$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/844abc15-f137-4ba6-91a9-3db90fdebd62.roa File: 844abc15-f137-4ba6-91a9-3db90fdebd62.roa (raw, json) Hash identifier: bVlorLwzit9yZ876xV3c/DyWBB9h3sRx31GUpq6xWC8= Subject key identifier: 8D:5D:F5:1A:F1:CB:68:E4:08:4E:E7:7A:FA:71:9C:0D:C3:75:85:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E4B260C253249A50692770E4D255A7807B27A40 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/844abc15-f137-4ba6-91a9-3db90fdebd62.roa Signing time: Tue 27 May 2025 00:11:32 +0000 ROA not before: Tue 27 May 2025 00:11:32 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.27.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:4b:26:0c:25:32:49:a5:06:92:77:0e:4d:25:5a:78:07:b2:7a:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 27 00:11:32 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=a102a2e61686ab8abee5343b789044f81532fedf746615aae0984e664482a63d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7b:22:f2:9e:20:c4:9b:9c:0a:d6:9c:b7:74: 46:94:91:b4:7f:48:88:e7:27:3a:9d:12:d5:7d:b0: 3f:8f:bd:c9:73:66:8f:4f:e1:a2:b4:cb:08:67:a3: 81:38:ae:60:09:eb:28:3f:d6:c0:f7:06:35:d9:b3: e8:7c:6c:c6:b1:43:9e:b8:01:0c:1d:ca:8a:a2:b2: 6a:df:1e:28:0e:49:a8:6d:f6:41:ed:f3:08:83:7f: 1f:a3:c8:6f:41:ad:4e:2d:03:02:50:68:0c:20:92: e6:58:9f:bf:d5:c6:cc:ac:d0:01:fa:58:f5:27:5b: 2d:ac:9e:1e:20:91:5a:91:c9:83:b9:03:3d:19:66: 77:77:7b:78:44:4e:c5:23:e9:74:6e:2d:08:cc:e2: 51:9d:ae:87:2b:d7:bd:fa:54:bf:64:71:57:7a:f5: 22:b6:b1:04:34:19:27:5a:12:13:36:6d:1c:e7:fe: b7:f9:ae:9b:5e:58:1b:ec:ed:72:a9:65:e6:36:af: 8c:b8:30:61:d7:a7:e6:74:8c:57:21:d7:6e:db:4d: ba:a0:8d:55:1f:10:05:76:3b:7b:2a:7d:5c:fe:5d: 20:a7:5b:7f:f6:3f:07:bc:3e:c8:1a:22:39:53:d9: 80:42:55:16:ed:63:e1:07:f4:c7:58:13:47:82:04: e2:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:5D:F5:1A:F1:CB:68:E4:08:4E:E7:7A:FA:71:9C:0D:C3:75:85:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/844abc15-f137-4ba6-91a9-3db90fdebd62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.27.0.0/16 Signature Algorithm: sha256WithRSAEncryption bb:a5:56:69:c4:f7:d2:c3:10:ef:48:df:6e:ec:6f:96:1e:b3: 41:c9:94:25:fa:a6:a9:aa:b3:8b:1e:cd:59:9a:31:01:80:1a: b2:02:c9:51:d8:d5:fc:74:9d:89:f5:76:ed:69:48:36:dc:4a: 7d:73:91:f6:2b:11:f0:19:3a:1f:6f:f3:74:f1:43:03:5e:50: 57:18:f2:cd:b7:b6:dd:95:6f:97:37:a0:ca:c7:f5:27:d5:cd: a8:1d:b2:c2:f0:42:fa:24:64:4e:fa:e7:50:e6:41:36:8a:ea: 3c:f4:78:42:1f:b7:93:a2:57:bd:41:8c:90:b4:c4:3d:dc:37: f5:56:b0:5d:56:a3:24:d2:b8:14:9c:72:a5:ae:67:b5:ff:ef: 74:29:65:ff:82:7d:0d:5a:a8:40:67:72:4e:e3:f2:0b:dc:a4: 78:49:a4:06:c2:ed:33:dc:87:b8:d2:ed:35:54:a8:d5:61:ea: f9:14:1d:63:bd:cd:42:5c:f3:17:28:1f:f6:ac:cf:05:2c:e0: 84:04:e1:38:e9:53:df:82:04:f7:36:f9:c8:40:61:07:55:65: 0d:3a:d6:20:cf:92:ad:e1:a5:73:59:11:91:45:41:d4:68:b8: 5a:0d:50:da:09:c5:89:39:87:7f:da:73:e4:e2:fe:6a:25:4d: f5:ec:ca:f6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTksmDCUySaUGkncOTSVaeAeyekAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI3MDAxMTMyWhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTAyYTJlNjE2ODZhYjhhYmVlNTM0M2I3ODkwNDRmODE1 MzJmZWRmNzQ2NjE1YWFlMDk4NGU2NjQ0ODJhNjNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+eyLyniDEm5wK1py3dEaUkbR/SIjnJzqdEtV9sD+Pvclz Zo9P4aK0ywhno4E4rmAJ6yg/1sD3BjXZs+h8bMaxQ564AQwdyoqismrfHigOSaht 9kHt8wiDfx+jyG9BrU4tAwJQaAwgkuZYn7/Vxsys0AH6WPUnWy2snh4gkVqRyYO5 Az0ZZnd3e3hETsUj6XRuLQjM4lGdrocr1736VL9kcVd69SK2sQQ0GSdaEhM2bRzn /rf5rpteWBvs7XKpZeY2r4y4MGHXp+Z0jFch127bTbqgjVUfEAV2O3sqfVz+XSCn W3/2Pwe8PsgaIjlT2YBCVRbtY+EH9MdYE0eCBOLXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjV31GvHLaOQITud6+nGcDcN1hX0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0NGFiYzE1LWYxMzctNGJhNi05MWE5LTNkYjkwZmRlYmQ2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQGzANBgkqhkiG9w0BAQsFAAOCAQEAu6VWacT30sMQ70jfbuxvlh6zQcmU Jfqmqaqzix7NWZoxAYAasgLJUdjV/HSdifV27WlINtxKfXOR9isR8Bk6H2/zdPFD A15QVxjyzbe23ZVvlzegysf1J9XNqB2ywvBC+iRkTvrnUOZBNorqPPR4Qh+3k6JX vUGMkLTEPdw39VawXVajJNK4FJxypa5ntf/vdCll/4J9DVqoQGdyTuPyC9ykeEmk BsLtM9yHuNLtNVSo1WHq+RQdY73NQlzzFygf9qzPBSzghAThOOlT34IE9zb5yEBh B1VlDTrWIM+SreGlc1kRkUVB1Gi4Wg1Q2gnFiTmHf9pz5OL+aiVN9ezK9g== -----END CERTIFICATE-----Generated at Sat Jun 7 05:16:27 2025 by rpki-client