$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe5bf133-3d81-4137-ac73-2c66456c6024.roa File: fe5bf133-3d81-4137-ac73-2c66456c6024.roa (raw, json) Hash identifier: +HpEk4ohGrORAuaO7xid46Vek6xLcEIYrJrbIVCIomc= Subject key identifier: 8D:72:89:9D:56:5B:38:41:B2:D7:E7:C5:B2:72:3E:60:20:04:28:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6104AB793AF3C70737217469060ED62ADA6339F6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe5bf133-3d81-4137-ac73-2c66456c6024.roa Signing time: Sat 03 May 2025 00:31:19 +0000 ROA not before: Sat 03 May 2025 00:31:19 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 57.198.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:04:ab:79:3a:f3:c7:07:37:21:74:69:06:0e:d6:2a:da:63:39:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:31:19 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=0d15612924083eff84b19d03be1a0986dfeb0d9c2ed85b20b88285ff68cec918, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:06:b7:16:b2:43:40:25:67:70:98:6e:18:5b: 73:2c:f3:45:07:a0:a8:a0:7f:8c:87:db:e5:49:79: 5d:8a:2a:2c:35:77:c4:23:50:d5:04:93:7a:3a:b9: c7:4e:ca:55:00:b3:26:0d:c9:75:9f:76:8d:1f:78: d8:90:77:09:19:a8:f1:e2:ee:e2:d0:e1:5d:59:5e: d9:94:71:49:eb:f8:7d:19:b4:61:9f:bc:e3:c6:51: 7e:b4:2b:82:77:8c:56:3c:4b:bc:83:3b:ae:be:23: b8:9c:14:5e:0f:79:db:4d:a4:40:5e:b4:67:8e:92: a6:a1:d6:a1:58:04:7d:98:48:01:d6:06:3b:cc:df: a2:76:22:7c:30:0d:0f:db:f0:f6:7d:31:56:d6:81: 9b:97:68:4f:eb:f8:57:80:79:f8:c9:49:f7:18:72: 2f:81:e6:61:ef:a4:ca:5d:00:14:b3:d5:36:9d:ac: 0a:00:25:27:0b:fa:62:ec:f2:33:f4:e2:99:9e:53: 13:ab:4b:8f:73:df:b4:fa:32:80:6e:21:a8:27:46: 32:25:77:f5:a8:85:fe:5f:aa:11:52:6f:2d:e2:90: 06:ce:dd:8c:ad:45:ff:cd:31:fb:89:2a:ad:3b:2f: 3d:f4:ee:cb:d9:ff:dd:f0:a8:93:34:ae:2a:7b:c0: 60:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:72:89:9D:56:5B:38:41:B2:D7:E7:C5:B2:72:3E:60:20:04:28:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe5bf133-3d81-4137-ac73-2c66456c6024.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.198.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2b:e5:81:40:70:c6:f5:cd:50:aa:e0:44:c7:fc:9a:88:27:e9: d3:4c:78:f5:6e:0b:48:8c:1b:60:72:be:fb:13:9a:fc:e5:10: 27:18:62:5a:62:90:54:83:ca:57:a4:13:fa:0c:2a:ad:f6:60: 98:31:20:37:c4:08:02:ec:78:45:e6:8b:14:1a:56:0b:5a:5c: ed:1b:dc:7f:e4:96:dc:db:fb:83:fc:f0:06:af:d2:6c:c8:70: 16:22:2e:f9:eb:47:5e:53:d0:60:f3:9e:ea:9c:42:6e:d7:65: 87:a5:cb:7d:a0:7a:12:13:64:46:df:c3:18:cb:23:67:6d:d5: 5d:89:66:3d:6d:56:3d:89:de:f2:8d:d6:cc:42:f8:64:05:c9: cb:ff:1e:b2:28:ec:bf:67:ab:55:e3:f2:a1:72:eb:eb:ea:da: 49:2b:8e:c7:a6:b8:26:71:e2:54:d0:07:03:99:5c:36:de:21: cf:57:4f:a2:29:10:9a:90:e8:78:cb:17:cb:7a:34:38:ea:fe: 70:05:76:14:7c:8d:41:d3:fd:82:bb:04:51:73:6e:c7:e1:99: 20:b1:d4:bd:47:f6:29:e3:6a:1a:f5:f5:eb:b0:7e:81:40:13: 0d:49:4e:c6:38:e1:75:bf:9e:59:a8:56:05:e4:47:e6:a0:f2: 7e:04:2c:ee -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYQSreTrzxwc3IXRpBg7WKtpjOfYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAzMTE5WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDE1NjEyOTI0MDgzZWZmODRiMTlkMDNiZTFhMDk4NmRm ZWIwZDljMmVkODViMjBiODgyODVmZjY4Y2VjOTE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXBrcWskNAJWdwmG4YW3Ms80UHoKigf4yH2+VJeV2KKiw1 d8QjUNUEk3o6ucdOylUAsyYNyXWfdo0feNiQdwkZqPHi7uLQ4V1ZXtmUcUnr+H0Z tGGfvOPGUX60K4J3jFY8S7yDO66+I7icFF4PedtNpEBetGeOkqah1qFYBH2YSAHW BjvM36J2InwwDQ/b8PZ9MVbWgZuXaE/r+FeAefjJSfcYci+B5mHvpMpdABSz1Tad rAoAJScL+mLs8jP04pmeUxOrS49z37T6MoBuIagnRjIld/Wohf5fqhFSby3ikAbO 3YytRf/NMfuJKq07Lz307svZ/93wqJM0rip7wGB1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjXKJnVZbOEGy1+fFsnI+YCAEKF0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZlNWJmMTMzLTNkODEtNDEzNy1hYzczLTJjNjY0NTZjNjAyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5xjANBgkqhkiG9w0BAQsFAAOCAQEAK+WBQHDG9c1QquBEx/yaiCfp00x4 9W4LSIwbYHK++xOa/OUQJxhiWmKQVIPKV6QT+gwqrfZgmDEgN8QIAux4ReaLFBpW C1pc7Rvcf+SW3Nv7g/zwBq/SbMhwFiIu+etHXlPQYPOe6pxCbtdlh6XLfaB6EhNk Rt/DGMsjZ23VXYlmPW1WPYne8o3WzEL4ZAXJy/8esijsv2erVePyoXLr6+raSSuO x6a4JnHiVNAHA5lcNt4hz1dPoikQmpDoeMsXy3o0OOr+cAV2FHyNQdP9grsEUXNu x+GZILHUvUf2KeNqGvX167B+gUATDUlOxjjhdb+eWahWBeRH5qDyfgQs7g== -----END CERTIFICATE-----Generated at Mon May 12 18:58:35 2025 by rpki-client