$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2968684-8bbe-4f3d-a944-999aee365788.roa File: a2968684-8bbe-4f3d-a944-999aee365788.roa (raw, json) Hash identifier: auZBNM1yMt5rEquVzRYhiCZby270QH/6ALtTkr45/dk= Subject key identifier: 2E:9D:F7:46:25:C8:BD:51:14:AE:CB:94:36:BA:F7:17:A2:7A:7F:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3BE14A2DB382131C33E77AB2D31E76D067FFB03A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2968684-8bbe-4f3d-a944-999aee365788.roa Signing time: Wed 23 Apr 2025 00:32:04 +0000 ROA not before: Wed 23 Apr 2025 00:32:04 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.50.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:e1:4a:2d:b3:82:13:1c:33:e7:7a:b2:d3:1e:76:d0:67:ff:b0:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:32:04 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=00edc6d2e894aca219ce9149877c0a7884b56e5cd85410d5640fd73157a6e871, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c2:4a:6c:f6:e5:8a:d7:4e:f5:26:55:42:d0: cc:d2:7b:50:ac:8b:46:30:28:29:59:09:e6:f8:7c: 31:1e:c4:54:6c:1a:18:61:50:8d:5c:f9:01:42:47: 04:90:91:9d:0c:a5:03:94:5e:8f:36:f9:57:3e:2b: f4:67:77:ae:b4:b8:9d:81:fc:c8:7a:dc:d7:e7:b8: 5d:79:ab:e4:dc:53:ff:13:99:53:9a:3c:c1:a1:97: 82:c2:ec:1a:6a:43:8c:9c:c8:cd:61:3a:fd:43:23: db:fb:8a:2c:fd:80:d6:0e:c3:ff:15:7d:0e:cb:8f: 24:71:65:4c:94:9a:2b:9a:fe:dc:2d:df:e3:67:65: 25:a9:48:be:a2:50:9c:02:20:8f:1c:4e:60:50:9e: 3d:ea:77:ad:c2:9b:94:49:69:b4:5c:2f:a2:93:e5: 72:82:ba:13:9e:17:e1:46:10:8e:1f:15:7c:43:22: 8b:3a:7e:56:eb:bf:ec:8e:18:3d:a3:9c:6b:5a:b8: 8c:02:68:ee:9e:ab:31:f4:6d:3e:b1:f6:97:7b:a0: ce:de:72:25:c7:2b:25:d0:47:18:58:f4:40:a2:0d: c2:ec:ab:d7:a2:c9:6b:ec:78:2f:62:69:d7:28:30: be:40:e1:ca:da:62:ff:21:0e:ca:5b:24:40:3f:63: 86:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:9D:F7:46:25:C8:BD:51:14:AE:CB:94:36:BA:F7:17:A2:7A:7F:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2968684-8bbe-4f3d-a944-999aee365788.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.50.70.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:af:3a:fe:10:0d:bb:a7:9e:01:b5:65:db:b7:e5:a8:10:69: d5:3c:e8:8e:e5:df:a7:cd:8e:77:47:bd:48:e5:c4:e1:7f:e1: 84:b2:4a:b8:99:1e:c5:17:38:6f:4a:fa:9e:fb:d6:b2:58:c2: 59:5a:db:59:22:b5:85:fe:30:db:d9:9f:59:5f:d6:13:7d:d2: 9d:6e:03:93:65:de:a6:35:06:db:d4:c5:35:0e:00:d9:34:b2: 98:a0:e8:fa:b5:51:9f:c7:8f:73:c5:2b:c0:a6:8d:78:20:85: f7:05:13:78:90:d6:0a:92:56:d1:11:78:c5:4a:ca:bb:f8:16: b2:68:31:fa:aa:01:d1:dc:74:71:34:51:1b:76:79:2a:c8:bf: 57:10:ff:66:44:69:57:b3:33:54:2b:71:5c:b7:4a:69:4d:e3: fa:0d:6a:a8:91:c0:fb:41:dd:96:ea:84:05:1d:a2:a6:b6:38: 8e:5a:fb:a5:d6:60:f4:b3:15:0b:7d:22:85:5f:71:63:40:88: 07:46:53:29:f5:17:f2:0c:10:eb:9f:cb:37:03:e9:ce:a5:1a: 60:cc:0d:1f:10:68:65:7c:e9:36:3d:29:59:71:0f:13:cf:95: d4:79:77:24:33:2d:89:d5:f3:06:f0:8a:33:1d:e4:d4:27:2b: 5e:12:36:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO+FKLbOCExwz53qy0x520Gf/sDowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAzMjA0WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGVkYzZkMmU4OTRhY2EyMTljZTkxNDk4NzdjMGE3ODg0 YjU2ZTVjZDg1NDEwZDU2NDBmZDczMTU3YTZlODcxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRwkps9uWK1071JlVC0MzSe1Csi0YwKClZCeb4fDEexFRs GhhhUI1c+QFCRwSQkZ0MpQOUXo82+Vc+K/Rnd660uJ2B/Mh63NfnuF15q+TcU/8T mVOaPMGhl4LC7BpqQ4ycyM1hOv1DI9v7iiz9gNYOw/8VfQ7LjyRxZUyUmiua/twt 3+NnZSWpSL6iUJwCII8cTmBQnj3qd63Cm5RJabRcL6KT5XKCuhOeF+FGEI4fFXxD Ios6flbrv+yOGD2jnGtauIwCaO6eqzH0bT6x9pd7oM7eciXHKyXQRxhY9ECiDcLs q9eiyWvseC9iadcoML5A4craYv8hDspbJEA/Y4Z3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULp33RiXIvVEUrsuUNrr3F6J6f+gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyOTY4Njg0LThiYmUtNGYzZC1hOTQ0LTk5OWFlZTM2NTc4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEQMkYwDQYJKoZIhvcNAQELBQADggEBAJ+vOv4QDbunngG1Zdu35agQadU8 6I7l36fNjndHvUjlxOF/4YSySriZHsUXOG9K+p771rJYwlla21kitYX+MNvZn1lf 1hN90p1uA5Nl3qY1BtvUxTUOANk0spig6Pq1UZ/Hj3PFK8CmjXgghfcFE3iQ1gqS VtEReMVKyrv4FrJoMfqqAdHcdHE0URt2eSrIv1cQ/2ZEaVezM1QrcVy3SmlN4/oN aqiRwPtB3ZbqhAUdoqa2OI5a+6XWYPSzFQt9IoVfcWNAiAdGUyn1F/IMEOufyzcD 6c6lGmDMDR8QaGV86TY9KVlxDxPPldR5dyQzLYnV8wbwijMd5NQnK14SNrA= -----END CERTIFICATE-----Generated at Sat Apr 26 15:01:57 2025 by rpki-client