$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa File: ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa (raw, json) Hash identifier: OupOqrjf1RQM8qmp6hCwcbh463nvwrTF4bo36NWn3uM= Subject key identifier: 60:34:FD:9B:FF:4F:82:D0:40:28:A5:B9:EF:FE:B1:81:E0:E8:61:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 508809EAC8A8D09A9E5C54B6DB6CDC2E2503BF88 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa Signing time: Sat 05 Apr 2025 00:10:25 +0000 ROA not before: Sat 05 Apr 2025 00:10:25 +0000 ROA not after: Sat 10 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.75.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:88:09:ea:c8:a8:d0:9a:9e:5c:54:b6:db:6c:dc:2e:25:03:bf:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 5 00:10:25 2025 GMT Not After : May 10 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8d:99:dc:ff:1b:f0:bd:4b:75:8b:9f:8f:b6: e7:9b:ee:72:a5:b0:b2:0e:7f:04:a7:0d:a3:b2:7e: a9:6b:1b:51:33:09:a4:ae:b9:06:19:7c:de:90:08: 2f:66:40:47:bc:df:c9:11:1f:b6:7b:f2:71:a6:36: 74:7c:b3:5d:44:8a:45:bd:3f:72:ce:2e:8d:70:80: 3c:3c:36:dc:98:c4:4e:9c:07:90:fc:47:0c:d7:f4: fc:0e:49:a7:60:ff:b5:1b:62:19:3c:a8:36:1b:8a: 6b:b2:57:6e:59:08:73:25:8a:bb:71:e4:72:f6:d4: 4b:f2:5c:d6:96:ce:25:dd:9e:cb:da:91:1b:40:10: ca:8a:51:8a:69:8f:9e:c1:f1:79:a4:73:3b:53:9e: a1:70:2d:fc:a4:3b:a0:aa:a9:5b:45:a3:38:7b:7a: ae:45:b4:79:a3:6b:0f:8a:7c:38:b8:bf:68:1b:d6: 8b:06:be:83:6e:f3:4f:45:de:a1:e0:90:cd:98:a1: e5:35:80:e2:dc:9b:e2:8f:15:8b:4d:4f:18:4e:7f: bf:f9:9b:78:9f:fc:c4:f0:55:1b:52:47:c9:6f:8e: 6a:2f:74:fd:13:4a:87:e5:45:8b:18:53:f8:29:79: fd:37:16:6f:ea:fa:46:23:57:e9:0d:00:67:84:66: df:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:34:FD:9B:FF:4F:82:D0:40:28:A5:B9:EF:FE:B1:81:E0:E8:61:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.75.0.0/16 Signature Algorithm: sha256WithRSAEncryption 42:43:e3:7e:9d:4a:21:de:1d:e3:4b:14:07:fc:a5:a1:49:73: 44:84:ee:89:e6:3d:ae:eb:58:a8:fc:4e:19:62:de:ef:b1:cf: b7:6e:59:a6:17:5f:4e:fa:d2:9a:95:86:6f:93:2a:82:f8:23: 25:bc:cc:0c:62:f9:e2:4b:b4:2f:89:b6:4b:0d:ac:fe:7b:3e: fa:69:b3:c8:70:92:a1:99:92:2e:27:ca:57:34:b1:71:4f:11: 43:79:58:fb:45:1c:9b:35:2c:9f:2a:81:2b:37:0d:45:5d:ce: d6:65:8b:01:90:ae:57:a9:57:d8:b9:c7:7d:9f:c7:98:78:93: 14:bd:75:44:99:07:bb:49:7b:ed:4a:c9:8f:3c:c2:0d:0b:69: 09:85:3e:34:2c:70:69:37:c0:49:f7:72:0b:4e:ac:45:b8:e9: 17:e0:49:a2:fe:2f:02:ff:00:0b:b3:7c:62:3e:e0:b2:8f:eb: 96:71:77:b6:40:3b:88:39:87:41:bb:cb:4a:95:bb:22:3b:ca: 6d:7e:ce:7f:7c:9e:0e:ea:2c:a9:65:a6:d2:e0:03:85:70:c0: 12:c0:75:54:f0:c6:0f:63:49:12:56:b5:1c:bb:bf:4e:1b:f2: a4:45:f1:ad:53:f7:eb:73:c9:83:59:0d:a4:60:64:49:eb:60: 78:6f:d2:48 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUIgJ6sio0JqeXFS222zcLiUDv4gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA1MDAxMDI1WhcNMjUwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTZlZjMzNmZjNTlmYTM3OGQ0MDZhNzE4MjBiYTBkMDJh NDMzMmQ4OTYzMWQ1MTYyZWZlOTJjZDcyNGIzNWExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcjZnc/xvwvUt1i5+Ptueb7nKlsLIOfwSnDaOyfqlrG1Ez CaSuuQYZfN6QCC9mQEe838kRH7Z78nGmNnR8s11EikW9P3LOLo1wgDw8NtyYxE6c B5D8RwzX9PwOSadg/7UbYhk8qDYbimuyV25ZCHMlirtx5HL21EvyXNaWziXdnsva kRtAEMqKUYppj57B8XmkcztTnqFwLfykO6CqqVtFozh7eq5FtHmjaw+KfDi4v2gb 1osGvoNu809F3qHgkM2YoeU1gOLcm+KPFYtNTxhOf7/5m3if/MTwVRtSR8lvjmov dP0TSoflRYsYU/gpef03Fm/q+kYjV+kNAGeEZt8rAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYDT9m/9PgtBAKKW57/6xgeDoYRowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmN2M3ZmJkLTdlMTctNGUyOC05MWE2LWMwMWY4ZjIzZTJmNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBiSzANBgkqhkiG9w0BAQsFAAOCAQEAQkPjfp1KId4d40sUB/yloUlzRITu ieY9rutYqPxOGWLe77HPt25ZphdfTvrSmpWGb5MqgvgjJbzMDGL54ku0L4m2Sw2s /ns++mmzyHCSoZmSLifKVzSxcU8RQ3lY+0UcmzUsnyqBKzcNRV3O1mWLAZCuV6lX 2LnHfZ/HmHiTFL11RJkHu0l77UrJjzzCDQtpCYU+NCxwaTfASfdyC06sRbjpF+BJ ov4vAv8AC7N8Yj7gso/rlnF3tkA7iDmHQbvLSpW7IjvKbX7Of3yeDuosqWWm0uAD hXDAEsB1VPDGD2NJEla1HLu/ThvypEXxrVP363PJg1kNpGBkSetgeG/SSA== -----END CERTIFICATE-----Generated at Sat Apr 5 12:17:12 2025 by rpki-client