$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa File: a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa (raw, json) Hash identifier: I4+RBIf/2hTLYoFiMZFqvCoIn/ujLz/7tAxYu6/hNPY= Subject key identifier: F3:E8:AB:62:97:82:3C:9F:43:D2:DF:ED:02:90:A5:77:7D:D2:5D:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CBB48DF4C99E76AC3DDBFA5D0ED186BB36A5385 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa Signing time: Mon 24 Mar 2025 15:31:50 +0000 ROA not before: Mon 24 Mar 2025 15:31:50 +0000 ROA not after: Mon 28 Apr 2025 23:59:59 +0000 asID: 8987 IP address blocks: 16.64.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:bb:48:df:4c:99:e7:6a:c3:dd:bf:a5:d0:ed:18:6b:b3:6a:53:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 24 15:31:50 2025 GMT Not After : Apr 28 23:59:59 2025 GMT Subject: serialNumber=4e7d1e3484136c188995d612cfd7d5943c8b3b4bf885742ede0f2761334968b1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:be:d4:ef:84:a6:55:8c:50:f8:57:6b:c7:98: 72:33:a3:0b:18:4e:c7:63:5f:79:6c:60:b5:4f:8a: db:2b:26:70:5d:a7:04:98:35:ea:b4:62:97:ca:31: 8c:f3:01:65:cb:05:7d:23:2b:26:37:7f:50:86:8e: ba:8d:7d:60:08:9b:fa:48:f9:a5:3c:df:a8:99:78: 59:ed:c9:00:bb:12:fa:42:99:9e:cb:0a:a0:97:16: f8:0f:9d:3d:95:24:eb:f3:b6:68:27:58:39:ed:08: e2:99:65:78:b5:6d:ca:64:26:ba:bb:58:30:c4:42: 68:ab:33:c8:0c:7d:75:6c:f2:58:ff:36:b5:9b:5c: 4e:f7:19:73:a0:d6:ca:09:b8:36:55:cc:8a:a8:85: cf:fd:47:33:22:3a:53:c6:17:4d:d3:6d:f3:bc:26: 33:b4:33:b0:07:87:2f:85:ad:20:12:92:05:b4:e3: db:18:98:f2:9f:96:c1:a7:06:9f:44:db:ba:6b:50: 36:08:d8:7a:64:65:3a:36:61:53:e1:79:fa:ce:00: e3:3a:3a:41:1f:c4:d0:57:cb:7e:bb:70:e5:5e:a5: f4:a6:58:3b:c7:4d:f5:d7:47:a0:e4:4d:4a:d7:2c: c1:b0:47:1d:0e:c4:ec:6c:21:ba:38:c1:23:27:87: 3f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:E8:AB:62:97:82:3C:9F:43:D2:DF:ED:02:90:A5:77:7D:D2:5D:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.64.0.0/17 Signature Algorithm: sha256WithRSAEncryption 48:53:7c:b7:02:01:78:4e:44:8a:73:c3:ee:7c:82:1d:eb:32: d7:e7:be:c2:63:e8:89:a7:46:5a:79:e7:8a:f4:1d:c7:59:07: 65:3a:3e:ef:ea:7c:ca:81:3c:d0:9d:20:f9:19:e6:a5:60:ab: 86:c2:d8:0a:0a:86:c8:6e:83:08:06:33:b5:f3:c7:23:83:d2: 6a:35:c7:e6:8e:3c:6e:d7:17:18:13:9b:4c:91:00:ab:4e:a1: dd:ec:d5:f0:9b:08:f2:c5:e0:a4:a1:71:55:6e:f4:72:aa:3d: 81:85:c2:95:51:14:80:15:7c:55:8c:ca:62:0e:f4:bc:fa:e3: 90:c9:a5:8b:6f:36:31:1d:22:2b:0f:31:77:a3:d7:85:aa:1a: fe:e3:5c:5b:fd:03:70:4b:90:11:95:13:dd:20:08:b6:d3:9e: 9c:43:1c:f8:5a:19:98:5c:7a:af:22:78:d5:f8:84:5a:50:02: e8:27:38:24:7a:bc:eb:32:92:e3:2b:76:77:08:bd:55:e0:2d: 4e:0e:16:5c:6f:02:e9:79:cc:47:fa:a0:71:4b:09:ce:87:11: ba:01:1c:a1:41:c1:c7:b4:b2:b9:b8:01:95:fc:eb:41:fe:36: 67:17:a2:27:d2:a6:0d:17:f4:1d:86:70:f1:90:80:7c:7a:16: a5:ba:77:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfLtI30yZ52rD3b+l0O0Ya7NqU4UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI0MTUzMTUwWhcNMjUwNDI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTdkMWUzNDg0MTM2YzE4ODk5NWQ2MTJjZmQ3ZDU5NDNj OGIzYjRiZjg4NTc0MmVkZTBmMjc2MTMzNDk2OGIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCovtTvhKZVjFD4V2vHmHIzowsYTsdjX3lsYLVPitsrJnBd pwSYNeq0YpfKMYzzAWXLBX0jKyY3f1CGjrqNfWAIm/pI+aU836iZeFntyQC7EvpC mZ7LCqCXFvgPnT2VJOvztmgnWDntCOKZZXi1bcpkJrq7WDDEQmirM8gMfXVs8lj/ NrWbXE73GXOg1soJuDZVzIqohc/9RzMiOlPGF03TbfO8JjO0M7AHhy+FrSASkgW0 49sYmPKflsGnBp9E27prUDYI2HpkZTo2YVPhefrOAOM6OkEfxNBXy367cOVepfSm WDvHTfXXR6DkTUrXLMGwRx0OxOxsIbo4wSMnhz8hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8+irYpeCPJ9D0t/tApCld33SXV0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EwOGJhN2NhLWU4OWQtNGQ4Ny04ZWIzLTIzZjIwNjFlYzRmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcQQAAwDQYJKoZIhvcNAQELBQADggEBAEhTfLcCAXhORIpzw+58gh3rMtfn vsJj6ImnRlp554r0HcdZB2U6Pu/qfMqBPNCdIPkZ5qVgq4bC2AoKhshugwgGM7Xz xyOD0mo1x+aOPG7XFxgTm0yRAKtOod3s1fCbCPLF4KShcVVu9HKqPYGFwpVRFIAV fFWMymIO9Lz645DJpYtvNjEdIisPMXej14WqGv7jXFv9A3BLkBGVE90gCLbTnpxD HPhaGZhceq8ieNX4hFpQAugnOCR6vOsykuMrdncIvVXgLU4OFlxvAul5zEf6oHFL Cc6HEboBHKFBwce0srm4AZX860H+NmcXoifSpg0X9B2GcPGQgHx6FqW6d50= -----END CERTIFICATE-----Generated at Wed Apr 16 16:54:30 2025 by rpki-client