$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5831f36f-50de-43df-b1e3-ee6e835954e3.roa File: 5831f36f-50de-43df-b1e3-ee6e835954e3.roa (raw, json) Hash identifier: G5ngSR9oXruKfswMIfww+bPAwTysKlWQOEtpf+2So/M= Subject key identifier: 99:40:68:9A:FB:17:B1:74:EB:8D:4B:48:0F:85:FF:D7:32:A6:19:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63CD06F7C0469F83FCD7F70A5632B613EB73F902 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5831f36f-50de-43df-b1e3-ee6e835954e3.roa Signing time: Tue 15 Apr 2025 00:00:28 +0000 ROA not before: Tue 15 Apr 2025 00:00:28 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:cd:06:f7:c0:46:9f:83:fc:d7:f7:0a:56:32:b6:13:eb:73:f9:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:00:28 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=d7542ce7efa0048b2e567dc96036ac01e2d72466930ac2536015c01452f4cfaa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b9:d9:13:19:9c:62:05:e4:6b:3e:e8:03:fe: cb:ac:af:4b:52:92:45:0e:f0:d0:0e:69:bd:9c:4d: 8e:c1:85:57:f1:ec:bb:08:2a:11:1f:3d:40:5b:33: 0c:10:3d:1d:72:1b:f1:c0:fe:ed:d3:2e:ca:77:e9: a1:f2:9c:ad:14:15:d6:6c:42:5c:92:ef:19:d3:c1: 41:5a:2e:13:cd:04:7b:00:a8:fd:68:53:a9:c5:39: 0e:05:08:1c:fe:1a:3e:fe:08:7b:db:45:80:68:9d: 07:5a:b7:05:9b:82:10:c5:2e:96:5f:59:02:08:12: c0:0e:4b:62:4d:6a:5f:9b:17:d7:40:8a:f2:7d:21: 4a:02:19:8d:23:94:ac:6c:84:8c:8f:4b:1e:ad:13: 82:90:e4:7e:2f:9c:46:c8:76:14:a9:1d:e2:2c:93: f6:8c:ad:b8:2c:ea:56:a7:bb:2e:6e:e5:b9:20:37: db:26:a1:7e:40:72:f1:21:b1:71:91:32:62:00:59: 33:67:f6:ad:6c:1c:76:45:48:26:a9:be:76:db:f0: 0c:3d:1d:aa:e7:70:46:8d:c0:d6:83:16:88:11:4f: 73:56:7f:d1:bf:0f:cd:ba:34:4d:3d:be:b6:ac:cd: 9e:c3:93:07:21:ef:55:4c:30:0a:94:c8:91:36:80: e3:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:40:68:9A:FB:17:B1:74:EB:8D:4B:48:0F:85:FF:D7:32:A6:19:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5831f36f-50de-43df-b1e3-ee6e835954e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5e:a6:49:76:40:0c:12:a6:76:fd:1b:ac:b4:f6:79:cd:98:26: 63:a8:44:b8:f1:c6:56:34:b2:6c:00:1e:63:4e:ad:d1:9e:ee: b4:aa:3e:ea:a0:81:73:52:af:69:1b:d3:62:c3:2a:d9:28:86: 65:bf:70:b2:75:e4:e2:59:8e:81:6b:01:8d:03:c5:3e:17:e7: 4e:30:84:d1:3f:b0:73:fd:96:1a:56:90:71:67:5e:66:cc:cc: b6:a6:54:2b:bd:d6:8f:33:d2:45:9b:03:38:68:db:ec:4a:cf: 7f:e1:5d:d9:a4:2b:50:29:af:33:de:b4:aa:0b:84:c8:4c:51: 80:78:23:de:b1:76:1d:88:75:1c:ac:a9:40:75:00:4f:9a:68: 34:1b:33:46:09:fd:7b:70:10:7a:d6:41:7f:8f:bd:27:f1:3c: 4f:dc:a1:18:de:ec:8b:f2:78:57:fa:5a:b6:f7:aa:0b:b3:b3: 6f:f1:70:96:76:ee:4f:1d:37:77:da:bc:0e:b4:b0:7f:dd:d5: 01:95:d2:1d:ac:31:59:ef:50:e5:81:a7:27:bc:e4:1c:fc:41: 42:c9:b5:fb:43:21:19:4a:b4:58:87:25:28:8d:cf:ee:b8:2d: 2b:fa:8b:f3:77:61:d1:72:09:07:01:77:a3:ae:48:db:8e:11: 64:7b:96:3f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUY80G98BGn4P81/cKVjK2E+tz+QIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAwMDI4WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzU0MmNlN2VmYTAwNDhiMmU1NjdkYzk2MDM2YWMwMWUy ZDcyNDY2OTMwYWMyNTM2MDE1YzAxNDUyZjRjZmFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdudkTGZxiBeRrPugD/susr0tSkkUO8NAOab2cTY7BhVfx 7LsIKhEfPUBbMwwQPR1yG/HA/u3TLsp36aHynK0UFdZsQlyS7xnTwUFaLhPNBHsA qP1oU6nFOQ4FCBz+Gj7+CHvbRYBonQdatwWbghDFLpZfWQIIEsAOS2JNal+bF9dA ivJ9IUoCGY0jlKxshIyPSx6tE4KQ5H4vnEbIdhSpHeIsk/aMrbgs6lanuy5u5bkg N9smoX5AcvEhsXGRMmIAWTNn9q1sHHZFSCapvnbb8Aw9HarncEaNwNaDFogRT3NW f9G/D826NE09vraszZ7Dkwch71VMMAqUyJE2gOOBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmUBomvsXsXTrjUtID4X/1zKmGYgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4MzFmMzZmLTUwZGUtNDNkZi1iMWUzLWVlNmU4MzU5NTRlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQQjANBgkqhkiG9w0BAQsFAAOCAQEAXqZJdkAMEqZ2/RustPZ5zZgmY6hE uPHGVjSybAAeY06t0Z7utKo+6qCBc1KvaRvTYsMq2SiGZb9wsnXk4lmOgWsBjQPF PhfnTjCE0T+wc/2WGlaQcWdeZszMtqZUK73WjzPSRZsDOGjb7ErPf+Fd2aQrUCmv M960qguEyExRgHgj3rF2HYh1HKypQHUAT5poNBszRgn9e3AQetZBf4+9J/E8T9yh GN7si/J4V/patveqC7Ozb/FwlnbuTx03d9q8DrSwf93VAZXSHawxWe9Q5YGnJ7zk HPxBQsm1+0MhGUq0WIclKI3P7rgtK/qL83dh0XIJBwF3o65I244RZHuWPw== -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:51 2025 by rpki-client