$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/557ead45-b1a7-4106-be3c-6b610ae5759c.roa File: 557ead45-b1a7-4106-be3c-6b610ae5759c.roa (raw, json) Hash identifier: gMgMqzIQZ6ZnW5sJAueCg7NCROIlZKkWhdZ7rmEr1Mw= Subject key identifier: DD:E9:BA:32:AB:9B:01:FD:8A:A4:17:F6:CF:CA:3D:56:0E:05:30:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23974812C552A59801653A820B90FF9938786D6C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/557ead45-b1a7-4106-be3c-6b610ae5759c.roa Signing time: Wed 18 Jun 2025 00:21:03 +0000 ROA not before: Wed 18 Jun 2025 00:21:03 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.131.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:97:48:12:c5:52:a5:98:01:65:3a:82:0b:90:ff:99:38:78:6d:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:21:03 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=9c9331f1bde3164f8fc52db0bb7ee20cbdf7871f8b47b7f947e6a0e51ee00d8b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:b6:72:04:33:50:d0:62:1f:3a:a7:0c:5d:0d: 9e:32:7f:74:8f:7e:3b:5b:ec:6f:81:14:a8:79:62: d0:65:42:31:bb:cc:91:e2:03:2f:14:b6:a3:1f:80: fb:b8:cd:ee:e1:3d:41:b1:e8:5f:e1:f1:25:9f:cc: fd:75:5e:27:db:48:53:39:31:d4:e6:30:1d:86:f6: 19:32:fa:ce:9c:07:b2:25:8e:e5:75:fd:f2:7a:6f: d1:b3:d0:a7:af:5f:5f:de:6f:25:ff:61:24:07:c8: 4e:0a:d4:90:9a:c3:7e:a0:7d:a2:5a:ad:11:d1:01: a2:f8:7c:ad:5c:92:17:24:3b:44:c3:d1:5f:36:28: 98:b2:d4:01:8c:6b:d5:85:af:ed:1c:dc:45:9e:61: a9:23:f8:7f:49:23:3c:08:7a:a2:5f:ef:2b:12:c0: a3:c8:0f:1a:e2:e6:47:de:13:a0:4d:b7:52:89:c2: f1:7d:ca:5a:48:ec:47:15:c6:7a:6a:00:1f:df:45: b7:ee:d8:a0:f4:7b:d2:f2:3b:d9:ad:62:ca:96:32: 47:9d:7f:88:05:7e:e9:88:6f:44:d3:51:87:9a:4f: 41:19:d0:1e:2a:9d:65:ed:9f:5b:0a:57:61:e4:0e: 98:ef:0c:fb:30:c0:45:6f:c9:05:32:b3:32:2b:d3: 3c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E9:BA:32:AB:9B:01:FD:8A:A4:17:F6:CF:CA:3D:56:0E:05:30:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/557ead45-b1a7-4106-be3c-6b610ae5759c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.131.0.0/16 Signature Algorithm: sha256WithRSAEncryption 08:9b:e9:8c:bb:f4:24:20:47:fa:01:d8:b4:de:ba:2e:2a:68: 2c:fb:db:6a:c3:de:63:e1:bc:4a:ea:44:59:dd:cb:38:5b:1d: 2c:fd:8f:24:9b:53:9c:6f:e2:7b:13:ea:53:f9:ed:46:d4:1d: 36:8b:07:54:ce:b5:7a:e6:9a:50:91:38:53:b4:49:8c:91:0b: 8e:64:22:e4:e1:85:01:cc:f7:bf:e9:a7:f9:e0:f2:49:85:71: 5a:1c:c2:df:ca:43:fc:d0:86:1e:6d:ec:fa:e9:70:e0:e9:a1: 87:66:da:59:c9:2d:1a:e4:1f:01:46:db:44:2e:e3:ea:d4:fc: 8a:e6:9d:00:fd:50:11:36:d7:89:04:6f:49:84:75:76:59:e5: 00:be:10:6a:54:af:8c:dd:be:7c:bf:41:7b:ff:1a:ba:97:fa: df:85:8b:20:0f:ff:22:1f:d8:a9:b8:6e:82:dc:f8:d9:52:29: 0e:66:4d:ff:99:c7:26:6d:a2:40:48:65:4a:e3:b8:30:4e:a4: eb:b0:24:37:d3:cf:e0:ce:77:f9:2b:a1:6c:59:45:75:89:28: 61:3b:12:4e:56:d6:73:24:b5:fe:54:5c:0b:fd:b5:5b:58:4c: 6a:ef:48:30:84:07:59:83:ea:97:18:7a:d3:3e:f5:44:ee:b8: 74:02:a6:8e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI5dIEsVSpZgBZTqCC5D/mTh4bWwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAyMTAzWhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzkzMzFmMWJkZTMxNjRmOGZjNTJkYjBiYjdlZTIwY2Jk Zjc4NzFmOGI0N2I3Zjk0N2U2YTBlNTFlZTAwZDhiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNtnIEM1DQYh86pwxdDZ4yf3SPfjtb7G+BFKh5YtBlQjG7 zJHiAy8UtqMfgPu4ze7hPUGx6F/h8SWfzP11XifbSFM5MdTmMB2G9hky+s6cB7Il juV1/fJ6b9Gz0KevX1/ebyX/YSQHyE4K1JCaw36gfaJarRHRAaL4fK1ckhckO0TD 0V82KJiy1AGMa9WFr+0c3EWeYakj+H9JIzwIeqJf7ysSwKPIDxri5kfeE6BNt1KJ wvF9ylpI7EcVxnpqAB/fRbfu2KD0e9LyO9mtYsqWMkedf4gFfumIb0TTUYeaT0EZ 0B4qnWXtn1sKV2HkDpjvDPswwEVvyQUyszIr0zxnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3em6MqubAf2KpBf2z8o9Vg4FMNQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1N2VhZDQ1LWIxYTctNDEwNi1iZTNjLTZiNjEwYWU1NzU5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBigzANBgkqhkiG9w0BAQsFAAOCAQEACJvpjLv0JCBH+gHYtN66LipoLPvb asPeY+G8SupEWd3LOFsdLP2PJJtTnG/iexPqU/ntRtQdNosHVM61euaaUJE4U7RJ jJELjmQi5OGFAcz3v+mn+eDySYVxWhzC38pD/NCGHm3s+ulw4Omhh2baWcktGuQf AUbbRC7j6tT8iuadAP1QETbXiQRvSYR1dlnlAL4QalSvjN2+fL9Be/8aupf634WL IA//Ih/Yqbhugtz42VIpDmZN/5nHJm2iQEhlSuO4ME6k67AkN9PP4M53+SuhbFlF dYkoYTsSTlbWcyS1/lRcC/21W1hMau9IMIQHWYPqlxh60z71RO64dAKmjg== -----END CERTIFICATE-----Generated at Tue Jul 1 13:10:40 2025 by rpki-client