$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa File: 54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa (raw, json) Hash identifier: cOYV5p2dD3jZgNZ86Drs/+9mdS5zXl8GARI4MypjqMc= Subject key identifier: 10:58:F8:58:7B:09:90:AF:79:B9:D8:74:43:11:71:F0:97:6E:AA:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67850AC5779AF0FB24FD08F629B025C3C132C544 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa Signing time: Wed 30 Apr 2025 00:00:40 +0000 ROA not before: Wed 30 Apr 2025 00:00:40 +0000 ROA not after: Wed 04 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 138.52.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:85:0a:c5:77:9a:f0:fb:24:fd:08:f6:29:b0:25:c3:c1:32:c5:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 30 00:00:40 2025 GMT Not After : Jun 4 23:59:59 2025 GMT Subject: serialNumber=621b757d9ca49e7d99bee5fde57c2858723ffe5dd25f6606b9132cf042048630, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d7:b2:3e:eb:3f:4a:f0:f3:e8:4a:ff:c9:f7: 99:7e:3f:8f:ea:2f:13:d8:3f:49:43:f0:68:99:55: 3f:10:26:57:4d:fa:7d:ae:d9:3b:34:3f:22:87:af: 35:e6:ec:ea:5d:25:9b:57:7a:c0:40:1b:56:c2:8a: b7:f7:99:38:0f:81:dc:33:db:57:99:58:07:cf:57: fd:83:7a:db:c8:ee:af:95:87:fd:77:07:41:45:4d: 60:d0:20:42:c6:50:9d:fd:5f:b4:e9:14:48:17:b9: 86:bd:49:2e:ea:ed:8b:f1:2f:e8:0b:db:d6:fe:ed: 87:ad:7d:7f:9c:97:e9:0f:42:18:d1:8d:11:9e:58: 05:94:b1:16:40:27:30:59:66:20:a7:ce:f4:c6:fe: b8:e3:87:72:f4:38:2c:83:f7:0b:23:24:89:25:6b: 85:af:3e:b6:12:e8:64:29:51:b6:69:ed:f3:8b:5d: 07:90:78:fa:bc:d0:dc:7e:f2:5b:2d:5b:2a:a5:7f: e8:39:b1:0c:e0:08:db:e7:5c:9c:a0:e7:77:86:2a: e2:2f:ee:57:1e:9f:05:72:94:fb:08:74:77:3c:06: 6a:ba:58:7e:25:d6:f7:a5:1d:bb:27:5e:3a:57:f7: 3a:54:6a:4d:0a:e8:75:d8:f4:89:c1:b6:6b:b4:31: cf:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:58:F8:58:7B:09:90:AF:79:B9:D8:74:43:11:71:F0:97:6E:AA:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9a:1e:b0:d9:82:75:0e:30:98:40:e7:e9:bd:4d:d9:8f:fa:88: 20:45:0a:d3:17:a8:94:94:ca:53:b7:2d:8a:a6:77:04:df:84: 64:08:36:32:7f:fa:59:1e:6f:b6:59:f5:bf:8d:bd:da:bc:73: 7e:03:7f:88:1d:29:90:36:a7:f3:3c:7f:86:b0:bc:0c:c5:55: c1:d6:81:bc:f8:f1:17:de:aa:9f:07:2c:d4:b0:ec:30:e4:48: f2:be:eb:0d:5c:cb:4f:e6:7a:38:4e:00:47:34:66:65:9a:75: e2:bd:61:73:85:b9:4b:fd:6a:b4:63:2c:0a:60:8e:b7:29:a2: 3e:03:3c:18:2d:ab:fb:ec:da:38:06:2a:74:5c:dc:96:b1:6c: bf:4a:69:35:71:f9:a1:b0:5f:eb:b4:db:1f:7e:2e:b2:b1:21: 43:d4:9c:93:96:08:87:d0:e6:76:b5:48:76:bc:84:5e:d9:b9: e0:53:1c:72:a9:6a:3a:c9:3b:f2:b0:34:c5:8a:00:2c:ef:96: dc:33:a5:12:74:41:75:c3:92:eb:c0:a8:02:d9:86:f7:26:37: 9c:f6:56:80:3d:36:7b:7e:40:04:71:11:3e:bf:8f:89:e6:1f: ae:79:68:c3:9d:e6:b5:7f:e8:d8:06:7f:88:58:10:da:db:31: 98:b5:f2:7b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZ4UKxXea8Psk/Qj2KbAlw8EyxUQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDMwMDAwMDQwWhcNMjUwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjFiNzU3ZDljYTQ5ZTdkOTliZWU1ZmRlNTdjMjg1ODcy M2ZmZTVkZDI1ZjY2MDZiOTEzMmNmMDQyMDQ4NjMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC017I+6z9K8PPoSv/J95l+P4/qLxPYP0lD8GiZVT8QJldN +n2u2Ts0PyKHrzXm7OpdJZtXesBAG1bCirf3mTgPgdwz21eZWAfPV/2DetvI7q+V h/13B0FFTWDQIELGUJ39X7TpFEgXuYa9SS7q7YvxL+gL29b+7YetfX+cl+kPQhjR jRGeWAWUsRZAJzBZZiCnzvTG/rjjh3L0OCyD9wsjJIkla4WvPrYS6GQpUbZp7fOL XQeQePq80Nx+8lstWyqlf+g5sQzgCNvnXJyg53eGKuIv7lcenwVylPsIdHc8Bmq6 WH4l1velHbsnXjpX9zpUak0K6HXY9InBtmu0Mc9fAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUEFj4WHsJkK95udh0QxFx8JduqvAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0ZjRmNWJjLTMwYzctNGQyMC1hOWI0LWIzOTYyNmYzMGU3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCKNDANBgkqhkiG9w0BAQsFAAOCAQEAmh6w2YJ1DjCYQOfpvU3Zj/qIIEUK 0xeolJTKU7ctiqZ3BN+EZAg2Mn/6WR5vtln1v4292rxzfgN/iB0pkDan8zx/hrC8 DMVVwdaBvPjxF96qnwcs1LDsMORI8r7rDVzLT+Z6OE4ARzRmZZp14r1hc4W5S/1q tGMsCmCOtymiPgM8GC2r++zaOAYqdFzclrFsv0ppNXH5obBf67TbH34usrEhQ9Sc k5YIh9DmdrVIdryEXtm54FMccqlqOsk78rA0xYoALO+W3DOlEnRBdcOS68CoAtmG 9yY3nPZWgD02e35ABHERPr+PieYfrnlow53mtX/o2AZ/iFgQ2tsxmLXyew== -----END CERTIFICATE-----Generated at Mon May 5 12:57:16 2025 by rpki-client