$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5831f36f-50de-43df-b1e3-ee6e835954e3.roa File: 5831f36f-50de-43df-b1e3-ee6e835954e3.roa (raw, json) Hash identifier: J63Ap407GmAGWeflUzgt0hPVCa2XAtofJDz+0r0t0/U= Subject key identifier: 7B:D1:AF:C7:79:0D:8F:D1:4A:C4:1B:19:61:F0:D5:77:6C:CB:19:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 461136ED9664543F7DB8A7EBEE107CFB20B3B0ED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5831f36f-50de-43df-b1e3-ee6e835954e3.roa Signing time: Sat 10 May 2025 00:00:23 +0000 ROA not before: Sat 10 May 2025 00:00:23 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:11:36:ed:96:64:54:3f:7d:b8:a7:eb:ee:10:7c:fb:20:b3:b0:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:00:23 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=857433f71f50831e60439bd3fd964b10c234fbb9a97cdf2f8895e5fd1b4844e1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:db:fc:d9:24:43:eb:c6:d5:1a:a4:cc:5e:56: fc:2d:b6:32:f4:74:e3:f8:53:3f:cb:b2:a9:d3:85: 69:93:17:2e:12:39:c4:a4:29:d6:b0:d8:0f:60:c9: 7f:93:e3:02:83:4c:e9:9f:be:66:0b:50:3c:08:c0: 9d:75:d8:ed:ac:0f:4e:38:f5:d1:c2:ba:f8:5f:bd: 9f:84:12:66:70:c2:7a:57:20:c6:58:89:5d:e3:c5: be:9f:06:d5:1c:19:bd:19:d5:33:ee:e8:94:f2:5b: 1b:1f:9d:3c:4e:f0:34:83:de:f7:4d:37:90:bd:74: ac:4d:7a:04:2b:55:4a:f7:91:5e:3c:48:89:84:60: 0d:76:25:28:75:70:a1:a6:fd:20:8e:13:34:18:16: 8f:25:db:a3:79:cb:88:46:ef:d3:15:05:8b:36:eb: 4f:11:9a:35:9b:86:ac:8f:77:58:66:01:22:4c:97: a7:ba:40:b8:a1:36:9b:81:bf:4f:8d:82:49:20:5f: 26:22:23:b0:fd:f2:22:a9:cb:e8:80:15:29:89:dc: 99:33:d1:b3:30:d6:fd:96:05:5d:b4:bf:a7:6c:29: 05:b1:c1:eb:bb:6e:60:99:79:e8:1f:73:c9:22:51: 8e:04:27:2f:86:43:b2:bf:f1:02:d2:89:9b:4e:e0: 2a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:D1:AF:C7:79:0D:8F:D1:4A:C4:1B:19:61:F0:D5:77:6C:CB:19:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5831f36f-50de-43df-b1e3-ee6e835954e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption cb:1b:3b:34:0e:6b:32:07:08:5c:f0:3f:10:41:c7:03:b9:18: d8:b9:d7:79:eb:4a:78:c2:fb:c1:a4:4f:c7:dc:97:8c:ec:b0: 65:3b:ea:9b:1b:6c:e0:22:c4:39:8d:53:cb:d7:d9:76:e1:3e: a3:b2:c3:59:f8:70:1c:d0:71:af:4c:ba:c6:17:5f:75:20:f2: c8:20:1a:13:2b:3b:07:e5:ad:c1:c5:89:e4:fe:f7:6a:f4:45: 66:65:8c:ea:04:f2:d9:51:bf:91:16:9c:da:ff:0b:ca:2a:57: 04:36:30:a7:f6:dc:e7:58:a6:93:53:98:00:0c:7c:b8:75:e5: db:27:7f:5f:21:6d:ff:43:24:7b:80:6f:3d:d4:0e:f4:96:47: 97:08:ce:94:44:04:7a:ee:c2:8f:12:4d:51:cb:f3:93:0d:d2: 43:1f:84:d8:a0:87:a5:ee:fa:3c:de:d1:fb:cb:36:97:ed:38: 5e:60:ae:50:01:e4:b5:17:40:ef:00:6f:b3:33:9f:37:a4:f6: 35:5a:2e:29:4f:d3:35:f5:04:7e:c1:3e:c5:4e:b1:12:03:3c: 30:9d:b0:1e:dc:f1:49:8a:5e:ef:72:08:4e:48:8d:d3:ba:a2: 06:73:09:49:c1:48:ec:d4:a4:e0:ca:96:9e:76:e5:7c:89:8d: 2f:ad:ec:4d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURhE27ZZkVD99uKfr7hB8+yCzsO0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDAwMDIzWhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTc0MzNmNzFmNTA4MzFlNjA0MzliZDNmZDk2NGIxMGMy MzRmYmI5YTk3Y2RmMmY4ODk1ZTVmZDFiNDg0NGUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDz2/zZJEPrxtUapMxeVvwttjL0dOP4Uz/LsqnThWmTFy4S OcSkKdaw2A9gyX+T4wKDTOmfvmYLUDwIwJ112O2sD0449dHCuvhfvZ+EEmZwwnpX IMZYiV3jxb6fBtUcGb0Z1TPu6JTyWxsfnTxO8DSD3vdNN5C9dKxNegQrVUr3kV48 SImEYA12JSh1cKGm/SCOEzQYFo8l26N5y4hG79MVBYs2608RmjWbhqyPd1hmASJM l6e6QLihNpuBv0+NgkkgXyYiI7D98iKpy+iAFSmJ3Jkz0bMw1v2WBV20v6dsKQWx weu7bmCZeegfc8kiUY4EJy+GQ7K/8QLSiZtO4CrxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUe9Gvx3kNj9FKxBsZYfDVd2zLGTIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4MzFmMzZmLTUwZGUtNDNkZi1iMWUzLWVlNmU4MzU5NTRlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQQjANBgkqhkiG9w0BAQsFAAOCAQEAyxs7NA5rMgcIXPA/EEHHA7kY2LnX eetKeML7waRPx9yXjOywZTvqmxts4CLEOY1Ty9fZduE+o7LDWfhwHNBxr0y6xhdf dSDyyCAaEys7B+WtwcWJ5P73avRFZmWM6gTy2VG/kRac2v8LyipXBDYwp/bc51im k1OYAAx8uHXl2yd/XyFt/0Mke4BvPdQO9JZHlwjOlEQEeu7CjxJNUcvzkw3SQx+E 2KCHpe76PN7R+8s2l+04XmCuUAHktRdA7wBvszOfN6T2NVouKU/TNfUEfsE+xU6x EgM8MJ2wHtzxSYpe73IITkiN07qiBnMJScFI7NSk4MqWnnblfImNL63sTQ== -----END CERTIFICATE-----Generated at Sun Jun 1 04:47:00 2025 by rpki-client