$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22ee097c-78c8-4c75-866c-6092e78e76d5.roa File: 22ee097c-78c8-4c75-866c-6092e78e76d5.roa (raw, json) Hash identifier: OSyi3J2KOJd5zDzNNaNrWkKksmDH2Nc0OQR723pseVY= Subject key identifier: C1:7F:21:B3:20:A9:43:5A:56:4B:36:B5:00:DD:70:A2:F6:21:F5:D0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 75698F7A22957150EBAD72B92885D1F496CA1DB3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22ee097c-78c8-4c75-866c-6092e78e76d5.roa Signing time: Sat 03 May 2025 00:51:32 +0000 ROA not before: Sat 03 May 2025 00:51:32 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:69:8f:7a:22:95:71:50:eb:ad:72:b9:28:85:d1:f4:96:ca:1d:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:51:32 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=bba46357065a1ae697378a32f3465dc89fa1c545d15f491f60f775d1def2db1a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d0:fa:d7:b8:25:5f:72:cc:e5:9b:e6:da:97: d3:fe:a6:77:64:81:d5:81:b2:63:59:51:d6:f0:fc: bf:93:4a:6a:c4:3d:02:ad:56:fd:cd:4a:b8:ce:5c: d8:ac:07:a9:4f:97:ab:23:d6:fa:20:4c:80:e1:46: 09:9c:16:60:49:7f:f8:19:ab:a6:00:8e:aa:45:d1: 07:74:5c:5e:19:a7:d5:e5:27:e4:5a:21:aa:c8:b3: bd:0d:e7:8c:f3:a8:09:2a:91:0c:ca:fb:3b:77:60: b5:ca:5d:aa:b1:a6:50:a7:d4:db:44:e0:f5:f0:f4: ed:9c:53:02:70:95:90:c3:40:08:5b:72:ac:93:11: 14:7c:55:8a:fa:d3:d0:9b:a2:94:7d:99:6b:c8:78: b8:5c:70:00:01:44:29:d8:95:57:84:25:ce:f2:dd: cd:cc:d2:e6:4f:49:c5:51:9f:b5:68:ab:97:fb:fb: d9:18:97:23:b3:66:72:bc:44:0f:f8:4f:b3:c3:20: 52:0c:98:39:f4:fd:c0:4c:0d:16:7b:00:fe:6a:44: 6e:f3:b4:d2:4e:54:fd:b8:44:24:87:e2:95:c8:4f: 88:51:03:ef:9b:4d:32:06:4d:68:04:ee:bc:6a:4e: d8:75:76:50:01:0e:93:15:8b:2e:89:80:9e:27:82: ef:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:7F:21:B3:20:A9:43:5A:56:4B:36:B5:00:DD:70:A2:F6:21:F5:D0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22ee097c-78c8-4c75-866c-6092e78e76d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.128.0/18 Signature Algorithm: sha256WithRSAEncryption 5e:68:01:02:c2:6d:9a:ca:1f:b2:5a:e4:35:80:c0:7f:5c:96: 56:8e:fb:fe:b3:f9:5f:8d:c5:62:55:05:45:b8:80:fa:f8:8e: 57:38:e7:20:04:cd:ff:be:94:c3:67:fe:0f:79:f0:46:da:d1: 39:95:98:37:f7:f4:8f:ea:a3:16:b4:13:d0:cb:e9:08:f1:0c: a2:88:f3:78:62:33:42:98:50:fc:51:f7:36:4c:ec:ff:ac:50: e3:2c:ec:1a:64:35:48:6f:ae:f0:50:b8:fc:c9:d9:33:c3:64: 93:a7:37:8e:86:69:53:17:37:fc:f7:40:26:46:2e:43:3a:b0: a9:f4:55:b2:30:09:4a:e5:e9:c7:0f:67:6f:fb:c3:86:8d:ec: 4c:71:2a:b9:03:ab:24:85:04:76:bb:58:43:c4:eb:ef:cb:a2: 25:b0:d7:fa:4a:94:b3:72:d0:c1:ae:3d:74:36:75:14:33:77: f9:3a:93:ac:84:3e:7a:9c:f9:4e:40:4c:e4:46:65:c1:24:59: eb:48:57:69:d2:ba:dd:43:bf:ed:f8:3c:83:40:06:c4:67:9d: 7c:e4:26:ae:89:a2:30:6a:26:51:48:ec:e0:4e:bf:0a:dc:93: cb:95:67:7f:2e:5d:d4:34:6f:28:dd:76:31:f5:53:e6:1b:dc: c3:9b:77:52 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdWmPeiKVcVDrrXK5KIXR9JbKHbMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA1MTMyWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYmE0NjM1NzA2NWExYWU2OTczNzhhMzJmMzQ2NWRjODlm YTFjNTQ1ZDE1ZjQ5MWY2MGY3NzVkMWRlZjJkYjFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu0PrXuCVfcszlm+bal9P+pndkgdWBsmNZUdbw/L+TSmrE PQKtVv3NSrjOXNisB6lPl6sj1vogTIDhRgmcFmBJf/gZq6YAjqpF0Qd0XF4Zp9Xl J+RaIarIs70N54zzqAkqkQzK+zt3YLXKXaqxplCn1NtE4PXw9O2cUwJwlZDDQAhb cqyTERR8VYr609CbopR9mWvIeLhccAABRCnYlVeEJc7y3c3M0uZPScVRn7Voq5f7 +9kYlyOzZnK8RA/4T7PDIFIMmDn0/cBMDRZ7AP5qRG7ztNJOVP24RCSH4pXIT4hR A++bTTIGTWgE7rxqTth1dlABDpMViy6JgJ4ngu8jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwX8hsyCpQ1pWSza1AN1wovYh9dAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyZWUwOTdjLTc4YzgtNGM3NS04NjZjLTYwOTJlNzhlNzZkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjTYAwDQYJKoZIhvcNAQELBQADggEBAF5oAQLCbZrKH7Ja5DWAwH9cllaO +/6z+V+NxWJVBUW4gPr4jlc45yAEzf++lMNn/g958Eba0TmVmDf39I/qoxa0E9DL 6QjxDKKI83hiM0KYUPxR9zZM7P+sUOMs7BpkNUhvrvBQuPzJ2TPDZJOnN46GaVMX N/z3QCZGLkM6sKn0VbIwCUrl6ccPZ2/7w4aN7ExxKrkDqySFBHa7WEPE6+/LoiWw 1/pKlLNy0MGuPXQ2dRQzd/k6k6yEPnqc+U5ATORGZcEkWetIV2nSut1Dv+34PINA BsRnnXzkJq6JojBqJlFI7OBOvwrck8uVZ38uXdQ0byjddjH1U+Yb3MObd1I= -----END CERTIFICATE-----Generated at Mon May 5 15:53:16 2025 by rpki-client