$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79209ee-b31e-46fa-bdfb-ea990915c3be.roa File: d79209ee-b31e-46fa-bdfb-ea990915c3be.roa (raw, json) Hash identifier: Gw2nVeXFQDPCdoIvnJBU2fPNTAtr0TOyvq1EtsUVg/E= Subject key identifier: 81:59:23:89:37:4D:0C:FF:5E:D9:E5:13:57:FE:36:BB:B0:F1:7D:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 09F999F6C3B477502DE694A0FDDB2AD1876FF2F6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79209ee-b31e-46fa-bdfb-ea990915c3be.roa Signing time: Sat 03 May 2025 00:50:18 +0000 ROA not before: Sat 03 May 2025 00:50:18 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.76.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:f9:99:f6:c3:b4:77:50:2d:e6:94:a0:fd:db:2a:d1:87:6f:f2:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:50:18 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=b16a088b470daef0c9c89c23f21a123473ff12ef4aefa1b621bf1759e8054fa8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:ff:91:98:78:e6:05:a0:d9:1e:ef:3c:92:4e: 5d:ed:25:27:57:2e:22:f2:49:a5:29:57:49:f4:87: 9e:12:92:3a:69:16:ea:63:dd:84:38:0e:55:44:7d: 26:7a:9f:d1:17:69:ad:74:63:11:7e:3f:f4:a3:a2: bf:41:16:23:1d:de:28:6c:68:f4:e4:ae:96:02:7e: d5:75:5e:b5:d3:6f:37:40:06:37:af:ff:f9:6d:ff: c6:77:c8:58:54:46:74:cd:a1:c0:78:b4:57:1c:61: 71:d2:16:d2:47:d2:f2:29:35:ce:3a:52:fe:e4:a5: 72:1c:8a:c3:3c:54:e5:0c:5e:29:4b:02:b3:f1:bc: 85:06:26:ca:ee:a3:be:b9:0b:c3:5a:59:ff:59:e3: 53:e0:00:0f:18:42:8d:00:1d:a4:e0:84:60:56:75: b1:e1:36:23:46:b4:9d:2b:6b:56:7b:7c:c5:10:f6: 70:a4:f2:3e:f6:de:d9:59:f5:e2:41:f4:0d:22:e0: 40:b7:78:fe:a8:fa:fc:32:27:96:5b:36:9e:fb:fa: 12:5c:da:5a:86:a9:fc:dc:2f:ed:95:f1:9d:c9:9f: 75:0f:8c:bb:ad:03:50:eb:bd:42:ea:d9:5c:4d:25: 1b:42:a1:5c:2b:1c:a6:52:46:34:1a:ac:23:81:f1: d9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:59:23:89:37:4D:0C:FF:5E:D9:E5:13:57:FE:36:BB:B0:F1:7D:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d79209ee-b31e-46fa-bdfb-ea990915c3be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.76.0.0/16 Signature Algorithm: sha256WithRSAEncryption 35:a5:59:1d:a5:3b:b1:49:a4:ef:0c:8c:41:c0:d0:1d:3b:36: e4:a3:4c:bd:9b:f3:75:54:c8:76:68:5f:b3:ce:66:da:f7:e3: a9:cb:8c:41:c0:2c:c0:59:cc:08:49:b2:f7:7c:f1:da:f3:2e: b2:1d:d2:bf:8d:71:05:df:a3:46:0c:e1:b6:33:65:b6:be:6b: 77:ec:0e:25:3d:d2:a9:8e:f4:2f:84:f1:53:7c:ee:44:22:32: 7e:48:78:89:ec:04:40:b2:eb:68:5d:a4:b9:e6:74:90:e1:74: 55:ef:ca:45:14:35:e4:48:7c:fe:e9:d1:5f:a2:6c:a3:fc:fa: 21:8f:43:90:a4:d9:56:99:88:d6:11:d7:aa:11:8c:6f:83:27: e1:6c:cf:32:78:c7:0f:a4:03:ed:30:9c:d8:f1:0c:91:03:de: 0c:10:fa:78:c9:d4:b0:f4:f9:dc:4e:44:4e:1a:24:98:35:ec: 62:96:53:e1:d9:be:c8:4d:7c:ea:9c:f4:fe:07:13:e5:9f:83: 5b:cb:f8:08:ed:a8:35:3d:83:f4:9e:da:19:64:de:4b:8e:c6: bd:b8:f2:d8:92:ff:46:3f:61:de:08:58:92:49:96:bb:f3:e7: a5:7b:ae:ac:ba:7c:56:12:7a:56:17:88:42:65:61:b6:36:e3: 97:9e:bb:df -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCfmZ9sO0d1At5pSg/dsq0Ydv8vYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA1MDE4WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTZhMDg4YjQ3MGRhZWYwYzljODljMjNmMjFhMTIzNDcz ZmYxMmVmNGFlZmExYjYyMWJmMTc1OWU4MDU0ZmE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQ/5GYeOYFoNke7zySTl3tJSdXLiLySaUpV0n0h54Skjpp Fupj3YQ4DlVEfSZ6n9EXaa10YxF+P/Sjor9BFiMd3ihsaPTkrpYCftV1XrXTbzdA Bjev//lt/8Z3yFhURnTNocB4tFccYXHSFtJH0vIpNc46Uv7kpXIcisM8VOUMXilL ArPxvIUGJsruo765C8NaWf9Z41PgAA8YQo0AHaTghGBWdbHhNiNGtJ0ra1Z7fMUQ 9nCk8j723tlZ9eJB9A0i4EC3eP6o+vwyJ5ZbNp77+hJc2lqGqfzcL+2V8Z3Jn3UP jLutA1DrvULq2VxNJRtCoVwrHKZSRjQarCOB8dlZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgVkjiTdNDP9e2eUTV/42u7Dxfd4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3OTIwOWVlLWIzMWUtNDZmYS1iZGZiLWVhOTkwOTE1YzNiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBiTDANBgkqhkiG9w0BAQsFAAOCAQEANaVZHaU7sUmk7wyMQcDQHTs25KNM vZvzdVTIdmhfs85m2vfjqcuMQcAswFnMCEmy93zx2vMush3Sv41xBd+jRgzhtjNl tr5rd+wOJT3SqY70L4TxU3zuRCIyfkh4iewEQLLraF2kueZ0kOF0Ve/KRRQ15Eh8 /unRX6Jso/z6IY9DkKTZVpmI1hHXqhGMb4Mn4WzPMnjHD6QD7TCc2PEMkQPeDBD6 eMnUsPT53E5EThokmDXsYpZT4dm+yE186pz0/gcT5Z+DW8v4CO2oNT2D9J7aGWTe S47Gvbjy2JL/Rj9h3ghYkkmWu/PnpXuurLp8VhJ6VheIQmVhtjbjl5673w== -----END CERTIFICATE-----Generated at Sat May 10 10:19:05 2025 by rpki-client