$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc2c70b-2c53-4001-8560-44ed39824c11.roa File: 1fc2c70b-2c53-4001-8560-44ed39824c11.roa (raw, json) Hash identifier: aLInbRljMN3GJDW3k85xyeWGYAdP/Rxq//SWpJNhF0w= Subject key identifier: 04:68:D8:C6:74:3D:CA:92:40:70:8B:65:60:C8:2E:EC:37:A9:09:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 198302D1661FE65B33C0AB119C98358A726C2B20 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc2c70b-2c53-4001-8560-44ed39824c11.roa Signing time: Tue 29 Apr 2025 00:00:24 +0000 ROA not before: Tue 29 Apr 2025 00:00:24 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.133.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:83:02:d1:66:1f:e6:5b:33:c0:ab:11:9c:98:35:8a:72:6c:2b:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:00:24 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=3eff70c1671a1313389e81fcf5e8f1f1f4298ce8d173c6ffb75e3700e4741b52, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ad:71:e9:86:f2:d8:b2:26:8d:7f:08:8f:8b: 65:c9:4f:9a:cb:f8:62:c7:ca:84:17:bf:9c:ad:2b: 09:95:19:72:d6:18:ea:0a:20:00:72:49:11:b5:63: cd:ce:72:71:e5:17:c1:5d:63:04:d5:01:56:42:25: 3b:64:4e:c2:39:fd:cb:e0:85:f9:af:bf:37:6f:f0: b9:b8:c2:5f:bd:74:94:e4:a7:9a:31:86:6e:de:27: 1f:55:8a:b9:83:d2:d0:97:be:e9:4d:dc:5d:f6:4e: e5:34:e7:e0:70:fe:25:04:cb:33:2a:c6:1e:ba:0e: ec:85:a1:e7:a1:ad:30:01:85:71:d9:43:4a:a3:b2: f4:63:2d:56:8d:3d:9d:61:b9:df:43:4e:fa:78:fd: 15:34:78:a6:b4:4d:32:fe:da:9d:db:71:fb:3c:7b: e4:c6:ae:9e:b5:0d:11:1e:d0:cb:a3:42:47:ce:88: 93:0a:07:39:dd:5c:36:4e:4f:20:44:91:37:a6:52: e5:01:bb:1e:be:76:8d:54:f6:a2:5e:53:07:0a:82: 4c:eb:95:45:7b:ec:e4:8e:ba:35:69:36:d1:f1:d7: 8e:0a:b0:8d:c0:88:7d:6d:70:c5:52:5b:94:10:1c: e1:7d:1a:d3:85:3b:3f:ce:a7:c6:fd:45:9b:20:11: 15:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:68:D8:C6:74:3D:CA:92:40:70:8B:65:60:C8:2E:EC:37:A9:09:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc2c70b-2c53-4001-8560-44ed39824c11.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.133.0.0/16 Signature Algorithm: sha256WithRSAEncryption ad:d5:41:ad:1b:d8:54:4c:f5:85:02:9c:8f:f6:70:10:12:54: 93:d5:18:fc:b7:10:73:51:48:b3:7f:27:b4:66:93:de:48:f1: 5f:68:3a:66:e9:88:a4:e9:64:75:11:a7:b5:75:d6:de:85:04: 06:59:b3:e9:68:ed:69:31:af:1e:7d:7c:5d:28:c2:6b:0a:89: cb:c8:ab:28:fb:db:2c:31:9d:e5:43:00:d4:59:58:9b:fe:21: 3f:53:bb:76:c6:ce:8a:e1:14:60:27:f6:be:7d:5e:e1:08:cc: fb:fe:32:2f:cc:10:5e:fc:e3:85:c6:ba:9f:b4:df:ea:0f:25: cd:f0:a4:a2:b2:6a:fa:04:7a:68:14:9a:12:74:e2:08:85:33: cd:8e:5a:31:70:37:1a:97:9b:34:d5:f4:e7:30:30:48:21:fe: 9c:d1:5a:d0:ee:b3:0c:fc:b7:11:d1:ed:ae:4d:12:b9:9c:da: 9f:97:2a:69:1b:e6:4a:84:30:4b:0e:e9:28:ab:f1:02:1c:59: a6:3d:56:bb:ca:f5:ae:5a:05:6a:09:dd:f3:f7:b1:b9:30:ed: 9a:62:b2:ac:68:c2:6e:88:9f:3f:9c:7a:aa:0b:6f:e4:79:af: 47:0d:1e:5d:9b:a1:25:c7:4e:22:3e:bf:a8:38:53:6d:1f:42: ca:44:05:01 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGYMC0WYf5lszwKsRnJg1inJsKyAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAwMDI0WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZWZmNzBjMTY3MWExMzEzMzg5ZTgxZmNmNWU4ZjFmMWY0 Mjk4Y2U4ZDE3M2M2ZmZiNzVlMzcwMGU0NzQxYjUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCorXHphvLYsiaNfwiPi2XJT5rL+GLHyoQXv5ytKwmVGXLW GOoKIABySRG1Y83OcnHlF8FdYwTVAVZCJTtkTsI5/cvghfmvvzdv8Lm4wl+9dJTk p5oxhm7eJx9VirmD0tCXvulN3F32TuU05+Bw/iUEyzMqxh66DuyFoeehrTABhXHZ Q0qjsvRjLVaNPZ1hud9DTvp4/RU0eKa0TTL+2p3bcfs8e+TGrp61DREe0MujQkfO iJMKBzndXDZOTyBEkTemUuUBux6+do1U9qJeUwcKgkzrlUV77OSOujVpNtHx144K sI3AiH1tcMVSW5QQHOF9GtOFOz/Op8b9RZsgERVvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBGjYxnQ9ypJAcItlYMgu7DepCVAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmYzJjNzBiLTJjNTMtNDAwMS04NTYwLTQ0ZWQzOTgyNGMxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQhTANBgkqhkiG9w0BAQsFAAOCAQEArdVBrRvYVEz1hQKcj/ZwEBJUk9UY /LcQc1FIs38ntGaT3kjxX2g6ZumIpOlkdRGntXXW3oUEBlmz6WjtaTGvHn18XSjC awqJy8irKPvbLDGd5UMA1FlYm/4hP1O7dsbOiuEUYCf2vn1e4QjM+/4yL8wQXvzj hca6n7Tf6g8lzfCkorJq+gR6aBSaEnTiCIUzzY5aMXA3GpebNNX05zAwSCH+nNFa 0O6zDPy3EdHtrk0SuZzan5cqaRvmSoQwSw7pKKvxAhxZpj1Wu8r1rloFagnd8/ex uTDtmmKyrGjCboifP5x6qgtv5HmvRw0eXZuhJcdOIj6/qDhTbR9CykQFAQ== -----END CERTIFICATE-----Generated at Mon May 12 13:29:26 2025 by rpki-client