$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e834e04c-f563-4064-a1f9-706839ae47eb.roa File: e834e04c-f563-4064-a1f9-706839ae47eb.roa (raw, json) Hash identifier: KRd/+0mAPa1KZN8/FMa2q1QfhDj/HUYnoU/tDa9fCRc= Subject key identifier: DD:93:9F:02:A6:B9:BB:5A:88:D4:BD:11:E0:46:95:07:C3:DC:11:8E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08759849D4E80B8D5E387982A3C494D1C29D68F2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e834e04c-f563-4064-a1f9-706839ae47eb.roa Signing time: Tue 27 May 2025 00:01:05 +0000 ROA not before: Tue 27 May 2025 00:01:05 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.116.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:75:98:49:d4:e8:0b:8d:5e:38:79:82:a3:c4:94:d1:c2:9d:68:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 27 00:01:05 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=a2605ad2e432ea96d5440e8d796e1e1b64386d67f717a4e549e6ebf91403f31f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:90:2f:42:1b:58:d4:3a:07:23:f0:26:d2:1f: 47:d4:56:dc:a9:40:a7:2f:68:f7:86:40:fd:41:35: c5:a9:cb:56:10:04:ce:e5:bd:5a:fe:55:f7:37:66: 58:15:ba:b4:16:15:12:f7:f4:dd:44:a7:73:46:c2: b9:f9:5b:8f:c0:cf:26:00:57:11:31:66:49:4d:9e: d1:11:01:83:94:8d:41:ce:cf:1f:3d:d8:4a:f4:f2: 8a:6f:7a:16:cd:52:3c:0a:b6:6c:3a:da:f3:e6:1e: 67:30:e5:f2:e0:9f:f1:b3:67:2f:ac:2b:79:ef:a9: bf:91:80:c7:24:be:e6:20:12:bd:5c:4c:b1:9c:11: 74:c8:38:61:81:a4:f9:96:cd:40:74:5c:b4:20:2c: c9:07:34:00:79:a3:29:c5:ea:0d:ef:fb:0a:fd:9b: bb:1f:6d:94:6e:29:65:c2:0b:14:83:4c:75:14:7d: 27:ae:a5:a7:c3:2f:86:c2:a5:5a:e8:f0:e5:5f:d6: c0:83:9f:b9:26:3a:70:92:20:41:8e:60:8c:7f:00: 7f:16:72:dd:22:16:59:0b:b9:8e:af:8c:6b:cb:9c: 9f:a7:b6:36:b3:41:50:f4:1c:78:ff:30:f3:cd:ee: 64:84:63:48:29:bd:28:47:ab:af:72:4f:3b:47:f4: 69:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:93:9F:02:A6:B9:BB:5A:88:D4:BD:11:E0:46:95:07:C3:DC:11:8E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e834e04c-f563-4064-a1f9-706839ae47eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.116.0.0/16 Signature Algorithm: sha256WithRSAEncryption 73:7d:16:1a:d3:8d:24:41:22:2c:32:9b:a8:3f:18:34:8b:39: bf:cc:fb:f8:3e:ca:6a:4e:7e:e1:9d:63:f1:3a:46:d0:e3:7c: 80:df:d4:b7:d8:df:65:8b:e6:24:4d:3d:2e:75:a2:1f:d9:55: e8:25:8e:ed:e8:d2:1b:0d:2e:5e:27:ae:30:f5:68:bf:ad:e6: 1a:68:76:f5:e5:5c:d3:34:b6:cc:df:d1:d4:f8:da:52:d1:22: f2:92:e2:7c:d4:80:e6:5b:57:7a:0b:40:dc:86:2c:65:cd:12: 4c:ab:3e:de:f9:8c:5f:2f:87:24:79:17:03:17:aa:d5:a3:18: f4:7b:16:bf:c8:e0:f4:7a:74:03:13:33:04:01:e1:4a:44:7a: fa:41:e9:20:3f:1e:e7:d1:ff:e7:1a:f7:ef:fd:5a:c7:61:ca: c8:43:22:f4:9d:3c:d7:a0:f0:47:43:a8:4c:23:53:05:69:74: 19:a5:ca:28:54:9b:07:ff:b2:80:6e:d6:f5:6b:26:99:74:ac: c3:ed:ee:41:b1:a1:bf:54:5d:51:29:6d:c6:7c:85:1f:62:9c: 4d:f2:45:a0:26:90:6f:eb:6c:db:c7:68:a5:80:7b:2b:75:36: 9d:8a:c4:2d:73:e8:5b:a2:09:63:d8:de:62:72:b1:9b:89:ef: ad:06:d0:22 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCHWYSdToC41eOHmCo8SU0cKdaPIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI3MDAwMTA1WhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjYwNWFkMmU0MzJlYTk2ZDU0NDBlOGQ3OTZlMWUxYjY0 Mzg2ZDY3ZjcxN2E0ZTU0OWU2ZWJmOTE0MDNmMzFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCakC9CG1jUOgcj8CbSH0fUVtypQKcvaPeGQP1BNcWpy1YQ BM7lvVr+Vfc3ZlgVurQWFRL39N1Ep3NGwrn5W4/AzyYAVxExZklNntERAYOUjUHO zx892Er08opvehbNUjwKtmw62vPmHmcw5fLgn/GzZy+sK3nvqb+RgMckvuYgEr1c TLGcEXTIOGGBpPmWzUB0XLQgLMkHNAB5oynF6g3v+wr9m7sfbZRuKWXCCxSDTHUU fSeupafDL4bCpVro8OVf1sCDn7kmOnCSIEGOYIx/AH8Wct0iFlkLuY6vjGvLnJ+n tjazQVD0HHj/MPPN7mSEY0gpvShHq69yTztH9GmxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3ZOfAqa5u1qI1L0R4EaVB8PcEY4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4MzRlMDRjLWY1NjMtNDA2NC1hMWY5LTcwNjgzOWFlNDdlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQdDANBgkqhkiG9w0BAQsFAAOCAQEAc30WGtONJEEiLDKbqD8YNIs5v8z7 +D7Kak5+4Z1j8TpG0ON8gN/Ut9jfZYvmJE09LnWiH9lV6CWO7ejSGw0uXieuMPVo v63mGmh29eVc0zS2zN/R1PjaUtEi8pLifNSA5ltXegtA3IYsZc0STKs+3vmMXy+H JHkXAxeq1aMY9HsWv8jg9Hp0AxMzBAHhSkR6+kHpID8e59H/5xr37/1ax2HKyEMi 9J0816DwR0OoTCNTBWl0GaXKKFSbB/+ygG7W9WsmmXSsw+3uQbGhv1RdUSltxnyF H2KcTfJFoCaQb+ts28dopYB7K3U2nYrELXPoW6IJY9jeYnKxm4nvrQbQIg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:26:55 2025 by rpki-client