$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ab4bbb2-995f-426a-b772-87c418889125.roa File: 0ab4bbb2-995f-426a-b772-87c418889125.roa (raw, json) Hash identifier: vD6AXOWPehlBHGkfUva1X00AVJ/cPxcVhwnNLwpRW5I= Subject key identifier: 15:79:FC:34:88:A5:90:1E:25:8B:4E:E9:FB:5C:EA:58:8C:6E:4C:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02FB7C370FDE1052883B74E011EF41292509D8E4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ab4bbb2-995f-426a-b772-87c418889125.roa Signing time: Mon 05 May 2025 15:50:10 +0000 ROA not before: Mon 05 May 2025 15:50:10 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 16 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:fb:7c:37:0f:de:10:52:88:3b:74:e0:11:ef:41:29:25:09:d8:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:50:10 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=1bd4baf65d15fa7c2b05338e70345508af24ce61943aab60aead02a07bdf701f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:49:ba:85:88:53:23:13:8c:de:5f:a1:0a:78: 7c:f4:38:7b:bb:d3:61:96:07:6d:46:da:4a:b3:fb: c2:8f:f1:76:c5:7e:00:f5:3d:22:90:35:07:89:e0: bf:3c:c5:28:0e:f4:73:05:64:a0:02:44:f1:06:f8: a9:92:33:83:a4:33:22:ed:48:8e:d4:f3:10:b7:d6: c1:88:58:b0:21:d8:4b:d1:78:44:89:04:e4:da:3d: 45:7a:6d:25:44:72:90:2d:84:4e:50:b6:93:e5:96: b9:7b:4f:e4:bd:7a:40:e8:b8:a6:61:8a:4d:13:e4: 13:a1:a2:bf:38:a5:67:8e:e2:33:ee:d1:47:3b:7b: 0f:eb:cd:e8:35:1c:0e:c0:82:0c:50:dd:0a:7c:d1: a4:c1:f9:db:8a:80:2b:d1:58:11:8e:81:1d:a9:16: b2:b4:88:12:1b:78:88:c5:b2:ea:e2:1e:c7:24:76: bd:01:d8:5f:76:0b:0a:96:0c:dd:a7:0c:da:65:bd: 1d:db:f6:73:4d:e0:01:bc:4c:da:9c:0a:57:4e:79: 4a:bf:a6:ba:4c:ff:1e:52:6c:12:6a:ca:be:8b:6d: 98:00:de:d0:fd:f0:4a:d7:af:6a:1e:40:02:da:dd: 21:71:9d:d6:e0:51:bd:9c:5a:9d:d1:2c:5b:b3:02: f4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:79:FC:34:88:A5:90:1E:25:8B:4E:E9:FB:5C:EA:58:8C:6E:4C:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ab4bbb2-995f-426a-b772-87c418889125.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.239.0/24 Signature Algorithm: sha256WithRSAEncryption 13:b0:9f:b3:f8:55:3e:1e:33:de:26:34:8a:9e:c0:06:cc:54: 8c:f6:21:9d:cc:8e:dd:a7:24:a8:58:c1:51:ad:f6:0f:37:93: d4:c1:af:c0:37:1e:5e:7e:aa:7a:c3:ff:af:eb:a2:0e:39:0d: 0d:e9:d9:58:0a:47:7e:03:e9:0c:9b:40:79:8a:1b:f9:0b:41: c5:2f:e5:eb:d7:53:1f:ad:ef:76:2b:d6:7b:18:49:ed:b5:9c: b8:03:ab:46:d4:2c:2b:b0:b0:c4:f7:44:33:46:77:d3:82:b3: ce:e6:3f:e5:6e:27:cb:2b:1e:0e:01:2e:81:33:b5:bb:48:3d: 82:9a:0b:df:fe:9b:1a:7d:c7:1d:15:12:84:de:c8:5e:e6:d9: 86:ae:e8:dc:b5:a7:c2:08:cb:c3:da:19:79:18:6a:b0:73:71: b2:ac:13:35:23:60:b5:30:b1:aa:f2:3d:d6:d4:0f:e1:02:9f: 25:1f:54:1e:af:f7:44:7c:6e:71:16:e5:00:4b:0d:a5:13:3f: 2f:11:7c:02:11:e2:9e:27:e7:16:dd:e8:0f:98:d6:4f:da:ba: c3:12:92:05:69:f8:41:38:d4:14:68:df:4d:09:47:d5:12:c4: 7c:db:e1:d6:da:52:92:13:cd:18:80:1a:a8:3a:10:0e:78:0c: 2f:25:6d:54 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAvt8Nw/eEFKIO3TgEe9BKSUJ2OQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTU1MDEwWhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYmQ0YmFmNjVkMTVmYTdjMmIwNTMzOGU3MDM0NTUwOGFm MjRjZTYxOTQzYWFiNjBhZWFkMDJhMDdiZGY3MDFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjSbqFiFMjE4zeX6EKeHz0OHu702GWB21G2kqz+8KP8XbF fgD1PSKQNQeJ4L88xSgO9HMFZKACRPEG+KmSM4OkMyLtSI7U8xC31sGIWLAh2EvR eESJBOTaPUV6bSVEcpAthE5QtpPllrl7T+S9ekDouKZhik0T5BOhor84pWeO4jPu 0Uc7ew/rzeg1HA7AggxQ3Qp80aTB+duKgCvRWBGOgR2pFrK0iBIbeIjFsuriHsck dr0B2F92CwqWDN2nDNplvR3b9nNN4AG8TNqcCldOeUq/prpM/x5SbBJqyr6LbZgA 3tD98ErXr2oeQALa3SFxndbgUb2cWp3RLFuzAvSVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFXn8NIilkB4li07p+1zqWIxuTDIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhYjRiYmIyLTk5NWYtNDI2YS1iNzcyLTg3YzQxODg4OTEyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTe8wDQYJKoZIhvcNAQELBQADggEBABOwn7P4VT4eM94mNIqewAbMVIz2 IZ3Mjt2nJKhYwVGt9g83k9TBr8A3Hl5+qnrD/6/rog45DQ3p2VgKR34D6QybQHmK G/kLQcUv5evXUx+t73Yr1nsYSe21nLgDq0bULCuwsMT3RDNGd9OCs87mP+VuJ8sr Hg4BLoEztbtIPYKaC9/+mxp9xx0VEoTeyF7m2Yau6Ny1p8IIy8PaGXkYarBzcbKs EzUjYLUwsaryPdbUD+ECnyUfVB6v90R8bnEW5QBLDaUTPy8RfAIR4p4n5xbd6A+Y 1k/ausMSkgVp+EE41BRo300JR9USxHzb4dbaUpITzRiAGqg6EA54DC8lbVQ= -----END CERTIFICATE-----Generated at Thu May 15 03:39:46 2025 by rpki-client