$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f1c8f6-2174-4be4-a315-584040d5ba64.roa File: 25f1c8f6-2174-4be4-a315-584040d5ba64.roa (raw, json) Hash identifier: S62isKV7YQ5TqGnUfpuOLTWcqeJKV7UD+MATQ0tpUEM= Subject key identifier: F4:55:13:AB:F4:DE:EE:F5:36:F7:ED:87:7D:CE:0F:72:03:03:AA:A4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F188C3A81AC5812972E6FA4E27729EF5876778B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f1c8f6-2174-4be4-a315-584040d5ba64.roa Signing time: Tue 27 May 2025 00:01:00 +0000 ROA not before: Tue 27 May 2025 00:01:00 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.100.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:18:8c:3a:81:ac:58:12:97:2e:6f:a4:e2:77:29:ef:58:76:77:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 27 00:01:00 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=f882dea33fa16d07a3b2cf29ad6e6ef346f404e798941c161ba6619def20fef0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b8:48:27:26:66:88:5f:a0:64:df:b7:b8:15: 0e:54:6e:9a:1b:6a:e9:0c:04:9a:92:42:b7:26:c5: b2:f8:74:5a:c1:83:ff:f7:6a:75:e9:9d:0e:aa:2a: 53:8e:e5:06:b1:16:c6:6f:b7:8d:e5:68:40:9e:f1: 3e:d4:0d:15:fe:f9:03:d6:3b:78:a4:32:fb:ac:3a: 50:80:fe:d6:1b:c4:8b:e7:80:8d:fb:c7:9c:6e:17: 41:90:0a:e9:a7:e1:0d:5b:36:ce:a2:b3:7b:b1:91: 0e:1e:83:76:c3:96:5c:71:f9:92:28:ac:00:42:0d: 6b:cf:be:7e:5a:4a:79:14:e5:9d:86:3f:ff:6c:f7: 63:94:cf:dc:af:1e:98:3a:61:e6:fc:f2:98:9d:4d: 9b:55:6a:cb:cc:7c:5e:bc:8d:7a:bf:6f:92:6f:71: b8:78:5b:ff:b1:a3:22:75:b0:f0:16:8b:67:6a:08: 7b:a0:74:c3:d5:a3:02:ab:47:91:82:8b:a7:c1:df: 06:72:bf:5c:e2:b3:b9:d0:52:fe:07:22:35:f4:ad: b7:03:53:66:77:53:9f:8a:8d:62:ce:ab:59:e7:4f: b4:5a:31:3e:d5:e0:e5:4c:27:8b:58:91:be:da:77: 3c:3f:61:20:5e:5b:83:5c:23:c1:d9:42:62:ec:98: 20:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:55:13:AB:F4:DE:EE:F5:36:F7:ED:87:7D:CE:0F:72:03:03:AA:A4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f1c8f6-2174-4be4-a315-584040d5ba64.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.100.0.0/16 Signature Algorithm: sha256WithRSAEncryption 10:18:a3:88:0a:a1:ef:95:ab:f5:5a:cc:7b:d0:38:9c:18:a1: 54:0b:ee:11:66:cc:3b:78:b1:c7:96:4b:e6:20:39:75:d1:23: 42:15:9d:94:9f:43:8c:b9:1a:3d:4e:ae:6c:91:db:b9:11:d0: 31:c9:54:d3:de:86:40:79:40:8c:1a:2d:af:7d:08:cc:2b:ab: b8:0c:37:f6:fc:e0:47:9d:5e:3d:95:c1:42:f3:31:88:f5:7c: 22:25:c7:dc:87:25:f2:f3:48:f8:5b:30:e8:22:f1:ed:f1:25: 06:e4:21:a2:5f:d1:b1:29:d8:ee:60:da:a0:6c:95:5a:32:37: e5:29:f1:69:83:de:76:78:0f:ed:d3:cb:d0:76:0f:70:a0:66: 04:98:1a:58:c0:4e:72:8b:e9:ff:75:65:d2:39:16:8d:d5:20: 19:25:91:f8:f2:9e:77:12:b8:78:e5:52:0e:ca:3b:83:d7:b1: 85:d6:01:7b:4f:24:dc:02:1f:5f:0c:65:e7:27:9c:f1:bb:01: fb:9b:e5:5e:c5:59:7a:bf:b3:8e:fa:45:97:1f:f4:83:47:eb: 96:5f:ae:9d:eb:97:d5:3c:c6:f2:19:c7:ad:60:a5:5f:d6:ef: 04:22:6f:7c:c6:79:15:39:29:84:f8:df:23:73:c6:c8:76:ec: ec:bd:2b:ff -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTxiMOoGsWBKXLm+k4ncp71h2d4swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI3MDAwMTAwWhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmODgyZGVhMzNmYTE2ZDA3YTNiMmNmMjlhZDZlNmVmMzQ2 ZjQwNGU3OTg5NDFjMTYxYmE2NjE5ZGVmMjBmZWYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDquEgnJmaIX6Bk37e4FQ5UbpobaukMBJqSQrcmxbL4dFrB g//3anXpnQ6qKlOO5QaxFsZvt43laECe8T7UDRX++QPWO3ikMvusOlCA/tYbxIvn gI37x5xuF0GQCumn4Q1bNs6is3uxkQ4eg3bDllxx+ZIorABCDWvPvn5aSnkU5Z2G P/9s92OUz9yvHpg6Yeb88pidTZtVasvMfF68jXq/b5Jvcbh4W/+xoyJ1sPAWi2dq CHugdMPVowKrR5GCi6fB3wZyv1zis7nQUv4HIjX0rbcDU2Z3U5+KjWLOq1nnT7Ra MT7V4OVMJ4tYkb7adzw/YSBeW4NcI8HZQmLsmCBnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9FUTq/Te7vU29+2Hfc4PcgMDqqQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1ZjFjOGY2LTIxNzQtNGJlNC1hMzE1LTU4NDA0MGQ1YmE2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQZDANBgkqhkiG9w0BAQsFAAOCAQEAEBijiAqh75Wr9VrMe9A4nBihVAvu EWbMO3ixx5ZL5iA5ddEjQhWdlJ9DjLkaPU6ubJHbuRHQMclU096GQHlAjBotr30I zCuruAw39vzgR51ePZXBQvMxiPV8IiXH3Icl8vNI+Fsw6CLx7fElBuQhol/RsSnY 7mDaoGyVWjI35SnxaYPedngP7dPL0HYPcKBmBJgaWMBOcovp/3Vl0jkWjdUgGSWR +PKedxK4eOVSDso7g9exhdYBe08k3AIfXwxl5yec8bsB+5vlXsVZer+zjvpFlx/0 g0frll+uneuX1TzG8hnHrWClX9bvBCJvfMZ5FTkphPjfI3PGyHbs7L0r/w== -----END CERTIFICATE-----Generated at Sun Jun 1 05:10:37 2025 by rpki-client