$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cfc7c17-cd85-463f-abbc-88fa8bb68af4.roa File: 3cfc7c17-cd85-463f-abbc-88fa8bb68af4.roa (raw, json) Hash identifier: zZnaEZr/PAtEE75ekbvVIq359IpZoAwDliD5pfottOI= Subject key identifier: 03:15:72:83:19:99:7C:45:8E:B9:B9:93:F8:CF:AC:57:FB:2B:BC:D6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B84F25F57D259474858D23093C7623432CC6E5B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cfc7c17-cd85-463f-abbc-88fa8bb68af4.roa Signing time: Wed 23 Apr 2025 00:41:30 +0000 ROA not before: Wed 23 Apr 2025 00:41:30 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.56.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:84:f2:5f:57:d2:59:47:48:58:d2:30:93:c7:62:34:32:cc:6e:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:41:30 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=febdcaa98a137f784e4357455cab8248276a091a7036e9921e9d4382a66110c7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:55:ae:42:89:15:ce:38:f4:12:fb:f1:60:5f: 38:06:e9:62:73:37:a4:d0:ca:c0:03:b0:22:53:0b: 66:23:d6:58:02:4e:f9:11:0d:8d:6b:64:6b:d9:75: e8:27:27:08:9c:e9:24:fc:8f:60:a6:20:21:75:8d: d4:61:92:ad:4e:08:d8:b3:51:3f:04:c6:08:09:9c: 26:6e:61:12:88:a9:38:a8:06:4a:9c:c5:9d:74:83: 57:d5:31:e8:51:d1:b8:b6:8c:98:bb:5b:d9:b0:76: ac:93:81:2c:c0:bf:45:5c:82:e4:9d:cb:ef:c6:01: 25:c0:59:8f:5a:12:f2:42:53:94:60:b5:0b:36:10: 7e:38:24:eb:6b:41:fd:47:fa:46:00:11:d7:2c:2e: b6:85:a5:2a:74:ee:bd:fd:81:63:c6:39:20:aa:1c: b1:83:92:12:55:df:39:0e:b5:93:96:a8:5a:87:82: c6:7f:45:1a:7d:bf:bd:42:b6:38:ea:01:12:1d:6b: 41:80:09:ea:44:56:a5:a4:87:d9:18:fd:d1:90:7f: 5c:fe:c6:9c:ca:72:c7:21:0c:7a:fd:b3:ee:24:d5: fc:c5:80:cb:01:58:86:82:8d:b8:32:81:75:2d:68: 3b:a7:e1:d8:22:47:36:3f:cb:d6:49:c7:da:53:a9: 04:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:15:72:83:19:99:7C:45:8E:B9:B9:93:F8:CF:AC:57:FB:2B:BC:D6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cfc7c17-cd85-463f-abbc-88fa8bb68af4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.56.128.0/18 Signature Algorithm: sha256WithRSAEncryption 67:37:0c:31:f1:4c:87:40:54:42:08:c8:2e:57:02:31:ec:09: 0e:41:f6:a7:e5:09:10:23:70:3f:e8:7d:31:18:3b:4c:89:81: 29:77:fc:a1:61:6d:c9:47:dc:09:e4:83:c7:af:25:7f:0c:d3: 14:94:47:93:ea:47:2c:64:31:f3:45:ed:90:25:05:be:02:79: 46:3d:34:67:ad:a5:b2:74:21:3f:a0:33:e2:02:7d:91:0a:83: 5a:e5:91:67:73:06:81:20:9a:33:2f:c5:18:f9:52:d2:2d:8b: c7:22:17:65:3c:23:a1:84:db:2c:5d:af:6c:dd:85:4e:df:4c: 7b:d4:c4:8e:27:23:51:63:5d:83:54:70:2e:2b:1e:f6:35:22: 77:b1:ea:3c:9a:64:27:87:23:df:2e:f4:64:ad:de:31:7a:1d: dc:48:d8:51:ae:23:40:4b:65:0b:eb:63:09:c1:9a:91:32:b1: d2:97:c8:48:98:f7:9e:20:f1:99:03:52:5e:ba:8d:13:55:27: 64:a3:4d:cf:6c:2f:88:29:a1:58:26:d1:f6:24:40:60:cd:74: 35:97:6f:a8:be:5c:3b:be:96:91:a7:e3:4b:d7:49:48:ab:98: 0f:b7:1c:e6:81:79:83:d5:28:9c:79:7e:d9:41:e1:b9:2f:13: d0:f8:00:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK4TyX1fSWUdIWNIwk8diNDLMblswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDA0MTMwWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZWJkY2FhOThhMTM3Zjc4NGU0MzU3NDU1Y2FiODI0ODI3 NmEwOTFhNzAzNmU5OTIxZTlkNDM4MmE2NjExMGM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPVa5CiRXOOPQS+/FgXzgG6WJzN6TQysADsCJTC2Yj1lgC TvkRDY1rZGvZdegnJwic6ST8j2CmICF1jdRhkq1OCNizUT8ExggJnCZuYRKIqTio BkqcxZ10g1fVMehR0bi2jJi7W9mwdqyTgSzAv0VcguSdy+/GASXAWY9aEvJCU5Rg tQs2EH44JOtrQf1H+kYAEdcsLraFpSp07r39gWPGOSCqHLGDkhJV3zkOtZOWqFqH gsZ/RRp9v71CtjjqARIda0GACepEVqWkh9kY/dGQf1z+xpzKcschDHr9s+4k1fzF gMsBWIaCjbgygXUtaDun4dgiRzY/y9ZJx9pTqQTRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAxVygxmZfEWOubmT+M+sV/srvNYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjZmM3YzE3LWNkODUtNDYzZi1hYmJjLTg4ZmE4YmI2OGFmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYQOIAwDQYJKoZIhvcNAQELBQADggEBAGc3DDHxTIdAVEIIyC5XAjHsCQ5B 9qflCRAjcD/ofTEYO0yJgSl3/KFhbclH3Ankg8evJX8M0xSUR5PqRyxkMfNF7ZAl Bb4CeUY9NGetpbJ0IT+gM+ICfZEKg1rlkWdzBoEgmjMvxRj5UtIti8ciF2U8I6GE 2yxdr2zdhU7fTHvUxI4nI1FjXYNUcC4rHvY1Inex6jyaZCeHI98u9GSt3jF6HdxI 2FGuI0BLZQvrYwnBmpEysdKXyEiY954g8ZkDUl66jRNVJ2SjTc9sL4gpoVgm0fYk QGDNdDWXb6i+XDu+lpGn40vXSUirmA+3HOaBeYPVKJx5ftlB4bkvE9D4AA0= -----END CERTIFICATE-----Generated at Sat Apr 26 16:01:00 2025 by rpki-client