$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa File: 36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa (raw, json) Hash identifier: 5z3QWly5W+dBzqiIE1pyaZJJ+padNaA/dt7EiXzGy+M= Subject key identifier: 98:DA:3F:F4:90:5A:CA:E2:EA:F1:2C:D5:A3:F0:AB:A1:57:24:EF:5C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31617A455E1CB00C9A1FA2C5BB26657008660406 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa Signing time: Fri 09 May 2025 00:10:49 +0000 ROA not before: Fri 09 May 2025 00:10:49 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.15.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:61:7a:45:5e:1c:b0:0c:9a:1f:a2:c5:bb:26:65:70:08:66:04:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:10:49 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=386d6449972bc0b085aa7a44cfb897d666c3a57f30040d1c520fc40df4ca0074, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:17:ab:02:b1:bc:f6:8c:af:e4:48:c5:8d:b9: 97:7b:75:08:6b:74:5f:b7:bf:e9:cb:31:dc:34:d2: ff:34:a0:39:c2:96:ab:e9:79:69:f7:08:a9:97:e6: 66:b9:18:4d:69:2b:a5:40:bb:f6:a8:ec:03:d6:15: 26:08:ee:82:cb:b5:c9:68:21:a4:53:c6:0f:82:f4: 55:b7:a7:be:70:16:3d:db:dd:a7:a7:27:d0:12:94: 39:5f:6d:c1:e1:8a:93:9e:9a:4f:c9:a9:8e:95:8a: 6a:3b:cf:45:40:3e:de:33:a3:92:dc:87:b2:0f:0e: bb:d0:45:09:04:be:bb:53:4e:45:11:47:fd:9b:ff: e1:a6:59:41:75:32:22:b6:5f:77:0a:c8:20:ad:70: f8:04:01:19:de:dd:a5:84:c4:60:cb:b0:ca:36:06: 53:04:75:e7:b4:ed:26:46:03:aa:e1:d8:54:43:de: 38:09:18:31:5a:4a:4f:72:9a:a8:24:47:64:ec:87: 03:bb:cc:76:1b:fa:44:1d:d0:3a:0f:a3:44:f9:46: da:31:ec:71:6f:40:60:20:99:a0:bb:3d:2e:54:32: d0:0e:8c:75:a9:55:06:68:1a:e5:55:47:0b:2e:15: 6d:36:ad:3a:4e:60:cb:be:6f:dc:ce:1c:a3:d4:34: 9b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:DA:3F:F4:90:5A:CA:E2:EA:F1:2C:D5:A3:F0:AB:A1:57:24:EF:5C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.15.0.0/16 Signature Algorithm: sha256WithRSAEncryption 06:3c:03:ba:e8:2b:b4:83:c0:4a:12:a7:d8:6f:5c:0b:dd:b4: e4:22:9d:6e:7d:5a:3a:d0:7e:fc:41:39:ad:67:01:2b:6a:e6: 0e:2c:76:34:46:1d:1d:a8:f9:94:23:b8:86:13:44:0d:ee:17: 15:12:65:db:47:f6:30:5c:11:af:a1:71:5f:32:9b:6a:21:84: 46:f0:36:7e:a4:4b:a8:d1:e3:8f:01:7f:b9:4a:6d:71:eb:23: 71:bb:2f:ed:03:2c:35:28:29:cb:d6:77:c1:39:22:d4:aa:78: 07:6f:04:18:b9:1d:b7:26:42:c3:65:6f:57:64:49:4c:3f:39: 2e:8b:6e:4a:5c:02:38:cf:1d:d9:3a:ef:8b:1e:39:04:9f:1e: b0:09:bd:b6:84:75:5d:e2:7c:26:6f:8d:0d:77:22:e4:52:cc: d2:7f:69:5f:51:59:ec:25:dd:db:cf:d4:d7:42:d3:60:5d:a9: c6:46:bd:44:a7:1e:c3:1d:aa:00:ea:43:4b:f3:b8:71:e1:98: 25:ed:26:c3:84:48:6c:5c:03:16:20:22:19:0b:1d:b0:0f:4a: dd:cc:d7:70:75:6a:ba:05:0e:27:fb:38:fd:be:bb:23:d0:56: f9:b5:41:f0:19:f1:ca:8c:ca:81:be:5f:82:c3:e3:20:22:05: 58:a1:b5:c9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMWF6RV4csAyaH6LFuyZlcAhmBAYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAxMDQ5WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzODZkNjQ0OTk3MmJjMGIwODVhYTdhNDRjZmI4OTdkNjY2 YzNhNTdmMzAwNDBkMWM1MjBmYzQwZGY0Y2EwMDc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6F6sCsbz2jK/kSMWNuZd7dQhrdF+3v+nLMdw00v80oDnC lqvpeWn3CKmX5ma5GE1pK6VAu/ao7APWFSYI7oLLtcloIaRTxg+C9FW3p75wFj3b 3aenJ9ASlDlfbcHhipOemk/JqY6Vimo7z0VAPt4zo5Lch7IPDrvQRQkEvrtTTkUR R/2b/+GmWUF1MiK2X3cKyCCtcPgEARne3aWExGDLsMo2BlMEdee07SZGA6rh2FRD 3jgJGDFaSk9ymqgkR2TshwO7zHYb+kQd0DoPo0T5Rtox7HFvQGAgmaC7PS5UMtAO jHWpVQZoGuVVRwsuFW02rTpOYMu+b9zOHKPUNJtbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmNo/9JBayuLq8SzVo/CroVck71wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM2YmQ2MTZlLTI5YTYtNGUzNi04ZWM1LTVmYTk1NGM1ZmI5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQDzANBgkqhkiG9w0BAQsFAAOCAQEABjwDuugrtIPAShKn2G9cC9205CKd bn1aOtB+/EE5rWcBK2rmDix2NEYdHaj5lCO4hhNEDe4XFRJl20f2MFwRr6FxXzKb aiGERvA2fqRLqNHjjwF/uUptcesjcbsv7QMsNSgpy9Z3wTki1Kp4B28EGLkdtyZC w2VvV2RJTD85LotuSlwCOM8d2Trvix45BJ8esAm9toR1XeJ8Jm+NDXci5FLM0n9p X1FZ7CXd28/U10LTYF2pxka9RKcewx2qAOpDS/O4ceGYJe0mw4RIbFwDFiAiGQsd sA9K3czXcHVqugUOJ/s4/b67I9BW+bVB8BnxyozKgb5fgsPjICIFWKG1yQ== -----END CERTIFICATE-----Generated at Sat May 10 19:15:14 2025 by rpki-client