$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/662cd1e7-52b9-46fe-aded-bb1573a8af72.roa File: 662cd1e7-52b9-46fe-aded-bb1573a8af72.roa (raw, json) Hash identifier: NvUClNUdpZumqBulMwot7DrUrvaUa5LXDmOwt65WP8g= Subject key identifier: BF:E2:57:EB:65:8B:0A:AD:D0:BA:C8:33:EA:7B:1D:C8:80:A6:56:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 790222DBA26167CC7A7B42A4242C75CA50A29349 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/662cd1e7-52b9-46fe-aded-bb1573a8af72.roa Signing time: Wed 23 Apr 2025 00:41:40 +0000 ROA not before: Wed 23 Apr 2025 00:41:40 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.63.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:02:22:db:a2:61:67:cc:7a:7b:42:a4:24:2c:75:ca:50:a2:93:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:41:40 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=c015f975087e62490a4aac6bd65fbc6060991e596e8cd3c3ae7ab8424ea64191, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:53:9c:55:b6:02:27:4b:dc:29:f3:df:42:af: f8:a1:cc:1b:e9:89:3d:8c:30:37:8a:f5:dd:69:b5: 6a:0a:60:85:22:d6:37:ed:64:1a:0f:2c:94:9d:2a: 0b:3b:75:3a:c0:00:ab:cf:fc:24:53:62:0c:14:60: 67:13:d2:d4:8b:76:91:cb:f8:a1:b8:14:0a:47:db: 9e:4a:4b:3e:27:69:0c:fe:e0:66:4a:4f:37:67:4d: d3:6b:95:9e:c5:11:a2:86:79:25:92:24:33:43:4c: 71:15:d0:4d:92:93:44:31:26:4d:a7:46:a9:4e:e8: 38:de:30:8e:1c:f1:63:7b:08:d4:36:41:70:61:b8: ee:e5:31:57:ed:ca:b3:97:4b:08:62:cc:d0:29:14: 16:fe:5f:63:ed:ef:f2:53:7a:af:5a:64:f8:2d:46: 47:df:b8:39:3b:6a:25:5f:2e:92:1d:5b:56:84:4d: 7c:e7:c1:28:3a:04:53:5b:23:26:05:a5:09:0c:30: 68:ed:93:aa:d2:ca:42:98:b4:3d:35:5c:ac:1f:de: c8:50:46:17:a8:2e:fb:9a:84:34:9c:fe:01:8d:ba: d7:51:b6:50:8a:11:fd:fc:a4:42:2c:5e:55:e9:33: 42:b9:a2:e7:a5:8f:05:f3:28:66:1d:cf:3f:43:a0: a2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:E2:57:EB:65:8B:0A:AD:D0:BA:C8:33:EA:7B:1D:C8:80:A6:56:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/662cd1e7-52b9-46fe-aded-bb1573a8af72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.63.88.0/22 Signature Algorithm: sha256WithRSAEncryption 27:d9:fb:02:d3:35:53:d3:bf:37:1d:c3:a2:80:fd:12:1f:ac: 43:a7:fd:88:60:5f:e9:2e:0a:a5:7d:96:48:4c:d0:a1:c6:f0: 97:6b:1c:e0:57:b7:ba:55:c7:2d:94:ab:e9:8e:63:91:17:9c: 99:ee:68:f6:0e:b6:d7:83:df:e1:25:4d:2a:17:ff:2f:f1:4b: 64:cf:b3:c5:fc:cc:0d:c7:0f:f7:19:d1:db:31:a3:93:4a:db: f1:5b:0b:08:de:41:4f:cc:6a:5a:2e:81:c2:50:8d:4f:df:fc: 96:b7:d6:a4:70:0a:d1:55:8c:1b:f3:bf:2a:d8:d6:cc:40:7c: 84:8e:31:4a:e1:9e:6b:d3:5c:99:72:24:9e:57:6a:14:da:9e: b3:ae:f3:13:e2:ca:1d:44:c9:31:0a:a1:3e:2c:39:c0:ba:d8: bc:54:44:82:fd:a9:27:e8:c9:0c:7e:bd:20:31:d2:e6:77:84: 06:67:88:c3:d4:83:db:9e:81:e1:67:34:eb:c5:4b:0d:29:99: cf:15:6c:04:c5:03:32:08:01:dc:b8:0a:53:62:69:27:a8:09: 3f:8b:f8:46:6e:ee:2b:80:de:36:1f:9a:2a:f8:8c:2d:c8:55: c2:df:fa:b1:07:67:84:19:0c:ca:af:b5:76:86:a5:ea:f8:67: 3d:7a:1d:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeQIi26JhZ8x6e0KkJCx1ylCik0kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDA0MTQwWhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMDE1Zjk3NTA4N2U2MjQ5MGE0YWFjNmJkNjVmYmM2MDYw OTkxZTU5NmU4Y2QzYzNhZTdhYjg0MjRlYTY0MTkxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiU5xVtgInS9wp899Cr/ihzBvpiT2MMDeK9d1ptWoKYIUi 1jftZBoPLJSdKgs7dTrAAKvP/CRTYgwUYGcT0tSLdpHL+KG4FApH255KSz4naQz+ 4GZKTzdnTdNrlZ7FEaKGeSWSJDNDTHEV0E2Sk0QxJk2nRqlO6DjeMI4c8WN7CNQ2 QXBhuO7lMVftyrOXSwhizNApFBb+X2Pt7/JTeq9aZPgtRkffuDk7aiVfLpIdW1aE TXznwSg6BFNbIyYFpQkMMGjtk6rSykKYtD01XKwf3shQRheoLvuahDSc/gGNutdR tlCKEf38pEIsXlXpM0K5oueljwXzKGYdzz9DoKKzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUv+JX62WLCq3Qusgz6nsdyICmVqswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2MmNkMWU3LTUyYjktNDZmZS1hZGVkLWJiMTU3M2E4YWY3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIQP1gwDQYJKoZIhvcNAQELBQADggEBACfZ+wLTNVPTvzcdw6KA/RIfrEOn /YhgX+kuCqV9lkhM0KHG8JdrHOBXt7pVxy2Uq+mOY5EXnJnuaPYOtteD3+ElTSoX /y/xS2TPs8X8zA3HD/cZ0dsxo5NK2/FbCwjeQU/MalougcJQjU/f/Ja31qRwCtFV jBvzvyrY1sxAfISOMUrhnmvTXJlyJJ5XahTanrOu8xPiyh1EyTEKoT4sOcC62LxU RIL9qSfoyQx+vSAx0uZ3hAZniMPUg9uegeFnNOvFSw0pmc8VbATFAzIIAdy4ClNi aSeoCT+L+EZu7iuA3jYfmir4jC3IVcLf+rEHZ4QZDMqvtXaGper4Zz16Hao= -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:44 2025 by rpki-client