$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9ba2a87-d329-47eb-8f9e-502f1328b33e.roa File: d9ba2a87-d329-47eb-8f9e-502f1328b33e.roa (raw, json) Hash identifier: lwU0O+xnQU3o6KdWcg/UbKPlqFHgqhiRpvT75de1M+A= Subject key identifier: 2E:95:63:22:9A:F5:47:82:2F:68:E3:62:48:17:BD:5F:72:B6:6F:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F3FBBA65DC213BB7CD54035458B0927EA92C8B8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9ba2a87-d329-47eb-8f9e-502f1328b33e.roa Signing time: Wed 23 Apr 2025 00:30:29 +0000 ROA not before: Wed 23 Apr 2025 00:30:29 +0000 ROA not after: Wed 28 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.156.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:3f:bb:a6:5d:c2:13:bb:7c:d5:40:35:45:8b:09:27:ea:92:c8:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 23 00:30:29 2025 GMT Not After : May 28 23:59:59 2025 GMT Subject: serialNumber=22cd68f8c7b1c73f581ed5514b0c8019cc04f72a9a173387f0c43a4560c36b94, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:27:0d:1d:e2:28:56:63:a1:e8:09:d3:40:58: d2:14:58:03:2a:73:15:77:f3:8e:40:df:e0:2a:8d: 8b:45:eb:c3:53:cb:9e:38:c7:5e:1d:1a:7e:0d:05: f2:4f:89:f5:9d:25:d1:a0:ad:4c:f5:d3:87:29:ef: f8:4c:81:fd:cf:a8:2e:54:d3:5a:1a:5c:7a:dc:fc: 9a:ec:fa:61:fd:32:2e:a3:5c:f9:42:5e:fe:96:e0: b9:87:5c:b0:db:c7:b4:99:28:e2:9f:bf:39:6b:68: e1:e3:66:0b:83:27:65:6f:3d:06:c1:77:0a:5d:a4: be:8c:c4:a5:4d:9f:8a:21:19:10:e2:aa:89:10:74: 92:65:a0:04:c1:16:de:45:8d:15:22:ea:2e:6a:94: 78:6d:bc:eb:5f:38:c9:26:3a:18:c4:44:b2:1e:e4: 71:1e:ea:88:f4:26:da:39:11:fd:3e:6b:b4:c8:4b: e9:19:59:74:bf:40:2d:b9:83:13:a9:bc:aa:d6:c5: 5e:1c:38:12:88:8d:13:5f:b1:26:94:1b:64:eb:23: c8:f7:80:75:55:c2:c3:57:3f:5f:48:a8:87:e9:74: 3c:21:bd:4a:78:00:85:fb:93:af:af:8a:f2:c0:77: 29:99:5b:f2:64:59:d9:6d:d4:a8:7f:27:ee:49:23: 56:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:95:63:22:9A:F5:47:82:2F:68:E3:62:48:17:BD:5F:72:B6:6F:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9ba2a87-d329-47eb-8f9e-502f1328b33e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.156.0.0/14 Signature Algorithm: sha256WithRSAEncryption 26:78:e3:51:7b:0b:a3:d2:54:d8:e8:dd:5b:e1:eb:10:3f:78: bd:34:f0:26:80:cf:e1:88:ca:90:6f:14:15:4e:a7:19:09:36: d6:a6:e0:91:9b:cc:81:af:b6:c2:74:24:95:52:ca:8e:dd:0c: d7:fb:dc:f7:50:ec:e6:29:9f:2f:6c:3e:74:7e:f3:25:c8:23: 17:c7:2e:4b:54:e0:51:7e:36:6a:7d:dd:83:eb:59:8a:16:29: 6c:64:df:94:7b:1f:5d:9d:3b:80:47:af:f4:f2:5c:be:f6:5e: 29:0f:89:ca:78:d0:3c:b5:91:d3:46:bc:b0:de:8a:e9:5e:69: cf:6b:89:62:e1:04:fb:74:e0:fa:ae:9f:3c:fc:0c:5a:b5:49: 5a:cb:a1:1f:98:99:07:96:b2:32:d8:33:d4:29:88:32:51:68: 3d:5e:0a:4e:62:69:9f:27:c1:f1:ce:f4:e2:90:08:12:83:88: ba:f4:45:ac:e6:b4:fc:0c:5d:e2:f6:12:65:d9:ba:1e:fa:fc: dc:2f:29:ff:67:67:20:fc:be:d0:ca:87:34:40:9d:48:fe:1b: 7d:67:51:6e:c5:95:79:08:bc:72:9d:52:fa:51:00:70:09:87: c8:95:16:ca:9f:29:2a:29:f4:5b:db:5d:3d:c2:8e:1d:a8:86: 53:84:ec:07 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPz+7pl3CE7t81UA1RYsJJ+qSyLgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIzMDAzMDI5WhcNMjUwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmNkNjhmOGM3YjFjNzNmNTgxZWQ1NTE0YjBjODAxOWNj MDRmNzJhOWExNzMzODdmMGM0M2E0NTYwYzM2Yjk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLJw0d4ihWY6HoCdNAWNIUWAMqcxV3845A3+AqjYtF68NT y544x14dGn4NBfJPifWdJdGgrUz104cp7/hMgf3PqC5U01oaXHrc/Jrs+mH9Mi6j XPlCXv6W4LmHXLDbx7SZKOKfvzlraOHjZguDJ2VvPQbBdwpdpL6MxKVNn4ohGRDi qokQdJJloATBFt5FjRUi6i5qlHhtvOtfOMkmOhjERLIe5HEe6oj0Jto5Ef0+a7TI S+kZWXS/QC25gxOpvKrWxV4cOBKIjRNfsSaUG2TrI8j3gHVVwsNXP19IqIfpdDwh vUp4AIX7k6+vivLAdymZW/JkWdlt1Kh/J+5JI1ZtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQULpVjIpr1R4IvaONiSBe9X3K2b3swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5YmEyYTg3LWQzMjktNDdlYi04ZjllLTUwMmYxMzI4YjMzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIQnDANBgkqhkiG9w0BAQsFAAOCAQEAJnjjUXsLo9JU2OjdW+HrED94vTTw JoDP4YjKkG8UFU6nGQk21qbgkZvMga+2wnQklVLKjt0M1/vc91Ds5imfL2w+dH7z JcgjF8cuS1TgUX42an3dg+tZihYpbGTflHsfXZ07gEev9PJcvvZeKQ+JynjQPLWR 00a8sN6K6V5pz2uJYuEE+3Tg+q6fPPwMWrVJWsuhH5iZB5ayMtgz1CmIMlFoPV4K TmJpnyfB8c704pAIEoOIuvRFrOa0/Axd4vYSZdm6Hvr83C8p/2dnIPy+0MqHNECd SP4bfWdRbsWVeQi8cp1S+lEAcAmHyJUWyp8pKin0W9tdPcKOHaiGU4TsBw== -----END CERTIFICATE-----Generated at Sat Apr 26 16:11:44 2025 by rpki-client