$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2da1583-5ebe-4a18-8fcd-9a78b9bcefd7.roa File: d2da1583-5ebe-4a18-8fcd-9a78b9bcefd7.roa (raw, json) Hash identifier: MR1/ynhAjVdhwX0F5anB41pBjzElR3V8UfAf2iH9C+g= Subject key identifier: 00:94:9E:EC:83:F2:91:EA:B2:04:86:B5:71:61:75:82:60:BD:C2:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03D325BF823FF094D4C9EFD366025A1E3561FA52 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2da1583-5ebe-4a18-8fcd-9a78b9bcefd7.roa Signing time: Sat 10 May 2025 00:00:20 +0000 ROA not before: Sat 10 May 2025 00:00:20 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.59.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:d3:25:bf:82:3f:f0:94:d4:c9:ef:d3:66:02:5a:1e:35:61:fa:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:00:20 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=963243766ee647d051ddf878e09ef4ceb92e71007c7210539788bc2b075e0a38, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:84:c2:0f:75:b9:aa:54:0e:a0:7b:b0:0a:6f: 2e:ef:57:14:35:91:04:9d:9f:fa:77:e9:63:99:a8: fd:eb:b1:9f:1e:fd:bf:69:98:b0:e2:0d:4a:42:ae: 94:34:10:2c:fd:ba:0d:e7:d7:ad:a0:e0:45:b4:af: 5b:2f:11:10:bc:51:47:89:29:3e:68:cb:90:f8:c3: 83:4b:d4:ce:c9:e3:99:ec:c0:41:4f:f4:36:93:8e: f6:ed:f1:b6:c2:3f:b2:02:6d:4e:c6:26:99:fc:b8: 06:a7:c8:41:c1:22:94:54:9e:08:dc:77:c3:dc:4e: 55:d0:0b:27:b8:e4:f6:f9:2b:73:74:b2:b5:01:d6: 2a:ec:ee:8c:82:78:97:b0:96:4b:56:57:51:e0:ba: ec:d2:12:8c:64:c9:4e:4e:39:3a:53:3b:f3:2d:05: a3:ea:d5:fb:43:7c:2b:5f:5b:34:d4:a3:e7:cb:94: f2:9f:6b:1b:bd:ae:93:25:d4:ed:a1:1a:d6:ff:72: d2:2d:7c:40:d6:0e:dc:c1:19:48:7d:11:f7:e7:5f: 83:46:61:96:f9:b5:0a:9c:d9:fd:df:7c:bd:bc:ac: 67:c1:9b:8a:63:bb:3a:99:aa:24:cd:08:f7:09:20: 5b:ba:9b:95:26:03:5e:28:31:18:9b:87:72:2e:ce: 5a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:94:9E:EC:83:F2:91:EA:B2:04:86:B5:71:61:75:82:60:BD:C2:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2da1583-5ebe-4a18-8fcd-9a78b9bcefd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.59.0.0/16 Signature Algorithm: sha256WithRSAEncryption bc:03:83:2b:7b:d5:bd:a0:52:6d:a0:bf:3a:7c:af:63:ab:a9: bc:a1:d8:bb:e3:17:2f:b5:5e:a4:ba:52:04:16:d1:4d:f3:fe: 17:03:bc:34:0f:3f:ff:62:26:81:91:8b:d2:85:5d:c8:fc:5b: 88:3a:f6:86:d2:8e:39:21:64:8e:4e:78:5c:53:ed:2b:57:b7: 5c:4a:65:8c:da:23:6b:0c:eb:54:2c:a1:31:d0:b3:b0:d8:6d: 44:be:8b:78:8e:87:af:ea:76:8b:e3:a7:65:a1:c6:25:f5:b8: 53:eb:92:04:f2:49:9e:73:1a:78:15:1e:f3:9a:a7:bf:c4:38: fb:36:1c:5b:5a:ce:0f:84:be:c2:b6:ba:97:83:75:7c:9c:c4: c6:be:57:55:26:2d:c9:1a:0a:02:0e:e5:0b:eb:36:15:f0:93: e5:61:54:10:56:67:46:65:2c:cb:15:66:d2:02:dd:e1:fc:a5: 34:30:f8:72:52:ad:36:98:aa:67:55:aa:74:69:0c:b9:f9:6f: 68:90:9a:7c:b5:ce:2d:c1:41:f7:91:95:01:28:7d:8a:08:9d: d9:96:ed:66:58:8a:d2:bc:6e:b5:54:0b:18:23:d3:f6:20:69: 9e:37:20:fa:14:44:a1:c0:cb:2b:07:51:ee:05:1e:aa:f2:0c: df:48:d8:b9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA9Mlv4I/8JTUye/TZgJaHjVh+lIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDAwMDIwWhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjMyNDM3NjZlZTY0N2QwNTFkZGY4NzhlMDllZjRjZWI5 MmU3MTAwN2M3MjEwNTM5Nzg4YmMyYjA3NWUwYTM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIhMIPdbmqVA6ge7AKby7vVxQ1kQSdn/p36WOZqP3rsZ8e /b9pmLDiDUpCrpQ0ECz9ug3n162g4EW0r1svERC8UUeJKT5oy5D4w4NL1M7J45ns wEFP9DaTjvbt8bbCP7ICbU7GJpn8uAanyEHBIpRUngjcd8PcTlXQCye45Pb5K3N0 srUB1irs7oyCeJewlktWV1HguuzSEoxkyU5OOTpTO/MtBaPq1ftDfCtfWzTUo+fL lPKfaxu9rpMl1O2hGtb/ctItfEDWDtzBGUh9EffnX4NGYZb5tQqc2f3ffL28rGfB m4pjuzqZqiTNCPcJIFu6m5UmA14oMRibh3Iuzlq7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAJSe7IPykeqyBIa1cWF1gmC9wmUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyZGExNTgzLTVlYmUtNGExOC04ZmNkLTlhNzhiOWJjZWZkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQOzANBgkqhkiG9w0BAQsFAAOCAQEAvAODK3vVvaBSbaC/OnyvY6upvKHY u+MXL7VepLpSBBbRTfP+FwO8NA8//2ImgZGL0oVdyPxbiDr2htKOOSFkjk54XFPt K1e3XEpljNojawzrVCyhMdCzsNhtRL6LeI6Hr+p2i+OnZaHGJfW4U+uSBPJJnnMa eBUe85qnv8Q4+zYcW1rOD4S+wra6l4N1fJzExr5XVSYtyRoKAg7lC+s2FfCT5WFU EFZnRmUsyxVm0gLd4fylNDD4clKtNpiqZ1WqdGkMuflvaJCafLXOLcFB95GVASh9 igid2ZbtZliK0rxutVQLGCPT9iBpnjcg+hREocDLKwdR7gUeqvIM30jYuQ== -----END CERTIFICATE-----Generated at Sun Jun 1 04:46:03 2025 by rpki-client