$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa File: 957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa (raw, json) Hash identifier: So3FUUqXKLwsp7Xq/VAF6LiiR6DDIXvMqfBwP39gkq8= Subject key identifier: FC:6F:72:40:AB:B2:64:E0:FC:0A:D7:07:A1:BB:35:E4:0A:4D:98:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 136F7D0261FE2B8051182E12BB5B32EA95219CB5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa Signing time: Wed 07 May 2025 00:50:16 +0000 ROA not before: Wed 07 May 2025 00:50:16 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.97.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:6f:7d:02:61:fe:2b:80:51:18:2e:12:bb:5b:32:ea:95:21:9c:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:50:16 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=2d861456e53ce7045c89236336da662a7ee5c32f775e6c603ba113b9e09a991a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:05:21:d8:74:82:c4:3a:60:a5:25:bd:2b:bf: 79:8b:37:e7:ac:05:27:e9:7d:fd:b2:af:fe:0d:40: 41:14:a9:8d:5c:f3:0e:63:5b:4e:6c:14:c0:eb:4c: 9e:58:7b:cc:8d:95:ab:e5:54:b1:fb:71:84:6a:f1: f5:31:29:85:94:35:61:63:dc:45:4d:24:47:79:ed: 27:46:9e:ae:4b:7f:3d:0d:3f:9c:3e:56:0a:94:b5: 7b:8c:3b:56:9f:67:39:57:bb:5c:d9:11:6d:6f:44: 73:bb:ab:9e:e8:43:e4:bc:56:5a:5e:a0:25:c0:c3: 6e:15:d8:df:b7:12:67:c1:26:b9:14:6e:a9:21:82: 27:79:02:c2:37:60:c5:22:27:c8:49:b7:79:6a:4a: 6a:77:7e:e0:a7:97:f1:b4:eb:47:d4:f3:b4:9a:69: 78:c8:85:b9:c7:31:b2:7d:cd:a0:63:75:72:b4:ab: 81:8f:38:ce:7a:de:be:6e:51:c0:b8:aa:39:94:2d: 82:b3:8b:18:f8:54:1c:71:7d:10:4a:58:e3:49:ac: c8:70:7a:23:d9:7e:3a:15:d0:f9:5a:1d:0d:2b:b3: 8f:50:47:19:63:26:56:5b:be:38:3d:77:4e:bb:64: 62:08:d6:46:5c:9a:f1:59:a4:8a:68:9e:4c:13:c4: 15:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:6F:72:40:AB:B2:64:E0:FC:0A:D7:07:A1:BB:35:E4:0A:4D:98:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.97.0.0/16 Signature Algorithm: sha256WithRSAEncryption 41:81:1a:35:d2:23:52:f2:38:94:cf:27:90:47:22:46:ce:5e: be:5a:f6:19:f3:28:28:fa:5a:aa:88:ea:8e:a9:1d:83:d8:cb: be:33:16:58:01:8e:f3:aa:91:79:21:bf:da:9e:fb:42:3b:20: 2f:90:f8:b3:cd:f6:cd:40:f7:a8:80:85:fc:f7:8f:2e:06:12: fc:ea:77:4b:5a:51:07:e9:ef:fb:0a:c3:21:a8:cc:ba:61:29: 8f:da:e5:6f:22:f9:db:25:1a:94:d8:91:ae:a1:12:97:23:0d: 20:44:57:d1:b7:1b:d0:9b:fb:a9:eb:6d:ee:4f:e4:c6:97:fc: 95:7d:5a:21:7b:44:5a:1e:0d:ad:04:61:8f:df:6c:15:6e:48: 67:df:f9:92:a9:9f:63:2c:59:b6:1e:c2:ba:57:ba:48:be:6f: bd:16:a7:2d:5c:44:2b:e4:e9:e1:a2:02:f0:c2:f9:94:d7:28: 8c:b2:65:71:50:5d:16:7c:e2:8a:76:58:fb:47:16:de:b0:a3: 9f:12:18:4a:ed:b8:bc:62:cf:0f:d3:89:2c:19:bb:de:28:40: 0c:47:4d:64:a3:70:b1:a6:fd:86:f8:a7:b9:65:f2:63:25:32: 22:6a:e8:0b:55:30:45:f2:b8:6f:68:e9:63:3a:af:fa:a1:2d: 53:87:fa:da -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUE299AmH+K4BRGC4Su1sy6pUhnLUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDA1MDE2WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDg2MTQ1NmU1M2NlNzA0NWM4OTIzNjMzNmRhNjYyYTdl ZTVjMzJmNzc1ZTZjNjAzYmExMTNiOWUwOWE5OTFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5BSHYdILEOmClJb0rv3mLN+esBSfpff2yr/4NQEEUqY1c 8w5jW05sFMDrTJ5Ye8yNlavlVLH7cYRq8fUxKYWUNWFj3EVNJEd57SdGnq5Lfz0N P5w+VgqUtXuMO1afZzlXu1zZEW1vRHO7q57oQ+S8VlpeoCXAw24V2N+3EmfBJrkU bqkhgid5AsI3YMUiJ8hJt3lqSmp3fuCnl/G060fU87SaaXjIhbnHMbJ9zaBjdXK0 q4GPOM563r5uUcC4qjmULYKzixj4VBxxfRBKWONJrMhweiPZfjoV0PlaHQ0rs49Q RxljJlZbvjg9d067ZGII1kZcmvFZpIponkwTxBWHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/G9yQKuyZOD8CtcHobs15ApNmKswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1N2YwYTc1LTJmZWEtNGZkNi1hYzU3LTFjODc3OTlkYzRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4YTANBgkqhkiG9w0BAQsFAAOCAQEAQYEaNdIjUvI4lM8nkEciRs5evlr2 GfMoKPpaqojqjqkdg9jLvjMWWAGO86qReSG/2p77QjsgL5D4s832zUD3qICF/PeP LgYS/Op3S1pRB+nv+wrDIajMumEpj9rlbyL52yUalNiRrqESlyMNIERX0bcb0Jv7 qett7k/kxpf8lX1aIXtEWh4NrQRhj99sFW5IZ9/5kqmfYyxZth7Cule6SL5vvRan LVxEK+Tp4aIC8ML5lNcojLJlcVBdFnziinZY+0cW3rCjnxIYSu24vGLPD9OJLBm7 3ihADEdNZKNwsab9hvinuWXyYyUyImroC1UwRfK4b2jpYzqv+qEtU4f62g== -----END CERTIFICATE-----Generated at Sun May 11 01:14:51 2025 by rpki-client