$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07695761-8a08-4e9d-84f2-8ddd5510cbad.roa File: 07695761-8a08-4e9d-84f2-8ddd5510cbad.roa (raw, json) Hash identifier: nJBqB2Ng5Q+Fxq2SPY5YGUE+YNgkEL8oxnzRfentsb4= Subject key identifier: D7:6B:83:6F:CC:B0:66:79:9B:74:31:09:DF:48:01:92:B0:62:C5:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 783DE6277C17470101C07BD6E39C51D7768423AB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07695761-8a08-4e9d-84f2-8ddd5510cbad.roa Signing time: Fri 11 Apr 2025 00:10:23 +0000 ROA not before: Fri 11 Apr 2025 00:10:23 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.174.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:3d:e6:27:7c:17:47:01:01:c0:7b:d6:e3:9c:51:d7:76:84:23:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 11 00:10:23 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=f7b03d98877909259d1f0a03e353a30bce5c6f0a445ed16a59d383a47549ae8e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:56:63:36:2e:4a:4f:9a:64:7a:1c:e9:9d:59: 67:41:f7:bc:e0:82:22:4e:8d:93:b8:1d:65:24:87: 88:e0:ec:c9:f1:78:03:d8:53:dc:f3:aa:de:9c:2b: a6:8e:ff:1b:0d:9e:2d:7f:8a:1f:f6:1a:2d:e8:27: 1b:68:7a:8a:cd:0e:07:df:9e:9b:54:8c:25:0d:64: 31:3c:0d:1a:98:96:99:b5:3a:7f:49:17:7a:dc:e2: 21:a3:c4:9b:89:0b:3d:67:e5:a5:f8:91:8c:ae:c6: 68:d4:04:8e:aa:e5:21:43:0f:e7:f8:fa:02:a0:0e: 20:95:22:36:ab:6b:35:77:c0:9a:58:b5:33:f1:de: 3d:0c:bb:4c:8f:04:6f:60:d1:28:f0:63:03:7a:43: 5d:92:d3:16:54:17:53:82:33:25:07:7a:dd:7f:4f: 6d:ec:e3:dc:f8:74:ee:cf:9c:19:05:df:6e:7b:9a: 1a:39:88:38:a2:11:7b:51:20:0c:78:ac:28:29:f8: b2:f7:9d:b1:32:78:30:77:53:bd:cf:39:df:dc:b2: 38:08:6a:d3:0c:23:b6:25:54:a5:b4:d2:3e:7e:ad: a6:c4:ea:5b:38:8d:a1:4b:6a:4a:67:47:c2:8e:5c: 1e:a3:99:34:0d:1f:56:ea:bc:7a:a7:9c:d8:da:8a: 3c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:6B:83:6F:CC:B0:66:79:9B:74:31:09:DF:48:01:92:B0:62:C5:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07695761-8a08-4e9d-84f2-8ddd5510cbad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.174.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:d3:27:b1:eb:1a:b4:45:4f:e8:66:f9:75:f4:d6:ee:89:19: 49:f3:29:77:f7:b5:f1:08:1b:a3:cf:d2:5e:e9:d6:51:f2:da: 5c:4c:5d:29:ee:f1:ef:d7:66:09:0a:48:89:29:eb:96:f0:82: e6:5c:25:1c:29:cf:94:ee:29:f8:2d:eb:df:ce:c3:9f:46:80: c0:90:fa:80:a5:83:3b:c0:6d:c4:7a:53:10:43:3e:2c:94:96: a5:e4:fd:28:8a:ec:e3:e5:02:5e:12:b3:fb:25:71:6f:9e:59: e8:9a:18:13:e6:d2:44:d3:73:64:4b:28:aa:5f:47:cc:ac:0c: 19:2b:1a:0e:18:28:2d:8f:71:58:37:88:6d:12:4f:a3:c9:a3: 8f:e4:86:f8:d4:3a:94:0a:c4:a5:43:1d:4c:28:63:07:fc:e2: 9d:f8:1e:c8:18:1b:ac:06:b8:b0:ba:0b:7f:10:1e:19:e1:16: ba:10:cb:87:33:19:cf:7a:2e:dc:bf:e2:cf:87:e4:4e:fc:62: cb:f0:49:a8:a2:d7:43:ec:51:71:fc:ed:1c:2b:e5:58:fe:23: 95:5f:85:11:9e:3f:35:42:94:49:2e:b2:32:4e:f9:88:95:6d: 5f:34:aa:aa:f1:d3:60:22:22:36:46:d2:99:8c:7a:cb:f5:a1: 00:ac:20:57 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeD3mJ3wXRwEBwHvW45xR13aEI6swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDExMDAxMDIzWhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmN2IwM2Q5ODg3NzkwOTI1OWQxZjBhMDNlMzUzYTMwYmNl NWM2ZjBhNDQ1ZWQxNmE1OWQzODNhNDc1NDlhZThlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDyVmM2LkpPmmR6HOmdWWdB97zggiJOjZO4HWUkh4jg7Mnx eAPYU9zzqt6cK6aO/xsNni1/ih/2Gi3oJxtoeorNDgffnptUjCUNZDE8DRqYlpm1 On9JF3rc4iGjxJuJCz1n5aX4kYyuxmjUBI6q5SFDD+f4+gKgDiCVIjarazV3wJpY tTPx3j0Mu0yPBG9g0SjwYwN6Q12S0xZUF1OCMyUHet1/T23s49z4dO7PnBkF3257 mho5iDiiEXtRIAx4rCgp+LL3nbEyeDB3U73POd/csjgIatMMI7YlVKW00j5+rabE 6ls4jaFLakpnR8KOXB6jmTQNH1bqvHqnnNjaijzNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU12uDb8ywZnmbdDEJ30gBkrBixdIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3Njk1NzYxLThhMDgtNGU5ZC04NGYyLThkZGQ1NTEwY2JhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQrjANBgkqhkiG9w0BAQsFAAOCAQEAiNMnsesatEVP6Gb5dfTW7okZSfMp d/e18Qgbo8/SXunWUfLaXExdKe7x79dmCQpIiSnrlvCC5lwlHCnPlO4p+C3r387D n0aAwJD6gKWDO8BtxHpTEEM+LJSWpeT9KIrs4+UCXhKz+yVxb55Z6JoYE+bSRNNz ZEsoql9HzKwMGSsaDhgoLY9xWDeIbRJPo8mjj+SG+NQ6lArEpUMdTChjB/zinfge yBgbrAa4sLoLfxAeGeEWuhDLhzMZz3ou3L/iz4fkTvxiy/BJqKLXQ+xRcfztHCvl WP4jlV+FEZ4/NUKUSS6yMk75iJVtXzSqqvHTYCIiNkbSmYx6y/WhAKwgVw== -----END CERTIFICATE-----Generated at Sat Apr 26 18:11:12 2025 by rpki-client