$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf9be969-de18-42a6-9d12-16fc8a45d0da.roa File: bf9be969-de18-42a6-9d12-16fc8a45d0da.roa (raw, json) Hash identifier: AR4+p1N76DHE5TBMSw+bOsg1dczP45l1qoXTpUUP+Hw= Subject key identifier: C2:93:B7:8B:0C:97:15:13:FF:42:B4:A5:24:35:20:8A:5C:6F:F8:6C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 736E7366FB5981C98890EF79E091CFC7C24E0746 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf9be969-de18-42a6-9d12-16fc8a45d0da.roa Signing time: Tue 27 May 2025 00:11:33 +0000 ROA not before: Tue 27 May 2025 00:11:33 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.26.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:6e:73:66:fb:59:81:c9:88:90:ef:79:e0:91:cf:c7:c2:4e:07:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 27 00:11:33 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=9a67fcd7e6243da95c4a90c9f7ac38c9e5be4c8b6a85e310d5adb87de2b85c61, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c4:73:41:8a:0f:5a:ae:32:ad:aa:50:71:8e: 9d:85:fe:99:78:d3:bd:b8:32:1a:cb:85:54:19:56: 12:16:3c:0e:c8:a7:8b:c4:14:99:c5:ee:1c:9a:85: c2:8e:2d:7f:91:c3:7b:ca:a0:0f:21:7a:2e:d9:1b: ce:47:af:1f:bf:ea:de:46:57:cc:b7:6d:12:f2:1b: 8e:22:cb:6b:4e:90:a0:c5:4c:ad:05:0b:61:a6:ad: e3:09:be:7e:24:8b:26:c8:e6:d8:42:e4:ac:8e:da: 4b:53:24:0f:80:4e:5a:fd:12:d1:e8:8d:19:7e:51: 79:21:fc:b5:00:5b:47:45:b3:0a:21:26:bd:a0:5c: 32:ed:4b:ec:d8:ba:de:85:ca:a3:63:65:22:77:90: 01:60:17:b7:30:49:0c:72:6d:09:7b:c0:65:25:41: 80:ec:0e:6c:d3:b5:4a:09:3b:9c:26:b4:1c:a8:ef: 79:c1:1c:97:c1:86:01:5b:40:71:e5:7e:15:f7:27: 89:a5:19:2f:9b:c2:8a:a1:39:c5:f4:67:d5:3e:a8: dd:57:61:4f:8c:b2:7a:83:82:72:fa:5f:65:6a:6b: ef:94:5e:73:8f:b0:1e:1a:19:a2:27:5f:4d:e7:1f: a4:a2:11:0b:09:a6:13:cd:f1:27:9a:cb:67:55:ac: 80:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:93:B7:8B:0C:97:15:13:FF:42:B4:A5:24:35:20:8A:5C:6F:F8:6C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf9be969-de18-42a6-9d12-16fc8a45d0da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.26.0.0/15 Signature Algorithm: sha256WithRSAEncryption cb:85:c1:a6:4a:93:4b:7a:5c:4a:ce:19:35:dd:f3:4e:aa:a2: b7:aa:b6:43:b1:17:5f:d0:98:f3:51:ce:2f:17:04:cc:ac:79: fb:65:c0:78:aa:1f:af:68:6a:2e:2c:50:c0:b9:ba:a2:a6:1e: 62:63:09:d3:94:2e:3a:3d:be:79:07:2a:31:dc:4d:37:bb:83: 0d:6e:ff:a2:1b:d2:af:8a:fa:5f:55:91:62:10:11:0a:87:f3: 05:5c:38:ed:2c:82:67:bf:94:2c:fc:8e:07:04:a2:02:da:60: 7d:45:42:89:6d:78:1d:6e:29:ea:2c:7b:84:6c:15:85:50:0f: 2c:72:fc:8a:7e:f8:59:5f:68:e0:ab:cf:09:25:3f:53:32:e3: ee:53:fb:ba:a3:13:ae:0c:56:3f:45:b7:8b:c8:c7:10:d9:0b: 22:fd:98:ca:7e:89:3a:8f:d4:19:6b:5c:bb:83:1f:cb:92:cd: ae:e8:59:88:64:57:e6:96:76:5c:df:08:d9:3c:c1:f2:9d:e7: dc:32:aa:4a:dd:dd:e0:3d:85:60:cf:f8:a6:7b:20:ee:3f:e3: 32:b0:f8:64:bc:13:d7:29:9c:28:77:01:a0:a6:07:f3:37:1f: 23:2a:57:ef:ef:4a:24:db:91:cd:f0:a3:fb:af:89:dd:80:bb: c0:5c:cb:fc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUc25zZvtZgcmIkO954JHPx8JOB0YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI3MDAxMTMzWhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTY3ZmNkN2U2MjQzZGE5NWM0YTkwYzlmN2FjMzhjOWU1 YmU0YzhiNmE4NWUzMTBkNWFkYjg3ZGUyYjg1YzYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWxHNBig9arjKtqlBxjp2F/pl40724MhrLhVQZVhIWPA7I p4vEFJnF7hyahcKOLX+Rw3vKoA8hei7ZG85Hrx+/6t5GV8y3bRLyG44iy2tOkKDF TK0FC2GmreMJvn4kiybI5thC5KyO2ktTJA+ATlr9EtHojRl+UXkh/LUAW0dFswoh Jr2gXDLtS+zYut6FyqNjZSJ3kAFgF7cwSQxybQl7wGUlQYDsDmzTtUoJO5wmtByo 73nBHJfBhgFbQHHlfhX3J4mlGS+bwoqhOcX0Z9U+qN1XYU+MsnqDgnL6X2Vqa++U XnOPsB4aGaInX03nH6SiEQsJphPN8Seay2dVrICPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwpO3iwyXFRP/QrSlJDUgilxv+GwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmOWJlOTY5LWRlMTgtNDJhNi05ZDEyLTE2ZmM4YTQ1ZDBkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQGjANBgkqhkiG9w0BAQsFAAOCAQEAy4XBpkqTS3pcSs4ZNd3zTqqit6q2 Q7EXX9CY81HOLxcEzKx5+2XAeKofr2hqLixQwLm6oqYeYmMJ05QuOj2+eQcqMdxN N7uDDW7/ohvSr4r6X1WRYhARCofzBVw47SyCZ7+ULPyOBwSiAtpgfUVCiW14HW4p 6ix7hGwVhVAPLHL8in74WV9o4KvPCSU/UzLj7lP7uqMTrgxWP0W3i8jHENkLIv2Y yn6JOo/UGWtcu4Mfy5LNruhZiGRX5pZ2XN8I2TzB8p3n3DKqSt3d4D2FYM/4pnsg 7j/jMrD4ZLwT1ymcKHcBoKYH8zcfIypX7+9KJNuRzfCj+6+J3YC7wFzL/A== -----END CERTIFICATE-----Generated at Sun Jun 1 04:33:40 2025 by rpki-client