$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/557ead45-b1a7-4106-be3c-6b610ae5759c.roa File: 557ead45-b1a7-4106-be3c-6b610ae5759c.roa (raw, json) Hash identifier: CtFIY97xT6NS5Y+BsweQwdyMjKSsclu97FXpC23sXqM= Subject key identifier: 0E:F5:7D:9F:0E:0C:BF:32:7A:92:0F:75:A4:8D:7D:A3:C3:FF:19:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 651C195B21B1653F64E131FA311769B354483A76 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/557ead45-b1a7-4106-be3c-6b610ae5759c.roa Signing time: Tue 29 Apr 2025 00:21:04 +0000 ROA not before: Tue 29 Apr 2025 00:21:04 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.131.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:1c:19:5b:21:b1:65:3f:64:e1:31:fa:31:17:69:b3:54:48:3a:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:21:04 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=76ea809c9b6c83eac71b8f200be8304928b4fa9703b91d3e75846477bdd55fb5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a9:52:c4:2d:3c:7c:74:61:ed:6e:7e:18:0f: 7f:f7:bf:8e:ff:75:3e:07:69:83:d5:b2:10:08:df: a3:ba:2a:39:56:31:78:70:79:7d:ff:de:fc:78:15: 87:73:ce:59:02:de:21:24:54:41:cd:cf:dc:c5:5d: 72:16:68:2f:5c:d8:bd:97:47:7d:4a:bb:70:83:d0: 3a:4d:af:0b:7d:ff:38:60:0c:50:3c:40:dc:62:0f: eb:14:a0:e4:b2:6f:2e:58:77:3c:49:78:4b:1f:b5: 8a:73:7d:99:12:1d:f6:0d:82:b7:8a:c4:8a:7b:cc: ab:61:86:d9:1d:4b:1e:95:3e:77:60:12:66:59:e4: 8e:ef:da:5d:7b:ef:66:d4:2b:91:ec:40:53:57:54: e5:5e:3f:cb:98:26:b8:f9:91:0e:97:bf:a4:d5:6c: 1e:91:d0:ef:a2:c0:6c:9f:97:96:01:f0:c5:7d:61: 47:00:79:3b:d6:ce:10:bf:74:41:67:8b:87:7c:21: a1:22:7b:47:de:27:40:3c:d7:b1:7f:c2:54:1f:3b: 57:ad:44:3d:ee:b0:1e:7e:3f:3f:f5:7f:54:f9:9b: b2:a1:23:49:2c:32:b7:5c:08:38:c7:3d:8c:eb:47: 4c:65:13:64:49:9b:b9:a5:6f:10:dd:43:8d:3b:e2: ac:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:F5:7D:9F:0E:0C:BF:32:7A:92:0F:75:A4:8D:7D:A3:C3:FF:19:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/557ead45-b1a7-4106-be3c-6b610ae5759c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.131.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1a:35:2c:53:ca:09:28:12:2b:34:15:3d:46:c9:42:e3:7e:f5: ed:c8:4f:82:f8:cf:60:e5:d9:45:05:26:05:2e:52:28:d1:f1: 8a:b0:79:91:6b:5f:65:58:f0:91:f9:4c:a0:8c:47:76:9d:9d: 12:7c:b5:92:07:96:cc:a3:82:8c:ec:e9:3a:c8:f8:10:25:10: 6d:36:b1:06:14:90:ab:3b:0f:78:b6:05:40:df:81:e5:07:01: 95:b2:bd:34:f5:62:ca:51:66:67:34:9d:97:a1:92:80:ad:84: c7:43:63:2b:d7:b6:bd:48:ee:e1:cb:08:ae:f1:93:82:4e:e0: 87:c8:62:fe:a1:4c:ca:20:bb:62:92:bd:0e:f7:d6:9d:d4:ad: 9c:52:31:af:d6:9e:72:5f:54:26:20:02:16:e7:69:fb:2a:5e: 3e:f9:52:f3:29:ba:06:70:43:48:3e:3b:5a:7c:3c:5e:b4:ab: a2:47:f8:3c:e1:96:32:e7:94:62:a1:05:1a:94:46:bc:62:e8: f5:57:77:86:b6:33:41:54:b9:35:12:85:20:63:f7:78:f4:d2: cf:3e:ac:be:91:87:36:bd:64:bf:aa:dc:9d:35:22:67:6f:e7: 15:4d:1e:bf:f3:0f:eb:1a:3d:20:a2:96:77:8a:f2:05:88:a8: dd:40:c0:f2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZRwZWyGxZT9k4TH6MRdps1RIOnYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAyMTA0WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NmVhODA5YzliNmM4M2VhYzcxYjhmMjAwYmU4MzA0OTI4 YjRmYTk3MDNiOTFkM2U3NTg0NjQ3N2JkZDU1ZmI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7qVLELTx8dGHtbn4YD3/3v47/dT4HaYPVshAI36O6KjlW MXhweX3/3vx4FYdzzlkC3iEkVEHNz9zFXXIWaC9c2L2XR31Ku3CD0DpNrwt9/zhg DFA8QNxiD+sUoOSyby5YdzxJeEsftYpzfZkSHfYNgreKxIp7zKthhtkdSx6VPndg EmZZ5I7v2l1772bUK5HsQFNXVOVeP8uYJrj5kQ6Xv6TVbB6R0O+iwGyfl5YB8MV9 YUcAeTvWzhC/dEFni4d8IaEie0feJ0A817F/wlQfO1etRD3usB5+Pz/1f1T5m7Kh I0ksMrdcCDjHPYzrR0xlE2RJm7mlbxDdQ4074qzpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDvV9nw4MvzJ6kg91pI19o8P/GVAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1N2VhZDQ1LWIxYTctNDEwNi1iZTNjLTZiNjEwYWU1NzU5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBigzANBgkqhkiG9w0BAQsFAAOCAQEAGjUsU8oJKBIrNBU9RslC43717chP gvjPYOXZRQUmBS5SKNHxirB5kWtfZVjwkflMoIxHdp2dEny1kgeWzKOCjOzpOsj4 ECUQbTaxBhSQqzsPeLYFQN+B5QcBlbK9NPViylFmZzSdl6GSgK2Ex0NjK9e2vUju 4csIrvGTgk7gh8hi/qFMyiC7YpK9DvfWndStnFIxr9aecl9UJiACFudp+ypePvlS 8ym6BnBDSD47Wnw8XrSrokf4POGWMueUYqEFGpRGvGLo9Vd3hrYzQVS5NRKFIGP3 ePTSzz6svpGHNr1kv6rcnTUiZ2/nFU0ev/MP6xo9IKKWd4ryBYio3UDA8g== -----END CERTIFICATE-----Generated at Sun May 11 04:32:17 2025 by rpki-client