$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa File: 6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa (raw, json) Hash identifier: yigcqrkmcj/Dt9xKla3EwrMdYtX9v6+6B2v3qpWW1QM= Subject key identifier: D9:D1:97:7E:AA:66:16:4C:58:E3:15:D3:F9:AA:1E:33:60:05:9D:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FFFB71E7086D30D978D17B360B91A0F506F6833 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa Signing time: Fri 04 Apr 2025 00:00:17 +0000 ROA not before: Fri 04 Apr 2025 00:00:17 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.11.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:ff:b7:1e:70:86:d3:0d:97:8d:17:b3:60:b9:1a:0f:50:6f:68:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:00:17 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:62:6a:60:bf:44:cd:91:f6:5b:f5:53:bf:3f: 86:19:7c:79:c0:b2:bb:28:39:e7:96:94:5d:ee:1d: 3e:64:08:54:4b:98:27:3c:7c:57:98:2b:cb:ad:4e: 43:bf:74:78:57:6f:2c:b8:04:9c:e4:9e:72:6a:96: 2c:1b:5b:38:56:02:6c:41:de:c7:cb:a3:b1:6d:6d: 61:a5:66:4a:09:d9:32:c9:fc:b1:53:15:10:33:d9: 84:11:98:ad:36:3b:ab:a8:22:fa:74:48:50:0b:6f: 24:6d:29:ea:89:45:60:53:d6:94:da:75:6a:17:46: 2b:0d:f4:c5:b5:3a:c4:7a:52:48:f0:7f:e3:9e:6e: d7:dc:f6:b9:6b:13:56:91:f1:2b:90:59:ac:8e:c3: 45:1e:a2:46:c2:81:bb:bb:19:95:db:89:ca:7c:08: 0d:4a:91:ca:db:d4:8b:de:29:97:4f:b4:7c:82:3d: 99:13:6e:06:5f:d6:58:fc:0e:57:20:b0:c8:ca:62: 2d:55:86:f5:2c:fa:32:08:73:e8:fc:ac:aa:92:f5: b8:bc:37:29:0e:a5:38:de:ba:ac:ca:d9:4d:34:fd: d9:77:81:f3:f5:a1:2a:e1:d5:2d:9c:d3:91:03:ef: 23:39:28:f6:0c:6b:fc:c4:96:76:3d:e8:18:b6:10: 56:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:D1:97:7E:AA:66:16:4C:58:E3:15:D3:F9:AA:1E:33:60:05:9D:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.11.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:74:fb:93:aa:fe:7e:5a:a7:4c:06:a3:e9:4b:3b:7d:a7:ac: 14:2c:3c:d3:ed:86:8c:73:ee:84:2f:c1:79:c8:fd:68:38:2a: bf:f8:4d:ec:6a:01:95:a5:cc:4e:4d:be:bd:84:a3:96:ac:16: 62:51:d8:0b:b1:0c:1a:b8:be:0f:ad:58:52:dc:18:18:99:9b: cb:89:02:0c:c6:96:b8:1d:05:ce:ce:60:9a:a7:49:d0:29:52: 50:f5:c7:69:06:31:c0:34:0d:49:95:a1:bc:64:31:87:10:da: 59:ad:0f:91:9a:0a:bc:47:e7:42:28:bb:a8:52:a0:7d:6d:03: fe:0e:df:f4:ab:5d:4b:f9:1f:11:95:73:68:cf:1e:fa:18:3c: 17:4a:40:40:56:9d:0b:ca:49:8c:01:3b:bd:48:e9:b9:7e:b4: 07:4c:04:2e:a3:b1:17:f2:6a:08:a5:5c:e0:2e:fb:81:d0:aa: 0c:96:0c:72:79:3c:76:9e:63:29:3c:1f:81:54:4a:8c:e7:ae: 00:c7:a0:a3:1e:1a:db:dd:a4:9a:e7:ca:37:b4:5e:2d:3b:83: 37:4a:2c:2d:72:c3:3a:0e:9b:ab:68:5d:5f:0e:b9:49:69:1a: ae:88:cc:21:4f:30:b2:1b:3f:2e:07:c8:19:16:e6:11:15:9d: 74:4d:28:6a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT/+3HnCG0w2XjRezYLkaD1BvaDMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAwMDE3WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2Y4MmFmZjQzODUxMTBmNmM2YTAzZWQxN2ExYTQ1ZjAw ZGIwZGZiZjM2ZTlhYmRlNmMxNTEwOTNhMmZlNzJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXYmpgv0TNkfZb9VO/P4YZfHnAsrsoOeeWlF3uHT5kCFRL mCc8fFeYK8utTkO/dHhXbyy4BJzknnJqliwbWzhWAmxB3sfLo7FtbWGlZkoJ2TLJ /LFTFRAz2YQRmK02O6uoIvp0SFALbyRtKeqJRWBT1pTadWoXRisN9MW1OsR6Ukjw f+Oebtfc9rlrE1aR8SuQWayOw0UeokbCgbu7GZXbicp8CA1Kkcrb1IveKZdPtHyC PZkTbgZf1lj8DlcgsMjKYi1VhvUs+jIIc+j8rKqS9bi8NykOpTjeuqzK2U00/dl3 gfP1oSrh1S2c05ED7yM5KPYMa/zElnY96Bi2EFaHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2dGXfqpmFkxY4xXT+aoeM2AFnTcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmNDQyNGYxLWExNTQtNGRjMy04MzhlLTU1M2NkZTBkNmQzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQCzANBgkqhkiG9w0BAQsFAAOCAQEAiHT7k6r+flqnTAaj6Us7faesFCw8 0+2GjHPuhC/Becj9aDgqv/hN7GoBlaXMTk2+vYSjlqwWYlHYC7EMGri+D61YUtwY GJmby4kCDMaWuB0Fzs5gmqdJ0ClSUPXHaQYxwDQNSZWhvGQxhxDaWa0PkZoKvEfn Qii7qFKgfW0D/g7f9KtdS/kfEZVzaM8e+hg8F0pAQFadC8pJjAE7vUjpuX60B0wE LqOxF/JqCKVc4C77gdCqDJYMcnk8dp5jKTwfgVRKjOeuAMegox4a292kmufKN7Re LTuDN0osLXLDOg6bq2hdXw65SWkarojMIU8wshs/LgfIGRbmERWddE0oag== -----END CERTIFICATE-----Generated at Sat Apr 5 11:00:23 2025 by rpki-client