$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e4bae46-b367-48d0-8831-12876cafbdbd.roa File: 6e4bae46-b367-48d0-8831-12876cafbdbd.roa (raw, json) Hash identifier: pHw6PpoTmSec0DWbil/G+96vqGadfHcHHNl9QkuIu1c= Subject key identifier: CC:82:21:B0:8B:C3:3D:0B:2D:15:B5:A8:77:A0:0D:53:8A:EE:73:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A0874A48A75A798F60D6C73ED7745334644EA4A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e4bae46-b367-48d0-8831-12876cafbdbd.roa Signing time: Fri 18 Apr 2025 00:30:24 +0000 ROA not before: Fri 18 Apr 2025 00:30:24 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.64.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:08:74:a4:8a:75:a7:98:f6:0d:6c:73:ed:77:45:33:46:44:ea:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:30:24 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=6b67a88c8a56cdf69dfe3b981f0d918060abea4b9258b1bdac8696f6735a66bb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:11:5f:b6:68:29:bb:72:77:21:8a:c0:8a:72: 25:d3:e0:1f:40:2f:e7:71:79:f3:38:82:1b:f4:78: 98:75:bb:47:34:62:1d:77:de:49:87:1a:63:2c:9c: f1:c2:0f:04:f4:20:ed:0d:59:4a:de:23:f4:7b:e6: 16:52:53:41:ab:e4:23:78:07:71:bf:0f:9c:d7:0d: 9c:8b:47:4f:fd:2e:69:41:36:e1:3d:31:c5:f7:39: a2:62:7b:b2:43:82:08:56:92:6d:56:e8:8c:68:f0: 7f:d1:70:bf:72:64:cd:a7:84:3c:6f:7a:96:c0:83: 5a:b8:87:55:dc:db:25:88:97:ff:a0:a6:f7:b7:b2: 05:ba:e0:e9:7d:b2:46:90:3d:0b:7a:d5:97:9a:86: 19:ee:98:81:82:4f:18:0b:ca:d2:4a:a1:70:81:40: 1d:7c:64:76:d0:7a:09:cb:f9:3e:a7:0d:37:6e:4d: 54:96:7f:e7:91:63:9b:01:30:84:5b:37:5c:d9:c4: 2f:c9:cf:c6:09:b7:dc:4b:0a:6e:a0:02:58:0b:ca: dd:9c:08:d9:64:8a:31:b1:b2:49:05:9f:63:79:57: 88:88:19:90:b0:7c:c0:3c:74:79:fa:12:45:38:47: ce:0b:6e:1b:3d:35:88:6d:34:b7:0a:80:c2:60:ae: b5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:82:21:B0:8B:C3:3D:0B:2D:15:B5:A8:77:A0:0D:53:8A:EE:73:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e4bae46-b367-48d0-8831-12876cafbdbd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.64.0.0/17 Signature Algorithm: sha256WithRSAEncryption a6:50:8b:a7:a6:f9:de:90:44:cc:04:44:a8:e6:5c:8c:00:1f: 30:95:f1:d7:ad:dc:23:94:6b:94:b7:b9:ae:6e:a8:7a:35:f6: 08:17:54:e3:4c:6f:bb:dd:60:dc:8a:c8:06:7f:92:2f:af:91: 52:d6:cd:02:65:6a:5d:7e:e8:e5:4f:39:7d:97:8e:ff:c8:46: 9b:45:f7:ea:4c:22:6d:38:7d:20:96:d7:47:af:77:56:5b:17: 00:2d:c4:70:ce:de:44:90:65:3e:b7:00:cd:ac:2c:03:1e:28: c5:d3:16:b0:64:2b:c8:3c:c0:60:77:bb:04:57:39:13:49:b0: 7a:8a:58:35:b3:03:34:fe:85:7d:00:ad:a3:e4:52:a9:a8:fd: 0b:c5:87:00:12:fb:10:20:23:3d:15:d9:1f:9a:7f:2f:ae:3c: a1:e7:34:cb:e2:9b:fc:75:1d:dc:9f:e7:9e:65:41:73:9b:b1: cc:04:7f:f2:06:c9:b1:b8:9c:1a:04:3b:c7:6c:5e:59:e1:5a: 99:d7:4d:02:80:96:9f:c0:c1:19:43:ca:31:29:f8:2e:d3:c7: 1b:6e:69:a8:e2:53:c4:bf:2b:a9:66:94:a4:0f:7d:b4:1e:fe: dc:af:da:f2:73:55:38:48:93:2e:4c:0e:1d:e7:6e:76:c8:0d: 15:98:97:62 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOgh0pIp1p5j2DWxz7XdFM0ZE6kowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDAzMDI0WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjY3YTg4YzhhNTZjZGY2OWRmZTNiOTgxZjBkOTE4MDYw YWJlYTRiOTI1OGIxYmRhYzg2OTZmNjczNWE2NmJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8EV+2aCm7cnchisCKciXT4B9AL+dxefM4ghv0eJh1u0c0 Yh133kmHGmMsnPHCDwT0IO0NWUreI/R75hZSU0Gr5CN4B3G/D5zXDZyLR0/9LmlB NuE9McX3OaJie7JDgghWkm1W6Ixo8H/RcL9yZM2nhDxvepbAg1q4h1Xc2yWIl/+g pve3sgW64Ol9skaQPQt61ZeahhnumIGCTxgLytJKoXCBQB18ZHbQegnL+T6nDTdu TVSWf+eRY5sBMIRbN1zZxC/Jz8YJt9xLCm6gAlgLyt2cCNlkijGxskkFn2N5V4iI GZCwfMA8dHn6EkU4R84Lbhs9NYhtNLcKgMJgrrVfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzIIhsIvDPQstFbWod6ANU4ruc+IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZlNGJhZTQ2LWIzNjctNDhkMC04ODMxLTEyODc2Y2FmYmRiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcQQAAwDQYJKoZIhvcNAQELBQADggEBAKZQi6em+d6QRMwERKjmXIwAHzCV 8det3COUa5S3ua5uqHo19ggXVONMb7vdYNyKyAZ/ki+vkVLWzQJlal1+6OVPOX2X jv/IRptF9+pMIm04fSCW10evd1ZbFwAtxHDO3kSQZT63AM2sLAMeKMXTFrBkK8g8 wGB3uwRXORNJsHqKWDWzAzT+hX0AraPkUqmo/QvFhwAS+xAgIz0V2R+afy+uPKHn NMvim/x1Hdyf555lQXObscwEf/IGybG4nBoEO8dsXlnhWpnXTQKAlp/AwRlDyjEp +C7TxxtuaajiU8S/K6lmlKQPfbQe/tyv2vJzVThIky5MDh3nbnbIDRWYl2I= -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:34 2025 by rpki-client