$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d7f4f19-33f2-41a5-9746-8cdc05da981c.roa File: 8d7f4f19-33f2-41a5-9746-8cdc05da981c.roa (raw, json) Hash identifier: VeAjZPPU75stfX/L12/kYe07MceqEXRilROJWyE4AB4= Subject key identifier: 5F:91:90:3C:66:CB:AE:36:56:08:19:B0:A2:EF:54:94:E0:AD:9D:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 175ECB4A063E10B42D7652FC72BAF62FEC29050A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d7f4f19-33f2-41a5-9746-8cdc05da981c.roa Signing time: Sat 10 May 2025 00:31:57 +0000 ROA not before: Sat 10 May 2025 00:31:57 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:5e:cb:4a:06:3e:10:b4:2d:76:52:fc:72:ba:f6:2f:ec:29:05:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:31:57 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=fad7ab5d6badf7244ad03dcaee31633baa7c438cb39ca0b9e2d4868740dd219e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:54:62:d7:d8:23:77:44:9c:8c:23:a2:cc:ee: ac:32:b3:bf:13:ea:ce:c5:13:a2:b4:b6:c6:f8:a4: 1c:39:c8:01:88:13:b9:2d:d0:49:45:01:b4:40:ec: 6b:b5:d1:10:95:aa:5f:d6:50:d4:51:f3:49:63:d9: 60:3f:00:79:7e:b1:26:1b:e2:e6:56:b8:a6:2a:a6: 4d:bd:98:ee:e2:5e:80:d2:57:00:55:fa:15:1a:4e: 80:17:12:41:cd:cd:f3:97:bd:eb:ae:27:1e:f2:7d: 49:c5:05:78:43:7c:57:35:05:3a:20:e6:8b:f2:0a: 6b:6d:ea:ec:37:49:fd:4c:55:e0:27:bf:ee:6c:db: 1d:5f:c1:4a:ff:da:44:79:b6:2a:04:04:52:e3:ed: a6:43:1e:6b:b8:de:24:47:26:2d:60:59:47:e4:09: fa:5a:76:69:5a:e4:27:36:f7:02:bd:ca:6b:a8:5f: c7:1d:e5:8b:9c:a2:45:8d:77:2f:5a:1a:26:52:a8: b5:e2:55:8b:03:cb:c4:ec:ab:f6:f4:9f:27:1c:59: 08:00:b5:a9:d1:2c:02:ff:bc:3b:38:b6:e3:7e:77: bf:a6:6f:43:ac:62:28:57:34:5b:7f:7e:59:21:a5: ce:fc:c4:59:9b:2d:64:b8:82:17:fd:27:a7:27:e5: 67:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:91:90:3C:66:CB:AE:36:56:08:19:B0:A2:EF:54:94:E0:AD:9D:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d7f4f19-33f2-41a5-9746-8cdc05da981c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.112.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:9f:af:f7:00:0f:13:f1:5a:d5:42:c1:74:75:25:56:69:a4: 56:32:88:5f:4d:6c:6a:6f:d7:3b:46:d0:2f:ce:68:3f:85:d8: 67:28:19:d3:1f:2c:e6:d0:6e:a2:dd:2a:67:76:f6:22:e0:b6: be:78:9b:cb:cc:e1:64:f7:6f:60:22:9f:59:86:c1:d7:5d:00: b6:56:4c:e7:90:e8:2f:58:32:9d:b6:07:37:ce:53:6e:86:8b: 5a:c0:1e:b9:f2:bc:7f:40:40:9f:a0:6f:d3:af:16:1a:96:8c: 11:99:bc:45:01:10:3f:c6:9e:e0:1e:2d:03:af:97:47:26:bd: 3b:f0:c4:48:fc:87:22:53:c9:03:d2:34:a6:82:7b:33:74:55: 82:ee:86:75:56:78:2c:b1:1f:12:cb:e7:9b:dd:f8:f3:b9:0f: 60:8a:fd:5c:73:bc:9a:48:d4:4a:49:bd:34:b2:49:0b:71:2d: d6:bb:d9:1c:af:ac:1f:dc:14:5d:c7:91:e2:78:08:d1:0a:67: f1:37:c1:02:d9:80:f6:3b:10:89:83:d3:9c:35:eb:a4:5a:d5: 5e:30:7b:81:fb:56:13:32:fd:8b:66:67:94:7c:15:4a:22:c6: 82:59:f3:75:94:ce:3d:7f:44:7f:f9:ab:61:4b:14:b8:25:92: 86:8c:c2:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF17LSgY+ELQtdlL8crr2L+wpBQowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDAzMTU3WhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYWQ3YWI1ZDZiYWRmNzI0NGFkMDNkY2FlZTMxNjMzYmFh N2M0MzhjYjM5Y2EwYjllMmQ0ODY4NzQwZGQyMTllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKVGLX2CN3RJyMI6LM7qwys78T6s7FE6K0tsb4pBw5yAGI E7kt0ElFAbRA7Gu10RCVql/WUNRR80lj2WA/AHl+sSYb4uZWuKYqpk29mO7iXoDS VwBV+hUaToAXEkHNzfOXveuuJx7yfUnFBXhDfFc1BTog5ovyCmtt6uw3Sf1MVeAn v+5s2x1fwUr/2kR5tioEBFLj7aZDHmu43iRHJi1gWUfkCfpadmla5Cc29wK9ymuo X8cd5YucokWNdy9aGiZSqLXiVYsDy8Tsq/b0nyccWQgAtanRLAL/vDs4tuN+d7+m b0OsYihXNFt/flkhpc78xFmbLWS4ghf9J6cn5WfDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUX5GQPGbLrjZWCBmwou9UlOCtnWkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkN2Y0ZjE5LTMzZjItNDFhNS05NzQ2LThjZGMwNWRhOTgxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjlnAwDQYJKoZIhvcNAQELBQADggEBACufr/cADxPxWtVCwXR1JVZppFYy iF9NbGpv1ztG0C/OaD+F2GcoGdMfLObQbqLdKmd29iLgtr54m8vM4WT3b2Ain1mG wdddALZWTOeQ6C9YMp22BzfOU26Gi1rAHrnyvH9AQJ+gb9OvFhqWjBGZvEUBED/G nuAeLQOvl0cmvTvwxEj8hyJTyQPSNKaCezN0VYLuhnVWeCyxHxLL55vd+PO5D2CK /VxzvJpI1EpJvTSySQtxLda72RyvrB/cFF3HkeJ4CNEKZ/E3wQLZgPY7EImD05w1 66Ra1V4we4H7VhMy/YtmZ5R8FUoixoJZ83WUzj1/RH/5q2FLFLglkoaMwpU= -----END CERTIFICATE-----Generated at Sat May 10 16:00:47 2025 by rpki-client