$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22d8d62c-46ea-4668-b9c2-042f62204cad.roa File: 22d8d62c-46ea-4668-b9c2-042f62204cad.roa (raw, json) Hash identifier: kaVpEYNsBpoicocnu+gtbOTIioUQnKUXiNSzu3GAk/o= Subject key identifier: 50:10:17:FD:26:F8:12:69:0D:6F:FD:F7:C5:F5:99:96:89:8B:7B:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29587F20AC4FC0C2F54C98232C33E5E1E68FBA9B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22d8d62c-46ea-4668-b9c2-042f62204cad.roa Signing time: Fri 11 Apr 2025 00:10:25 +0000 ROA not before: Fri 11 Apr 2025 00:10:25 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.213.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:58:7f:20:ac:4f:c0:c2:f5:4c:98:23:2c:33:e5:e1:e6:8f:ba:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 11 00:10:25 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=77f27ff566f72a0e184078d5742a8ac74a22994b1397024d6a48fccdcdd735d8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2b:52:ab:60:41:df:13:3d:20:23:64:e8:10: a2:7c:a6:9e:5d:d8:1c:a5:11:1e:fd:7c:96:f1:91: d1:58:4c:20:ce:e5:0f:61:f1:30:d4:44:f9:58:cb: cc:b0:1d:e7:de:62:8c:74:c8:c3:ef:92:d8:3c:63: 4e:36:fe:fb:0f:70:29:5e:d0:dc:cf:0e:e4:2f:a9: 68:c2:b1:d4:e5:85:eb:3e:3a:00:a6:be:03:62:8e: 80:a5:0f:44:24:09:38:f9:f4:29:15:1c:bd:5c:b8: a9:01:6b:63:78:f5:6e:8c:83:bd:0e:6a:fc:a1:d2: 4c:b0:53:cb:4a:23:76:af:b0:10:41:09:b5:fc:22: 59:24:a9:73:cd:d8:e3:a7:f3:5c:51:71:65:dd:2a: 2f:8b:07:7a:ae:5f:2f:49:52:c1:00:d2:eb:d5:0e: 3a:83:d9:45:0a:86:16:ae:e6:c1:52:9d:94:e9:52: 4b:31:08:fd:9a:30:b9:8c:7f:b3:2b:99:9f:c5:97: ce:c0:77:91:af:b0:53:60:d8:d7:b4:2f:10:3e:1a: 6b:08:e0:8d:1c:6a:fb:f9:d9:f2:22:62:f3:7a:96: 1a:5f:05:fe:e0:3c:75:76:4c:cc:a5:30:8a:9a:79: f9:f8:d8:2a:21:28:b8:75:9c:59:5d:7c:fc:37:83: d5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:10:17:FD:26:F8:12:69:0D:6F:FD:F7:C5:F5:99:96:89:8B:7B:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22d8d62c-46ea-4668-b9c2-042f62204cad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.213.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4f:a3:46:ba:7a:86:5b:49:d1:07:6f:70:16:e1:3c:d1:0a:26: 16:12:ef:0d:58:90:b9:a1:7e:46:86:52:10:53:89:c9:f1:17: 35:08:13:48:b2:71:1b:05:7b:89:23:5c:41:18:76:b2:22:45: 26:a8:0d:95:f4:eb:9d:ab:62:60:ff:17:6c:89:e4:fa:af:60: 40:49:0b:f7:81:0f:21:4a:19:01:12:53:f6:8a:54:a7:51:a0: 3f:c2:37:68:55:93:3c:86:43:dd:fe:3f:e0:a1:89:8a:80:18: e0:10:e5:91:c2:6a:e8:fe:5b:f6:bb:0f:02:e7:8e:58:bf:ab: 40:13:99:4e:ce:d4:3d:8a:2e:74:eb:4f:98:24:ca:e1:4e:c7: d4:ad:4c:aa:39:bf:9d:65:ff:26:18:81:a1:08:7d:6f:ec:20: a2:1a:ad:43:e4:c1:3d:c3:c1:5c:05:a9:25:0e:98:0b:54:03: ab:ef:42:0e:57:67:a0:d0:f5:68:c5:01:4d:ae:f5:2a:59:d6: ed:e6:b5:5c:ba:d5:81:02:31:d3:da:52:ea:de:37:5f:36:68: b3:b6:c9:00:4a:b9:82:7e:5a:0e:13:2e:00:a7:39:b2:dd:05: 1d:93:df:ed:8e:53:49:46:14:07:86:88:5b:3a:00:53:13:80: c4:5b:6c:70 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKVh/IKxPwML1TJgjLDPl4eaPupswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDExMDAxMDI1WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2YyN2ZmNTY2ZjcyYTBlMTg0MDc4ZDU3NDJhOGFjNzRh MjI5OTRiMTM5NzAyNGQ2YTQ4ZmNjZGNkZDczNWQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAK1KrYEHfEz0gI2ToEKJ8pp5d2BylER79fJbxkdFYTCDO 5Q9h8TDURPlYy8ywHefeYox0yMPvktg8Y042/vsPcCle0NzPDuQvqWjCsdTlhes+ OgCmvgNijoClD0QkCTj59CkVHL1cuKkBa2N49W6Mg70Oavyh0kywU8tKI3avsBBB CbX8IlkkqXPN2OOn81xRcWXdKi+LB3quXy9JUsEA0uvVDjqD2UUKhhau5sFSnZTp UksxCP2aMLmMf7MrmZ/Fl87Ad5GvsFNg2Ne0LxA+GmsI4I0cavv52fIiYvN6lhpf Bf7gPHV2TMylMIqaefn42CohKLh1nFldfPw3g9WBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUUBAX/Sb4EmkNb/33xfWZlomLezMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyZDhkNjJjLTQ2ZWEtNDY2OC1iOWMyLTA0MmY2MjIwNGNhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQ1TANBgkqhkiG9w0BAQsFAAOCAQEAT6NGunqGW0nRB29wFuE80QomFhLv DViQuaF+RoZSEFOJyfEXNQgTSLJxGwV7iSNcQRh2siJFJqgNlfTrnatiYP8XbInk +q9gQEkL94EPIUoZARJT9opUp1GgP8I3aFWTPIZD3f4/4KGJioAY4BDlkcJq6P5b 9rsPAueOWL+rQBOZTs7UPYoudOtPmCTK4U7H1K1Mqjm/nWX/JhiBoQh9b+wgohqt Q+TBPcPBXAWpJQ6YC1QDq+9CDldnoND1aMUBTa71KlnW7ea1XLrVgQIx09pS6t43 XzZos7bJAEq5gn5aDhMuAKc5st0FHZPf7Y5TSUYUB4aIWzoAUxOAxFtscA== -----END CERTIFICATE-----Generated at Wed Apr 16 16:47:06 2025 by rpki-client