$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7fd9e808-2da2-48e6-8047-8bd52c0fdfb8.roa File: 7fd9e808-2da2-48e6-8047-8bd52c0fdfb8.roa (raw, json) Hash identifier: kRrqi1oGCoYlH2gwh6k7Cx3vehRtKPOgvmBpGDOtdtc= Subject key identifier: 04:23:02:C3:F6:1B:93:A1:1E:99:10:E1:FA:EF:C3:3E:FB:60:36:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 735F89C8A09374C4C711EAA7B1866DD476F5FDC3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7fd9e808-2da2-48e6-8047-8bd52c0fdfb8.roa Signing time: Fri 02 May 2025 00:00:24 +0000 ROA not before: Fri 02 May 2025 00:00:24 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.115.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:5f:89:c8:a0:93:74:c4:c7:11:ea:a7:b1:86:6d:d4:76:f5:fd:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:00:24 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=1827f05f89dc16fa90ffb34e3d1e321ed034857e81dfdd5c918b333bea5300e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7b:51:72:30:2a:1c:bd:8d:c3:2c:46:6a:46: 9e:33:85:ff:91:42:6e:4f:00:71:aa:b1:fc:c9:29: 94:99:08:ec:e0:d2:37:f2:a4:d5:13:94:15:b4:81: 39:fd:b2:8e:74:37:93:fe:a9:f6:72:42:cd:7b:f3: eb:5a:21:e6:46:22:82:22:9e:f9:26:54:93:77:7b: 29:ff:6f:9d:1d:a7:00:6f:30:b6:84:4f:ff:26:de: 49:16:dc:b5:4c:5b:41:4e:af:80:8c:b0:97:c1:47: d7:a6:63:81:c8:88:52:77:19:84:ea:b7:75:29:e0: e0:23:e4:ab:cf:1d:60:53:49:3b:28:d5:28:e6:34: 81:53:8f:d4:c7:3d:65:8f:2e:ca:fb:c0:a8:51:cf: ee:44:bf:df:3f:e0:57:37:5b:fc:4e:2e:43:f2:e5: 15:ea:6b:21:78:a8:57:f8:a6:d7:0d:08:eb:44:6d: 48:bf:01:82:66:f6:32:e9:b0:02:d4:72:d3:91:84: 1b:7a:98:41:6a:e1:12:ce:0c:d3:ec:27:af:a2:37: b5:67:ef:7e:84:3a:83:58:67:5a:dc:9c:c2:db:2a: 59:90:cd:66:e0:0d:fb:15:73:68:d5:2a:0d:37:f7: 5e:d2:a9:aa:b8:54:b3:54:a1:1d:7b:c3:f5:97:a0: 76:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:23:02:C3:F6:1B:93:A1:1E:99:10:E1:FA:EF:C3:3E:FB:60:36:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7fd9e808-2da2-48e6-8047-8bd52c0fdfb8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.115.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8d:08:ed:1b:6f:16:02:67:88:94:3d:09:21:10:a5:15:0b:a8: 14:02:68:e3:92:9a:6d:82:b0:90:ea:a8:12:fb:0b:2d:7f:16: 23:62:c3:8c:5a:08:f0:6e:07:0e:89:e8:c1:e6:c9:f5:5b:fb: 6e:c9:fe:34:48:97:a1:bc:b2:6e:07:05:03:97:77:7c:72:20: 81:44:dc:90:28:f9:85:c1:27:17:0b:c4:0f:e1:27:ad:97:dd: b9:47:af:8a:9f:f8:c4:da:5f:f2:67:70:6c:98:81:d3:2d:aa: 7f:99:b6:c6:39:fd:0d:06:50:ce:e7:70:eb:83:67:85:cb:95: bc:cf:3d:0b:41:65:80:ca:aa:b5:3c:88:df:13:ef:8c:02:e7: 7b:29:a2:75:43:88:02:b9:16:26:04:79:56:f1:eb:91:e0:d9: 07:41:0d:bc:11:29:c5:5f:d7:0c:b3:ea:46:e5:88:d7:ff:dd: fb:86:13:ff:51:81:c6:91:e6:59:08:e3:b6:cd:fa:7b:59:d3: ed:8b:fa:62:af:96:34:22:6f:f6:34:eb:5f:fa:d4:86:3e:66: 16:f1:df:2e:e0:3d:18:ec:47:5a:9c:c1:0a:29:f3:a3:4d:c6: c8:e1:8c:de:f6:dc:fb:9e:06:7a:e4:e0:f1:76:38:fc:29:12: 24:6d:f8:60 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUc1+JyKCTdMTHEeqnsYZt1Hb1/cMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAyMDAwMDI0WhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxODI3ZjA1Zjg5ZGMxNmZhOTBmZmIzNGUzZDFlMzIxZWQw MzQ4NTdlODFkZmRkNWM5MThiMzMzYmVhNTMwMGU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfe1FyMCocvY3DLEZqRp4zhf+RQm5PAHGqsfzJKZSZCOzg 0jfypNUTlBW0gTn9so50N5P+qfZyQs178+taIeZGIoIinvkmVJN3eyn/b50dpwBv MLaET/8m3kkW3LVMW0FOr4CMsJfBR9emY4HIiFJ3GYTqt3Up4OAj5KvPHWBTSTso 1SjmNIFTj9THPWWPLsr7wKhRz+5Ev98/4Fc3W/xOLkPy5RXqayF4qFf4ptcNCOtE bUi/AYJm9jLpsALUctORhBt6mEFq4RLODNPsJ6+iN7Vn736EOoNYZ1rcnMLbKlmQ zWbgDfsVc2jVKg03917Sqaq4VLNUoR17w/WXoHaBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBCMCw/Ybk6EemRDh+u/DPvtgNvIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdmZDllODA4LTJkYTItNDhlNi04MDQ3LThiZDUyYzBmZGZiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQczANBgkqhkiG9w0BAQsFAAOCAQEAjQjtG28WAmeIlD0JIRClFQuoFAJo 45KabYKwkOqoEvsLLX8WI2LDjFoI8G4HDonowebJ9Vv7bsn+NEiXobyybgcFA5d3 fHIggUTckCj5hcEnFwvED+EnrZfduUevip/4xNpf8mdwbJiB0y2qf5m2xjn9DQZQ zudw64NnhcuVvM89C0FlgMqqtTyI3xPvjALneymidUOIArkWJgR5VvHrkeDZB0EN vBEpxV/XDLPqRuWI1//d+4YT/1GBxpHmWQjjts36e1nT7Yv6Yq+WNCJv9jTrX/rU hj5mFvHfLuA9GOxHWpzBCinzo03GyOGM3vbc+54GeuTg8XY4/CkSJG34YA== -----END CERTIFICATE-----Generated at Fri May 9 23:12:41 2025 by rpki-client