$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8a2e2a6-180a-4119-9dab-dc386bebfad1.roa File: c8a2e2a6-180a-4119-9dab-dc386bebfad1.roa (raw, json) Hash identifier: zDC8gsUHpSlL6uUrIdYoQrRMThiaZWsUvEurzLTMwBc= Subject key identifier: F8:49:39:40:3A:FC:0F:76:34:2E:FC:B9:93:A2:B8:39:87:EF:58:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BF6FA5B7238F21AE53F3D3D793A2BA518317903 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8a2e2a6-180a-4119-9dab-dc386bebfad1.roa Signing time: Mon 07 Apr 2025 15:10:29 +0000 ROA not before: Mon 07 Apr 2025 15:10:29 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.180.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:f6:fa:5b:72:38:f2:1a:e5:3f:3d:3d:79:3a:2b:a5:18:31:79:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 7 15:10:29 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=28aeb700f11269b97c316d7848e2304cb7ea46e97f01ad4e4beb9b540286facf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7c:d4:ff:aa:f4:37:8d:07:be:e5:70:49:ca: 0a:86:c0:a0:b7:af:c0:d6:22:fb:61:44:a4:3d:24: ba:52:85:fd:b2:60:50:ad:20:3f:90:dc:5d:17:a7: c1:3b:dc:12:dd:fe:01:4c:da:ef:19:06:10:23:aa: fa:b8:97:18:f3:39:4b:ed:8f:3f:09:ad:24:01:0c: 6e:81:39:d1:15:34:9d:1b:80:42:0e:00:be:20:92: ec:ba:21:a2:d8:e4:b6:9e:83:51:fc:80:8e:1a:63: ea:74:90:e6:32:3b:fe:41:37:cf:ca:fd:e5:b9:85: 8b:07:bf:f2:f9:28:6f:c2:e7:e4:e2:8f:60:0a:3b: 35:f3:e9:b7:c8:c4:07:64:5d:7a:42:3c:67:0a:f9: 40:f1:87:8c:59:0d:59:ae:d7:04:d1:90:19:9b:4b: 2c:c9:72:5b:39:0c:c5:79:cb:bf:66:8f:e5:aa:d2: 06:ab:e8:93:85:e6:71:7d:29:73:ec:22:8b:c6:8f: 7b:40:1f:de:c6:59:20:ef:ff:06:d2:55:be:49:7d: 2b:a0:d3:f6:87:48:c7:8b:23:bf:02:de:75:83:b2: 5c:c4:a3:59:d5:01:a0:41:35:6f:c6:05:51:b6:16: f3:37:e0:df:ec:ee:f3:d3:12:70:44:82:a6:07:a9: a5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:49:39:40:3A:FC:0F:76:34:2E:FC:B9:93:A2:B8:39:87:EF:58:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8a2e2a6-180a-4119-9dab-dc386bebfad1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.180.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:42:4a:38:70:12:11:e3:ac:ff:1d:7c:4e:ac:fe:2c:ae:67: 1e:fa:a0:45:c7:45:0d:b6:7b:4b:4b:1e:3a:72:8e:8a:e9:42: 4b:8a:a1:c3:89:7c:b3:36:1b:fe:92:b5:67:7f:08:75:54:d8: e3:46:07:12:d6:38:55:eb:4a:24:d9:db:11:0e:53:21:59:f9: 02:be:47:d8:27:15:cb:9f:b7:36:b4:7a:a8:cb:1b:7b:d8:7b: b8:c8:18:83:52:a9:66:5a:dd:aa:96:3f:00:bb:c1:33:65:b2: fb:4d:ed:81:59:0b:34:57:c1:28:8b:c7:8b:fd:5d:80:ab:72: be:bc:96:dc:5f:ef:3d:5a:3a:e6:e4:27:71:8d:e4:1a:99:85: b9:0f:6b:d8:de:85:a4:cb:72:9a:36:ed:7a:8c:31:f3:66:ce: 96:eb:d2:84:22:c9:14:54:ba:ab:57:9e:14:f1:d6:39:82:a5: 42:97:b4:10:af:78:99:a5:d7:c4:81:6e:7a:dd:4f:b2:ea:e1: ac:c7:2d:8e:23:69:79:18:a7:f4:b0:0f:e0:3a:08:0d:37:43: 29:24:e5:92:2d:1c:24:66:14:c0:94:10:81:33:38:7d:a8:58: bf:c9:3b:9f:12:d2:8d:48:d8:b5:95:d4:d1:13:81:79:f1:e0: ef:d8:19:63 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUa/b6W3I48hrlPz09eTorpRgxeQMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA3MTUxMDI5WhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGFlYjcwMGYxMTI2OWI5N2MzMTZkNzg0OGUyMzA0Y2I3 ZWE0NmU5N2YwMWFkNGU0YmViOWI1NDAyODZmYWNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChfNT/qvQ3jQe+5XBJygqGwKC3r8DWIvthRKQ9JLpShf2y YFCtID+Q3F0Xp8E73BLd/gFM2u8ZBhAjqvq4lxjzOUvtjz8JrSQBDG6BOdEVNJ0b gEIOAL4gkuy6IaLY5Laeg1H8gI4aY+p0kOYyO/5BN8/K/eW5hYsHv/L5KG/C5+Ti j2AKOzXz6bfIxAdkXXpCPGcK+UDxh4xZDVmu1wTRkBmbSyzJcls5DMV5y79mj+Wq 0gar6JOF5nF9KXPsIovGj3tAH97GWSDv/wbSVb5JfSug0/aHSMeLI78C3nWDslzE o1nVAaBBNW/GBVG2FvM34N/s7vPTEnBEgqYHqaW1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+Ek5QDr8D3Y0Lvy5k6K4OYfvWMYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4YTJlMmE2LTE4MGEtNDExOS05ZGFiLWRjMzg2YmViZmFkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQtDANBgkqhkiG9w0BAQsFAAOCAQEAHEJKOHASEeOs/x18Tqz+LK5nHvqg RcdFDbZ7S0seOnKOiulCS4qhw4l8szYb/pK1Z38IdVTY40YHEtY4VetKJNnbEQ5T IVn5Ar5H2CcVy5+3NrR6qMsbe9h7uMgYg1KpZlrdqpY/ALvBM2Wy+03tgVkLNFfB KIvHi/1dgKtyvryW3F/vPVo65uQncY3kGpmFuQ9r2N6FpMtymjbteowx82bOluvS hCLJFFS6q1eeFPHWOYKlQpe0EK94maXXxIFuet1PsurhrMctjiNpeRin9LAP4DoI DTdDKSTlki0cJGYUwJQQgTM4fahYv8k7nxLSjUjYtZXU0ROBefHg79gZYw== -----END CERTIFICATE-----Generated at Wed Apr 16 17:05:51 2025 by rpki-client