$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d387ff7-fed8-4308-a990-1ea058fcb160.roa File: 3d387ff7-fed8-4308-a990-1ea058fcb160.roa (raw, json) Hash identifier: pKifwOOX3YlLz38CRxJMavhvaRT4Dwl/GW7skGRo0fo= Subject key identifier: 13:29:A3:AA:71:63:8F:E9:4F:C0:20:2D:5B:42:3E:86:01:12:4C:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 20F6A67F73A6C1658CEAE5064E0F177302EB2150 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d387ff7-fed8-4308-a990-1ea058fcb160.roa Signing time: Sat 10 May 2025 00:41:26 +0000 ROA not before: Sat 10 May 2025 00:41:26 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:f6:a6:7f:73:a6:c1:65:8c:ea:e5:06:4e:0f:17:73:02:eb:21:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:41:26 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=d4e52418aa2625b9618482bea4de9598ce2407f59cfd33270f5450671306790c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bf:fa:b7:b9:86:ab:99:20:be:4a:a2:20:49: 43:a3:cd:f1:3b:13:73:77:8e:13:39:16:e7:4e:07: 7c:c3:a7:d7:b4:b4:d4:77:b2:1f:0e:35:3b:4a:0d: ae:0e:76:43:27:81:f2:dd:f8:63:bf:09:53:57:9f: 92:25:09:66:3c:60:8b:4c:c2:78:cc:7f:c0:cf:bb: 7b:8e:f6:6e:a6:ce:ba:93:1b:40:c6:f4:67:a8:21: 55:0c:4e:3f:30:d7:9b:45:d5:6d:65:da:a0:4a:fb: ed:1f:8c:fc:8c:54:24:d3:77:3f:ab:87:b8:50:8f: f2:82:67:51:62:34:02:ac:9c:6b:45:b6:12:9f:98: de:e6:66:b2:d6:d0:98:11:0b:e2:5c:03:64:7e:b9: 3d:3c:30:56:53:1c:9d:4d:43:37:19:1c:d9:a4:7c: a8:91:11:78:b9:af:c1:ea:9e:65:ec:45:bc:c6:96: 96:4f:9f:2a:4b:90:5f:48:59:69:04:d0:6e:7d:2d: 61:85:b1:d6:e8:b7:76:d1:ea:c0:d9:6d:55:73:5d: 87:72:ad:f9:59:ed:17:d0:de:8a:12:b2:db:b5:71: 23:1c:ed:8f:34:8c:07:7e:3c:b5:f7:99:39:74:04: 76:08:73:c8:73:23:dd:50:6a:20:64:da:67:29:9c: 28:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:29:A3:AA:71:63:8F:E9:4F:C0:20:2D:5B:42:3E:86:01:12:4C:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d387ff7-fed8-4308-a990-1ea058fcb160.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.82.0/24 Signature Algorithm: sha256WithRSAEncryption 50:bf:1d:a4:ad:5b:1e:00:8b:66:0c:aa:4b:74:fa:50:b4:e6: 21:4d:94:7e:28:86:cf:81:58:23:3e:a7:a6:83:b4:c2:36:cf: 6a:4a:3b:b3:f3:25:94:d6:62:c9:39:96:4b:8e:64:ff:29:81: da:db:9c:15:d9:6d:44:f9:26:dc:13:2f:3b:fd:fc:6d:d3:96: d1:34:3e:c5:45:53:be:1d:cd:10:af:30:82:8f:60:b7:d3:45: df:d5:f9:ac:48:ed:3d:2f:99:b2:71:fd:d0:04:6f:02:8b:8d: 0f:06:16:75:bd:e7:2d:bf:af:90:84:53:74:eb:76:59:78:0c: 47:5d:75:97:f8:aa:48:aa:b8:3d:85:1f:10:41:73:ad:c6:9c: da:26:b8:f3:82:b8:8f:bc:c8:b1:92:ed:25:69:47:93:e3:49: 12:1f:39:64:48:e9:4d:4b:84:13:d3:0f:ab:a7:9a:a0:a6:7e: bf:37:7f:d2:d2:b5:27:8b:6c:60:97:4f:5d:ac:25:64:00:a5: c9:a4:85:62:63:bf:be:c2:c0:d2:ed:4c:a6:71:01:c3:dc:ef: 2d:93:94:18:e7:0a:9b:f5:ac:23:dc:8a:26:2d:2d:7d:c3:4c: 41:62:f5:ae:a2:6b:e4:6c:37:d0:3e:5c:38:52:af:f4:89:40: 04:4a:f3:70 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIPamf3OmwWWM6uUGTg8XcwLrIVAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDA0MTI2WhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNGU1MjQxOGFhMjYyNWI5NjE4NDgyYmVhNGRlOTU5OGNl MjQwN2Y1OWNmZDMzMjcwZjU0NTA2NzEzMDY3OTBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4v/q3uYarmSC+SqIgSUOjzfE7E3N3jhM5FudOB3zDp9e0 tNR3sh8ONTtKDa4OdkMngfLd+GO/CVNXn5IlCWY8YItMwnjMf8DPu3uO9m6mzrqT G0DG9GeoIVUMTj8w15tF1W1l2qBK++0fjPyMVCTTdz+rh7hQj/KCZ1FiNAKsnGtF thKfmN7mZrLW0JgRC+JcA2R+uT08MFZTHJ1NQzcZHNmkfKiREXi5r8HqnmXsRbzG lpZPnypLkF9IWWkE0G59LWGFsdbot3bR6sDZbVVzXYdyrflZ7RfQ3ooSstu1cSMc 7Y80jAd+PLX3mTl0BHYIc8hzI91QaiBk2mcpnCj5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEymjqnFjj+lPwCAtW0I+hgESTNQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkMzg3ZmY3LWZlZDgtNDMwOC1hOTkwLTFlYTA1OGZjYjE2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl1IwDQYJKoZIhvcNAQELBQADggEBAFC/HaStWx4Ai2YMqkt0+lC05iFN lH4ohs+BWCM+p6aDtMI2z2pKO7PzJZTWYsk5lkuOZP8pgdrbnBXZbUT5JtwTLzv9 /G3TltE0PsVFU74dzRCvMIKPYLfTRd/V+axI7T0vmbJx/dAEbwKLjQ8GFnW95y2/ r5CEU3Trdll4DEdddZf4qkiquD2FHxBBc63GnNomuPOCuI+8yLGS7SVpR5PjSRIf OWRI6U1LhBPTD6unmqCmfr83f9LStSeLbGCXT12sJWQApcmkhWJjv77CwNLtTKZx AcPc7y2TlBjnCpv1rCPciiYtLX3DTEFi9a6ia+RsN9A+XDhSr/SJQARK83A= -----END CERTIFICATE-----Generated at Sat May 10 07:23:57 2025 by rpki-client