$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e7e048-17ef-4bc7-a201-80d9e52f87a4.roa File: 21e7e048-17ef-4bc7-a201-80d9e52f87a4.roa (raw, json) Hash identifier: x0fEesy87YwBmtKefM7QOh5WZfdS8+IWWnOc4gXCnTQ= Subject key identifier: 57:25:0D:C7:9F:43:F3:1A:B5:7D:4F:AA:EB:9C:B1:15:05:58:3C:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5FBB7E8C7F307C686680451FC501C523285A215F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e7e048-17ef-4bc7-a201-80d9e52f87a4.roa Signing time: Sat 29 Mar 2025 00:31:36 +0000 ROA not before: Sat 29 Mar 2025 00:31:36 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.176.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:bb:7e:8c:7f:30:7c:68:66:80:45:1f:c5:01:c5:23:28:5a:21:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:31:36 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4b:31:b9:c4:a8:6c:28:42:14:f0:8a:b9:ec: d9:ad:ac:07:a1:66:e8:14:ec:3a:77:1a:a2:fb:c5: a0:51:2f:7e:57:c0:c7:b1:e2:34:e8:c5:b5:dd:24: 99:23:a0:9d:5d:99:f5:3e:0a:ab:0b:0b:35:91:25: 99:d8:f8:d3:a1:bf:62:7e:d7:95:9a:bf:f9:e5:1a: 39:e7:82:a8:27:7e:2d:76:1c:00:35:02:fd:bb:5d: b4:4f:1a:fa:b5:e5:b4:99:d6:31:3d:72:c7:58:9b: f6:dc:5b:bd:c2:e7:28:fa:f3:76:4f:7f:3c:8f:ab: 42:a8:07:24:4f:64:d1:49:c5:a8:d6:d8:f6:d9:4e: 71:57:86:d2:90:04:c4:04:40:b0:83:8f:54:37:03: a8:d8:2d:1b:97:97:e8:85:1b:b2:31:e2:d4:da:db: f6:69:d3:8a:b1:c6:7e:70:b7:13:99:3b:7b:2c:2a: ad:15:fc:31:e3:28:a8:4b:a7:8f:24:8c:23:f6:1d: f4:0f:fa:2c:3f:e0:cb:3b:b6:37:6f:29:a8:35:c2: 55:4c:e5:52:b9:67:2c:2e:97:52:c0:db:ad:79:34: d7:d2:32:41:6d:20:97:05:1d:d2:8f:3e:f4:04:9c: 34:b2:5b:e4:48:16:5d:4b:2e:b7:9d:9a:bb:1f:61: 02:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:25:0D:C7:9F:43:F3:1A:B5:7D:4F:AA:EB:9C:B1:15:05:58:3C:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e7e048-17ef-4bc7-a201-80d9e52f87a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.176.0.0/16 Signature Algorithm: sha256WithRSAEncryption 60:41:36:00:39:63:c3:0a:d0:35:d9:32:29:d6:03:6a:f0:46: 3e:e9:b1:da:0b:72:7f:85:5a:8c:67:39:7c:c1:0b:41:fd:4c: 54:e8:cf:ba:3f:dd:19:06:7e:35:72:03:7a:8c:4e:4c:f6:c8: 5d:84:8e:27:f2:3f:64:97:f9:87:04:c1:83:fd:3e:84:ce:bd: c5:ad:36:34:37:62:73:65:2b:01:d6:b8:cf:b3:84:64:fd:c4: e8:b0:59:cc:b5:7e:76:84:f1:f6:02:31:97:7d:e4:6c:24:b4: bb:b8:91:b5:e5:e6:4d:0b:01:c7:4f:5b:d4:fb:e5:45:ca:a6: 9a:4d:a6:6a:fe:c4:ab:5a:6d:36:5e:02:c6:b0:d7:51:ab:6d: be:c1:aa:c0:4d:69:81:8d:74:0c:e9:38:c1:54:ef:b2:34:93: d8:6d:89:14:cc:ab:5f:45:ef:3b:16:2d:26:b1:ce:ae:13:54: 49:b2:8d:6e:18:e0:9e:b3:29:d9:4b:83:a8:03:86:92:44:1b: 61:f1:c1:cd:60:47:c0:16:e3:96:5a:fa:81:68:fa:b0:a0:75: 05:8e:09:83:30:f5:9b:90:eb:3f:e1:9d:c0:75:55:3d:1d:98: 31:16:de:1b:c0:f1:a6:e9:0f:d3:03:ac:cd:54:e0:0f:27:28: 50:6d:fa:68 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUX7t+jH8wfGhmgEUfxQHFIyhaIV8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDAzMTM2WhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZGNmOTRlMmM2YzY0ZjQ0YjM5OWZlZWFhYjM2NmZiMTA0 MDViMWFjYzdjZmEzZjBjNjYyMDEyM2Q5NDkzNzZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDSzG5xKhsKEIU8Iq57NmtrAehZugU7Dp3GqL7xaBRL35X wMex4jToxbXdJJkjoJ1dmfU+CqsLCzWRJZnY+NOhv2J+15Wav/nlGjnngqgnfi12 HAA1Av27XbRPGvq15bSZ1jE9csdYm/bcW73C5yj683ZPfzyPq0KoByRPZNFJxajW 2PbZTnFXhtKQBMQEQLCDj1Q3A6jYLRuXl+iFG7Ix4tTa2/Zp04qxxn5wtxOZO3ss Kq0V/DHjKKhLp48kjCP2HfQP+iw/4Ms7tjdvKag1wlVM5VK5Zywul1LA2615NNfS MkFtIJcFHdKPPvQEnDSyW+RIFl1LLredmrsfYQLhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVyUNx59D8xq1fU+q65yxFQVYPOQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxZTdlMDQ4LTE3ZWYtNGJjNy1hMjAxLTgwZDllNTJmODdhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQsDANBgkqhkiG9w0BAQsFAAOCAQEAYEE2ADljwwrQNdkyKdYDavBGPumx 2gtyf4VajGc5fMELQf1MVOjPuj/dGQZ+NXIDeoxOTPbIXYSOJ/I/ZJf5hwTBg/0+ hM69xa02NDdic2UrAda4z7OEZP3E6LBZzLV+doTx9gIxl33kbCS0u7iRteXmTQsB x09b1PvlRcqmmk2mav7Eq1ptNl4CxrDXUattvsGqwE1pgY10DOk4wVTvsjST2G2J FMyrX0XvOxYtJrHOrhNUSbKNbhjgnrMp2UuDqAOGkkQbYfHBzWBHwBbjllr6gWj6 sKB1BY4JgzD1m5DrP+GdwHVVPR2YMRbeG8DxpukP0wOszVTgDycoUG36aA== -----END CERTIFICATE-----Generated at Sat Apr 5 11:12:58 2025 by rpki-client