$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e454b87e-3750-4f94-a7d0-f1c6408adee5.roa File: e454b87e-3750-4f94-a7d0-f1c6408adee5.roa (raw, json) Hash identifier: fqB/Wol3BZchPbGov/AZc7sbS1UI1Tt3Zoi4yZnj00Y= Subject key identifier: D7:E6:26:16:D7:C6:FD:3C:7F:33:41:CE:2D:19:BE:74:6A:AC:85:A5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2BC378B2C560CA87283DC3F6EAD0FC5296159918 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e454b87e-3750-4f94-a7d0-f1c6408adee5.roa Signing time: Fri 11 Apr 2025 00:10:28 +0000 ROA not before: Fri 11 Apr 2025 00:10:28 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.56.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c3:78:b2:c5:60:ca:87:28:3d:c3:f6:ea:d0:fc:52:96:15:99:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 11 00:10:28 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=a3857b80f2a56867ff9874634f7ae04414decc94d2229d504072693f6205aaff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:85:48:6f:30:ca:88:b0:db:ee:64:4d:3e:5d: 13:97:da:f3:3e:b8:27:d0:77:ca:65:3f:99:10:41: 2d:9b:c2:46:36:ab:a4:ee:89:9d:36:71:3d:d6:f6: bd:16:7c:4d:4c:77:33:82:0a:49:c2:3f:50:6c:87: 80:ff:c3:15:4e:5c:b1:0f:9e:91:b1:c6:32:44:db: 1d:b9:2e:08:ce:78:b9:9d:8e:55:da:b0:6a:5e:6b: 45:59:08:d0:bc:04:04:23:f3:a9:07:02:fa:8d:da: 9c:7e:65:7e:65:fc:25:56:1f:46:98:28:50:bf:1e: 72:cc:09:6e:08:29:e6:a8:7d:be:9d:40:13:96:15: eb:59:1e:e6:4a:75:e4:6b:01:39:8e:aa:b2:55:42: 9a:34:bd:cd:49:a3:9e:cd:11:63:73:2c:82:e2:ba: b2:de:e1:2d:c4:f3:9e:1c:ea:3b:0c:f6:ee:97:d4: fd:bd:35:db:6a:4d:fb:97:59:6e:a2:2b:bf:f5:39: 35:9b:18:31:38:15:44:36:a8:d9:15:bb:fd:26:bb: ce:95:d9:97:36:3b:d4:9e:5c:f1:0c:4d:c2:64:2f: b5:2d:c3:71:63:f8:14:64:57:52:40:4a:c2:57:2b: c4:d4:62:20:f2:f2:c8:f7:9d:55:08:61:b9:9f:fa: d0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E6:26:16:D7:C6:FD:3C:7F:33:41:CE:2D:19:BE:74:6A:AC:85:A5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e454b87e-3750-4f94-a7d0-f1c6408adee5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.56.64.0/18 Signature Algorithm: sha256WithRSAEncryption 4f:ea:cb:ba:0e:05:5b:e5:85:77:4f:51:65:f2:50:8e:a1:6e: 5f:24:0e:23:41:08:11:3b:da:a8:4d:fc:1d:34:31:bc:10:64: 6d:51:16:c9:1d:86:c8:3c:a6:00:dd:57:12:8b:23:c5:04:50: 70:fb:ee:07:ba:68:e8:f0:5b:16:a2:a8:40:4d:b0:77:83:33: 6a:cc:c5:8a:95:d7:b2:ac:8b:37:fc:b3:78:ce:4e:83:26:7b: 2f:0c:b5:32:bf:da:a9:15:42:e3:63:11:7e:e5:66:4e:df:bc: 58:c5:6c:1a:a7:82:5e:5b:bc:ac:4a:26:5f:92:89:89:ea:b6: 1b:3b:7c:24:c1:b8:99:36:f4:a6:ed:6f:3e:9c:ca:d6:28:22: 07:6e:ec:4f:d8:4c:e6:ea:23:9c:90:02:88:46:ed:68:b4:53: 33:e2:2c:2d:66:e8:34:32:46:1f:d0:b9:11:e8:74:68:c2:f9: 82:e6:83:2c:5c:5a:9a:7c:01:d1:69:3d:f2:66:22:6c:2b:0e: e3:f7:79:0d:50:dd:c7:0e:39:42:57:2c:38:87:3a:b8:21:e1: e7:b2:8f:fe:6f:65:70:e4:98:8c:53:a0:97:b1:6d:a3:02:97: 08:51:6f:e1:53:2b:2f:1f:a7:6b:cd:8f:dc:f2:34:97:c8:62: da:b6:f4:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK8N4ssVgyocoPcP26tD8UpYVmRgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDExMDAxMDI4WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzg1N2I4MGYyYTU2ODY3ZmY5ODc0NjM0ZjdhZTA0NDE0 ZGVjYzk0ZDIyMjlkNTA0MDcyNjkzZjYyMDVhYWZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxhUhvMMqIsNvuZE0+XROX2vM+uCfQd8plP5kQQS2bwkY2 q6TuiZ02cT3W9r0WfE1MdzOCCknCP1Bsh4D/wxVOXLEPnpGxxjJE2x25LgjOeLmd jlXasGpea0VZCNC8BAQj86kHAvqN2px+ZX5l/CVWH0aYKFC/HnLMCW4IKeaofb6d QBOWFetZHuZKdeRrATmOqrJVQpo0vc1Jo57NEWNzLILiurLe4S3E854c6jsM9u6X 1P29NdtqTfuXWW6iK7/1OTWbGDE4FUQ2qNkVu/0mu86V2Zc2O9SeXPEMTcJkL7Ut w3Fj+BRkV1JASsJXK8TUYiDy8sj3nVUIYbmf+tCNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1+YmFtfG/Tx/M0HOLRm+dGqshaUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U0NTRiODdlLTM3NTAtNGY5NC1hN2QwLWYxYzY0MDhhZGVlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYQOEAwDQYJKoZIhvcNAQELBQADggEBAE/qy7oOBVvlhXdPUWXyUI6hbl8k DiNBCBE72qhN/B00MbwQZG1RFskdhsg8pgDdVxKLI8UEUHD77ge6aOjwWxaiqEBN sHeDM2rMxYqV17Ksizf8s3jOToMmey8MtTK/2qkVQuNjEX7lZk7fvFjFbBqngl5b vKxKJl+SiYnqths7fCTBuJk29Kbtbz6cytYoIgdu7E/YTObqI5yQAohG7Wi0UzPi LC1m6DQyRh/QuRHodGjC+YLmgyxcWpp8AdFpPfJmImwrDuP3eQ1Q3ccOOUJXLDiH Orgh4eeyj/5vZXDkmIxToJexbaMClwhRb+FTKy8fp2vNj9zyNJfIYtq29MM= -----END CERTIFICATE-----Generated at Sat Apr 26 14:56:30 2025 by rpki-client