$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/547e1a6d-6655-448f-a7d4-2f6205e19360.roa File: 547e1a6d-6655-448f-a7d4-2f6205e19360.roa (raw, json) Hash identifier: g4iz9LhV+s1pBwCVYPYZstYZSg6d0fwC1QfRzhW1Zio= Subject key identifier: 0D:7F:79:4B:F6:B3:32:89:09:13:CD:52:46:9B:9A:37:4A:F5:AB:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6E3C8C8022F4EED881275EF556C69FC283B1B3F8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/547e1a6d-6655-448f-a7d4-2f6205e19360.roa Signing time: Sat 03 May 2025 00:51:42 +0000 ROA not before: Sat 03 May 2025 00:51:42 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:3c:8c:80:22:f4:ee:d8:81:27:5e:f5:56:c6:9f:c2:83:b1:b3:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:51:42 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=d6d6b5e9af19cecdc1723f777ae336d90865679382b37cef522f96afee2de938, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:90:a6:f3:f2:a7:84:07:f2:6b:c6:83:f1:b4: f5:5b:d6:b3:d9:58:e6:1b:f6:2f:0c:2d:ca:d2:7f: d8:48:fe:d3:6f:a9:ff:7e:1d:bf:ec:e1:2e:07:c8: ea:4d:58:cd:22:42:c5:25:72:49:c2:89:12:48:84: 15:d0:6e:2f:71:64:e1:0b:ec:ff:9b:78:a9:df:7f: bc:d7:0a:99:63:57:02:78:e9:dc:99:33:3e:e3:fd: 5a:8d:3b:17:5b:12:24:54:f8:9d:2a:f4:08:b9:5f: f3:16:40:ab:16:58:ed:2b:a7:33:10:1a:16:89:49: 00:39:2f:20:90:3d:53:e0:59:7b:2d:26:76:df:92: 1e:be:3b:7d:22:d5:26:4f:a6:fb:c8:d5:47:b9:13: 61:2d:6f:ba:7f:c6:e5:5c:64:57:21:c8:2a:92:87: c4:8e:ce:f1:a7:24:66:51:70:fe:76:d6:de:dc:40: 68:d1:a5:df:17:da:91:a8:53:e7:5c:17:4d:de:6c: b5:23:0d:33:15:c1:4d:21:dd:6e:8b:36:34:de:d4: ff:53:eb:2e:04:43:af:6d:c8:25:bf:25:b6:fc:61: 0b:c5:f6:8a:d8:b2:9a:6d:8e:7c:49:a3:4c:b1:1e: a2:c9:49:10:f7:41:d9:cb:ee:41:5b:8f:d9:50:06: 82:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:7F:79:4B:F6:B3:32:89:09:13:CD:52:46:9B:9A:37:4A:F5:AB:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/547e1a6d-6655-448f-a7d4-2f6205e19360.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.240.0/24 Signature Algorithm: sha256WithRSAEncryption 86:20:42:03:7c:a9:9a:5b:23:03:af:46:ea:c8:f6:c9:4a:83: b4:72:de:16:cb:16:ea:ae:8d:e7:aa:06:c7:0b:7f:e7:93:6a: 7e:42:13:61:1c:b3:c1:d0:22:49:0d:6a:f3:c4:8c:bc:c0:91: 78:d4:14:b6:84:a3:7e:13:89:aa:2f:09:49:e3:ee:cd:0f:a7: 31:75:ca:fd:47:87:3f:12:1e:ed:80:7d:f9:fc:bf:31:41:3c: 38:1e:53:ed:60:11:2f:cf:72:63:8e:4e:91:2f:20:ec:1f:ce: f9:98:18:f5:bf:f5:d5:63:97:f6:3a:b2:b6:c7:cc:91:f8:fe: 3b:22:ba:a2:fb:4c:fc:a9:98:d0:6d:fb:9a:40:20:95:a8:06: 4b:28:4b:9d:e5:02:2f:9a:61:38:a3:85:9d:b8:a9:e5:6c:7c: c9:03:2f:7d:3f:65:c8:ee:86:df:6e:98:be:81:5f:c4:b1:29: 72:1f:2a:89:ad:92:9d:a8:ec:a5:27:83:a4:fb:e0:3a:a4:f8: ef:08:0b:5a:a5:3c:73:bc:e7:f3:0a:a4:71:0c:30:43:50:00: 34:c1:8b:20:4d:94:dc:17:8b:18:41:55:e5:ab:ed:8a:d5:16: 96:3a:3e:0c:a6:e2:ea:53:1e:7b:d0:3f:44:16:62:e3:d4:2a: 6d:8f:90:d4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbjyMgCL07tiBJ171VsafwoOxs/gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA1MTQyWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNmQ2YjVlOWFmMTljZWNkYzE3MjNmNzc3YWUzMzZkOTA4 NjU2NzkzODJiMzdjZWY1MjJmOTZhZmVlMmRlOTM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKkKbz8qeEB/JrxoPxtPVb1rPZWOYb9i8MLcrSf9hI/tNv qf9+Hb/s4S4HyOpNWM0iQsUlcknCiRJIhBXQbi9xZOEL7P+beKnff7zXCpljVwJ4 6dyZMz7j/VqNOxdbEiRU+J0q9Ai5X/MWQKsWWO0rpzMQGhaJSQA5LyCQPVPgWXst Jnbfkh6+O30i1SZPpvvI1Ue5E2Etb7p/xuVcZFchyCqSh8SOzvGnJGZRcP521t7c QGjRpd8X2pGoU+dcF03ebLUjDTMVwU0h3W6LNjTe1P9T6y4EQ69tyCW/Jbb8YQvF 9orYspptjnxJo0yxHqLJSRD3QdnL7kFbj9lQBoI/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDX95S/azMokJE81SRpuaN0r1q7YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0N2UxYTZkLTY2NTUtNDQ4Zi1hN2Q0LTJmNjIwNWUxOTM2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfAwDQYJKoZIhvcNAQELBQADggEBAIYgQgN8qZpbIwOvRurI9slKg7Ry 3hbLFuqujeeqBscLf+eTan5CE2Ecs8HQIkkNavPEjLzAkXjUFLaEo34TiaovCUnj 7s0PpzF1yv1Hhz8SHu2Affn8vzFBPDgeU+1gES/PcmOOTpEvIOwfzvmYGPW/9dVj l/Y6srbHzJH4/jsiuqL7TPypmNBt+5pAIJWoBksoS53lAi+aYTijhZ24qeVsfMkD L30/Zcjuht9umL6BX8SxKXIfKomtkp2o7KUng6T74Dqk+O8IC1qlPHO85/MKpHEM MENQADTBiyBNlNwXixhBVeWr7YrVFpY6Pgym4upTHnvQP0QWYuPUKm2PkNQ= -----END CERTIFICATE-----Generated at Sun May 11 16:59:49 2025 by rpki-client