$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/44a4e9af-9ea7-4174-801a-8b7ec2707094.roa File: 44a4e9af-9ea7-4174-801a-8b7ec2707094.roa (raw, json) Hash identifier: 8XnFfp/i3vA+q15PBoRhEPizmAsZqViE9/lVQj4cvkg= Subject key identifier: 21:DA:33:0E:F4:A6:38:62:D7:88:1B:AF:CB:4B:1F:5E:E2:D8:A0:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5134435DA2A06D2F08B36D97DE2AECB950537A4A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/44a4e9af-9ea7-4174-801a-8b7ec2707094.roa Signing time: Mon 07 Apr 2025 15:01:09 +0000 ROA not before: Mon 07 Apr 2025 15:01:09 +0000 ROA not after: Mon 12 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.119.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:34:43:5d:a2:a0:6d:2f:08:b3:6d:97:de:2a:ec:b9:50:53:7a:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 7 15:01:09 2025 GMT Not After : May 12 23:59:59 2025 GMT Subject: serialNumber=5536db6ced8c2c799da2eef92cb047484e9e1e58d0b70bd021f3deaac4cb08e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e9:25:c0:1f:1f:db:05:0b:ab:9a:e9:ff:76: 22:f1:16:a7:08:7d:3e:55:48:87:39:53:d4:ab:3c: 3a:a2:8a:ff:d7:08:3f:22:43:56:7b:ff:d8:13:fc: da:22:d5:1b:7e:78:76:02:63:ad:e8:db:e7:cd:16: b3:96:a0:ff:d2:10:6d:89:16:ad:a7:c6:e7:7f:8d: e4:80:0e:42:c0:ac:b1:ef:32:55:18:eb:eb:06:f3: 9c:37:c6:a2:dc:d1:ea:f0:48:71:51:ff:20:4b:9b: 22:aa:6e:2f:81:a4:28:f3:2b:7d:7f:bc:b9:99:bb: 26:51:81:66:19:1c:ae:5d:fb:00:3a:81:16:15:32: 31:5c:f9:f2:94:7e:6c:36:da:32:d9:24:03:cc:fd: 7e:c8:0f:81:69:be:4d:96:29:00:ab:f2:cf:3e:bb: bc:59:7d:80:58:14:ed:22:99:dc:59:62:ce:5e:64: 31:4f:0e:46:06:ef:e1:08:bd:78:9b:5d:f1:97:59: 2b:77:7c:e9:80:00:28:2f:9e:ca:67:7a:16:5f:52: 78:92:02:af:56:57:27:50:ad:b3:d1:71:e7:f2:42: c0:e5:7c:21:46:6e:1c:48:f7:9d:53:5c:2a:6b:5e: 53:e9:dc:fb:44:f5:a6:eb:90:21:79:e6:1f:04:55: a3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:DA:33:0E:F4:A6:38:62:D7:88:1B:AF:CB:4B:1F:5E:E2:D8:A0:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/44a4e9af-9ea7-4174-801a-8b7ec2707094.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.119.0.0/16 Signature Algorithm: sha256WithRSAEncryption a1:3d:66:2e:09:40:0e:67:db:53:a4:b0:ec:ae:b6:22:e9:63: df:0c:c7:4f:fa:a6:41:5f:d3:d4:62:04:8c:2c:03:41:63:5d: 02:e6:d2:08:4a:e6:52:ce:57:59:2a:24:c5:68:43:ba:1c:27: 3a:6d:e9:a3:95:7d:80:e2:4b:1a:a5:a9:30:5b:d1:bd:be:3a: 90:02:24:c2:cc:6f:19:27:3e:87:34:a9:ab:81:03:42:e8:6b: a1:34:2c:05:4a:75:99:a4:fe:de:b3:fd:c3:a7:3e:28:0b:a1: 89:14:7c:2b:c8:e4:a6:e4:f0:b0:23:63:a5:86:39:8f:15:2a: 8c:fe:3d:a4:14:2c:7b:26:88:61:ce:79:6c:b7:8b:12:5f:8a: aa:f4:e6:e3:95:85:fd:48:ab:7f:ae:79:8d:2b:3a:b8:40:47: d5:fb:f6:93:50:bc:c3:52:ae:1e:ec:72:29:bb:89:76:53:a9: f7:e1:59:ba:45:ac:9f:27:86:9e:37:9f:75:9e:2e:bb:ce:1b: 4b:2c:b3:b8:5e:b9:d2:31:72:ff:b2:74:b7:b6:ca:81:a5:4b: bf:ab:c0:b9:4d:9c:82:1b:76:25:96:60:d7:f8:87:50:6f:8b: db:19:df:9c:28:8b:a7:29:1b:c6:51:4b:fd:38:ae:d8:46:fc: 90:ae:e5:db -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUTRDXaKgbS8Is22X3irsuVBTekowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA3MTUwMTA5WhcNMjUwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTM2ZGI2Y2VkOGMyYzc5OWRhMmVlZjkyY2IwNDc0ODRl OWUxZTU4ZDBiNzBiZDAyMWYzZGVhYWM0Y2IwOGU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU6SXAHx/bBQurmun/diLxFqcIfT5VSIc5U9SrPDqiiv/X CD8iQ1Z7/9gT/Noi1Rt+eHYCY63o2+fNFrOWoP/SEG2JFq2nxud/jeSADkLArLHv MlUY6+sG85w3xqLc0erwSHFR/yBLmyKqbi+BpCjzK31/vLmZuyZRgWYZHK5d+wA6 gRYVMjFc+fKUfmw22jLZJAPM/X7ID4Fpvk2WKQCr8s8+u7xZfYBYFO0imdxZYs5e ZDFPDkYG7+EIvXibXfGXWSt3fOmAACgvnspnehZfUniSAq9WVydQrbPRcefyQsDl fCFGbhxI951TXCprXlPp3PtE9abrkCF55h8EVaNrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIdozDvSmOGLXiBuvy0sfXuLYoPgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0YTRlOWFmLTllYTctNDE3NC04MDFhLThiN2VjMjcwNzA5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQdzANBgkqhkiG9w0BAQsFAAOCAQEAoT1mLglADmfbU6Sw7K62Iulj3wzH T/qmQV/T1GIEjCwDQWNdAubSCErmUs5XWSokxWhDuhwnOm3po5V9gOJLGqWpMFvR vb46kAIkwsxvGSc+hzSpq4EDQuhroTQsBUp1maT+3rP9w6c+KAuhiRR8K8jkpuTw sCNjpYY5jxUqjP49pBQseyaIYc55bLeLEl+KqvTm45WF/Uirf655jSs6uEBH1fv2 k1C8w1KuHuxyKbuJdlOp9+FZukWsnyeGnjefdZ4uu84bSyyzuF650jFy/7J0t7bK gaVLv6vAuU2cght2JZZg1/iHUG+L2xnfnCiLpykbxlFL/Tiu2Eb8kK7l2w== -----END CERTIFICATE-----Generated at Sat Apr 26 17:00:32 2025 by rpki-client