$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a1758fc-d538-4c20-8988-f7f1dcf2e637.roa File: 4a1758fc-d538-4c20-8988-f7f1dcf2e637.roa (raw, json) Hash identifier: +JBkflbKsaFss63refIAUPtr4mkHXpSP4cCGkRtdjGI= Subject key identifier: 58:DE:52:36:B2:99:48:3F:4F:76:64:7B:B8:13:D5:9F:AD:9C:B1:EA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35B92196B653DEB11024B69FFBFB81098574710C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a1758fc-d538-4c20-8988-f7f1dcf2e637.roa Signing time: Tue 27 May 2025 00:11:04 +0000 ROA not before: Tue 27 May 2025 00:11:04 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.166.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:b9:21:96:b6:53:de:b1:10:24:b6:9f:fb:fb:81:09:85:74:71:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 27 00:11:04 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=39f77495d4477c928e5ff57fb33b7976caa0aba056cd740be31420f7a4a24499, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:fc:6c:22:87:92:80:8c:69:1d:1f:15:aa:8e: 73:86:d4:d6:21:cb:4a:95:d1:95:67:60:1a:b9:02: 49:6b:c1:88:f5:67:76:ae:cf:9f:4e:5d:6d:77:4a: 21:a0:f6:1e:fa:e9:39:3f:57:fe:34:dc:2e:1f:c9: 18:03:e3:0f:be:dd:8a:cf:19:a1:33:82:a0:2b:72: 2a:98:69:9c:ff:de:ec:84:7e:f0:d3:ac:8a:80:d2: 02:13:8c:bf:cd:2f:e9:62:02:64:c4:6b:79:59:9d: ad:c1:40:92:9e:79:93:46:4a:e1:66:42:c2:46:2e: 64:a1:4b:e8:9b:88:73:14:6d:72:56:01:8d:9d:bb: 7d:7e:21:71:63:38:c8:5e:0a:cd:19:92:64:9b:97: 20:8c:af:9c:42:f4:00:8f:53:a7:19:b9:11:c3:bc: f0:51:6a:b6:45:63:5a:6d:75:24:44:d3:80:c9:ac: ee:f9:94:f6:5f:ab:41:4d:b7:d1:4f:02:19:0a:87: b7:e3:16:f7:a6:9d:66:60:a4:80:ac:db:93:92:27: dc:b3:cb:ea:fe:d5:7d:c2:45:f5:3e:aa:a9:e8:60: ed:d6:c5:0a:04:e9:46:92:a5:1b:04:96:1d:45:e2: fb:57:1e:61:4d:d9:ed:0d:a4:e0:94:eb:19:44:cf: 08:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:DE:52:36:B2:99:48:3F:4F:76:64:7B:B8:13:D5:9F:AD:9C:B1:EA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a1758fc-d538-4c20-8988-f7f1dcf2e637.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:e0:ec:eb:71:54:f9:86:b7:4e:fe:3a:02:67:d3:15:bf:46: 5d:d6:24:7e:c1:65:e4:cc:b3:aa:20:d9:92:f3:ca:df:27:4e: 0a:37:6c:a5:50:3d:b0:94:cb:58:1c:8d:df:0e:82:d3:0f:5b: cc:8c:50:15:1e:a7:c8:10:b2:dd:a7:10:0a:d3:e9:38:a6:0c: f0:3e:2e:05:cf:5c:db:68:97:48:ba:eb:9a:c7:d1:bc:62:b9: b7:88:31:53:18:78:a7:aa:20:53:af:5e:ce:ea:2b:61:49:d7: 45:4d:83:84:f9:3b:50:3d:14:f2:68:0c:d0:64:fb:fc:69:b9: 51:b7:4b:87:7a:70:5b:82:0f:c1:cb:63:98:64:a9:6d:cc:64: 84:d6:c2:d5:b3:33:ed:ca:fd:33:1e:ca:b2:fe:c8:5b:2e:a7: 83:d4:ca:d9:16:c3:d3:43:3e:c5:5f:7e:01:77:4f:61:98:47: c0:f1:85:40:22:56:e5:b6:90:36:5f:81:5a:d5:81:af:d1:93: 3c:27:f6:c7:8c:12:74:5a:d4:ba:ca:2d:26:65:50:09:40:2b: f8:fd:55:64:23:c4:9e:3e:f2:9f:95:cc:bf:f1:e0:48:b0:bf: a3:42:35:35:76:13:0c:f3:69:7f:94:74:3a:90:0e:47:0b:4d: bd:0a:d9:e7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNbkhlrZT3rEQJLaf+/uBCYV0cQwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI3MDAxMTA0WhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzOWY3NzQ5NWQ0NDc3YzkyOGU1ZmY1N2ZiMzNiNzk3NmNh YTBhYmEwNTZjZDc0MGJlMzE0MjBmN2E0YTI0NDk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDq/Gwih5KAjGkdHxWqjnOG1NYhy0qV0ZVnYBq5AklrwYj1 Z3auz59OXW13SiGg9h766Tk/V/403C4fyRgD4w++3YrPGaEzgqArciqYaZz/3uyE fvDTrIqA0gITjL/NL+liAmTEa3lZna3BQJKeeZNGSuFmQsJGLmShS+ibiHMUbXJW AY2du31+IXFjOMheCs0ZkmSblyCMr5xC9ACPU6cZuRHDvPBRarZFY1ptdSRE04DJ rO75lPZfq0FNt9FPAhkKh7fjFvemnWZgpICs25OSJ9yzy+r+1X3CRfU+qqnoYO3W xQoE6UaSpRsElh1F4vtXHmFN2e0NpOCU6xlEzwjfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWN5SNrKZSD9PdmR7uBPVn62cseowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhMTc1OGZjLWQ1MzgtNGMyMC04OTg4LWY3ZjFkY2YyZTYzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQpjANBgkqhkiG9w0BAQsFAAOCAQEAk+Ds63FU+Ya3Tv46AmfTFb9GXdYk fsFl5MyzqiDZkvPK3ydOCjdspVA9sJTLWByN3w6C0w9bzIxQFR6nyBCy3acQCtPp OKYM8D4uBc9c22iXSLrrmsfRvGK5t4gxUxh4p6ogU69ezuorYUnXRU2DhPk7UD0U 8mgM0GT7/Gm5UbdLh3pwW4IPwctjmGSpbcxkhNbC1bMz7cr9Mx7Ksv7IWy6ng9TK 2RbD00M+xV9+AXdPYZhHwPGFQCJW5baQNl+BWtWBr9GTPCf2x4wSdFrUusotJmVQ CUAr+P1VZCPEnj7yn5XMv/HgSLC/o0I1NXYTDPNpf5R0OpAORwtNvQrZ5w== -----END CERTIFICATE-----Generated at Sun Jun 1 04:58:45 2025 by rpki-client