$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16ffac70-214d-4030-80b9-261fde777a67.roa File: 16ffac70-214d-4030-80b9-261fde777a67.roa (raw, json) Hash identifier: Ti84jL7hxbNO1JpNllt1lHAz3OFJY466k9bzsSNo6xw= Subject key identifier: F1:28:F0:75:57:92:49:F0:96:F7:90:CC:88:61:0A:1C:1B:C1:02:F4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 74EB007561960B6223B43D0E5B82485404A1AE05 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16ffac70-214d-4030-80b9-261fde777a67.roa Signing time: Tue 08 Apr 2025 00:20:13 +0000 ROA not before: Tue 08 Apr 2025 00:20:13 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 32.168.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:eb:00:75:61:96:0b:62:23:b4:3d:0e:5b:82:48:54:04:a1:ae:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:20:13 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=8b80f0f20cc0d9f7fbe9f4c4e14e2b3d4d56975330c2b64c1dbaff5a1a7eea07, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:52:28:79:0b:09:3b:bb:b6:71:7f:0d:b3:f7: 29:08:e4:17:fe:d0:46:15:c5:e5:64:7a:5d:e5:89: 26:1a:01:3a:08:04:e8:87:b7:c4:1c:c0:39:d8:cb: 12:b7:9c:e3:c8:85:b0:2b:1a:7d:29:7e:42:3f:af: d8:40:f2:95:76:1f:41:7a:89:e4:d8:be:16:66:de: 4e:37:62:02:39:13:03:0d:60:b5:2c:a3:f5:05:e1: e0:f0:d7:8f:83:aa:9b:54:f8:05:c5:02:92:d3:da: d4:23:7e:c6:ef:ef:75:df:b5:22:68:50:9b:e4:02: 71:ae:f9:16:42:a4:99:e6:57:c8:b7:f9:89:aa:b4: af:ee:4c:81:e2:fb:05:cd:eb:36:a0:20:cd:1f:cf: e0:fe:92:d7:f3:47:ae:78:b4:4a:e0:04:95:2b:a7: 83:c6:a2:b0:51:65:83:ca:23:e9:20:16:92:a6:83: 66:21:9b:51:1d:b9:c4:2f:7b:d4:50:99:cd:4f:c4: 12:f3:e2:51:ad:b3:87:2d:4f:b3:84:3a:ca:7a:f2: d0:64:98:80:c5:13:d2:2b:79:d2:cf:df:f2:a6:31: 35:35:da:27:0b:78:8b:67:88:fd:b6:65:0a:6a:cf: b7:32:18:a7:12:44:8b:b3:37:61:b4:0b:76:05:7d: 6c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:28:F0:75:57:92:49:F0:96:F7:90:CC:88:61:0A:1C:1B:C1:02:F4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16ffac70-214d-4030-80b9-261fde777a67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.168.0.0/14 Signature Algorithm: sha256WithRSAEncryption cb:0b:e7:e8:e7:28:90:43:2b:88:6b:40:3a:46:e6:c1:fc:21: bf:f6:81:2b:5e:9a:eb:35:77:2c:64:ed:f9:44:b2:5c:5c:cc: e2:27:91:59:63:ef:e5:cf:c4:13:0e:7e:82:5e:f4:5e:97:15: 38:ac:e8:11:e8:c8:0d:20:e8:2b:23:00:9f:f0:d9:97:f9:d4: cd:03:dd:6c:1e:28:cf:fb:b4:99:f9:41:01:09:de:4c:00:71: 74:e6:38:71:20:19:54:12:f5:e1:ba:69:3c:0c:e9:07:17:06: e5:17:b3:18:d3:61:a2:c1:9f:56:da:02:18:aa:cb:19:f3:72: 9f:cf:6b:d6:60:64:56:09:98:5b:af:16:94:92:83:6b:49:45: 78:df:89:02:52:6c:6f:5e:bb:50:1c:f8:dd:5e:75:5f:99:03: 6c:73:61:3f:f6:33:ee:06:0b:01:0e:07:2a:02:d7:19:16:37: d3:30:f2:6f:81:2b:48:2c:3b:da:be:d4:44:71:f9:34:03:86: 79:c3:17:ad:bd:3e:a0:34:43:84:37:33:1b:86:56:eb:6e:db: 01:37:2c:3a:2f:8f:42:46:3d:31:e3:0c:ff:aa:a9:87:d4:8d: 5d:7f:92:4f:d1:14:12:ff:53:f4:21:c2:17:5d:d0:de:af:b0: fb:b3:2d:e9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdOsAdWGWC2IjtD0OW4JIVAShrgUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAyMDEzWhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YjgwZjBmMjBjYzBkOWY3ZmJlOWY0YzRlMTRlMmIzZDRk NTY5NzUzMzBjMmI2NGMxZGJhZmY1YTFhN2VlYTA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfUih5Cwk7u7Zxfw2z9ykI5Bf+0EYVxeVkel3liSYaAToI BOiHt8QcwDnYyxK3nOPIhbArGn0pfkI/r9hA8pV2H0F6ieTYvhZm3k43YgI5EwMN YLUso/UF4eDw14+DqptU+AXFApLT2tQjfsbv73XftSJoUJvkAnGu+RZCpJnmV8i3 +YmqtK/uTIHi+wXN6zagIM0fz+D+ktfzR654tErgBJUrp4PGorBRZYPKI+kgFpKm g2Yhm1EducQve9RQmc1PxBLz4lGts4ctT7OEOsp68tBkmIDFE9IredLP3/KmMTU1 2icLeItniP22ZQpqz7cyGKcSRIuzN2G0C3YFfWzRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8SjwdVeSSfCW95DMiGEKHBvBAvQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2ZmZhYzcwLTIxNGQtNDAzMC04MGI5LTI2MWZkZTc3N2E2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIgqDANBgkqhkiG9w0BAQsFAAOCAQEAywvn6OcokEMriGtAOkbmwfwhv/aB K16a6zV3LGTt+USyXFzM4ieRWWPv5c/EEw5+gl70XpcVOKzoEejIDSDoKyMAn/DZ l/nUzQPdbB4oz/u0mflBAQneTABxdOY4cSAZVBL14bppPAzpBxcG5RezGNNhosGf VtoCGKrLGfNyn89r1mBkVgmYW68WlJKDa0lFeN+JAlJsb167UBz43V51X5kDbHNh P/Yz7gYLAQ4HKgLXGRY30zDyb4ErSCw72r7URHH5NAOGecMXrb0+oDRDhDczG4ZW 627bATcsOi+PQkY9MeMM/6qph9SNXX+ST9EUEv9T9CHCF13Q3q+w+7Mt6Q== -----END CERTIFICATE-----Generated at Sat Apr 26 16:52:31 2025 by rpki-client