$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa File: 54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa (raw, json) Hash identifier: AaUuzNn1k34vdXfifHqhNp/LsmMixRhD4ZltEqfwVjY= Subject key identifier: 04:61:5B:F0:F9:28:60:BF:5C:7D:9C:49:D8:C3:60:FA:3C:A8:05:F3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 798DE0E10FBDA907072536F66ECC224C15F87630 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa Signing time: Mon 26 May 2025 15:02:04 +0000 ROA not before: Mon 26 May 2025 15:02:04 +0000 ROA not after: Mon 30 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 138.52.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:8d:e0:e1:0f:bd:a9:07:07:25:36:f6:6e:cc:22:4c:15:f8:76:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 26 15:02:04 2025 GMT Not After : Jun 30 23:59:59 2025 GMT Subject: serialNumber=c00aacf7a00e9e09ea1bb346f798393395f1bf3c112a58e37a685c8c3c6aec2e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0f:ef:da:80:78:46:0f:b9:27:78:4b:b9:ea: 88:8b:8d:6b:0a:db:35:bf:58:3b:22:7e:df:19:2c: 24:9d:c4:66:39:0e:18:88:e0:81:f3:35:f7:be:38: fa:11:a2:23:c1:ec:58:ca:83:b2:db:20:ce:ee:e3: 6b:9e:8b:ee:6b:f8:5a:48:0d:54:20:d2:25:ae:4d: 2e:f7:7c:67:cb:03:14:e0:5d:36:e5:8a:29:46:1a: 24:18:b6:9e:2b:91:57:58:4d:11:b3:48:ba:9d:cd: 65:80:b4:24:fc:0d:d9:ba:3e:b8:9e:5f:b8:88:de: 08:44:78:ec:39:dd:02:ac:f2:e4:5f:2a:8b:8e:cc: ad:da:f4:f6:5e:df:b6:40:62:ad:83:f6:57:77:7e: b8:df:73:5b:94:12:23:7a:f8:44:e5:e2:92:fb:42: 5d:ed:23:ad:0e:6f:87:37:fe:1e:88:b1:2c:4e:be: 37:b2:47:17:45:48:5b:d8:97:b5:36:ba:ec:e3:22: 2b:46:7d:53:ca:75:48:cb:34:32:db:5f:7c:44:91: ef:fc:7c:12:7a:0a:31:b7:40:b3:50:67:ef:f0:15: dc:76:39:c8:5d:b2:96:87:8c:80:ce:34:85:81:60: d9:3c:4d:07:70:2e:ec:f5:93:f5:1d:ca:ab:c3:67: 31:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:61:5B:F0:F9:28:60:BF:5C:7D:9C:49:D8:C3:60:FA:3C:A8:05:F3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:1f:8e:11:70:bd:86:aa:9d:71:60:16:10:e5:4b:d5:6e:bc: 87:e5:8f:80:e2:9c:40:74:df:34:9d:98:f8:3b:af:19:8f:73: 11:f7:83:c4:8c:e8:9d:75:83:c7:b6:e6:06:bc:c2:93:65:f6: 59:a3:1f:d3:e1:4c:bf:21:9f:e8:d9:05:de:eb:30:04:e7:29: 96:23:f3:e1:cd:53:44:e9:fc:2e:a4:21:1f:4e:a3:57:79:79: 6e:a3:72:37:b7:a0:8c:f8:e4:39:ed:33:d8:1c:9b:42:18:ec: a9:c3:f2:50:ef:a3:82:06:98:e9:f8:8e:3a:87:eb:d2:ad:1d: c2:ba:5f:e9:ee:84:56:1a:4b:18:d8:3a:17:92:2e:1c:a4:91: 07:3d:8a:35:51:32:11:cd:e0:3f:ef:27:1f:d3:7a:b2:29:7f: d8:e7:71:47:c1:23:b1:75:75:1d:71:7e:f4:8a:07:52:36:c7: d9:be:dc:1f:af:14:7c:aa:67:b4:2e:07:05:10:34:44:5a:b1: 47:4c:99:6c:d8:29:5b:9e:68:38:68:db:61:dc:67:3e:3f:65: 7c:6e:07:22:46:87:c0:4d:f7:b9:c3:c1:15:0c:d3:62:a7:d2: f3:3a:f8:a3:84:0e:dd:56:16:8b:58:a0:d7:13:11:60:9a:9a: 7e:a8:cb:16 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeY3g4Q+9qQcHJTb2bswiTBX4djAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI2MTUwMjA0WhcNMjUwNjMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMDBhYWNmN2EwMGU5ZTA5ZWExYmIzNDZmNzk4MzkzMzk1 ZjFiZjNjMTEyYTU4ZTM3YTY4NWM4YzNjNmFlYzJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRD+/agHhGD7kneEu56oiLjWsK2zW/WDsift8ZLCSdxGY5 DhiI4IHzNfe+OPoRoiPB7FjKg7LbIM7u42uei+5r+FpIDVQg0iWuTS73fGfLAxTg XTbliilGGiQYtp4rkVdYTRGzSLqdzWWAtCT8Ddm6PrieX7iI3ghEeOw53QKs8uRf KouOzK3a9PZe37ZAYq2D9ld3frjfc1uUEiN6+ETl4pL7Ql3tI60Ob4c3/h6IsSxO vjeyRxdFSFvYl7U2uuzjIitGfVPKdUjLNDLbX3xEke/8fBJ6CjG3QLNQZ+/wFdx2 OchdspaHjIDONIWBYNk8TQdwLuz1k/UdyqvDZzGDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBGFb8PkoYL9cfZxJ2MNg+jyoBfMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0ZjRmNWJjLTMwYzctNGQyMC1hOWI0LWIzOTYyNmYzMGU3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCKNDANBgkqhkiG9w0BAQsFAAOCAQEAHB+OEXC9hqqdcWAWEOVL1W68h+WP gOKcQHTfNJ2Y+DuvGY9zEfeDxIzonXWDx7bmBrzCk2X2WaMf0+FMvyGf6NkF3usw BOcpliPz4c1TROn8LqQhH06jV3l5bqNyN7egjPjkOe0z2BybQhjsqcPyUO+jggaY 6fiOOofr0q0dwrpf6e6EVhpLGNg6F5IuHKSRBz2KNVEyEc3gP+8nH9N6sil/2Odx R8EjsXV1HXF+9IoHUjbH2b7cH68UfKpntC4HBRA0RFqxR0yZbNgpW55oOGjbYdxn Pj9lfG4HIkaHwE33ucPBFQzTYqfS8zr4o4QO3VYWi1ig1xMRYJqafqjLFg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:46:06 2025 by rpki-client