$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65a01aad-4382-4698-b0f7-79abb6735744.roa File: 65a01aad-4382-4698-b0f7-79abb6735744.roa (raw, json) Hash identifier: 7Xxfvf3AwTyxUAv5+A7C9xUTRTQHZgk5MWnIV6WHfp0= Subject key identifier: 4F:D1:D0:C3:B6:46:0C:7F:0F:57:E9:A4:2E:E4:C8:FD:FA:6D:DC:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 417B4A83F91EF50B689116D0E090397B9E37FA34 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65a01aad-4382-4698-b0f7-79abb6735744.roa Signing time: Sat 29 Mar 2025 00:42:03 +0000 ROA not before: Sat 29 Mar 2025 00:42:03 +0000 ROA not after: Sat 03 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.57.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:7b:4a:83:f9:1e:f5:0b:68:91:16:d0:e0:90:39:7b:9e:37:fa:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 29 00:42:03 2025 GMT Not After : May 3 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:10:20:3d:c5:50:c2:b8:33:6c:7a:75:81:75: 0e:c3:97:a1:5c:d0:9d:a1:f7:7c:7f:e2:8c:88:21: 43:b5:a7:4f:71:8a:52:35:30:85:31:96:ca:0a:50: 1a:a8:8d:86:5e:bc:55:55:70:9a:6e:53:e4:1b:48: 8f:71:b1:f2:48:02:0c:e3:0e:1e:e7:ad:a7:21:54: 31:b2:e4:8d:bf:10:52:93:8a:16:cb:42:44:88:5f: 19:b3:30:9c:41:47:09:4e:5d:29:2b:c0:93:9a:1e: e6:65:25:3a:02:f9:06:f0:73:55:4f:c7:a0:14:a3: 2b:fe:7f:80:28:22:0e:17:89:35:d3:b6:4b:4d:c9: d2:f4:28:98:62:58:11:05:ce:8b:b8:7a:25:25:03: c0:e6:aa:68:70:f7:f0:de:b8:f5:ca:2b:05:9d:51: 89:a8:02:a0:1a:c6:60:24:60:3f:14:09:b6:bf:b6: 69:9f:5a:26:e6:ad:63:ba:8f:d8:69:8c:31:15:25: 3b:4c:47:49:c2:20:42:65:0a:36:4d:9d:9a:8c:a7: 94:c6:82:d5:13:c6:41:eb:64:90:ed:cb:53:00:7f: f0:d8:ed:e2:d8:20:7b:5a:4a:d2:e3:aa:cf:f7:b4: 65:f7:be:e9:d9:19:49:b5:1c:aa:2a:c0:cc:f6:56: a3:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D1:D0:C3:B6:46:0C:7F:0F:57:E9:A4:2E:E4:C8:FD:FA:6D:DC:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65a01aad-4382-4698-b0f7-79abb6735744.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.57.0.0/18 Signature Algorithm: sha256WithRSAEncryption 73:73:8a:36:9e:37:91:75:03:c5:46:c7:d3:24:93:15:eb:12: 08:09:8d:db:5f:e5:79:de:13:68:e4:9f:4f:56:08:d6:fb:c6: a9:b4:0c:ff:b8:c8:65:8a:eb:0e:9e:9d:4b:d8:dc:56:14:a5: ec:3d:b0:83:da:d6:e7:7c:97:25:ab:a8:e9:1e:d9:6f:3c:58: 5a:df:96:1f:6c:56:ca:65:a8:9c:6b:dd:cc:0e:15:d4:14:d0: 16:be:ad:df:4a:c0:cc:5c:2c:80:09:5a:7d:c4:0d:a1:73:bc: 4a:25:26:77:4a:8e:af:83:9d:e2:83:11:21:5e:8e:9b:17:fa: 73:c8:8e:e3:26:15:ec:b2:40:84:a1:7f:19:61:ba:f8:a7:b3: 37:cd:fa:61:82:50:ee:96:17:ad:63:f8:aa:0c:c1:cd:50:08: 42:e6:19:b2:cd:9b:35:22:b9:d4:de:3a:a2:cd:08:6c:e0:a3: a2:02:b9:af:e6:43:a9:79:1a:7a:9d:c8:f5:50:88:1a:71:2f: a3:6c:34:c4:05:25:aa:87:c2:7d:4e:f1:fb:d3:d4:61:1d:a9: a2:96:39:b7:9a:0c:a6:01:86:74:a2:47:f0:4f:f5:a4:be:d9: 31:db:15:2e:ba:51:e5:4d:de:d8:ef:8b:d2:80:cf:ae:30:2b: 79:d7:b9:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQXtKg/ke9QtokRbQ4JA5e543+jQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI5MDA0MjAzWhcNMjUwNTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZTE2ZDZkYTA3YjNlNWNiMWQwYTk2MmMzOTQ4MWIxZTQ4 YmNjMzE5M2U2ZDEyYjVjYjY4ZTUxODg1NmU1ZGE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzECA9xVDCuDNsenWBdQ7Dl6Fc0J2h93x/4oyIIUO1p09x ilI1MIUxlsoKUBqojYZevFVVcJpuU+QbSI9xsfJIAgzjDh7nrachVDGy5I2/EFKT ihbLQkSIXxmzMJxBRwlOXSkrwJOaHuZlJToC+Qbwc1VPx6AUoyv+f4AoIg4XiTXT tktNydL0KJhiWBEFzou4eiUlA8Dmqmhw9/DeuPXKKwWdUYmoAqAaxmAkYD8UCba/ tmmfWibmrWO6j9hpjDEVJTtMR0nCIEJlCjZNnZqMp5TGgtUTxkHrZJDty1MAf/DY 7eLYIHtaStLjqs/3tGX3vunZGUm1HKoqwMz2VqMXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUT9HQw7ZGDH8PV+mkLuTI/fpt3BYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1YTAxYWFkLTQzODItNDY5OC1iMGY3LTc5YWJiNjczNTc0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYQOQAwDQYJKoZIhvcNAQELBQADggEBAHNzijaeN5F1A8VGx9MkkxXrEggJ jdtf5XneE2jkn09WCNb7xqm0DP+4yGWK6w6enUvY3FYUpew9sIPa1ud8lyWrqOke 2W88WFrflh9sVsplqJxr3cwOFdQU0Ba+rd9KwMxcLIAJWn3EDaFzvEolJndKjq+D neKDESFejpsX+nPIjuMmFeyyQIShfxlhuvinszfN+mGCUO6WF61j+KoMwc1QCELm GbLNmzUiudTeOqLNCGzgo6ICua/mQ6l5GnqdyPVQiBpxL6NsNMQFJaqHwn1O8fvT 1GEdqaKWObeaDKYBhnSiR/BP9aS+2THbFS66UeVN3tjvi9KAz64wK3nXubQ= -----END CERTIFICATE-----Generated at Sat Apr 5 16:51:38 2025 by rpki-client