$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e687fa1-9b29-455d-9b8f-48a1ec23d39b.roa File: 4e687fa1-9b29-455d-9b8f-48a1ec23d39b.roa (raw, json) Hash identifier: 3eGisS53l9sj4XSZQ5bHrkbJqCdWf1QmG3ZZslSZ/5U= Subject key identifier: F5:4E:DF:2F:8B:C4:D0:8C:B0:AC:F7:0A:C8:B7:60:BD:AE:C0:C1:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CA0569B4A57622E7DD2F6BB61C70F76C212D7DE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e687fa1-9b29-455d-9b8f-48a1ec23d39b.roa Signing time: Wed 12 Mar 2025 00:11:54 +0000 ROA not before: Wed 12 Mar 2025 00:11:54 +0000 ROA not after: Wed 16 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.164.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:a0:56:9b:4a:57:62:2e:7d:d2:f6:bb:61:c7:0f:76:c2:12:d7:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 12 00:11:54 2025 GMT Not After : Apr 16 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9b:f3:de:e3:c2:60:a9:f0:6e:8b:b7:6e:d2: 50:30:18:c5:0d:63:2e:34:63:d4:29:7f:e4:d3:af: 05:c2:39:18:8c:6a:33:10:d7:7a:f3:43:87:fd:10: ed:e2:a7:bd:02:a0:2e:64:5a:8c:bc:84:2b:57:fe: 01:3f:3e:a2:f5:7a:bd:c2:db:4c:8d:a3:a3:e9:a2: c5:d4:c2:2e:88:61:50:2d:67:6a:06:2c:3b:8b:8e: 51:8c:80:79:07:2e:37:f9:2a:f7:00:b8:70:46:01: cd:4d:24:4e:4d:25:94:32:4d:9d:46:af:56:42:4c: 51:14:73:d7:2a:f9:d3:03:30:fe:88:71:2d:96:eb: 7e:eb:b7:45:1e:ac:45:ae:f0:5f:c8:9e:20:e5:23: 23:a2:d1:ae:61:21:e8:68:77:19:ab:a5:b6:9d:ab: b8:36:8d:da:31:41:ea:d7:a9:64:5a:4b:db:f6:aa: 64:98:d9:61:58:f6:39:98:a7:48:b7:e5:93:c9:57: df:37:f2:e3:c7:8c:2c:a6:5d:07:a6:c3:5a:63:29: 21:4f:83:97:bd:ec:0e:72:59:b3:10:24:86:81:a5: bc:39:f8:39:0e:07:94:df:71:a8:c4:a0:f5:a8:52: 6b:93:76:13:18:e1:6f:88:d3:de:e6:22:a7:17:48: 9a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:4E:DF:2F:8B:C4:D0:8C:B0:AC:F7:0A:C8:B7:60:BD:AE:C0:C1:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e687fa1-9b29-455d-9b8f-48a1ec23d39b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.164.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5d:d3:02:58:25:90:92:3a:a5:ce:eb:33:f5:ae:98:4f:ef:7e: b9:73:9a:cd:5b:cc:f9:cd:6b:30:42:8e:51:d9:c2:cc:69:a6: 72:f3:e8:c3:b1:d3:39:da:cf:bc:3e:56:b3:4d:e0:cc:bc:34: ce:c4:40:f2:9d:3a:8c:30:95:4f:c1:28:f7:16:20:2d:6f:91: 10:19:6d:ac:f3:94:8a:fc:14:e9:80:7d:76:40:30:58:2d:7f: 46:b9:d8:12:bb:b7:4e:6d:54:92:ed:a9:c7:06:2d:3a:be:60: 83:ef:27:31:71:d8:1d:e9:7e:72:25:77:64:a3:21:85:c2:e4: 04:8e:17:1d:69:b3:09:9b:fd:0f:d7:c4:d2:b6:2e:9d:e8:e2: b0:40:6f:3d:1a:6a:2f:5c:5a:84:b5:af:9e:ce:ad:ad:cf:8e: 33:01:e5:84:14:ad:a8:7c:75:3f:62:ce:68:28:e0:ae:26:82: 63:9b:d5:a7:f0:68:68:7a:9c:ac:79:73:4f:4e:81:b4:26:07: bc:c7:16:01:6b:fe:9b:98:5f:79:29:04:1e:6b:20:f3:e2:95: a3:46:c5:b7:f5:bc:72:a5:56:40:56:6e:98:5a:33:83:88:f3: 3f:73:3b:86:64:d9:ed:25:f4:18:ce:2f:1f:85:75:40:69:d0: 12:ab:c6:bf -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfKBWm0pXYi590va7YccPdsIS194wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEyMDAxMTU0WhcNMjUwNDE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYmE3M2RiNjNjMmM2YjJjZDViYjEwNDNmMjhhMjQ0YWQ2 YWZmNWMxNWQ4ZDg5NTY0NDY1MWEwM2RkMTQxMmQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcm/Pe48JgqfBui7du0lAwGMUNYy40Y9Qpf+TTrwXCORiM ajMQ13rzQ4f9EO3ip70CoC5kWoy8hCtX/gE/PqL1er3C20yNo6PposXUwi6IYVAt Z2oGLDuLjlGMgHkHLjf5KvcAuHBGAc1NJE5NJZQyTZ1Gr1ZCTFEUc9cq+dMDMP6I cS2W637rt0UerEWu8F/IniDlIyOi0a5hIehodxmrpbadq7g2jdoxQerXqWRaS9v2 qmSY2WFY9jmYp0i35ZPJV9838uPHjCymXQemw1pjKSFPg5e97A5yWbMQJIaBpbw5 +DkOB5TfcajEoPWoUmuTdhMY4W+I097mIqcXSJoVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9U7fL4vE0IywrPcKyLdgva7AweUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlNjg3ZmExLTliMjktNDU1ZC05YjhmLTQ4YTFlYzIzZDM5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQpDANBgkqhkiG9w0BAQsFAAOCAQEAXdMCWCWQkjqlzusz9a6YT+9+uXOa zVvM+c1rMEKOUdnCzGmmcvPow7HTOdrPvD5Ws03gzLw0zsRA8p06jDCVT8Eo9xYg LW+REBltrPOUivwU6YB9dkAwWC1/RrnYEru3Tm1Uku2pxwYtOr5gg+8nMXHYHel+ ciV3ZKMhhcLkBI4XHWmzCZv9D9fE0rYunejisEBvPRpqL1xahLWvns6trc+OMwHl hBStqHx1P2LOaCjgriaCY5vVp/BoaHqcrHlzT06BtCYHvMcWAWv+m5hfeSkEHmsg 8+KVo0bFt/W8cqVWQFZumFozg4jzP3M7hmTZ7SX0GM4vH4V1QGnQEqvGvw== -----END CERTIFICATE-----Generated at Thu Mar 13 23:52:58 2025 by rpki-client