$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10e8eaff-a969-4014-aee5-0177cbb5381e.roa File: 10e8eaff-a969-4014-aee5-0177cbb5381e.roa (raw, json) Hash identifier: gilCu317sziJE5Ez3hIZVCF4WDjmp+ZsUjnAyjcjzwI= Subject key identifier: A8:C6:F2:FF:37:5B:B3:07:DE:21:AA:3B:F5:4C:EF:C9:99:00:22:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7AEBC5C34CD0A5D6CE4257649194CAC92B763357 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10e8eaff-a969-4014-aee5-0177cbb5381e.roa Signing time: Tue 22 Apr 2025 00:00:52 +0000 ROA not before: Tue 22 Apr 2025 00:00:52 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.162.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:eb:c5:c3:4c:d0:a5:d6:ce:42:57:64:91:94:ca:c9:2b:76:33:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 00:00:52 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=98647affdcefc2bbdfcfc3353815a38f92777b6791db043694668d1fad2a02ef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:47:dc:25:09:49:0c:5a:9e:d0:a6:75:c7:43: d9:84:a5:a0:35:bf:73:9d:8a:bb:e0:ff:96:50:35: 6f:d9:17:5d:5f:df:fa:df:de:c2:2d:6e:29:ce:99: 35:88:8c:56:c7:68:2f:32:29:c0:14:59:8a:8c:88: 61:f3:9d:1e:c9:71:e8:1a:68:af:81:8c:2c:29:c6: f4:0f:b6:98:c2:eb:d1:28:43:91:d5:ea:f4:be:f3: ad:fc:df:a7:08:80:be:74:5c:16:1f:6b:c4:29:39: b8:0b:6f:e7:0d:13:0d:36:3f:a2:1f:d5:ca:18:58: 4f:48:96:7c:67:1c:74:5d:1d:e3:97:15:9f:df:16: 3b:e2:da:5f:e8:6c:2e:bc:34:08:f5:5d:64:11:69: 75:a7:db:69:7d:11:c8:a6:7a:b9:6e:cb:dc:de:dd: 42:8d:18:fd:c4:36:31:cb:66:8c:a5:d0:2b:cd:8f: 4b:75:13:5c:00:c8:0d:62:09:df:9e:b6:83:c5:b0: f9:6b:3a:63:14:77:a1:58:d3:ae:71:b1:22:69:e5: 22:40:f3:e8:d5:32:20:6a:5a:6f:35:d3:c3:aa:56: 9e:d4:31:cd:4e:74:9d:3a:cf:2c:8f:ae:84:fa:62: 08:bd:dd:bc:0f:19:11:3a:68:a9:ac:dc:3a:c4:3d: c4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C6:F2:FF:37:5B:B3:07:DE:21:AA:3B:F5:4C:EF:C9:99:00:22:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10e8eaff-a969-4014-aee5-0177cbb5381e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.162.0.0/15 Signature Algorithm: sha256WithRSAEncryption 0b:eb:dc:30:0f:8b:1e:84:59:3c:66:f1:dc:93:df:3e:b9:9b: d1:f2:d3:63:89:ca:75:34:68:ca:38:92:9a:c2:89:5e:66:43: 69:8a:12:6c:22:c1:af:14:16:cb:cf:c6:3b:b9:a7:6f:69:19: db:be:f9:f7:7a:14:ee:5d:b5:ef:7c:e5:98:dc:32:9b:6d:e2: 0c:3b:91:70:d7:3d:80:40:cb:bf:7d:2a:72:95:b7:d2:19:d1: 19:6b:d6:7e:c3:fb:cf:92:23:32:d0:9b:60:4d:c3:ab:86:5b: 27:0a:a9:0c:4f:91:a8:a2:43:23:11:5a:83:4e:c6:2d:38:0a: 34:44:1f:20:76:08:cc:86:3b:60:ae:b0:a3:8f:e0:51:80:04: 37:27:54:22:0a:33:a6:d3:00:8a:ba:18:43:c3:8d:55:d0:8e: 76:6e:ad:12:e0:a2:f9:4b:b7:8a:18:61:dc:43:77:bb:4c:c4: c8:e4:15:67:aa:21:b0:01:a9:bd:4c:79:33:97:34:ef:cf:c9: fc:83:57:0e:59:86:70:08:c4:6d:65:c1:65:45:9a:bf:91:e6: 8d:d6:0b:a7:31:22:93:47:cd:2a:0a:eb:f5:a6:4a:fd:40:b3: 0a:e0:dc:72:94:bc:c5:50:b2:ec:be:1e:d5:f1:65:d2:00:b1: 28:27:d7:5f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeuvFw0zQpdbOQldkkZTKySt2M1cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMDAwMDUyWhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODY0N2FmZmRjZWZjMmJiZGZjZmMzMzUzODE1YTM4Zjky Nzc3YjY3OTFkYjA0MzY5NDY2OGQxZmFkMmEwMmVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVR9wlCUkMWp7QpnXHQ9mEpaA1v3Odirvg/5ZQNW/ZF11f 3/rf3sItbinOmTWIjFbHaC8yKcAUWYqMiGHznR7JcegaaK+BjCwpxvQPtpjC69Eo Q5HV6vS+863836cIgL50XBYfa8QpObgLb+cNEw02P6If1coYWE9IlnxnHHRdHeOX FZ/fFjvi2l/obC68NAj1XWQRaXWn22l9Ecimerluy9ze3UKNGP3ENjHLZoyl0CvN j0t1E1wAyA1iCd+etoPFsPlrOmMUd6FY065xsSJp5SJA8+jVMiBqWm8108OqVp7U Mc1OdJ06zyyProT6Ygi93bwPGRE6aKms3DrEPcS3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqMby/zdbswfeIao79UzvyZkAIlowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwZThlYWZmLWE5NjktNDAxNC1hZWU1LTAxNzdjYmI1MzgxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQojANBgkqhkiG9w0BAQsFAAOCAQEAC+vcMA+LHoRZPGbx3JPfPrmb0fLT Y4nKdTRoyjiSmsKJXmZDaYoSbCLBrxQWy8/GO7mnb2kZ277593oU7l2173zlmNwy m23iDDuRcNc9gEDLv30qcpW30hnRGWvWfsP7z5IjMtCbYE3Dq4ZbJwqpDE+RqKJD IxFag07GLTgKNEQfIHYIzIY7YK6wo4/gUYAENydUIgozptMAiroYQ8ONVdCOdm6t EuCi+Uu3ihhh3EN3u0zEyOQVZ6ohsAGpvUx5M5c078/J/INXDlmGcAjEbWXBZUWa v5HmjdYLpzEik0fNKgrr9aZK/UCzCuDccpS8xVCy7L4e1fFl0gCxKCfXXw== -----END CERTIFICATE-----Generated at Mon May 5 14:13:37 2025 by rpki-client