$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39dca287-26d4-4bbc-a590-f5bf14971de6.roa File: 39dca287-26d4-4bbc-a590-f5bf14971de6.roa (raw, json) Hash identifier: +tbxh74OMNLY/P9y70sQMsnuJOizIPP+FYTaze9ynD0= Subject key identifier: 4A:1A:AC:F5:D4:88:FB:5B:E7:BD:D7:94:10:1B:9A:45:F7:5A:80:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1DB7DB11DE396BAAB983ACDCAA43A87EA36C93CF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39dca287-26d4-4bbc-a590-f5bf14971de6.roa Signing time: Fri 25 Apr 2025 00:10:23 +0000 ROA not before: Fri 25 Apr 2025 00:10:23 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.187.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:b7:db:11:de:39:6b:aa:b9:83:ac:dc:aa:43:a8:7e:a3:6c:93:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 00:10:23 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=6e293289b5fe592ec78b6db94b0ba66d1065d8a3040363fd421868fad346e622, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:a3:58:29:64:4a:fd:fc:76:60:93:82:8d:66: 46:75:3a:5f:2c:aa:79:8e:80:91:2f:49:37:06:11: 3d:eb:32:0d:d4:5f:51:a8:62:00:74:8b:3b:7f:d1: c0:a6:7c:cb:95:3d:ad:15:63:5d:e9:28:d1:ee:80: 32:d9:60:f6:c1:8a:7a:8f:6e:32:70:c5:d3:9c:35: a0:72:55:b1:0a:d1:90:84:dd:c9:0c:09:bd:e3:fc: f4:43:c3:6b:e4:05:6f:fe:ec:ad:dc:63:a3:6d:e5: de:f4:b4:99:90:a2:1a:50:f5:e0:1f:56:0e:c2:74: ac:83:2d:cf:2e:38:e3:85:4f:00:e1:96:63:3f:5e: 95:e7:68:bb:37:79:84:ed:82:89:bc:0d:ec:c5:c4: ee:3b:df:88:3a:a3:ba:47:85:53:29:ed:8a:0f:e7: 84:99:e6:44:a9:81:e6:d7:65:d9:dc:8e:37:07:35: 4c:84:80:74:f9:c3:a8:0e:62:1a:50:0a:41:c4:76: 94:86:e3:4f:cc:96:bd:02:a7:e2:27:98:c6:2d:a1: bf:78:cc:08:fa:87:26:06:c3:a4:a7:e5:47:61:50: 77:38:ea:52:46:04:21:af:eb:be:f8:6a:34:89:6b: 94:b9:f0:8e:1e:3c:cb:b6:8d:65:af:bf:00:48:41: 7d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:1A:AC:F5:D4:88:FB:5B:E7:BD:D7:94:10:1B:9A:45:F7:5A:80:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39dca287-26d4-4bbc-a590-f5bf14971de6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.187.0.0/16 Signature Algorithm: sha256WithRSAEncryption 69:f2:c7:10:2d:8a:e8:2f:cc:93:a5:8a:55:42:29:ba:cc:de: 4f:12:71:64:b9:b7:35:ae:9d:90:75:5c:e9:37:3f:b7:9a:52: e0:a6:6b:b4:1c:c0:63:fb:03:03:3d:d5:79:1a:8a:40:88:90: 7b:ee:b1:77:25:9a:78:a1:74:74:c4:76:a8:da:d2:71:f8:28: 17:f7:80:b6:a7:79:89:23:2d:fd:a8:03:bf:3c:2f:e2:b4:28: 83:4e:07:1f:cd:79:91:57:74:f1:00:87:5e:74:ef:7a:a3:04: f0:9f:e2:a5:e3:13:bc:aa:fd:4e:f0:19:32:5a:7d:c6:ea:f6: 79:23:10:3d:9d:24:b6:c4:5b:61:1e:9b:d1:22:29:f5:f8:2d: 2e:57:e3:02:59:29:cf:ba:95:9a:ca:5b:f4:d9:59:7f:1b:ff: 6b:48:c1:9f:60:53:01:bd:e0:2d:18:ad:d8:93:14:c7:a8:0c: 68:51:14:77:9a:b3:9e:b2:43:cf:22:26:d4:b9:d3:62:65:c6: 6a:74:17:7c:8a:bd:6a:d1:9c:bb:21:dc:8a:e1:89:67:3e:46: 53:e2:c7:ed:ec:b1:32:a3:5a:fe:77:e9:87:9f:45:ed:1d:ff: 1b:c6:25:29:f5:ed:88:d5:46:bb:1a:b4:55:ae:04:10:08:e5: bb:07:0f:ed -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHbfbEd45a6q5g6zcqkOofqNsk88wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MDAxMDIzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTI5MzI4OWI1ZmU1OTJlYzc4YjZkYjk0YjBiYTY2ZDEw NjVkOGEzMDQwMzYzZmQ0MjE4NjhmYWQzNDZlNjIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMo1gpZEr9/HZgk4KNZkZ1Ol8sqnmOgJEvSTcGET3rMg3U X1GoYgB0izt/0cCmfMuVPa0VY13pKNHugDLZYPbBinqPbjJwxdOcNaByVbEK0ZCE 3ckMCb3j/PRDw2vkBW/+7K3cY6Nt5d70tJmQohpQ9eAfVg7CdKyDLc8uOOOFTwDh lmM/XpXnaLs3eYTtgom8DezFxO4734g6o7pHhVMp7YoP54SZ5kSpgebXZdncjjcH NUyEgHT5w6gOYhpQCkHEdpSG40/Mlr0Cp+InmMYtob94zAj6hyYGw6Sn5UdhUHc4 6lJGBCGv6774ajSJa5S58I4ePMu2jWWvvwBIQX3zAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUShqs9dSI+1vnvdeUEBuaRfdagKEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM5ZGNhMjg3LTI2ZDQtNGJiYy1hNTkwLWY1YmYxNDk3MWRlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQuzANBgkqhkiG9w0BAQsFAAOCAQEAafLHEC2K6C/Mk6WKVUIpuszeTxJx ZLm3Na6dkHVc6Tc/t5pS4KZrtBzAY/sDAz3VeRqKQIiQe+6xdyWaeKF0dMR2qNrS cfgoF/eAtqd5iSMt/agDvzwv4rQog04HH815kVd08QCHXnTveqME8J/ipeMTvKr9 TvAZMlp9xur2eSMQPZ0ktsRbYR6b0SIp9fgtLlfjAlkpz7qVmspb9NlZfxv/a0jB n2BTAb3gLRit2JMUx6gMaFEUd5qznrJDzyIm1LnTYmXGanQXfIq9atGcuyHciuGJ Zz5GU+LH7eyxMqNa/nfph59F7R3/G8YlKfXtiNVGuxq0Va4EEAjluwcP7Q== -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:57 2025 by rpki-client