$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2da1583-5ebe-4a18-8fcd-9a78b9bcefd7.roa File: d2da1583-5ebe-4a18-8fcd-9a78b9bcefd7.roa (raw, json) Hash identifier: MspXC8ABxgLqCLHrMQStlF4CzIncmOCbSsoUjyI3X0s= Subject key identifier: B9:3E:9E:03:0B:5D:FE:D3:EE:6E:12:A9:E3:B5:BE:22:A1:8A:3B:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08534DD07AA95A2EF5F2273A37F0E62BE17BEAB1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2da1583-5ebe-4a18-8fcd-9a78b9bcefd7.roa Signing time: Tue 15 Apr 2025 00:00:25 +0000 ROA not before: Tue 15 Apr 2025 00:00:25 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.59.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:53:4d:d0:7a:a9:5a:2e:f5:f2:27:3a:37:f0:e6:2b:e1:7b:ea:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:25 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=984c1daba091924ac5da167cd546783e14475c7c13704427b5fcdb33928270c6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:67:70:9d:55:4d:78:2a:87:e2:ee:cd:09:85: 52:46:16:50:d5:61:b1:78:cb:ac:14:7b:1f:81:ce: da:c8:7d:d1:af:af:92:ee:7e:1c:ff:3d:2e:40:01: 73:6a:a4:dd:09:26:fa:b8:97:31:79:3f:26:45:84: 39:14:80:9a:c2:af:70:f0:68:b9:4b:f2:48:8d:d7: 23:03:17:a7:07:eb:5d:2a:2e:fe:ce:58:10:00:39: e7:39:51:27:91:d9:95:78:e5:ed:dd:11:14:ca:8e: 33:12:9a:ca:38:cd:8b:e1:3d:c1:b9:4e:f6:48:49: 0d:e4:29:ec:31:60:16:b3:2a:43:6f:c7:8f:ee:24: fc:af:45:26:c2:be:62:01:79:12:57:f3:d5:df:68: 90:13:8d:df:f0:94:70:33:9c:ec:13:6d:9f:93:57: dc:72:6e:84:ab:40:4a:c2:f0:f5:62:ce:d5:54:86: 8a:cb:e6:31:99:3b:89:44:cc:89:8e:f0:de:91:db: 8b:d8:eb:fa:26:2c:b1:28:cf:66:8c:28:4d:f3:ef: 40:ed:09:0d:e8:50:50:a0:82:05:2b:2e:91:8c:6f: dc:e8:20:6b:42:84:48:31:d5:44:06:39:d5:26:ad: e5:ee:79:d5:d9:ec:79:4b:a0:a6:8f:9d:b4:03:0b: be:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:3E:9E:03:0B:5D:FE:D3:EE:6E:12:A9:E3:B5:BE:22:A1:8A:3B:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2da1583-5ebe-4a18-8fcd-9a78b9bcefd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.59.0.0/16 Signature Algorithm: sha256WithRSAEncryption 80:f9:d0:87:85:5b:6d:6d:ef:da:63:6f:bc:b0:5a:0a:07:3c: 06:c9:2e:48:75:a0:a9:1c:11:a1:97:17:55:d2:f5:9e:0f:18: cc:d4:7f:d9:36:07:39:cc:df:e4:49:46:31:ce:50:0c:c5:e3: be:3f:7e:26:6a:ef:18:16:d5:5a:71:0c:cf:98:7c:c1:72:c4: 26:60:3b:fb:46:95:7b:aa:cc:51:83:5f:70:ee:7a:a4:af:32: 4f:62:b2:14:20:b2:47:e8:50:ff:46:21:e3:9f:e5:0b:96:a9: 77:0b:05:4e:0c:94:c0:47:35:5f:3c:ef:d8:7d:e0:b9:a5:d4: 48:f6:bd:f2:90:85:03:38:c1:ae:f7:f8:c8:31:c3:78:bc:5e: 62:5d:cd:7f:84:b3:2b:a2:9b:45:5e:b2:da:7d:ca:92:26:24: f5:93:a8:4c:dd:6a:f3:c5:c1:74:dc:e6:be:dc:4f:ff:ba:b5: 8b:03:c7:63:e1:4d:66:02:a8:b9:45:85:46:a9:71:76:84:c5: 3f:a4:2a:aa:84:f8:61:c2:1d:60:ab:fa:26:8e:88:54:f9:ea: 42:9a:b3:e2:d1:59:5e:ca:b8:e8:b2:58:e8:cd:37:6a:51:16: 69:77:28:b7:9b:1c:dd:a8:14:66:11:3a:e6:65:24:0f:20:0f: 92:9e:b0:6f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCFNN0HqpWi718ic6N/DmK+F76rEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAwMDI1WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODRjMWRhYmEwOTE5MjRhYzVkYTE2N2NkNTQ2NzgzZTE0 NDc1YzdjMTM3MDQ0MjdiNWZjZGIzMzkyODI3MGM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2Z3CdVU14Kofi7s0JhVJGFlDVYbF4y6wUex+BztrIfdGv r5Lufhz/PS5AAXNqpN0JJvq4lzF5PyZFhDkUgJrCr3DwaLlL8kiN1yMDF6cH610q Lv7OWBAAOec5USeR2ZV45e3dERTKjjMSmso4zYvhPcG5TvZISQ3kKewxYBazKkNv x4/uJPyvRSbCvmIBeRJX89XfaJATjd/wlHAznOwTbZ+TV9xyboSrQErC8PViztVU horL5jGZO4lEzImO8N6R24vY6/omLLEoz2aMKE3z70DtCQ3oUFCgggUrLpGMb9zo IGtChEgx1UQGOdUmreXuedXZ7HlLoKaPnbQDC77BAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUuT6eAwtd/tPubhKp47W+IqGKO4QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyZGExNTgzLTVlYmUtNGExOC04ZmNkLTlhNzhiOWJjZWZkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQOzANBgkqhkiG9w0BAQsFAAOCAQEAgPnQh4VbbW3v2mNvvLBaCgc8Bsku SHWgqRwRoZcXVdL1ng8YzNR/2TYHOczf5ElGMc5QDMXjvj9+JmrvGBbVWnEMz5h8 wXLEJmA7+0aVe6rMUYNfcO56pK8yT2KyFCCyR+hQ/0Yh45/lC5apdwsFTgyUwEc1 Xzzv2H3guaXUSPa98pCFAzjBrvf4yDHDeLxeYl3Nf4SzK6KbRV6y2n3KkiYk9ZOo TN1q88XBdNzmvtxP/7q1iwPHY+FNZgKouUWFRqlxdoTFP6QqqoT4YcIdYKv6Jo6I VPnqQpqz4tFZXsq46LJY6M03alEWaXcot5sc3agUZhE65mUkDyAPkp6wbw== -----END CERTIFICATE-----Generated at Wed Apr 16 16:52:08 2025 by rpki-client