$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c57f3080-c868-4c69-a23e-8d9d7dce91cd.roa File: c57f3080-c868-4c69-a23e-8d9d7dce91cd.roa (raw, json) Hash identifier: 2I7ImI3KH5Sjn21p+BYti31YR2PSAquP8Qlx4ZDF+/k= Subject key identifier: EC:25:A6:3B:40:23:E5:49:DB:14:04:A5:16:9E:B6:31:86:A8:B9:91 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34FD7FC240E379922E91234AD7B4CB8812577933 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c57f3080-c868-4c69-a23e-8d9d7dce91cd.roa Signing time: Fri 02 May 2025 00:00:33 +0000 ROA not before: Fri 02 May 2025 00:00:33 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.130.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:fd:7f:c2:40:e3:79:92:2e:91:23:4a:d7:b4:cb:88:12:57:79:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:00:33 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=64f929991e5912ce0b9200615a4efaebf16561ae2358a12c2cd37b00acdc60fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:f8:63:36:73:9d:38:28:3b:c1:d9:29:b6:69: 16:a9:b3:8a:8a:8b:12:aa:46:80:28:f6:9f:08:81: 02:2f:e5:99:7c:e9:74:17:a0:75:28:80:12:7f:70: 54:a8:f2:cc:dc:b3:25:58:93:44:cf:ba:ef:c5:bc: c2:5f:e0:de:04:17:d2:68:97:63:12:de:52:30:77: a9:2e:87:ca:9b:86:fb:de:03:1c:af:bb:9b:e4:96: bf:9a:11:b9:b9:cb:9d:9c:23:cc:32:7f:db:0b:ab: c6:d2:2e:b9:ca:0d:d5:84:11:a2:03:d9:50:e0:63: b3:1b:30:2a:d2:a4:6b:38:aa:3b:c4:af:20:48:77: dd:74:9a:d3:99:14:e2:09:6f:3f:11:0a:e7:92:29: 51:fa:92:cf:5f:dc:48:e1:9e:b6:2b:8e:37:21:31: 74:9a:a2:2f:1d:a9:15:8c:08:47:91:64:0c:6e:a4: 01:71:eb:14:a1:99:8b:7f:37:28:dd:f8:e0:ff:9c: fc:94:a5:2c:f1:c3:62:63:8f:9c:60:05:0f:7a:4b: 05:b8:4b:3e:c6:1c:b4:88:fb:84:b4:05:bc:1c:7e: ae:e6:e5:0a:ab:70:5d:1a:b8:62:d3:e8:be:cf:e1: 8a:bf:8d:a2:54:2b:21:9a:87:68:77:f3:44:d3:f6: 17:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:25:A6:3B:40:23:E5:49:DB:14:04:A5:16:9E:B6:31:86:A8:B9:91 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c57f3080-c868-4c69-a23e-8d9d7dce91cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.130.0.0/16 Signature Algorithm: sha256WithRSAEncryption 53:56:9e:c3:4b:a9:1b:a1:fe:bf:c8:97:6f:16:d0:14:78:fd: 07:8d:15:83:b6:08:5e:7d:65:0b:c6:b3:8b:58:ce:a6:27:8c: 85:36:40:7d:5a:ef:dc:9e:6e:0f:f7:9d:6e:57:1b:ce:8b:3a: 03:c3:64:04:10:83:6f:1e:a4:e3:2b:34:e7:11:a9:de:5d:78: 82:da:e0:5c:fd:40:96:8b:59:99:3a:27:e9:22:09:1a:cd:05: f7:f7:d4:02:7c:47:62:23:62:bd:b0:97:34:8a:71:76:4b:2f: f7:2d:f9:c5:de:95:fd:27:ff:b6:da:42:14:17:88:4d:2c:d1: 1a:ba:6d:04:03:8c:ea:dc:69:5c:b4:b5:b8:3f:fb:91:54:b7: cb:6a:f2:36:05:8b:67:67:55:ee:fb:8f:c9:43:c8:e4:dc:18: 33:57:5d:44:76:19:04:80:64:19:ef:21:b1:35:61:3a:25:e6: 70:49:32:51:75:54:47:09:d1:ef:12:ab:a9:27:9a:ac:d7:6d: 3f:ee:35:8f:85:a1:f8:77:53:da:0b:8e:c3:76:e8:cd:46:bc: 4a:85:51:6b:47:4c:82:fa:b9:95:94:1f:a2:91:1f:78:47:f7: a0:8f:c9:22:40:e8:f3:66:2c:65:03:1d:b0:a6:7b:ca:08:70: 96:b0:08:8c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNP1/wkDjeZIukSNK17TLiBJXeTMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAyMDAwMDMzWhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGY5Mjk5OTFlNTkxMmNlMGI5MjAwNjE1YTRlZmFlYmYx NjU2MWFlMjM1OGExMmMyY2QzN2IwMGFjZGM2MGZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCL+GM2c504KDvB2Sm2aRaps4qKixKqRoAo9p8IgQIv5Zl8 6XQXoHUogBJ/cFSo8szcsyVYk0TPuu/FvMJf4N4EF9Jol2MS3lIwd6kuh8qbhvve Axyvu5vklr+aEbm5y52cI8wyf9sLq8bSLrnKDdWEEaID2VDgY7MbMCrSpGs4qjvE ryBId910mtOZFOIJbz8RCueSKVH6ks9f3EjhnrYrjjchMXSaoi8dqRWMCEeRZAxu pAFx6xShmYt/Nyjd+OD/nPyUpSzxw2Jjj5xgBQ96SwW4Sz7GHLSI+4S0Bbwcfq7m 5QqrcF0auGLT6L7P4Yq/jaJUKyGah2h380TT9hezAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU7CWmO0Aj5UnbFASlFp62MYaouZEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1N2YzMDgwLWM4NjgtNGM2OS1hMjNlLThkOWQ3ZGNlOTFjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQgjANBgkqhkiG9w0BAQsFAAOCAQEAU1aew0upG6H+v8iXbxbQFHj9B40V g7YIXn1lC8azi1jOpieMhTZAfVrv3J5uD/edblcbzos6A8NkBBCDbx6k4ys05xGp 3l14gtrgXP1AlotZmTon6SIJGs0F9/fUAnxHYiNivbCXNIpxdksv9y35xd6V/Sf/ ttpCFBeITSzRGrptBAOM6txpXLS1uD/7kVS3y2ryNgWLZ2dV7vuPyUPI5NwYM1dd RHYZBIBkGe8hsTVhOiXmcEkyUXVURwnR7xKrqSearNdtP+41j4Wh+HdT2guOw3bo zUa8SoVRa0dMgvq5lZQfopEfeEf3oI/JIkDo82YsZQMdsKZ7yghwlrAIjA== -----END CERTIFICATE-----Generated at Mon May 5 04:08:16 2025 by rpki-client