$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16156a62-fdc2-45e5-b359-c8bbf5f3c546.roa File: 16156a62-fdc2-45e5-b359-c8bbf5f3c546.roa (raw, json) Hash identifier: tW2jc0ArTbZ/LpEPKxNlGkfy0V2H/A8Rknt83iboSgs= Subject key identifier: 58:2C:51:8B:5D:32:BC:A1:F4:E0:43:17:8D:AB:F1:82:06:44:C2:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19B960A9CCAFF359222CDC05247BCFE952078E49 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16156a62-fdc2-45e5-b359-c8bbf5f3c546.roa Signing time: Fri 16 May 2025 16:10:51 +0000 ROA not before: Fri 16 May 2025 16:10:51 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 142.60.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:b9:60:a9:cc:af:f3:59:22:2c:dc:05:24:7b:cf:e9:52:07:8e:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 16:10:51 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=43a4a6016e1cc66581d6eb9aee5719d31cf2a7c2468ac477911dc3fd4a03cd35, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:35:38:92:7f:ec:4f:0d:1c:72:f4:23:5e:4f: 24:ef:ad:25:7c:74:45:39:39:e0:71:c0:cd:71:56: 0d:bc:30:06:fb:f9:12:02:54:44:bb:03:91:b6:41: c8:29:c1:80:7d:71:87:c2:f1:34:a7:3d:78:b6:8f: 07:83:3a:bc:68:fe:a5:7e:9b:86:df:6e:00:a9:05: 6a:72:47:2c:81:38:f4:21:2f:95:e2:62:7f:d2:ea: 5e:32:9f:8b:0f:b3:96:2d:74:86:3d:7b:34:51:db: 6f:c4:38:de:6a:13:36:84:54:c5:90:71:e8:e7:bb: 23:82:2f:59:fe:7c:85:24:94:ce:35:05:ad:7e:52: 57:24:19:d5:97:37:c6:bd:01:91:35:7b:b4:36:e9: 9f:6d:df:20:fb:56:e2:11:81:c1:31:e8:54:42:7c: e6:51:80:9e:41:ee:78:df:e3:07:0b:06:f5:fe:bb: a3:44:3a:06:95:e8:80:e2:b7:dd:f1:1b:57:3e:25: a5:d3:67:75:46:bd:88:9c:19:a2:fa:11:0d:a3:26: 77:98:ac:6f:b5:c9:fa:3f:13:61:03:76:f2:d0:ea: 9d:4a:3d:a2:02:71:ac:44:06:58:7e:27:76:41:0c: d5:a1:50:03:f2:85:42:ac:2c:0f:c8:8d:4f:11:e2: 09:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:2C:51:8B:5D:32:BC:A1:F4:E0:43:17:8D:AB:F1:82:06:44:C2:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16156a62-fdc2-45e5-b359-c8bbf5f3c546.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.60.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:2b:41:18:9b:9d:46:6a:ab:d5:0b:45:8b:07:ea:da:d0:bc: c4:92:a9:fb:b0:cf:fb:dd:63:18:11:ef:43:df:ed:9b:3f:1f: 08:b7:bc:24:c4:f6:48:75:25:a5:e4:77:81:98:a5:7b:c5:d9: 06:43:2b:63:7b:58:25:da:b7:14:de:25:23:9d:c4:3b:38:65: 30:38:f8:32:a4:79:90:66:e8:74:cc:d0:56:66:ef:c5:cb:26: ac:d5:4e:d7:0f:71:6a:2f:d3:02:fe:db:8b:c4:29:0e:cf:7a: 8f:04:5d:c3:6a:be:65:1f:3f:71:72:9a:2d:b5:e2:53:1f:0c: fa:72:27:96:ea:65:d0:45:8d:e7:dd:19:5d:61:54:f0:7d:b7: 83:3a:64:42:ab:a4:4f:48:a9:a3:df:a8:3a:24:c8:c9:1a:01: 50:da:0e:a4:68:20:70:35:6a:4a:ce:9e:13:80:55:78:d5:38: 2f:ec:87:d7:c6:17:0d:a2:1c:b3:76:da:e0:5d:d0:08:39:db: 04:c5:0a:6a:3a:86:89:de:69:38:09:90:6d:12:36:92:87:09: 8f:cc:2c:50:25:cf:bb:a3:cc:69:da:e5:79:56:26:8d:0a:d5: 63:5c:7e:ae:3f:a2:ed:a7:04:d1:b0:80:97:b5:70:d0:b3:40: 2e:71:16:7c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGblgqcyv81kiLNwFJHvP6VIHjkkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE2MTYxMDUxWhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0M2E0YTYwMTZlMWNjNjY1ODFkNmViOWFlZTU3MTlkMzFj ZjJhN2MyNDY4YWM0Nzc5MTFkYzNmZDRhMDNjZDM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPNTiSf+xPDRxy9CNeTyTvrSV8dEU5OeBxwM1xVg28MAb7 +RICVES7A5G2QcgpwYB9cYfC8TSnPXi2jweDOrxo/qV+m4bfbgCpBWpyRyyBOPQh L5XiYn/S6l4yn4sPs5YtdIY9ezRR22/EON5qEzaEVMWQcejnuyOCL1n+fIUklM41 Ba1+UlckGdWXN8a9AZE1e7Q26Z9t3yD7VuIRgcEx6FRCfOZRgJ5B7njf4wcLBvX+ u6NEOgaV6IDit93xG1c+JaXTZ3VGvYicGaL6EQ2jJneYrG+1yfo/E2EDdvLQ6p1K PaICcaxEBlh+J3ZBDNWhUAPyhUKsLA/IjU8R4gkdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWCxRi10yvKH04EMXjavxggZEwlAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2MTU2YTYyLWZkYzItNDVlNS1iMzU5LWM4YmJmNWYzYzU0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCOPDANBgkqhkiG9w0BAQsFAAOCAQEAkytBGJudRmqr1QtFiwfq2tC8xJKp +7DP+91jGBHvQ9/tmz8fCLe8JMT2SHUlpeR3gZile8XZBkMrY3tYJdq3FN4lI53E OzhlMDj4MqR5kGbodMzQVmbvxcsmrNVO1w9xai/TAv7bi8QpDs96jwRdw2q+ZR8/ cXKaLbXiUx8M+nInlupl0EWN590ZXWFU8H23gzpkQqukT0ipo9+oOiTIyRoBUNoO pGggcDVqSs6eE4BVeNU4L+yH18YXDaIcs3ba4F3QCDnbBMUKajqGid5pOAmQbRI2 kocJj8wsUCXPu6PMadrleVYmjQrVY1x+rj+i7acE0bCAl7Vw0LNALnEWfA== -----END CERTIFICATE-----Generated at Sun Jun 1 05:03:07 2025 by rpki-client