$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f7a9e474-627b-490e-9c17-0532f7c8aeee.roa File: f7a9e474-627b-490e-9c17-0532f7c8aeee.roa (raw, json) Hash identifier: G2PzP/MYwryHcLD44OA3UjiQRfLVz684MulwolTHWS8= Subject key identifier: CC:F6:D3:35:67:2C:96:45:92:53:C6:4E:51:34:B3:2E:3C:83:BF:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1FABFB9E681825BA03CE1F5D8B3FB1A21D643E96 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f7a9e474-627b-490e-9c17-0532f7c8aeee.roa Signing time: Mon 28 Apr 2025 15:10:12 +0000 ROA not before: Mon 28 Apr 2025 15:10:12 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.23.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ab:fb:9e:68:18:25:ba:03:ce:1f:5d:8b:3f:b1:a2:1d:64:3e:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:10:12 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=c31342210f2d1e846725d39a0305280ac6743ba3fa78b39e490b1e8f1911d8d7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c5:43:06:55:25:62:9b:1c:45:98:a9:e1:45: ed:b6:5d:9e:48:b0:7c:fe:1f:b4:cf:8c:80:ea:52: c9:b8:77:0a:f9:78:6e:35:40:6d:e9:a5:5c:eb:71: ed:36:1f:c8:e8:1c:a0:e6:57:7f:0f:66:57:30:41: 04:bd:8d:15:38:dd:97:9e:c7:24:1e:ef:40:45:37: 0d:4d:95:e4:74:66:44:21:a5:2d:d6:a7:02:df:2d: 99:30:99:81:8c:4d:ef:f9:28:5c:45:51:df:3c:75: d3:11:6d:a8:c6:be:49:a9:2c:e1:e5:30:7b:69:55: 5d:54:7d:17:2b:b4:9d:bb:aa:e3:fa:1f:a3:47:eb: c5:df:cb:d6:51:ed:75:f9:70:7c:46:9b:a8:3b:b2: 1f:8c:eb:b7:fb:da:60:df:80:11:96:2f:f5:e8:7b: d1:27:29:fd:53:6f:6b:da:4b:d2:fc:0b:8a:1a:27: 9c:a0:9a:6d:25:33:e2:b1:5e:fb:47:e3:17:61:98: 2b:9c:64:20:03:df:63:ac:5f:6a:3c:71:c8:30:0f: 92:50:71:ca:a1:71:b3:e2:62:2d:19:3c:d8:33:6f: 1e:06:0f:29:5c:f1:98:97:d1:5b:c7:7a:49:7e:6d: 58:ca:0f:9e:3b:1e:3e:3d:72:30:aa:be:a6:a6:7b: 63:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F6:D3:35:67:2C:96:45:92:53:C6:4E:51:34:B3:2E:3C:83:BF:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f7a9e474-627b-490e-9c17-0532f7c8aeee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.23.0.0/16 Signature Algorithm: sha256WithRSAEncryption 81:68:e8:08:f2:7d:b0:48:75:21:cb:b3:d6:05:ec:31:69:2d: f6:77:70:ec:60:39:f5:de:b4:3c:da:39:61:f2:af:5f:6a:99: ab:76:9d:69:02:ed:99:5c:43:b3:f2:d5:d0:64:ca:85:d4:0d: 90:41:e7:ba:eb:34:f5:86:b2:3d:f1:2a:88:9e:ce:28:ac:51: 0d:94:65:d9:6f:db:41:75:a9:28:42:1a:20:48:bf:85:70:57: 7e:ad:a9:a6:5c:43:da:c8:d9:9d:c7:01:67:b6:5e:4d:e7:3f: 02:c7:e7:da:4c:90:0e:da:5f:4d:bb:e7:c0:93:b2:09:0c:47: ca:64:ae:92:a3:fd:bc:a9:b9:db:a8:e5:2e:06:ff:74:62:9c: 13:54:32:f2:7f:39:88:07:3c:3e:97:a5:9a:e8:98:15:2a:6a: 9f:9f:14:83:38:14:bb:ac:da:1f:68:60:c3:54:de:0a:24:a3: 69:d2:ec:0d:12:7c:51:b2:92:25:5c:1c:61:83:d2:64:22:a8: 59:cb:d9:5c:3a:e7:53:86:f1:14:ec:64:77:47:0d:d4:14:7a: 3d:13:a6:7e:9f:c5:c0:59:84:2a:ed:fb:d8:4d:18:f3:b1:c5: e5:3c:22:3d:4a:5e:ae:62:0b:70:96:2c:c5:a2:d0:f8:c5:f9: be:6c:5c:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUH6v7nmgYJboDzh9diz+xoh1kPpYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUxMDEyWhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMzEzNDIyMTBmMmQxZTg0NjcyNWQzOWEwMzA1MjgwYWM2 NzQzYmEzZmE3OGIzOWU0OTBiMWU4ZjE5MTFkOGQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4xUMGVSVimxxFmKnhRe22XZ5IsHz+H7TPjIDqUsm4dwr5 eG41QG3ppVzrce02H8joHKDmV38PZlcwQQS9jRU43ZeexyQe70BFNw1NleR0ZkQh pS3WpwLfLZkwmYGMTe/5KFxFUd88ddMRbajGvkmpLOHlMHtpVV1UfRcrtJ27quP6 H6NH68Xfy9ZR7XX5cHxGm6g7sh+M67f72mDfgBGWL/Xoe9EnKf1Tb2vaS9L8C4oa J5ygmm0lM+KxXvtH4xdhmCucZCAD32OsX2o8ccgwD5JQccqhcbPiYi0ZPNgzbx4G Dylc8ZiX0VvHekl+bVjKD547Hj49cjCqvqame2NpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzPbTNWcslkWSU8ZOUTSzLjyDv+IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y3YTllNDc0LTYyN2ItNDkwZS05YzE3LTA1MzJmN2M4YWVlZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFzANBgkqhkiG9w0BAQsFAAOCAQEAgWjoCPJ9sEh1Icuz1gXsMWkt9ndw 7GA59d60PNo5YfKvX2qZq3adaQLtmVxDs/LV0GTKhdQNkEHnuus09YayPfEqiJ7O KKxRDZRl2W/bQXWpKEIaIEi/hXBXfq2pplxD2sjZnccBZ7ZeTec/Asfn2kyQDtpf TbvnwJOyCQxHymSukqP9vKm526jlLgb/dGKcE1Qy8n85iAc8PpelmuiYFSpqn58U gzgUu6zaH2hgw1TeCiSjadLsDRJ8UbKSJVwcYYPSZCKoWcvZXDrnU4bxFOxkd0cN 1BR6PROmfp/FwFmEKu372E0Y87HF5TwiPUpermILcJYsxaLQ+MX5vmxcCw== -----END CERTIFICATE-----Generated at Mon May 5 13:04:18 2025 by rpki-client