$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9016d464-470c-4275-ad72-fec6b76b99c4.roa File: 9016d464-470c-4275-ad72-fec6b76b99c4.roa (raw, json) Hash identifier: 1cgTFP2QGxUaxVxWQYDGyTdmKqBfWkfTwy9/dwn4+rc= Subject key identifier: 8C:C3:F1:3F:D1:2B:EA:2D:23:37:F0:FC:B9:3A:1F:3F:10:A3:25:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 529A87DD67C8A75B6ED1FF97DDEAC46C3EEC8343 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9016d464-470c-4275-ad72-fec6b76b99c4.roa Signing time: Wed 21 May 2025 00:01:08 +0000 ROA not before: Wed 21 May 2025 00:01:08 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 143.227.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:9a:87:dd:67:c8:a7:5b:6e:d1:ff:97:dd:ea:c4:6c:3e:ec:83:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 21 00:01:08 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=f05b100d71d0a63f57e7f5f0df248dc9a97c98e7a586c0f148d24bc7bb861d51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:98:71:e7:a5:2f:fe:9e:48:76:05:a3:6d:7b: 01:e7:57:7d:94:44:1f:cd:9d:64:7e:46:37:e5:b3: 40:5b:e7:98:01:51:f9:ed:22:b1:fd:29:03:0f:a4: 60:6e:97:37:2c:cb:2c:fb:b7:b9:a0:dc:6d:97:69: d1:5c:70:2d:87:6e:32:23:1a:d4:4f:aa:fd:a7:b5: 55:ea:63:08:e5:db:06:d7:b9:07:09:e6:1f:10:1f: 36:d1:f7:3a:93:e1:a4:d2:84:09:01:e8:8e:47:ed: 00:2a:88:3b:16:94:15:ea:e4:8f:f8:67:5b:e3:8b: 13:72:0f:9e:7a:e5:22:31:a5:15:c3:67:e6:c5:7f: 7d:0e:66:41:a1:80:8a:b7:b3:e4:f9:46:f7:44:d8: 0d:bf:b0:a4:70:81:a2:8c:b3:01:44:a6:47:07:7b: 4b:9b:cd:04:00:6f:31:fd:d9:c3:2a:51:e5:b9:86: 3f:c7:bc:61:e0:70:17:11:d9:10:ec:7e:bd:40:11: f0:32:20:21:76:22:6e:a9:f1:3f:fa:0f:a0:30:19: 70:8a:6d:cc:50:31:e3:76:96:10:24:11:ff:3a:6c: 90:ef:29:b9:b6:da:d3:79:77:83:b2:04:25:7c:fb: 70:13:6b:f7:69:dd:15:ee:f9:42:d6:d2:08:d2:ee: 0d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:C3:F1:3F:D1:2B:EA:2D:23:37:F0:FC:B9:3A:1F:3F:10:A3:25:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9016d464-470c-4275-ad72-fec6b76b99c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.227.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5e:95:a2:3f:5d:cd:b5:e0:15:8e:58:89:ea:8b:91:3b:97:c2: f5:99:8d:0b:b8:09:13:cd:bd:76:8c:95:19:08:55:f0:e6:66: b0:d2:50:97:e3:53:33:ed:87:e4:ee:90:3f:8a:a4:7d:8d:c6: 0f:81:87:68:c8:da:5b:60:88:9e:b1:3c:eb:1f:40:52:46:14: 62:c0:78:34:4d:96:88:98:53:be:7b:0c:04:8f:46:66:ab:96: bd:4c:f7:05:cf:91:22:13:0a:59:73:80:b6:69:5f:b9:b9:8f: e3:1b:71:d6:6e:32:7f:f6:15:32:5c:3d:7e:85:34:66:bd:71: 75:ad:af:bc:a2:86:be:92:94:88:ee:6f:f8:db:79:f9:cc:33: 51:d7:c2:b2:33:d5:d5:f4:1c:88:8c:52:12:65:32:fd:fb:81: d7:43:f5:38:ce:b9:03:5d:1c:2a:2c:ba:1d:62:35:54:15:be: 44:d1:99:1c:a2:e7:ef:58:eb:c5:ce:34:c7:91:6a:2a:54:06: d9:ee:ad:37:44:a2:de:d4:3f:e0:78:c0:93:d6:f3:70:7d:da: c1:6d:b0:c5:bd:08:b1:84:50:b2:49:87:70:ac:5c:31:0a:54: 67:ef:f4:b4:69:32:07:ef:2b:86:40:6b:ae:da:f4:5c:fa:30: 15:04:c2:68 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUpqH3WfIp1tu0f+X3erEbD7sg0MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIxMDAwMTA4WhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDViMTAwZDcxZDBhNjNmNTdlN2Y1ZjBkZjI0OGRjOWE5 N2M5OGU3YTU4NmMwZjE0OGQyNGJjN2JiODYxZDUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBmHHnpS/+nkh2BaNtewHnV32URB/NnWR+Rjfls0Bb55gB UfntIrH9KQMPpGBulzcsyyz7t7mg3G2XadFccC2HbjIjGtRPqv2ntVXqYwjl2wbX uQcJ5h8QHzbR9zqT4aTShAkB6I5H7QAqiDsWlBXq5I/4Z1vjixNyD5565SIxpRXD Z+bFf30OZkGhgIq3s+T5RvdE2A2/sKRwgaKMswFEpkcHe0ubzQQAbzH92cMqUeW5 hj/HvGHgcBcR2RDsfr1AEfAyICF2Im6p8T/6D6AwGXCKbcxQMeN2lhAkEf86bJDv Kbm22tN5d4OyBCV8+3ATa/dp3RXu+ULW0gjS7g17AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjMPxP9Er6i0jN/D8uTofPxCjJYcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkwMTZkNDY0LTQ3MGMtNDI3NS1hZDcyLWZlYzZiNzZiOTljNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCP4zANBgkqhkiG9w0BAQsFAAOCAQEAXpWiP13NteAVjliJ6ouRO5fC9ZmN C7gJE829doyVGQhV8OZmsNJQl+NTM+2H5O6QP4qkfY3GD4GHaMjaW2CInrE86x9A UkYUYsB4NE2WiJhTvnsMBI9GZquWvUz3Bc+RIhMKWXOAtmlfubmP4xtx1m4yf/YV Mlw9foU0Zr1xda2vvKKGvpKUiO5v+Nt5+cwzUdfCsjPV1fQciIxSEmUy/fuB10P1 OM65A10cKiy6HWI1VBW+RNGZHKLn71jrxc40x5FqKlQG2e6tN0Si3tQ/4HjAk9bz cH3awW2wxb0IsYRQskmHcKxcMQpUZ+/0tGkyB+8rhkBrrtr0XPowFQTCaA== -----END CERTIFICATE-----Generated at Wed Jun 4 11:15:49 2025 by rpki-client