$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa File: d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa (raw, json) Hash identifier: 1A2x0yh6PmFsgYxgjI75LXDte6JthBu6QBCWEJn3kRU= Subject key identifier: 79:B9:E2:39:3C:5E:59:B3:C2:80:FD:FF:54:97:F5:F7:F9:6F:24:3C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 024A4E1CF74136338FC00A87FA5C31485728D0D0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa Signing time: Mon 19 May 2025 16:32:06 +0000 ROA not before: Mon 19 May 2025 16:32:06 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.107.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:4a:4e:1c:f7:41:36:33:8f:c0:0a:87:fa:5c:31:48:57:28:d0:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:32:06 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=85aa6a476c1fa3799678903f56ccf0b8ffaef57a2ccdcd0b299f36cf6e949f0c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8f:42:90:b0:08:42:ab:b9:80:6e:d6:8d:1f: d3:56:5c:85:87:07:99:18:ef:84:fe:19:b8:98:a7: c7:cc:69:b2:5b:53:9d:b8:3d:39:b6:f5:a1:9e:2c: fe:a2:16:b6:65:4a:56:36:e0:6b:53:47:54:b5:88: 11:b2:48:1f:16:5f:b2:91:6b:46:a5:69:e6:65:a0: 6b:34:ab:7b:5d:dd:cc:7a:64:85:a1:69:c3:f2:9d: 86:d0:10:ba:c5:1f:bd:bf:d6:49:87:6c:24:c6:7d: 52:08:ef:12:65:17:e8:4b:53:49:1e:7f:91:de:cd: 30:53:94:33:00:f2:9c:68:b2:e6:2c:7f:b5:4e:0d: a6:a5:a0:8e:b7:1d:e8:14:b4:43:94:36:c3:a4:57: 04:c1:36:53:07:12:3e:19:56:3f:6b:a8:bb:9c:d7: e8:18:16:52:56:0e:fe:47:b7:04:7d:c0:c6:41:ca: 11:59:f1:eb:ed:fe:4c:ba:86:50:55:79:9e:8d:01: 5d:d5:0e:1a:67:9b:16:0a:88:9b:8b:94:fd:e7:7d: 67:07:30:46:25:0e:58:9e:5f:79:94:da:8e:02:b3: 5b:e8:4b:15:56:91:a3:47:0c:2c:70:bc:35:e6:95: 23:01:3d:9e:44:5a:ec:c1:64:93:1f:ec:94:87:ef: 1b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B9:E2:39:3C:5E:59:B3:C2:80:FD:FF:54:97:F5:F7:F9:6F:24:3C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.107.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:46:7c:a8:90:b5:7c:55:81:4d:20:26:cc:4a:83:35:46:4b: 9e:ca:05:fb:ff:a4:f5:0e:08:44:99:e2:2e:24:7c:a3:3b:13: 47:c8:e0:30:d8:ae:29:55:b0:51:1a:eb:39:6c:e5:04:91:d7: fe:29:3d:b6:68:a4:37:16:89:53:21:27:d5:6e:88:d2:06:41: 2d:fc:08:28:7e:bf:d5:7b:5a:8c:7e:52:31:38:04:f3:95:b8: 79:36:2f:36:c8:84:40:98:cd:e9:d4:b3:0b:55:5d:e9:78:01: 6d:8e:27:85:94:a5:3b:e4:f1:31:b5:82:af:36:53:b5:c5:6d: 55:4f:85:84:89:32:c7:6d:fa:5d:45:38:b4:9b:d9:e8:29:9d: 0a:67:4f:ca:a4:ab:31:9b:ce:34:43:2e:b4:74:65:e4:db:5b: 32:f9:d8:7e:f7:ad:4f:ee:80:fa:fa:25:51:d9:04:6d:c9:3c: b0:5d:76:6d:37:41:91:dd:22:bc:81:e6:3a:c6:d5:8b:2e:cc: 7b:3a:79:e2:d3:22:80:44:44:fd:26:e9:75:d5:ea:41:42:15: 1f:a2:45:d9:0b:7c:25:bb:2a:f9:c2:08:a6:d3:a4:90:86:15: a4:52:49:e6:9e:f9:0a:df:a3:1b:a1:0e:69:86:00:db:d2:b3: 8b:e6:30:40 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAkpOHPdBNjOPwAqH+lwxSFco0NAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYzMjA2WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NWFhNmE0NzZjMWZhMzc5OTY3ODkwM2Y1NmNjZjBiOGZm YWVmNTdhMmNjZGNkMGIyOTlmMzZjZjZlOTQ5ZjBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8j0KQsAhCq7mAbtaNH9NWXIWHB5kY74T+GbiYp8fMabJb U524PTm29aGeLP6iFrZlSlY24GtTR1S1iBGySB8WX7KRa0alaeZloGs0q3td3cx6 ZIWhacPynYbQELrFH72/1kmHbCTGfVII7xJlF+hLU0kef5HezTBTlDMA8pxosuYs f7VODaaloI63HegUtEOUNsOkVwTBNlMHEj4ZVj9rqLuc1+gYFlJWDv5HtwR9wMZB yhFZ8evt/ky6hlBVeZ6NAV3VDhpnmxYKiJuLlP3nfWcHMEYlDlieX3mU2o4Cs1vo SxVWkaNHDCxwvDXmlSMBPZ5EWuzBZJMf7JSH7xtFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUebniOTxeWbPCgP3/VJf19/lvJDwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3OWY4MDFiLTM0OTktNGExZS1iZDRhLWM5M2RjOTViYmJhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQazANBgkqhkiG9w0BAQsFAAOCAQEAk0Z8qJC1fFWBTSAmzEqDNUZLnsoF +/+k9Q4IRJniLiR8ozsTR8jgMNiuKVWwURrrOWzlBJHX/ik9tmikNxaJUyEn1W6I 0gZBLfwIKH6/1XtajH5SMTgE85W4eTYvNsiEQJjN6dSzC1Vd6XgBbY4nhZSlO+Tx MbWCrzZTtcVtVU+FhIkyx236XUU4tJvZ6CmdCmdPyqSrMZvONEMutHRl5NtbMvnY fvetT+6A+volUdkEbck8sF12bTdBkd0ivIHmOsbViy7Mezp54tMigERE/SbpddXq QUIVH6JF2Qt8Jbsq+cIIptOkkIYVpFJJ5p75Ct+jG6EOaYYA29Kzi+YwQA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:26:02 2025 by rpki-client