$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02368d39-5a4f-44bd-a7b6-9d87f3fcc37b.roa File: 02368d39-5a4f-44bd-a7b6-9d87f3fcc37b.roa (raw, json) Hash identifier: YRZVyN5ODdhNSw4HkdeSP5fmp0pWLKnfaClHcz4sDNI= Subject key identifier: 79:A5:58:AB:29:FF:59:65:68:EC:2B:4D:1C:80:B8:E9:17:A6:BF:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D0D6FDF965D3A4BCE3B95AF02946386F7D2FA13 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02368d39-5a4f-44bd-a7b6-9d87f3fcc37b.roa Signing time: Wed 12 Mar 2025 00:10:34 +0000 ROA not before: Wed 12 Mar 2025 00:10:34 +0000 ROA not after: Wed 16 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.31.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:0d:6f:df:96:5d:3a:4b:ce:3b:95:af:02:94:63:86:f7:d2:fa:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 00:10:34 2025 GMT Not After : Apr 16 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:85:f7:f5:70:0f:af:52:02:1c:5e:ca:84:b3: 8c:bf:64:fc:e1:5b:93:00:40:99:cc:86:61:bd:a1: 4c:b9:08:fd:32:5f:95:e6:c8:c2:89:a3:c1:06:e1: d3:a8:35:90:b9:34:05:f9:bb:41:70:ec:e9:f0:01: fa:b7:3f:a4:84:2a:c1:42:00:d4:d2:82:4d:59:9a: 2b:87:51:08:5a:e6:38:c6:08:3c:88:07:09:7b:85: ea:fe:39:72:61:73:3d:d3:66:50:1d:2a:2c:65:57: d0:07:53:67:c5:b9:63:70:a5:9d:79:9d:46:3f:88: d9:4b:bd:21:5e:ad:eb:50:7a:be:c4:87:d5:40:21: 7e:8f:a6:b1:44:e0:a8:29:9d:4e:22:f1:ee:1d:28: c1:7d:3c:04:1d:a6:cb:16:12:96:45:2a:9f:03:2b: 6b:25:5c:6c:72:8e:98:65:2f:96:2b:e3:a3:a9:18: 0e:95:60:ff:c7:1d:e9:f0:b4:da:8f:3f:70:6c:f3: a9:5b:8e:b0:d6:5a:06:37:4b:3d:b2:9a:8c:14:be: 7c:e5:8f:8b:d2:d8:12:f8:eb:ff:e2:a8:43:80:05: f0:6a:59:cf:5d:b4:f0:3d:89:0d:63:a6:63:20:3c: ea:2e:05:e2:04:7a:f8:95:99:93:41:1a:fc:2b:6c: 03:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:A5:58:AB:29:FF:59:65:68:EC:2B:4D:1C:80:B8:E9:17:A6:BF:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02368d39-5a4f-44bd-a7b6-9d87f3fcc37b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.31.0.0/16 Signature Algorithm: sha256WithRSAEncryption 97:15:0c:90:b0:48:4d:1b:b5:e3:83:cc:84:ef:d9:c0:37:e3: af:10:2a:68:36:d8:97:15:93:81:d7:5a:38:39:e7:aa:0a:53: 34:03:d3:fc:f9:f3:ca:9b:41:39:08:7c:59:31:dd:e3:83:97: 5a:24:7c:9d:fc:dd:98:8a:f4:9d:0b:37:22:a2:7d:a0:52:7a: 13:d8:04:f3:80:94:6f:4a:fe:fe:1b:9a:50:5a:41:de:3c:47: 11:ee:7c:54:44:d1:c6:72:00:e3:8c:74:33:e2:87:02:75:f7: 8f:89:51:d7:e4:f9:11:b2:1f:94:cd:b7:ae:7a:62:ba:2e:f7: 1b:cf:91:85:03:6c:c2:3f:f8:04:4b:eb:87:14:df:69:d7:4a: c0:47:c7:bb:6a:04:f5:f4:f3:b9:3d:99:c6:1e:c2:84:79:e6: f6:a0:d0:f9:ad:89:62:fc:d7:b1:75:02:41:1f:1c:70:38:c6: b1:f1:76:a4:85:df:24:c2:03:c3:67:b0:b3:2d:87:2c:67:ba: b5:3f:ce:21:d3:31:c9:b9:6e:f7:6c:9a:72:97:76:cc:0a:94: 0f:4e:f0:71:47:77:75:b4:4c:94:5c:26:c3:c9:75:4f:3a:6d: aa:d2:42:1f:fe:d3:63:12:30:a5:fc:1e:79:95:8b:ea:31:97: 60:d2:79:a8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDQ1v35ZdOkvOO5WvApRjhvfS+hMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEyMDAxMDM0WhcNMjUwNDE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWJjMjY4Mjg2OTMzN2I2NjE4Y2Y0OGVmN2I0YmUyNWVj ZTZjZTM1NzFhNmI4MTY0ZjUzNGRiN2VjODhkNzBiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQhff1cA+vUgIcXsqEs4y/ZPzhW5MAQJnMhmG9oUy5CP0y X5XmyMKJo8EG4dOoNZC5NAX5u0Fw7OnwAfq3P6SEKsFCANTSgk1ZmiuHUQha5jjG CDyIBwl7her+OXJhcz3TZlAdKixlV9AHU2fFuWNwpZ15nUY/iNlLvSFeretQer7E h9VAIX6PprFE4KgpnU4i8e4dKMF9PAQdpssWEpZFKp8DK2slXGxyjphlL5Yr46Op GA6VYP/HHenwtNqPP3Bs86lbjrDWWgY3Sz2ymowUvnzlj4vS2BL46//iqEOABfBq Wc9dtPA9iQ1jpmMgPOouBeIEeviVmZNBGvwrbAPnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeaVYqyn/WWVo7CtNHIC46Remv7UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAyMzY4ZDM5LTVhNGYtNDRiZC1hN2I2LTlkODdmM2ZjYzM3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQHzANBgkqhkiG9w0BAQsFAAOCAQEAlxUMkLBITRu144PMhO/ZwDfjrxAq aDbYlxWTgddaODnnqgpTNAPT/PnzyptBOQh8WTHd44OXWiR8nfzdmIr0nQs3IqJ9 oFJ6E9gE84CUb0r+/huaUFpB3jxHEe58VETRxnIA44x0M+KHAnX3j4lR1+T5EbIf lM23rnpiui73G8+RhQNswj/4BEvrhxTfaddKwEfHu2oE9fTzuT2Zxh7ChHnm9qDQ +a2JYvzXsXUCQR8ccDjGsfF2pIXfJMIDw2ewsy2HLGe6tT/OIdMxyblu92yacpd2 zAqUD07wcUd3dbRMlFwmw8l1TzptqtJCH/7TYxIwpfweeZWL6jGXYNJ5qA== -----END CERTIFICATE-----Generated at Sat Apr 5 11:18:06 2025 by rpki-client