$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa File: 2f9e8f4f-538b-40a7-8959-829f09f79955.roa (raw, json) Hash identifier: bqPKjJJPfZ5LOxSQFkehXSndZHoC3EMHRsxvX1foGis= Subject key identifier: E8:35:C7:B0:7B:57:D9:3A:46:34:66:D4:74:55:B6:F0:A8:60:A6:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0944DE950E4F83FA0ECB241124BF94F02A397973 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa Signing time: Mon 21 Apr 2025 17:11:18 +0000 ROA not before: Mon 21 Apr 2025 17:11:18 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.52.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:44:de:95:0e:4f:83:fa:0e:cb:24:11:24:bf:94:f0:2a:39:79:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 21 17:11:18 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=28ca6ca3e20723bafcfde11f2bbf0424d16444255803ee06023e12131fdff545, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6e:6d:50:09:f2:50:15:4d:da:31:80:07:7f: a7:ed:72:d0:a1:22:ac:d9:46:6d:93:7e:27:a0:f2: e8:dc:bc:f4:6f:31:60:7a:f4:30:b6:12:e2:42:87: 1b:da:54:84:86:80:a5:be:21:3b:48:aa:0e:cb:ce: 9b:2d:33:95:dd:45:0f:c7:75:63:06:61:2f:a0:a4: 5d:ab:97:65:f3:86:16:06:87:e1:97:de:c5:7f:7e: 3b:da:33:30:8e:e5:40:48:63:49:7a:28:36:94:71: 0f:e0:9b:02:cf:32:5a:c9:ee:d7:6f:78:41:16:da: 40:2e:7d:ae:64:96:a9:04:23:0b:35:fc:93:96:f4: 23:58:71:5f:f8:39:2c:90:36:b0:2f:ce:4c:2c:c7: d8:ac:87:2d:df:a7:d6:55:5c:53:8c:68:e9:01:43: bb:5f:a1:b1:8e:31:f7:4c:01:04:28:cd:b7:fd:bc: 98:bd:7e:0f:27:55:15:e2:ba:26:c9:87:8f:97:b3: fb:2e:be:7a:b6:db:5b:9a:48:a5:1f:cb:02:7f:73: 73:4f:d7:c4:b5:43:84:bb:a3:76:a3:bd:02:8b:9a: 82:5f:91:57:0a:f2:1d:1d:94:26:6b:c0:c7:1f:54: eb:10:63:af:80:e8:08:3f:de:28:ed:5b:3f:ad:a1: e9:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:35:C7:B0:7B:57:D9:3A:46:34:66:D4:74:55:B6:F0:A8:60:A6:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 37:3a:26:cd:f7:bf:01:17:51:17:b0:d7:fc:a6:ef:31:ae:b5: c2:f3:6d:f6:e2:5f:5e:8e:1b:da:40:8e:81:b9:2b:22:3c:8a: 92:a5:0f:88:0a:45:67:17:12:ae:98:bd:2e:96:68:58:8f:de: b5:60:53:d7:55:ae:23:04:7a:64:7b:32:14:46:1c:1c:69:a8: c0:5f:13:bd:38:1f:d8:cb:c9:4d:f0:b1:25:70:d3:71:e2:b2: 01:28:2a:1e:52:50:47:39:97:44:c4:f1:4b:ce:cb:b9:94:d1: e9:c6:e8:ce:d9:60:9f:63:d1:35:cd:26:63:57:91:e4:aa:14: 26:15:3f:8c:34:42:ff:23:73:70:ac:11:d9:5e:a5:64:8b:4f: 88:af:63:84:90:bb:60:33:ec:b2:00:b2:e0:19:c3:49:47:5f: 00:20:93:56:d0:6d:a2:cf:1c:d3:4d:64:87:1b:ef:9d:03:b0: ad:f4:81:68:06:c1:2f:75:11:8e:e1:4d:94:9e:cf:ae:e2:5d: f9:c7:ae:79:e1:e3:ae:18:83:5c:69:23:c9:95:45:73:7e:9f: c9:1c:74:3b:95:8d:68:26:16:8c:3f:b3:05:09:ce:19:92:f5: f0:3b:c0:35:c4:33:60:25:b7:02:3a:96:90:40:79:bb:a9:38: 0e:e3:39:79 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCUTelQ5Pg/oOyyQRJL+U8Co5eXMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIxMTcxMTE4WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGNhNmNhM2UyMDcyM2JhZmNmZGUxMWYyYmJmMDQyNGQx NjQ0NDI1NTgwM2VlMDYwMjNlMTIxMzFmZGZmNTQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDbm1QCfJQFU3aMYAHf6ftctChIqzZRm2Tfieg8ujcvPRv MWB69DC2EuJChxvaVISGgKW+ITtIqg7LzpstM5XdRQ/HdWMGYS+gpF2rl2XzhhYG h+GX3sV/fjvaMzCO5UBIY0l6KDaUcQ/gmwLPMlrJ7tdveEEW2kAufa5klqkEIws1 /JOW9CNYcV/4OSyQNrAvzkwsx9ishy3fp9ZVXFOMaOkBQ7tfobGOMfdMAQQozbf9 vJi9fg8nVRXiuibJh4+Xs/suvnq221uaSKUfywJ/c3NP18S1Q4S7o3ajvQKLmoJf kVcK8h0dlCZrwMcfVOsQY6+A6Ag/3ijtWz+toelvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6DXHsHtX2TpGNGbUdFW28KhgppYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmOWU4ZjRmLTUzOGItNDBhNy04OTU5LTgyOWYwOWY3OTk1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQNDANBgkqhkiG9w0BAQsFAAOCAQEANzomzfe/ARdRF7DX/KbvMa61wvNt 9uJfXo4b2kCOgbkrIjyKkqUPiApFZxcSrpi9LpZoWI/etWBT11WuIwR6ZHsyFEYc HGmowF8TvTgf2MvJTfCxJXDTceKyASgqHlJQRzmXRMTxS87LuZTR6cboztlgn2PR Nc0mY1eR5KoUJhU/jDRC/yNzcKwR2V6lZItPiK9jhJC7YDPssgCy4BnDSUdfACCT VtBtos8c001khxvvnQOwrfSBaAbBL3URjuFNlJ7PruJd+ceueeHjrhiDXGkjyZVF c36fyRx0O5WNaCYWjD+zBQnOGZL18DvANcQzYCW3AjqWkEB5u6k4DuM5eQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:11:55 2025 by rpki-client