$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6256fa50-0c45-4c1f-83fa-55a665592759.roa File: 6256fa50-0c45-4c1f-83fa-55a665592759.roa (raw, json) Hash identifier: ICJSRqdBwMoIOpI21I69mwFQoTf4aTRGgbsdsu7lNhY= Subject key identifier: 37:08:F3:5F:59:71:77:70:0A:5B:53:98:61:93:60:46:8A:AD:2C:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 422D41EDBD07C5AD80250011964B38B0E19561E4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6256fa50-0c45-4c1f-83fa-55a665592759.roa Signing time: Fri 02 May 2025 00:11:04 +0000 ROA not before: Fri 02 May 2025 00:11:04 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.30.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:2d:41:ed:bd:07:c5:ad:80:25:00:11:96:4b:38:b0:e1:95:61:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:11:04 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=4412101670ecf0e4f62ce6c0abee3ff3b9f321382877d5f1ef041db4441bfdbc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:01:8b:fc:08:90:ee:b2:7b:5c:4e:0c:9a:45: 38:4d:eb:2d:a6:b9:93:83:f6:28:04:cf:c2:f0:de: 71:9d:f7:dd:d4:d3:28:53:d0:55:22:66:b4:85:fc: 4c:33:b0:9c:72:dc:94:df:d7:75:e3:be:e2:2a:2f: fe:07:de:28:7b:08:6e:0f:da:47:20:11:e5:e0:ac: 2f:54:b8:3d:53:d4:b4:ae:c5:59:e5:91:5e:84:fa: cf:83:d6:26:47:29:6f:e1:d5:d7:34:a3:b4:46:12: 50:e0:07:24:3d:32:2c:57:f2:51:4b:39:8d:ee:fb: c3:73:9e:ed:f2:6f:a2:93:38:34:59:ce:38:d0:09: bc:ee:ab:22:ae:4e:3d:bf:12:37:f3:4d:17:6c:5f: 66:f6:bc:10:4e:d7:62:e1:e8:14:e0:4c:a0:d2:7b: 2a:a7:c5:a8:c7:cc:cd:86:1c:f7:7e:6a:ce:48:d3: 01:4c:06:6b:3c:a7:8b:8c:52:4b:ab:02:cd:86:e8: a9:61:58:70:08:73:56:6f:37:43:68:fb:c2:3a:fa: 1f:32:bb:db:d6:82:8e:cd:53:21:2f:71:5c:c6:f4: c4:bd:24:c6:8f:27:c1:0b:61:c3:04:e9:29:fa:b0: ce:38:de:3b:12:17:61:15:69:61:4c:61:d6:56:6c: 43:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:08:F3:5F:59:71:77:70:0A:5B:53:98:61:93:60:46:8A:AD:2C:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6256fa50-0c45-4c1f-83fa-55a665592759.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.30.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7e:61:93:96:88:ab:3c:9b:4a:28:89:cb:5a:e5:cf:65:a3:3d: 6b:12:c8:49:62:81:05:e8:20:a1:a5:2a:5d:05:99:58:ab:40: 45:a8:87:69:08:a3:bc:4a:37:c0:05:77:22:21:f5:25:33:8d: 28:f6:98:6a:89:f9:72:4b:0e:24:50:70:09:b1:6c:48:7e:92: 05:f6:c2:db:9a:cb:db:bf:c1:d0:8b:79:86:88:45:c4:64:c4: 26:95:d1:c2:ad:c5:a4:26:86:d4:f0:84:1c:6f:08:1d:28:fb: 84:65:a3:f1:4b:01:c5:3d:88:62:b5:8c:d1:9b:e8:10:32:66: 5e:4f:7f:9f:b7:30:f3:80:7f:5d:0f:22:26:de:94:0a:b2:d0: a2:75:fa:5e:67:d4:d1:58:4a:1e:35:6d:ce:db:7b:41:1f:cb: a6:c0:b0:55:dd:fe:56:5f:46:2f:52:e6:d0:8f:87:78:0b:75: d1:5e:27:0d:6d:29:18:07:e0:bf:9a:61:b3:17:9e:8f:9e:85: 71:0f:e6:b0:0d:92:2b:a8:14:fc:bf:69:0d:04:50:73:93:8e: 4d:b1:48:62:62:2c:58:09:69:59:56:c8:5e:28:f8:50:c5:3c: 00:d7:d7:45:b2:f4:9d:e1:f4:79:9f:20:5c:d9:8d:b5:fa:e3: 57:83:fd:4a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQi1B7b0Hxa2AJQARlks4sOGVYeQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAyMDAxMTA0WhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDEyMTAxNjcwZWNmMGU0ZjYyY2U2YzBhYmVlM2ZmM2I5 ZjMyMTM4Mjg3N2Q1ZjFlZjA0MWRiNDQ0MWJmZGJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvAYv8CJDusntcTgyaRThN6y2muZOD9igEz8Lw3nGd993U 0yhT0FUiZrSF/EwzsJxy3JTf13XjvuIqL/4H3ih7CG4P2kcgEeXgrC9UuD1T1LSu xVnlkV6E+s+D1iZHKW/h1dc0o7RGElDgByQ9MixX8lFLOY3u+8Nznu3yb6KTODRZ zjjQCbzuqyKuTj2/EjfzTRdsX2b2vBBO12Lh6BTgTKDSeyqnxajHzM2GHPd+as5I 0wFMBms8p4uMUkurAs2G6KlhWHAIc1ZvN0No+8I6+h8yu9vWgo7NUyEvcVzG9MS9 JMaPJ8ELYcME6Sn6sM443jsSF2EVaWFMYdZWbENbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNwjzX1lxd3AKW1OYYZNgRoqtLHcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyNTZmYTUwLTBjNDUtNGMxZi04M2ZhLTU1YTY2NTU5Mjc1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQHjANBgkqhkiG9w0BAQsFAAOCAQEAfmGTloirPJtKKInLWuXPZaM9axLI SWKBBeggoaUqXQWZWKtARaiHaQijvEo3wAV3IiH1JTONKPaYaon5cksOJFBwCbFs SH6SBfbC25rL27/B0It5hohFxGTEJpXRwq3FpCaG1PCEHG8IHSj7hGWj8UsBxT2I YrWM0ZvoEDJmXk9/n7cw84B/XQ8iJt6UCrLQonX6XmfU0VhKHjVtztt7QR/LpsCw Vd3+Vl9GL1Lm0I+HeAt10V4nDW0pGAfgv5phsxeej56FcQ/msA2SK6gU/L9pDQRQ c5OOTbFIYmIsWAlpWVbIXij4UMU8ANfXRbL0neH0eZ8gXNmNtfrjV4P9Sg== -----END CERTIFICATE-----Generated at Sun May 11 19:46:47 2025 by rpki-client