$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8703a1-34ff-445a-83d6-9423df90d41e.roa File: 2c8703a1-34ff-445a-83d6-9423df90d41e.roa (raw, json) Hash identifier: 5eJlfJZQ9nxu39J0VzQldLR8VpaJJOyaM2ty53x37+Q= Subject key identifier: 55:CA:2C:4C:03:04:69:20:34:D7:1C:47:20:AE:5B:30:25:B7:4F:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 79F0A431D0A6B558C6C1DD76533C5475BE1315AF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8703a1-34ff-445a-83d6-9423df90d41e.roa Signing time: Sat 10 May 2025 00:31:45 +0000 ROA not before: Sat 10 May 2025 00:31:45 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:f0:a4:31:d0:a6:b5:58:c6:c1:dd:76:53:3c:54:75:be:13:15:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:31:45 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=e78674002c81e7224a645f75da13e9774fc1325c4829484fc046834a571a3b02, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d9:43:48:44:0a:ae:53:d6:81:93:2d:e1:c9: cd:f5:d3:33:42:72:d4:1d:6f:8e:ad:75:15:04:ed: 14:c8:65:a6:ee:f5:31:04:f1:3d:30:f1:9e:4d:95: 44:bd:60:d5:a7:97:9d:c0:84:d4:16:0a:da:81:f4: 1d:08:ec:9c:95:0e:b3:f9:a0:ae:8b:03:89:d6:7d: 0d:1c:a6:30:16:30:7a:ef:ed:a8:77:bf:cc:ca:eb: ab:85:f4:81:35:9f:91:3b:d1:7c:d4:55:55:a9:8b: b4:97:31:d4:e0:4c:cc:95:36:b2:77:79:4b:e1:7b: 2f:b9:f9:19:b6:e1:8a:b8:52:dd:b1:ba:b4:a6:3f: ba:50:2a:23:ab:5c:89:8c:d3:bc:20:9f:ad:ae:c1: f6:24:15:1c:90:1a:51:37:65:a7:af:45:00:02:65: 20:f6:90:d6:c8:d6:57:16:42:8d:c8:7e:95:85:08: 13:c4:62:ea:15:8f:47:b4:cf:62:25:30:bb:11:93: 82:e8:5b:26:e5:57:58:2b:0a:75:a9:d8:df:c4:87: 38:84:c2:9e:55:d4:5a:f8:5e:e9:55:ee:6a:78:bb: 54:45:ca:c2:6b:1a:df:03:a1:cc:db:4d:b5:f1:59: ea:51:ad:91:7f:f6:3f:d8:63:a9:b9:c9:ff:ec:3f: 6e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:CA:2C:4C:03:04:69:20:34:D7:1C:47:20:AE:5B:30:25:B7:4F:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8703a1-34ff-445a-83d6-9423df90d41e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.0.0/22 Signature Algorithm: sha256WithRSAEncryption 69:5d:95:1e:1d:7c:cb:d3:35:a7:c7:73:d0:42:fc:f6:81:c3: e4:db:f6:41:90:a0:e0:fc:a5:d4:05:d4:cf:fe:54:a2:27:ab: ee:0a:ae:71:5b:81:84:05:0c:98:3c:e0:da:f3:3f:bc:6f:f9: ec:cb:fe:7f:e7:94:6f:92:8d:0e:a9:3e:10:f4:b9:75:23:11: 26:82:d9:bc:9d:56:af:c7:2d:6b:5c:2c:61:db:96:36:f0:27: 06:7f:52:16:82:55:db:e4:bf:38:08:49:47:a9:38:b0:dc:03: a1:16:bb:b5:42:7a:9a:3f:32:c9:9f:aa:af:e7:4a:6f:06:27: ec:d8:f9:b9:3a:b7:e2:6b:81:e8:cc:9b:d3:b9:a4:72:04:73: bb:23:b8:9a:7a:ae:99:eb:a7:0c:a1:ad:77:8f:bb:31:0d:45: c3:97:54:e9:02:60:49:aa:9f:05:a4:c6:d8:40:d2:b0:e5:c3: b9:61:83:45:aa:33:86:54:91:0c:24:84:c9:af:55:72:89:98: 7c:cc:43:f6:e1:a1:7b:83:c8:8a:15:d2:7f:ec:54:9c:09:02: 38:08:33:89:6e:cd:4d:cb:28:fe:b1:61:de:52:61:98:ba:c2: 1c:91:9b:aa:f6:38:07:90:90:bb:49:96:1a:de:e2:d5:2c:b4: e1:ef:70:df -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUefCkMdCmtVjGwd12UzxUdb4TFa8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDAzMTQ1WhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzg2NzQwMDJjODFlNzIyNGE2NDVmNzVkYTEzZTk3NzRm YzEzMjVjNDgyOTQ4NGZjMDQ2ODM0YTU3MWEzYjAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC42UNIRAquU9aBky3hyc310zNCctQdb46tdRUE7RTIZabu 9TEE8T0w8Z5NlUS9YNWnl53AhNQWCtqB9B0I7JyVDrP5oK6LA4nWfQ0cpjAWMHrv 7ah3v8zK66uF9IE1n5E70XzUVVWpi7SXMdTgTMyVNrJ3eUvhey+5+Rm24Yq4Ut2x urSmP7pQKiOrXImM07wgn62uwfYkFRyQGlE3ZaevRQACZSD2kNbI1lcWQo3IfpWF CBPEYuoVj0e0z2IlMLsRk4LoWyblV1grCnWp2N/EhziEwp5V1Fr4XulV7mp4u1RF ysJrGt8DoczbTbXxWepRrZF/9j/YY6m5yf/sP27PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVcosTAMEaSA01xxHIK5bMCW3T4IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjODcwM2ExLTM0ZmYtNDQ1YS04M2Q2LTk0MjNkZjkwZDQxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjlgAwDQYJKoZIhvcNAQELBQADggEBAGldlR4dfMvTNafHc9BC/PaBw+Tb 9kGQoOD8pdQF1M/+VKInq+4KrnFbgYQFDJg84NrzP7xv+ezL/n/nlG+SjQ6pPhD0 uXUjESaC2bydVq/HLWtcLGHbljbwJwZ/UhaCVdvkvzgISUepOLDcA6EWu7VCepo/ Msmfqq/nSm8GJ+zY+bk6t+JrgejMm9O5pHIEc7sjuJp6rpnrpwyhrXePuzENRcOX VOkCYEmqnwWkxthA0rDlw7lhg0WqM4ZUkQwkhMmvVXKJmHzMQ/bhoXuDyIoV0n/s VJwJAjgIM4luzU3LKP6xYd5SYZi6whyRm6r2OAeQkLtJlhre4tUstOHvcN8= -----END CERTIFICATE-----Generated at Sun May 11 01:55:03 2025 by rpki-client