$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a1758fc-d538-4c20-8988-f7f1dcf2e637.roa File: 4a1758fc-d538-4c20-8988-f7f1dcf2e637.roa (raw, json) Hash identifier: 0wa+Ko94SSLObJcNRe6r1TCGCM+hpEXWADYbJwVeQf4= Subject key identifier: F7:7F:D6:2C:3A:15:07:6D:01:94:90:C6:88:FD:35:E3:FA:A7:DB:8D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 081508165C775B9D09C5526207660B2281640BE8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a1758fc-d538-4c20-8988-f7f1dcf2e637.roa Signing time: Mon 07 Apr 2025 15:10:24 +0000 ROA not before: Mon 07 Apr 2025 15:10:24 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.166.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:15:08:16:5c:77:5b:9d:09:c5:52:62:07:66:0b:22:81:64:0b:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 7 15:10:24 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=00d40a5fb9b0a371d286951ac04ec537edf9ecce7366b0ac9a280429dfa17b7f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:79:d1:a0:bc:bf:66:86:30:6e:bf:44:ef:31: 87:19:9d:25:d8:dd:de:7c:1c:b0:1c:c8:e6:43:90: 80:4c:01:3d:36:7c:a1:92:da:6e:11:85:bc:77:84: 0b:7a:c0:24:61:b5:26:bb:09:81:7d:ce:24:c6:18: 28:f8:95:c1:96:a9:6d:51:1a:ae:3d:93:32:8e:b1: 3b:ec:16:c4:c1:f7:9a:f5:d7:ba:9d:d8:4f:4e:36: a8:4f:3d:25:58:d4:c6:af:b5:cb:35:50:7f:b6:7c: 43:9e:97:d4:f7:38:14:06:93:c9:c1:91:9a:0b:a7: b3:b3:b6:5e:c0:1f:b9:73:48:33:4a:bb:c5:f5:52: 44:2d:41:4c:ce:e6:7e:e4:6d:1e:d6:bf:95:63:97: d4:60:d0:f1:2c:ed:4c:9f:99:e9:85:b9:4c:9a:e2: 16:b7:3c:14:37:90:fc:6d:63:dc:94:fd:47:88:a3: 59:4d:c1:f3:f6:c1:74:3f:6c:92:35:33:5b:f2:0e: 66:1d:b7:65:b0:ef:33:18:12:e8:72:69:74:3c:99: 61:14:5d:23:8a:f9:8a:69:3f:8a:88:09:4f:db:b3: d8:bd:50:ef:a3:c2:92:b5:8b:95:a0:17:9c:ff:d0: 60:a4:50:7b:fa:4b:c7:c3:80:7c:24:a4:6a:c3:e6: 00:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7F:D6:2C:3A:15:07:6D:01:94:90:C6:88:FD:35:E3:FA:A7:DB:8D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a1758fc-d538-4c20-8988-f7f1dcf2e637.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2d:1b:01:69:67:2f:92:10:86:04:b4:c4:29:a1:77:60:a0:bf: 78:86:8a:1e:e4:99:a4:8c:b6:58:eb:49:c8:8e:6d:55:a9:6e: 5f:a9:b9:0f:a8:3a:36:de:f6:1b:ae:23:d0:da:a8:2d:c0:47: cd:bc:26:be:5e:09:a4:a0:26:2c:d0:26:b9:94:9c:6a:ff:cb: cb:bd:c6:f3:10:78:ea:ed:b5:d3:e6:15:f9:c1:c5:85:fc:2d: b8:5a:80:3a:62:1a:45:28:a1:3f:5b:af:26:22:1b:66:68:17: 36:2c:f0:5b:9c:ad:d6:55:89:2b:2b:2d:43:ac:75:b8:0b:73: ea:89:30:76:32:c7:f5:eb:05:34:d9:eb:c1:e1:4e:d5:51:73: 1d:8b:8a:b1:56:ef:0a:83:3e:2d:d3:04:21:1d:97:51:d9:37: e7:f9:ae:e4:cf:86:fb:63:e0:c6:b2:14:6c:6a:e3:c1:56:f4: e0:44:49:6b:9f:9c:3b:fe:1f:35:65:10:18:b0:19:86:b7:8b: ee:ed:b0:25:8c:1a:e6:14:43:9c:87:49:af:1e:7b:da:47:1e: e5:a7:68:a6:99:7b:e9:41:c0:c6:c6:e5:c6:00:2d:e8:39:f9: 01:6a:7d:6d:05:1e:62:d0:29:b6:49:b0:a1:6b:8a:df:3a:c2: a1:bf:47:de -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCBUIFlx3W50JxVJiB2YLIoFkC+gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA3MTUxMDI0WhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGQ0MGE1ZmI5YjBhMzcxZDI4Njk1MWFjMDRlYzUzN2Vk ZjllY2NlNzM2NmIwYWM5YTI4MDQyOWRmYTE3YjdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwedGgvL9mhjBuv0TvMYcZnSXY3d58HLAcyOZDkIBMAT02 fKGS2m4Rhbx3hAt6wCRhtSa7CYF9ziTGGCj4lcGWqW1RGq49kzKOsTvsFsTB95r1 17qd2E9ONqhPPSVY1Mavtcs1UH+2fEOel9T3OBQGk8nBkZoLp7Oztl7AH7lzSDNK u8X1UkQtQUzO5n7kbR7Wv5Vjl9Rg0PEs7UyfmemFuUya4ha3PBQ3kPxtY9yU/UeI o1lNwfP2wXQ/bJI1M1vyDmYdt2Ww7zMYEuhyaXQ8mWEUXSOK+YppP4qICU/bs9i9 UO+jwpK1i5WgF5z/0GCkUHv6S8fDgHwkpGrD5gBdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU93/WLDoVB20BlJDGiP014/qn240wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhMTc1OGZjLWQ1MzgtNGMyMC04OTg4LWY3ZjFkY2YyZTYzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQpjANBgkqhkiG9w0BAQsFAAOCAQEALRsBaWcvkhCGBLTEKaF3YKC/eIaK HuSZpIy2WOtJyI5tValuX6m5D6g6Nt72G64j0NqoLcBHzbwmvl4JpKAmLNAmuZSc av/Ly73G8xB46u210+YV+cHFhfwtuFqAOmIaRSihP1uvJiIbZmgXNizwW5yt1lWJ KystQ6x1uAtz6okwdjLH9esFNNnrweFO1VFzHYuKsVbvCoM+LdMEIR2XUdk35/mu 5M+G+2PgxrIUbGrjwVb04ERJa5+cO/4fNWUQGLAZhreL7u2wJYwa5hRDnIdJrx57 2kce5adoppl76UHAxsblxgAt6Dn5AWp9bQUeYtAptkmwoWuK3zrCob9H3g== -----END CERTIFICATE-----Generated at Wed Apr 16 17:00:32 2025 by rpki-client