$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3454ba8-e03c-463a-be52-e46f944b7fa6.roa File: d3454ba8-e03c-463a-be52-e46f944b7fa6.roa (raw, json) Hash identifier: qf65a4YeNZqF7cB+DYp+G8bx1sqaEq2V9YdI7mrxY3Y= Subject key identifier: 4D:92:CB:09:17:36:2B:0D:2D:41:19:C8:B5:3F:26:36:BF:56:1A:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7188159A5918D958E0CA9662A0D3E5A03173112D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3454ba8-e03c-463a-be52-e46f944b7fa6.roa Signing time: Tue 27 May 2025 00:01:02 +0000 ROA not before: Tue 27 May 2025 00:01:02 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.104.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:88:15:9a:59:18:d9:58:e0:ca:96:62:a0:d3:e5:a0:31:73:11:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 27 00:01:02 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=904d9b1338c71c3d93dce48511fc77de786025185bcfd86b10ce3ae2d846c9ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:5f:da:2a:0e:28:bf:35:54:21:38:da:f0:f8: 64:76:7d:72:41:cc:1a:9a:68:6a:af:b4:f8:a4:79: 5a:ef:53:f8:17:45:c8:36:ad:5f:c8:49:cc:72:7e: 15:9a:59:45:6d:42:5a:d9:e9:2b:72:b6:02:d0:52: ae:06:76:9e:42:55:f2:09:43:92:c2:b9:da:8e:dc: 48:a0:79:f3:8d:25:e2:ae:ec:7e:8b:13:a8:23:15: af:14:6e:fb:bc:6e:aa:44:94:b9:bc:42:62:96:c5: 4f:76:4e:60:31:16:94:1e:29:0e:c2:ca:03:99:09: 97:bf:55:b5:c5:a0:38:6f:70:d4:ae:f6:21:9a:c0: 68:5a:8d:26:1c:08:25:10:9a:e2:cc:c7:33:3d:19: af:db:0c:b1:7f:cf:00:67:3f:33:5b:9a:02:3f:6a: a8:3d:7e:82:01:30:8e:ba:a8:25:b1:b2:40:be:54: 2f:17:6f:2c:d2:74:a9:e6:44:44:7c:5d:21:76:2a: b0:0f:06:44:49:6f:ca:12:05:0f:14:03:cd:f2:d0: e3:db:51:bc:87:80:c8:74:1e:d7:94:f3:d5:f1:e6: db:20:39:58:a8:66:89:ba:c2:1c:eb:70:55:bc:1a: c0:99:46:63:0d:00:09:46:a0:52:8d:b8:5c:d2:77: 9a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:92:CB:09:17:36:2B:0D:2D:41:19:C8:B5:3F:26:36:BF:56:1A:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3454ba8-e03c-463a-be52-e46f944b7fa6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.104.0.0/16 Signature Algorithm: sha256WithRSAEncryption 22:0a:c4:92:ae:53:10:57:11:a2:75:2d:76:79:91:f0:60:1d: 5f:3e:90:3c:ff:9b:d6:c5:cc:e1:a6:f1:b2:93:9f:78:da:aa: 34:9e:7d:0a:c1:6c:c2:dd:ea:69:df:1c:22:e7:86:07:97:f7: 60:e4:9b:00:61:3b:56:7b:1a:4e:95:ae:20:24:c6:67:f9:53: 6b:aa:8b:77:d6:5f:4a:77:fd:c0:00:d9:aa:d2:b2:5b:92:be: 31:b8:f4:56:31:95:ea:52:84:6d:07:b5:18:ae:90:ad:58:13: 22:ef:73:ff:a7:c0:b2:4e:39:a8:ba:ab:7c:88:96:f1:a5:ce: da:44:e6:7b:4b:8f:8b:0a:1e:99:2e:cb:2a:a2:19:de:34:50: fc:0a:ac:c5:97:fb:21:74:ea:fb:0a:61:7a:56:75:44:83:b8: 60:58:5b:5e:22:00:39:d1:db:78:fe:7c:7b:0c:2e:20:56:e9: 47:49:c9:bd:09:32:3c:7e:50:43:2b:42:a4:e3:cb:f4:f2:a2: c5:fc:da:c9:ec:ba:68:33:73:d5:f5:e0:55:0d:85:28:b8:e4: 71:69:ec:17:1f:6d:81:3f:9c:28:0f:4c:f4:a5:45:bb:c6:ab: 8f:1c:85:b1:df:85:35:42:eb:ec:46:12:f7:3b:e4:e6:93:89: 51:c7:8c:16 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcYgVmlkY2VjgypZioNPloDFzES0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI3MDAwMTAyWhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MDRkOWIxMzM4YzcxYzNkOTNkY2U0ODUxMWZjNzdkZTc4 NjAyNTE4NWJjZmQ4NmIxMGNlM2FlMmQ4NDZjOWVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRX9oqDii/NVQhONrw+GR2fXJBzBqaaGqvtPikeVrvU/gX Rcg2rV/IScxyfhWaWUVtQlrZ6StytgLQUq4Gdp5CVfIJQ5LCudqO3EigefONJeKu 7H6LE6gjFa8Ubvu8bqpElLm8QmKWxU92TmAxFpQeKQ7CygOZCZe/VbXFoDhvcNSu 9iGawGhajSYcCCUQmuLMxzM9Ga/bDLF/zwBnPzNbmgI/aqg9foIBMI66qCWxskC+ VC8XbyzSdKnmRER8XSF2KrAPBkRJb8oSBQ8UA83y0OPbUbyHgMh0HteU89Xx5tsg OVioZom6whzrcFW8GsCZRmMNAAlGoFKNuFzSd5p5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTZLLCRc2Kw0tQRnItT8mNr9WGnswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzNDU0YmE4LWUwM2MtNDYzYS1iZTUyLWU0NmY5NDRiN2ZhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQaDANBgkqhkiG9w0BAQsFAAOCAQEAIgrEkq5TEFcRonUtdnmR8GAdXz6Q PP+b1sXM4abxspOfeNqqNJ59CsFswt3qad8cIueGB5f3YOSbAGE7VnsaTpWuICTG Z/lTa6qLd9ZfSnf9wADZqtKyW5K+Mbj0VjGV6lKEbQe1GK6QrVgTIu9z/6fAsk45 qLqrfIiW8aXO2kTme0uPiwoemS7LKqIZ3jRQ/AqsxZf7IXTq+wphelZ1RIO4YFhb XiIAOdHbeP58ewwuIFbpR0nJvQkyPH5QQytCpOPL9PKixfzayey6aDNz1fXgVQ2F KLjkcWnsFx9tgT+cKA9M9KVFu8arjxyFsd+FNULr7EYS9zvk5pOJUceMFg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:37:30 2025 by rpki-client