$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa File: ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa (raw, json) Hash identifier: dGAsQgER4Av1Ja8hJC7e0hAPc98fGUtMRFJMBL9qPT8= Subject key identifier: C0:D7:5E:23:6E:13:59:79:03:25:F2:C4:FD:C7:C2:3E:7F:6E:C4:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BED2E8265D4A8BB7543B797C6C6297CDC515C33 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa Signing time: Wed 30 Apr 2025 00:10:17 +0000 ROA not before: Wed 30 Apr 2025 00:10:17 +0000 ROA not after: Wed 04 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.75.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 08 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:ed:2e:82:65:d4:a8:bb:75:43:b7:97:c6:c6:29:7c:dc:51:5c:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 30 00:10:17 2025 GMT Not After : Jun 4 23:59:59 2025 GMT Subject: serialNumber=3dd7a2567a2d27d43842684c91c37cb2a47d5f3941e545378ad9adcb3c628501, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c0:d7:0f:fd:13:a4:cc:6d:49:8e:48:0a:c6: 42:5a:cf:cb:95:91:5f:22:d6:71:98:a9:80:36:05: 2f:ea:8c:49:a8:fe:6f:2a:fe:00:49:b0:76:61:a5: b7:58:f7:e7:74:ad:87:b1:6e:ad:8c:07:d2:9e:63: a8:09:c0:40:e3:f9:d5:32:0d:c8:d6:1d:87:73:d3: 1a:e1:e8:80:8e:7c:69:a7:9b:d9:fe:9f:28:6f:9c: 43:d8:fe:47:d1:20:90:8f:5b:04:93:f9:26:42:4f: 81:18:93:b4:3b:d0:2b:b7:10:9e:7f:9d:18:ad:2f: 3e:a2:65:0a:e8:8e:b1:d6:1a:96:1a:f3:35:6d:ed: fa:e2:08:3f:62:8d:1f:f3:a9:12:23:9e:40:d0:e4: 0c:22:ea:ab:4f:d3:cf:81:71:51:ff:06:83:03:d9: 3c:ad:b6:34:86:db:3f:c4:14:da:0a:a3:81:5d:87: 4d:db:db:a1:0a:7a:49:45:81:36:48:96:16:a6:23: 22:c1:49:1b:82:30:31:9c:a6:e4:40:c3:31:50:2e: f5:a4:d0:b7:18:e2:52:4f:2b:e2:8e:99:ef:31:12: fb:13:d9:dd:b5:4e:c2:ba:aa:e0:54:58:64:23:d8: 2a:2d:3b:ba:38:34:eb:1d:b0:42:79:9e:b6:39:ca: c4:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:D7:5E:23:6E:13:59:79:03:25:F2:C4:FD:C7:C2:3E:7F:6E:C4:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.75.0.0/16 Signature Algorithm: sha256WithRSAEncryption af:54:10:17:3c:91:47:d9:40:95:dd:5c:1d:f6:3b:e3:48:93: 1c:a1:16:5a:4b:5c:2d:c5:21:25:76:1a:89:f8:d4:b2:a8:d8: 05:01:2a:d3:c8:3a:28:8a:20:97:a3:98:2c:1f:1c:8c:f8:a4: 9d:c0:33:3a:45:f0:b3:5e:4d:88:b4:83:b5:6c:6c:46:fe:35: dd:6d:cc:0a:f2:d8:7d:5b:f7:7d:1c:23:65:ae:74:59:54:e8: 3d:42:b9:15:c8:36:06:a3:a5:77:b0:a4:cd:00:19:7e:b6:c1: 61:df:c2:d5:5d:28:7f:dd:94:d7:9c:9f:4e:10:6a:bf:4d:cd: 83:a3:5a:9d:e3:c1:b4:42:48:84:89:77:0a:55:2c:03:86:1d: 81:ab:8d:82:e9:fe:14:83:c2:c4:e6:13:dc:df:6a:34:d5:ff: 62:a0:3e:a4:ac:7f:3b:8d:95:70:b3:08:ec:f3:f8:4f:ca:6b: 94:42:54:ab:92:4b:86:fe:76:50:91:58:e7:a3:ac:c9:4f:fc: 0b:d9:16:5f:4a:79:77:b5:32:98:2c:37:6c:74:27:3d:87:1b: c3:3e:90:63:50:4d:11:f6:00:2a:c9:77:32:f5:03:da:ec:f6: 56:53:7e:af:b1:0d:65:9f:94:ef:aa:76:c7:50:da:a7:ed:95: f0:70:3b:0a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUS+0ugmXUqLt1Q7eXxsYpfNxRXDMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDMwMDAxMDE3WhcNMjUwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZGQ3YTI1NjdhMmQyN2Q0Mzg0MjY4NGM5MWMzN2NiMmE0 N2Q1ZjM5NDFlNTQ1Mzc4YWQ5YWRjYjNjNjI4NTAxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCwNcP/ROkzG1JjkgKxkJaz8uVkV8i1nGYqYA2BS/qjEmo /m8q/gBJsHZhpbdY9+d0rYexbq2MB9KeY6gJwEDj+dUyDcjWHYdz0xrh6ICOfGmn m9n+nyhvnEPY/kfRIJCPWwST+SZCT4EYk7Q70Cu3EJ5/nRitLz6iZQrojrHWGpYa 8zVt7friCD9ijR/zqRIjnkDQ5Awi6qtP08+BcVH/BoMD2TyttjSG2z/EFNoKo4Fd h03b26EKeklFgTZIlhamIyLBSRuCMDGcpuRAwzFQLvWk0LcY4lJPK+KOme8xEvsT 2d21TsK6quBUWGQj2CotO7o4NOsdsEJ5nrY5ysRPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwNdeI24TWXkDJfLE/cfCPn9uxBowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmN2M3ZmJkLTdlMTctNGUyOC05MWE2LWMwMWY4ZjIzZTJmNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBiSzANBgkqhkiG9w0BAQsFAAOCAQEAr1QQFzyRR9lAld1cHfY740iTHKEW WktcLcUhJXYaifjUsqjYBQEq08g6KIogl6OYLB8cjPikncAzOkXws15NiLSDtWxs Rv413W3MCvLYfVv3fRwjZa50WVToPUK5Fcg2BqOld7CkzQAZfrbBYd/C1V0of92U 15yfThBqv03Ng6NanePBtEJIhIl3ClUsA4YdgauNgun+FIPCxOYT3N9qNNX/YqA+ pKx/O42VcLMI7PP4T8prlEJUq5JLhv52UJFY56OsyU/8C9kWX0p5d7UymCw3bHQn PYcbwz6QY1BNEfYAKsl3MvUD2uz2VlN+r7ENZZ+U76p2x1Dap+2V8HA7Cg== -----END CERTIFICATE-----Generated at Tue May 6 22:37:03 2025 by rpki-client