce:1a:a5:e7:e0:b0: c9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:DB:56:7B:C6:DA:00:03:92:E8:0C:C5:CF:AF:84:66:29:9C:A9:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07dc4f6d-7b9d-49fa-9765-75c8f4dab02a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.76.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2d:62:d4:ec:71:6b:1b:02:6a:f4:66:87:60:6a:65:28:a8:6f: 05:a9:12:0d:54:1e:a9:4b:90:a0:02:ca:47:92:bd:e5:d3:4b: 59:19:b9:17:86:24:c4:d9:22:69:a8:eb:2f:a8:46:93:68:40: 04:2c:82:37:2a:65:bc:3a:6f:9a:9d:51:2f:19:ba:11:b0:67: 83:8c:a1:dd:8a:b5:f5:cc:6e:12:38:7e:81:e7:0f:0f:b7:f1: cb:a6:3b:d8:28:18:e0:9d:d6:cb:91:30:a8:9b:ba:66:d2:19: 84:f8:2e:8f:e8:cb:73:06:37:f0:34:aa:e2:23:62:da:f6:cc: a4:d6:bd:a9:7b:d7:f4:42:0c:b5:ab:4d:5f:18:39:38:13:02: a8:0b:4b:ef:c4:03:96:42:f9:32:70:41:d1:55:fd:30:d6:41: b9:63:4a:d7:d1:4e:9c:6d:d8:18:df:e3:7a:4c:eb:6a:6a:1c: 17:95:ac:26:e1:ff:f3:c8:29:c4:49:aa:41:98:9b:80:58:6b: f1:68:a4:59:a5:71:27:ac:bb:a6:d8:a2:18:9f:4e:bc:f8:cc: f1:91:0f:d3:bd:6d:36:26:98:50:c5:07:1c:7e:75:5e:99:ee: 39:c1:f1:c1:bc:19:9f:cb:b9:82:10:1a:aa:5b:8e:7b:c3:4f: 22:f7:5c:71 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNQ5PsPb9M8sLm8brQbNm4mOmafswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAwMDI3WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzBiM2YzYTVlMzYwZTcxMDUwODNiZGZhYmU5N2ZiNDcw NWY4OGFlY2RkNGExMzE1OTM2NGRiZGFjMzkzYmI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDyvNexE9WKaZNeySl4XndclLcHDDJrK6TAVaX3+arahuxg nvriAPEU+bljcSHFAN2utmPE+oQBW3d1tzCKJ5IH/U5/Etkr8nCytI3Xht/3IEs0 1vZ1ALMzFT7Ds6VWJpFtr+CgYUTuGzgGxBN1qBjLz3rhLIOzPjzCz7zSOxFNUbMw EeFgCJwc+I269VJb3jXDjx6fAKmJ6gh1cG4x+fTML6aSMUvCGvNm159GKVJlMmTX x0MtLZik8Bs71kBTb8oMquU3WtWVU4ElHVW8qFg9ejklxW0KHTeCWebM2sj7yFZV NHCr2MmnkXHz2LJNmxnnqlJiZD2kN84apefgsMk1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmttWe8baAAOS6AzFz6+EZimcqfcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3ZGM0ZjZkLTdiOWQtNDlmYS05NzY1LTc1YzhmNGRhYjAyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQTDANBgkqhkiG9w0BAQsFAAOCAQEALWLU7HFrGwJq9GaHYGplKKhvBakS DVQeqUuQoALKR5K95dNLWRm5F4YkxNkiaajrL6hGk2hABCyCNyplvDpvmp1RLxm6 EbBng4yh3Yq19cxuEjh+gecPD7fxy6Y72CgY4J3Wy5EwqJu6ZtIZhPguj+jLcwY3 8DSq4iNi2vbMpNa9qXvX9EIMtatNXxg5OBMCqAtL78QDlkL5MnBB0VX9MNZBuWNK 19FOnG3YGN/jekzramocF5WsJuH/88gpxEmqQZibgFhr8WikWaVxJ6y7ptiiGJ9O vPjM8ZEP071tNiaYUMUHHH51XpnuOcHxwbwZn8u5ghAaqluOe8NPIvdccQ== -----END CERTIFICATE-----Generated at Sat May 10 22:46:10 2025 by rpki-client