$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa File: 60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa (raw, json) Hash identifier: 1AIS8qKVUIIDqF/2H0yv6LW+cfkT9gj3tAgJzPLVSiQ= Subject key identifier: 21:94:06:45:81:0F:8E:B3:EB:59:A4:B7:53:90:E9:AF:5B:B3:BC:ED Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B2F63586153E847CB157CF7F036E93D8ADF5050 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa Signing time: Tue 27 May 2025 00:11:29 +0000 ROA not before: Tue 27 May 2025 00:11:29 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.219.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:2f:63:58:61:53:e8:47:cb:15:7c:f7:f0:36:e9:3d:8a:df:50:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 27 00:11:29 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=d3e0baf56c8d956266514d0a7c8854da419612f7dba6dbd78e80a4e43666ab47, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ea:96:a1:79:14:5f:91:7f:b2:59:30:0d:08: b0:6d:51:42:13:55:80:fa:2e:45:15:d8:02:e9:59: 08:7e:c4:9d:4b:9f:b0:b8:1b:0d:a8:08:2c:90:12: 38:46:fe:a9:47:3f:14:3d:0d:ba:9a:04:51:1c:52: d9:ed:e0:5b:89:2e:15:c3:13:21:8c:1a:ea:43:47: c2:91:bf:e2:28:e2:53:62:b8:95:65:f9:86:5a:4b: 2c:46:67:7c:ed:da:9b:a8:11:f4:40:e3:5a:91:71: 1b:20:0c:3f:83:2b:6e:30:0b:3c:7b:43:96:05:88: a4:45:8f:76:c4:90:79:2c:10:c5:7a:94:29:13:81: 14:bd:06:90:68:22:a0:16:9d:23:43:ea:2e:71:42: 3e:70:c7:12:69:d8:67:51:79:56:b3:7e:c0:7d:c0: e5:48:eb:65:1e:07:ce:0e:1a:dc:dd:fd:55:cc:31: ad:c7:f1:6a:96:d8:6a:8c:6c:21:85:6d:c5:92:8b: 36:76:20:09:28:7c:35:6a:7d:f7:ec:5f:dd:75:b2: 0c:bd:99:87:69:f8:85:d7:66:a6:c3:f8:08:dc:25: ba:be:18:dc:b2:6f:e7:39:88:ae:21:5a:d2:4a:54: 0b:26:a0:da:ee:f3:6d:07:1e:ed:86:2a:5a:0e:13: b0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:94:06:45:81:0F:8E:B3:EB:59:A4:B7:53:90:E9:AF:5B:B3:BC:ED X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.219.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:aa:0c:7d:f5:72:a9:fd:84:25:6f:d2:af:fb:fa:d1:4d:09: 26:42:f4:c0:ef:5a:13:21:61:a1:b6:84:87:fc:3d:96:86:06: 52:2f:5d:80:d0:51:cf:2b:2a:ae:24:7a:7c:22:c1:86:cd:9d: d1:36:80:45:5d:53:ea:94:06:b3:bc:ba:6c:a7:bd:2f:ae:ce: f7:c4:33:cf:97:53:f5:0b:15:af:6f:9c:fe:6e:7a:13:44:11: 2c:49:74:8a:86:99:0b:40:25:f9:05:d1:fa:ad:93:f2:9a:65: c3:9b:f3:da:a9:12:ac:e7:40:79:c6:87:c3:6b:be:a4:9a:14: fb:09:9c:fc:fc:2d:80:0b:98:2b:fa:b6:2b:33:8f:53:9b:41: 4d:51:e0:54:57:68:d7:7b:49:6a:0e:85:d8:2b:4c:f5:a8:dc: 60:f4:ba:ee:57:3d:18:27:4c:65:d0:cf:e0:b2:bc:60:42:c6: e0:de:b3:7b:f1:d3:d7:b4:7f:c1:73:79:a5:28:a7:a7:31:1a: af:78:d4:a5:4d:95:70:21:70:1f:2c:46:4c:76:23:6c:f0:7a: 83:2f:15:d1:e6:01:07:c9:dc:43:af:df:4e:8d:0f:00:f7:e9: ff:c6:9b:db:a2:c9:9f:ae:1f:cf:f2:9e:69:32:7f:6a:34:a2: 15:c7:c5:8b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWy9jWGFT6EfLFXz38DbpPYrfUFAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI3MDAxMTI5WhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkM2UwYmFmNTZjOGQ5NTYyNjY1MTRkMGE3Yzg4NTRkYTQx OTYxMmY3ZGJhNmRiZDc4ZTgwYTRlNDM2NjZhYjQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB6paheRRfkX+yWTANCLBtUUITVYD6LkUV2ALpWQh+xJ1L n7C4Gw2oCCyQEjhG/qlHPxQ9DbqaBFEcUtnt4FuJLhXDEyGMGupDR8KRv+Io4lNi uJVl+YZaSyxGZ3zt2puoEfRA41qRcRsgDD+DK24wCzx7Q5YFiKRFj3bEkHksEMV6 lCkTgRS9BpBoIqAWnSND6i5xQj5wxxJp2GdReVazfsB9wOVI62UeB84OGtzd/VXM Ma3H8WqW2GqMbCGFbcWSizZ2IAkofDVqfffsX911sgy9mYdp+IXXZqbD+AjcJbq+ GNyyb+c5iK4hWtJKVAsmoNru820HHu2GKloOE7CdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIZQGRYEPjrPrWaS3U5Dpr1uzvO0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwYTZjOWFjLTEyMjEtNGE0ZC04N2U2LTIzOWEzZmUyZDFmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQ2zANBgkqhkiG9w0BAQsFAAOCAQEAQ6oMffVyqf2EJW/Sr/v60U0JJkL0 wO9aEyFhobaEh/w9loYGUi9dgNBRzysqriR6fCLBhs2d0TaARV1T6pQGs7y6bKe9 L67O98Qzz5dT9QsVr2+c/m56E0QRLEl0ioaZC0Al+QXR+q2T8pplw5vz2qkSrOdA ecaHw2u+pJoU+wmc/PwtgAuYK/q2KzOPU5tBTVHgVFdo13tJag6F2CtM9ajcYPS6 7lc9GCdMZdDP4LK8YELG4N6ze/HT17R/wXN5pSinpzEar3jUpU2VcCFwHyxGTHYj bPB6gy8V0eYBB8ncQ6/fTo0PAPfp/8ab26LJn64fz/KeaTJ/ajSiFcfFiw== -----END CERTIFICATE-----Generated at Sun Jun 1 05:06:47 2025 by rpki-client