$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa File: d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa (raw, json) Hash identifier: y2gcjknn9VCiXnOIOayB64LWe1WxEMbRAiC30syKeik= Subject key identifier: D2:16:3C:AF:CB:89:C8:D5:53:B1:E5:38:A7:B3:EA:CA:FF:74:00:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 672594B98BC553B9A1C2A15BD082C273A08144E6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa Signing time: Fri 13 Jun 2025 00:30:23 +0000 ROA not before: Fri 13 Jun 2025 00:30:23 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.107.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:25:94:b9:8b:c5:53:b9:a1:c2:a1:5b:d0:82:c2:73:a0:81:44:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:30:23 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=4f31487cd7da70e9a1bb4609a5488fc8dc918c08f250b27c6ed49945f8505508, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f7:1c:d2:b1:72:f2:8e:bc:9e:66:5e:18:3a: 5c:0b:f0:9c:7c:e0:2f:72:f5:50:d4:b7:69:3e:4c: ca:fd:ff:32:eb:28:20:f3:5a:b0:a7:ed:82:ea:c9: 8c:61:98:2c:0e:3c:ec:41:b7:a8:1b:42:51:b1:cb: 52:f3:14:69:51:c3:ac:77:a2:45:68:5f:03:ee:8b: 39:16:b4:f8:bf:c5:20:61:bc:c5:1d:d4:b6:b1:01: ae:6a:7e:d8:1c:ce:10:23:4d:b4:d8:e3:35:68:33: 57:95:f8:c4:2f:cd:80:07:b2:f2:15:3c:72:b1:ff: 2c:ba:5b:0a:58:d5:66:54:b4:97:94:46:02:de:93: 8e:b8:60:e9:b8:db:ce:40:f0:26:98:3a:ab:fe:91: ad:ef:8b:84:a6:f9:33:55:ae:c2:dc:52:2e:0d:87: 7d:b5:0d:50:0f:57:ea:59:ad:c4:2c:be:3f:d9:68: dd:88:e0:03:b9:d4:9d:4a:10:1a:c7:56:0f:65:f8: 62:e8:65:2b:94:82:e9:51:7d:6c:c4:19:a1:16:c8: 60:0a:59:29:3b:c9:8e:c4:f9:2c:ff:c5:5d:fd:ff: 0e:46:6f:51:6d:d2:b4:a5:e4:04:63:6c:e0:3a:22: 07:5c:13:a7:0f:96:9d:81:6b:c3:5f:14:57:47:75: d2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:16:3C:AF:CB:89:C8:D5:53:B1:E5:38:A7:B3:EA:CA:FF:74:00:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79f801b-3499-4a1e-bd4a-c93dc95bbbab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.107.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2d:42:ae:d0:7b:b9:54:32:19:45:b1:ba:c9:d5:8b:1a:b7:f1: 80:44:03:e8:cc:03:8d:2d:9c:de:80:b9:c0:61:04:02:72:dc: 92:cb:9b:8c:ab:48:ed:9f:65:60:47:70:3f:0f:0e:1d:ed:11: cc:16:2d:87:2e:1a:5c:2d:81:73:f2:f6:72:ae:0b:c9:a3:cd: 14:30:e8:f1:f7:60:85:30:39:41:db:43:36:47:09:7b:ff:7d: 76:66:12:bb:c5:39:4b:21:34:74:79:07:b1:a9:aa:59:cf:9e: 6c:1f:00:f4:b5:74:1b:de:ee:66:94:6d:a5:04:0c:86:9c:97: 52:d5:80:5e:1a:6f:25:ec:ee:58:ab:17:63:3f:a8:ba:1c:fc: d5:11:ab:19:8d:80:31:88:6b:a8:a3:b5:db:20:32:a7:03:86: 71:94:a0:18:47:77:36:ae:77:e0:58:af:7e:38:58:3f:79:44: 3e:44:d2:b8:2a:66:99:c7:9f:6e:00:da:14:39:0a:52:ad:9d: 3c:c4:d1:ca:7e:44:8a:29:20:55:34:e5:60:63:47:b8:6e:ac: 46:d4:e4:57:09:c2:8e:86:dc:34:31:8a:1e:bf:9d:d2:0f:d2: 05:e4:37:8e:4a:8c:e5:2b:62:c6:fc:a4:c0:7d:30:1c:51:7b: 0e:19:45:a7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZyWUuYvFU7mhwqFb0ILCc6CBROYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDAzMDIzWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjMxNDg3Y2Q3ZGE3MGU5YTFiYjQ2MDlhNTQ4OGZjOGRj OTE4YzA4ZjI1MGIyN2M2ZWQ0OTk0NWY4NTA1NTA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU9xzSsXLyjryeZl4YOlwL8Jx84C9y9VDUt2k+TMr9/zLr KCDzWrCn7YLqyYxhmCwOPOxBt6gbQlGxy1LzFGlRw6x3okVoXwPuizkWtPi/xSBh vMUd1LaxAa5qftgczhAjTbTY4zVoM1eV+MQvzYAHsvIVPHKx/yy6WwpY1WZUtJeU RgLek464YOm4285A8CaYOqv+ka3vi4Sm+TNVrsLcUi4Nh321DVAPV+pZrcQsvj/Z aN2I4AO51J1KEBrHVg9l+GLoZSuUgulRfWzEGaEWyGAKWSk7yY7E+Sz/xV39/w5G b1Ft0rSl5ARjbOA6IgdcE6cPlp2Ba8NfFFdHddI9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0hY8r8uJyNVTseU4p7Pqyv90AF4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3OWY4MDFiLTM0OTktNGExZS1iZDRhLWM5M2RjOTViYmJhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQazANBgkqhkiG9w0BAQsFAAOCAQEALUKu0Hu5VDIZRbG6ydWLGrfxgEQD 6MwDjS2c3oC5wGEEAnLcksubjKtI7Z9lYEdwPw8OHe0RzBYthy4aXC2Bc/L2cq4L yaPNFDDo8fdghTA5QdtDNkcJe/99dmYSu8U5SyE0dHkHsamqWc+ebB8A9LV0G97u ZpRtpQQMhpyXUtWAXhpvJezuWKsXYz+ouhz81RGrGY2AMYhrqKO12yAypwOGcZSg GEd3Nq534FivfjhYP3lEPkTSuCpmmcefbgDaFDkKUq2dPMTRyn5EiikgVTTlYGNH uG6sRtTkVwnCjobcNDGKHr+d0g/SBeQ3jkqM5StixvykwH0wHFF7DhlFpw== -----END CERTIFICATE-----Generated at Sat Jun 14 06:18:18 2025 by rpki-client