$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4309ae2d-10c1-465c-8b74-6a7e0e3f71b8.roa File: 4309ae2d-10c1-465c-8b74-6a7e0e3f71b8.roa (raw, json) Hash identifier: +3oXMDWk8H24mINCbtYRd1GE3YqgxlcJOkfuJ+g1DU8= Subject key identifier: 83:E1:BF:85:F6:66:C3:00:47:EF:47:6B:6D:7F:67:AD:AB:87:F9:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 48AA5727044C3BCF4B3967E778BAF4B00A7C4CAC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4309ae2d-10c1-465c-8b74-6a7e0e3f71b8.roa Signing time: Wed 18 Jun 2025 00:21:06 +0000 ROA not before: Wed 18 Jun 2025 00:21:06 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:aa:57:27:04:4c:3b:cf:4b:39:67:e7:78:ba:f4:b0:0a:7c:4c:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:21:06 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=692ac84cd01479043b27300b1a560db9c9d664f27228cbcd95da5f3f6b6d5181, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b0:89:cd:45:9c:85:53:fe:c5:e3:3c:5b:ba: 4d:c7:d5:a3:3d:4e:e7:27:3e:53:1a:fa:00:80:10: 57:ae:1e:56:69:3e:57:21:db:b1:c5:eb:0b:6b:7f: ae:c7:95:16:d3:27:b0:d1:d5:e5:51:a4:87:22:48: 64:f5:b1:f2:8d:c6:b2:aa:d6:d7:c4:8e:89:1e:e3: c1:ea:83:5e:c2:04:bb:c4:f3:a2:ae:96:22:36:34: a3:0f:a2:e8:87:9e:3f:b4:fb:52:a4:96:1a:2e:5a: 7e:2d:fd:17:2f:77:95:f3:c6:ff:9a:92:ec:4f:47: 1b:80:90:56:b6:a2:76:8e:c0:60:96:e6:c3:7a:4f: cb:af:48:44:dc:fa:52:19:0c:2b:29:95:26:c5:ef: 95:dd:31:af:dc:16:e9:1e:5a:c9:bd:6f:3d:f5:f5: 31:9c:c4:f4:45:75:77:a2:95:a6:e6:70:15:71:8d: f1:63:60:49:eb:ce:2b:ef:11:ab:06:dc:ae:0b:a8: a7:b3:9a:2a:64:15:4a:b7:8a:d6:9e:9e:33:87:76: d4:92:72:33:e1:48:ae:8d:cf:98:14:b1:79:53:23: f7:c6:6d:d3:dc:61:63:bf:6b:89:44:b8:64:94:f0: ab:cd:28:cf:74:ef:77:15:89:e3:09:5e:69:03:0e: 11:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:E1:BF:85:F6:66:C3:00:47:EF:47:6B:6D:7F:67:AD:AB:87:F9:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4309ae2d-10c1-465c-8b74-6a7e0e3f71b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.242.0/24 Signature Algorithm: sha256WithRSAEncryption 57:72:e9:1d:5e:4d:af:a0:16:12:4c:a8:e5:d9:8e:63:f0:65: fa:d6:11:23:54:75:fd:9c:fa:2e:9d:5b:88:79:5f:d5:80:07: f9:86:3a:3a:5b:a5:2f:4c:d6:a1:cc:ff:f2:97:9a:e1:79:34: 40:f1:86:4f:e5:87:15:eb:66:17:8e:cc:b0:e7:26:3c:12:31: 35:0b:fa:ef:8b:f6:4e:cb:4e:0e:59:a6:2f:c9:fa:68:23:38: 0e:f9:df:75:9b:5a:6b:a1:cd:f2:54:fa:fc:09:e5:6f:52:b9: 73:b6:b8:88:58:f0:5c:b9:2d:74:8c:36:bd:85:5b:8e:68:4a: b1:32:87:f4:83:ca:6f:0f:57:75:04:10:e9:46:20:c3:af:f7: 0f:86:60:aa:29:8c:6d:0d:17:a5:cc:8b:d6:bd:ba:36:20:2c: a6:4e:7c:e4:b3:dc:62:6d:c0:8b:59:d2:47:c8:0b:7f:7c:93: df:ef:58:82:69:92:18:f1:db:dc:c0:6c:fd:0b:63:d1:43:4d: 1e:5d:ca:6c:77:fe:27:6c:5e:e9:77:87:eb:93:ba:af:86:98: 81:53:75:38:ab:83:9f:a1:9c:31:93:58:f0:6a:67:3f:2e:37: b8:69:90:fa:3f:49:87:e9:33:92:85:7e:48:6a:d5:39:ff:81: ed:af:60:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSKpXJwRMO89LOWfneLr0sAp8TKwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAyMTA2WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTJhYzg0Y2QwMTQ3OTA0M2IyNzMwMGIxYTU2MGRiOWM5 ZDY2NGYyNzIyOGNiY2Q5NWRhNWYzZjZiNmQ1MTgxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMsInNRZyFU/7F4zxbuk3H1aM9TucnPlMa+gCAEFeuHlZp Plch27HF6wtrf67HlRbTJ7DR1eVRpIciSGT1sfKNxrKq1tfEjoke48Hqg17CBLvE 86KuliI2NKMPouiHnj+0+1KklhouWn4t/Rcvd5Xzxv+akuxPRxuAkFa2onaOwGCW 5sN6T8uvSETc+lIZDCsplSbF75XdMa/cFukeWsm9bz319TGcxPRFdXeilabmcBVx jfFjYEnrzivvEasG3K4LqKezmipkFUq3itaenjOHdtSScjPhSK6Nz5gUsXlTI/fG bdPcYWO/a4lEuGSU8KvNKM9073cVieMJXmkDDhGFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg+G/hfZmwwBH70drbX9nrauH+dgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzMDlhZTJkLTEwYzEtNDY1Yy04Yjc0LTZhN2UwZTNmNzFiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfIwDQYJKoZIhvcNAQELBQADggEBAFdy6R1eTa+gFhJMqOXZjmPwZfrW ESNUdf2c+i6dW4h5X9WAB/mGOjpbpS9M1qHM//KXmuF5NEDxhk/lhxXrZheOzLDn JjwSMTUL+u+L9k7LTg5Zpi/J+mgjOA7533WbWmuhzfJU+vwJ5W9SuXO2uIhY8Fy5 LXSMNr2FW45oSrEyh/SDym8PV3UEEOlGIMOv9w+GYKopjG0NF6XMi9a9ujYgLKZO fOSz3GJtwItZ0kfIC398k9/vWIJpkhjx29zAbP0LY9FDTR5dymx3/idsXul3h+uT uq+GmIFTdTirg5+hnDGTWPBqZz8uN7hpkPo/SYfpM5KFfkhq1Tn/ge2vYDc= -----END CERTIFICATE-----Generated at Sun Jun 29 08:58:21 2025 by rpki-client