$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa File: d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa (raw, json) Hash identifier: 52MDJ5FqhmZWI5kzvcz0rPZrrR25NaYzLxyBr597wzw= Subject key identifier: 07:31:40:AC:0E:C5:4E:62:B7:C1:34:17:C3:16:C1:A3:99:05:31:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2155A399AB2CFD52E7D972366B952F2ED43EF5A6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa Signing time: Wed 23 Apr 2025 00:30:25 +0000 ROA not before: Wed 23 Apr 2025 00:30:25 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.107.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:55:a3:99:ab:2c:fd:52:e7:d9:72:36:6b:95:2f:2e:d4:3e:f5:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:30:25 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=42616f98caaed635fcb81f71375c5c290ee6add55b00ba75242fd7e2083123c2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1f:6f:5e:a9:c9:fe:41:fa:7a:89:1e:5f:52: 6f:f0:14:2c:16:25:d0:5b:88:a9:b7:42:70:77:bb: ea:40:dc:a8:b7:62:8c:bb:e2:fc:05:44:40:3f:70: c9:8c:ee:80:71:d1:9f:2a:c4:80:ad:49:47:78:09: 3c:de:c3:11:0a:a9:80:7a:f7:5a:7d:b1:e0:1c:ab: 13:0a:af:eb:b7:49:31:9f:80:fd:1b:91:ef:f2:64: 99:f4:18:b5:61:b0:19:b6:eb:b4:ee:c7:ae:6c:d6: c8:bf:54:c0:81:c0:b2:4d:2c:b3:78:c8:59:e5:6f: be:8e:c0:86:dd:b9:17:d3:4f:7f:f5:31:27:77:d0: 01:e1:ac:1d:7b:c5:42:61:ec:86:fc:21:4b:ac:2b: fe:68:8b:f3:ae:8e:6a:de:23:79:f9:0f:0e:8e:ff: 5a:a1:3d:00:5c:93:2b:08:41:5f:71:84:a0:31:e0: 39:c2:c8:c7:97:bf:70:b8:43:4f:a5:7e:ac:f3:43: 88:84:16:56:ab:89:fd:9e:ef:23:db:57:eb:7f:87: 16:f8:fc:d4:e4:8e:41:2f:5d:52:41:a2:7e:ce:d7: 09:c1:89:8e:1c:5f:a2:75:f1:fd:c0:3e:17:e0:e4: e6:3a:29:3b:26:e3:2b:d4:f8:94:df:60:b4:e8:8a: 56:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:31:40:AC:0E:C5:4E:62:B7:C1:34:17:C3:16:C1:A3:99:05:31:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.107.0.0/16 Signature Algorithm: sha256WithRSAEncryption 81:a6:33:98:c7:1b:fa:71:7f:d9:43:ce:8d:91:d7:0e:48:d5: cb:f7:e1:d0:13:4b:40:2f:29:09:03:b5:0f:6e:ed:68:56:ba: c5:dc:39:39:84:a4:2f:cc:09:f8:65:e3:24:ea:fc:de:29:04: bc:47:1a:80:bd:4a:4c:bd:60:c5:c8:bb:d1:b2:eb:ba:ed:93: f0:3f:be:af:f9:9c:43:e4:3c:25:77:8a:6d:11:d5:0a:84:cf: d1:42:a0:15:b8:b5:64:ca:97:af:c4:08:c1:7a:fe:21:73:70: 29:d2:cf:c4:7f:2f:99:77:a4:e8:8d:3f:ea:5e:3a:65:b2:f4: a1:8d:b5:38:ab:24:cf:81:d4:23:d1:de:80:fb:f8:a3:c5:a0: 0a:38:62:79:37:09:a5:dc:9a:22:24:5d:c4:59:c6:bd:3d:af: fd:f5:47:c3:cc:e0:56:f2:29:d0:4e:5b:99:37:28:24:b9:e6: 83:32:d4:54:a8:55:c4:e9:67:5a:c4:5c:a5:eb:37:e7:b1:ea: d3:cb:c9:ae:45:77:aa:58:2a:d8:29:f4:ca:ef:1e:53:57:7d: 0f:27:aa:90:b9:e2:05:41:15:f3:0a:31:4e:6a:4b:1a:13:22: 7d:bd:5d:45:0a:c3:5c:b7:4e:ab:37:30:8e:dc:16:a0:1c:33: e0:a9:bf:2b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIVWjmass/VLn2XI2a5UvLtQ+9aYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAzMDI1WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjYxNmY5OGNhYWVkNjM1ZmNiODFmNzEzNzVjNWMyOTBl ZTZhZGQ1NWIwMGJhNzUyNDJmZDdlMjA4MzEyM2MyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnH29eqcn+Qfp6iR5fUm/wFCwWJdBbiKm3QnB3u+pA3Ki3 Yoy74vwFREA/cMmM7oBx0Z8qxICtSUd4CTzewxEKqYB691p9seAcqxMKr+u3STGf gP0bke/yZJn0GLVhsBm267Tux65s1si/VMCBwLJNLLN4yFnlb76OwIbduRfTT3/1 MSd30AHhrB17xUJh7Ib8IUusK/5oi/OujmreI3n5Dw6O/1qhPQBckysIQV9xhKAx 4DnCyMeXv3C4Q0+lfqzzQ4iEFlarif2e7yPbV+t/hxb4/NTkjkEvXVJBon7O1wnB iY4cX6J18f3APhfg5OY6KTsm4yvU+JTfYLToilb1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBzFArA7FTmK3wTQXwxbBo5kFMU8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3OWY4MDFiLTM0OTktNGExZS1iZDRhLWM5M2RjOTViYmJhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQazANBgkqhkiG9w0BAQsFAAOCAQEAgaYzmMcb+nF/2UPOjZHXDkjVy/fh 0BNLQC8pCQO1D27taFa6xdw5OYSkL8wJ+GXjJOr83ikEvEcagL1KTL1gxci70bLr uu2T8D++r/mcQ+Q8JXeKbRHVCoTP0UKgFbi1ZMqXr8QIwXr+IXNwKdLPxH8vmXek 6I0/6l46ZbL0oY21OKskz4HUI9HegPv4o8WgCjhieTcJpdyaIiRdxFnGvT2v/fVH w8zgVvIp0E5bmTcoJLnmgzLUVKhVxOlnWsRcpes357Hq08vJrkV3qlgq2Cn0yu8e U1d9DyeqkLniBUEV8woxTmpLGhMifb1dRQrDXLdOqzcwjtwWoBwz4Km/Kw== -----END CERTIFICATE-----Generated at Mon May 5 04:30:00 2025 by rpki-client