$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/565a7abe-8024-4d3c-9d79-823329f8cdf6.roa File: 565a7abe-8024-4d3c-9d79-823329f8cdf6.roa (raw, json) Hash identifier: USPdISCm8BHChMFXQ747FHHuZlXkwVZw9BGFFtYZMy4= Subject key identifier: 92:BC:EB:46:B6:FC:3D:B9:E2:5A:54:2F:7C:C5:2C:BE:E2:8F:56:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1657B26CCF52E88CBD5024AEA4A6E1F2D3570D77 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/565a7abe-8024-4d3c-9d79-823329f8cdf6.roa Signing time: Sat 24 May 2025 00:01:21 +0000 ROA not before: Sat 24 May 2025 00:01:21 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.146.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:57:b2:6c:cf:52:e8:8c:bd:50:24:ae:a4:a6:e1:f2:d3:57:0d:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:01:21 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=5223cafe82933fea6b838c8b3e14deecb3514b045a7c1cb62cb19b7471b01bbf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:b3:87:51:7d:1c:84:da:dd:e8:d9:b7:2d:01: 76:6a:b9:67:1e:23:6d:a7:18:c4:a9:5f:7f:16:40: bc:cf:78:b5:a4:71:f7:0d:67:28:b4:bf:80:af:ba: a4:f2:37:d1:89:dd:31:cb:d7:15:92:1a:d0:a9:e0: fd:a3:cf:9f:b3:a6:02:0b:73:36:b3:15:ff:a1:fb: 7a:d1:43:24:89:9c:f6:c7:de:e8:78:b8:f1:51:7c: c5:65:ea:03:13:f6:5d:b3:62:cd:5f:d1:fc:89:0f: 1a:ee:ed:99:5d:78:82:3b:1a:92:78:46:18:96:7c: 51:59:d9:7b:20:06:19:5c:5f:21:4a:52:81:76:f4: 31:e2:9e:86:3c:82:7f:5c:84:9e:24:27:2d:62:87: b4:58:ac:b4:b9:46:08:3e:a2:35:f9:c6:94:83:ca: de:83:98:b3:c4:fa:e0:cc:69:5a:74:59:6b:42:93: 3e:6f:0b:f9:8e:be:e3:84:a4:f6:70:03:84:c2:75: 34:38:3c:ab:30:88:d7:ec:1b:ed:16:0d:56:c2:5b: 96:4f:4b:f0:83:95:cc:ef:fb:93:dc:ce:87:0c:13: f1:91:ba:9a:e6:0c:1a:a4:38:d1:a5:fc:04:bb:c5: d6:f2:c6:39:d0:d7:52:0a:e7:01:d2:a6:cc:66:cb: 76:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:BC:EB:46:B6:FC:3D:B9:E2:5A:54:2F:7C:C5:2C:BE:E2:8F:56:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/565a7abe-8024-4d3c-9d79-823329f8cdf6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.146.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8e:5a:61:6c:18:4c:27:40:00:cd:0f:dd:c7:84:93:0f:1e:3d: 8f:2f:19:ba:41:95:a3:3a:0b:4f:94:90:90:07:4d:f8:e3:86: da:06:cb:6b:7a:6b:ba:23:df:c8:9d:3a:28:16:2f:5b:9a:0f: e3:77:b0:bb:be:44:a4:08:41:2c:38:95:57:b0:18:64:2b:3a: 9b:94:ff:24:a1:a7:26:3f:a4:33:b1:f6:7a:21:92:20:35:5d: 27:7d:94:c7:09:b0:70:5a:bd:93:45:0e:63:24:87:f9:4c:96: a8:71:69:88:cc:af:0c:6b:aa:ed:af:0c:3f:ea:9b:ce:c7:ec: cb:3d:7b:46:be:45:13:ed:14:2f:61:b5:8f:25:4e:64:ac:b4: 0c:bf:da:10:30:4d:72:ac:b8:ae:36:85:1a:c9:90:c0:b6:48: 98:21:71:f8:f7:67:77:bb:9b:02:8e:fa:15:30:05:fd:b2:a9: 3d:8b:91:2e:5d:f8:7d:0d:e1:81:3e:4a:da:52:f3:c0:08:9a: 28:0a:f8:a5:9d:1b:1a:cc:93:05:c5:ec:4d:5f:cc:5b:e6:c6: 2e:1a:4b:96:6d:61:f8:e6:21:9e:87:60:d0:02:d7:f1:b9:fe: ee:ec:c0:fb:67:35:63:25:88:b7:c4:3c:ad:10:9e:fe:a6:2c: f2:5b:d8:22 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFleybM9S6Iy9UCSupKbh8tNXDXcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAwMTIxWhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MjIzY2FmZTgyOTMzZmVhNmI4MzhjOGIzZTE0ZGVlY2Iz NTE0YjA0NWE3YzFjYjYyY2IxOWI3NDcxYjAxYmJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD5s4dRfRyE2t3o2bctAXZquWceI22nGMSpX38WQLzPeLWk cfcNZyi0v4CvuqTyN9GJ3THL1xWSGtCp4P2jz5+zpgILczazFf+h+3rRQySJnPbH 3uh4uPFRfMVl6gMT9l2zYs1f0fyJDxru7ZldeII7GpJ4RhiWfFFZ2XsgBhlcXyFK UoF29DHinoY8gn9chJ4kJy1ih7RYrLS5Rgg+ojX5xpSDyt6DmLPE+uDMaVp0WWtC kz5vC/mOvuOEpPZwA4TCdTQ4PKswiNfsG+0WDVbCW5ZPS/CDlczv+5PczocME/GR uprmDBqkONGl/AS7xdbyxjnQ11IK5wHSpsxmy3YtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkrzrRrb8PbniWlQvfMUsvuKPVv0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU2NWE3YWJlLTgwMjQtNGQzYy05ZDc5LTgyMzMyOWY4Y2RmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQkjANBgkqhkiG9w0BAQsFAAOCAQEAjlphbBhMJ0AAzQ/dx4STDx49jy8Z ukGVozoLT5SQkAdN+OOG2gbLa3pruiPfyJ06KBYvW5oP43ewu75EpAhBLDiVV7AY ZCs6m5T/JKGnJj+kM7H2eiGSIDVdJ32UxwmwcFq9k0UOYySH+UyWqHFpiMyvDGuq 7a8MP+qbzsfsyz17Rr5FE+0UL2G1jyVOZKy0DL/aEDBNcqy4rjaFGsmQwLZImCFx +Pdnd7ubAo76FTAF/bKpPYuRLl34fQ3hgT5K2lLzwAiaKAr4pZ0bGsyTBcXsTV/M W+bGLhpLlm1h+OYhnodg0ALX8bn+7uzA+2c1YyWIt8Q8rRCe/qYs8lvYIg== -----END CERTIFICATE-----Generated at Sun Jun 1 05:13:48 2025 by rpki-client