$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa File: a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa (raw, json) Hash identifier: w8BlG/cXzVeR4HGKnJlfD5C6kmz4tZPYr+YQj3Aydw8= Subject key identifier: 41:9C:AB:B3:13:32:05:7D:B0:3D:66:62:D3:D4:8D:13:F6:FB:89:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 15C709BCD0DCEB371B38193F2294339D916B1781 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa Signing time: Fri 18 Apr 2025 00:30:25 +0000 ROA not before: Fri 18 Apr 2025 00:30:25 +0000 ROA not after: Fri 23 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 16.64.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 28 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c7:09:bc:d0:dc:eb:37:1b:38:19:3f:22:94:33:9d:91:6b:17:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 18 00:30:25 2025 GMT Not After : May 23 23:59:59 2025 GMT Subject: serialNumber=bcfe809d608c7dba2654be143d20db32c0b46471f237bc1fe2b2ba36df00e983, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:32:49:44:aa:82:6c:f2:0e:50:78:cf:bd:db: 50:65:30:83:19:29:ab:17:7c:76:c4:7d:41:02:48: ba:ae:da:3e:e0:fa:d2:5a:3f:58:8e:62:0f:ed:3a: f4:d9:19:f3:7e:dc:93:18:e5:61:fc:ad:86:24:89: a1:e2:69:4f:9c:ac:20:cc:f0:1c:bd:92:0a:4c:d6: 44:f9:73:f8:ad:37:d9:3a:0b:a6:1c:57:8d:de:25: 51:47:f3:7c:b5:b5:5e:73:9f:af:c8:ff:fe:1c:09: e9:41:d9:8a:6b:d0:ca:8a:a4:e4:76:b9:0c:43:57: ef:1e:f9:6a:61:fd:ac:d6:92:8a:45:76:57:b2:24: 8c:27:52:41:97:7f:f6:7b:72:7f:06:d8:15:4c:38: 03:91:64:b4:72:c0:db:ca:71:a8:c8:af:c4:c0:55: f6:24:f8:21:4c:d4:dd:83:e4:9a:de:21:99:73:89: b5:f3:6a:d8:81:ed:98:c0:77:d8:c2:ae:b2:2f:54: a7:33:31:28:0a:1b:76:96:ef:f0:82:65:51:db:c0: 62:a1:b3:d6:ad:ba:f1:72:d9:6e:95:34:5d:6d:3b: 27:39:e8:0a:43:b9:02:c5:9c:fc:b8:8c:c4:88:ba: 2f:a3:b2:3e:f9:74:ac:17:f0:0e:71:9c:c7:57:d4: 2a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:9C:AB:B3:13:32:05:7D:B0:3D:66:62:D3:D4:8D:13:F6:FB:89:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.64.0.0/17 Signature Algorithm: sha256WithRSAEncryption 7f:e9:83:0f:ef:8f:b6:46:11:50:e3:45:77:ff:3a:d2:c1:a6: 6f:70:4a:1e:f0:93:a1:77:71:fb:e3:21:7f:90:ba:62:8b:76: 34:62:b2:2f:af:e3:7c:17:46:c4:95:b7:80:5f:73:6a:29:80: 2b:70:fd:da:6e:6a:59:ff:1f:b8:a2:74:f6:f0:2a:2a:6d:09: 55:a8:c4:a0:d5:42:ce:0c:34:2b:ac:d2:9a:3f:ec:d3:d7:cc: 09:b6:a7:3e:d3:1c:cb:04:5a:81:46:2f:a8:ba:1c:74:c4:27: 81:c0:12:dd:a4:a7:08:9a:57:24:a3:8f:f6:f7:c7:40:c4:9a: 85:c9:91:8e:95:81:8c:32:e5:76:49:83:09:8a:19:12:6f:de: b2:fb:a5:08:aa:a3:09:da:a6:9b:08:02:5c:af:d1:37:ef:77: d0:03:7a:57:61:a0:a0:76:09:5b:7f:4b:7c:61:fd:9f:09:28: 7e:9b:d6:42:ac:5d:95:63:41:b3:17:40:5d:18:50:bb:bb:8d: 05:1d:04:75:b4:81:e3:1d:96:47:7d:d8:90:9c:c5:85:b9:1d: 0c:4b:8f:85:3a:b2:0f:96:cc:7b:ad:1e:e7:09:34:ac:c4:45: bf:56:52:6d:21:96:64:53:27:54:60:e3:de:1a:a3:5c:3c:52: 32:52:1f:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFccJvNDc6zcbOBk/IpQznZFrF4EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE4MDAzMDI1WhcNMjUwNTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiY2ZlODA5ZDYwOGM3ZGJhMjY1NGJlMTQzZDIwZGIzMmMw YjQ2NDcxZjIzN2JjMWZlMmIyYmEzNmRmMDBlOTgzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFMklEqoJs8g5QeM+921BlMIMZKasXfHbEfUECSLqu2j7g +tJaP1iOYg/tOvTZGfN+3JMY5WH8rYYkiaHiaU+crCDM8By9kgpM1kT5c/itN9k6 C6YcV43eJVFH83y1tV5zn6/I//4cCelB2Ypr0MqKpOR2uQxDV+8e+Wph/azWkopF dleyJIwnUkGXf/Z7cn8G2BVMOAORZLRywNvKcajIr8TAVfYk+CFM1N2D5JreIZlz ibXzatiB7ZjAd9jCrrIvVKczMSgKG3aW7/CCZVHbwGKhs9atuvFy2W6VNF1tOyc5 6ApDuQLFnPy4jMSIui+jsj75dKwX8A5xnMdX1CorAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQZyrsxMyBX2wPWZi09SNE/b7iQAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EwOGJhN2NhLWU4OWQtNGQ4Ny04ZWIzLTIzZjIwNjFlYzRmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcQQAAwDQYJKoZIhvcNAQELBQADggEBAH/pgw/vj7ZGEVDjRXf/OtLBpm9w Sh7wk6F3cfvjIX+QumKLdjRisi+v43wXRsSVt4Bfc2opgCtw/dpualn/H7iidPbw KiptCVWoxKDVQs4MNCus0po/7NPXzAm2pz7THMsEWoFGL6i6HHTEJ4HAEt2kpwia VySjj/b3x0DEmoXJkY6VgYwy5XZJgwmKGRJv3rL7pQiqownappsIAlyv0Tfvd9AD eldhoKB2CVt/S3xh/Z8JKH6b1kKsXZVjQbMXQF0YULu7jQUdBHW0geMdlkd92JCc xYW5HQxLj4U6sg+WzHutHucJNKzERb9WUm0hlmRTJ1Rg494ao1w8UjJSHzE= -----END CERTIFICATE-----Generated at Sun Apr 27 05:50:41 2025 by rpki-client