$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9188fa7b-db94-4ddb-97de-5cb09ac9c624.roa File: 9188fa7b-db94-4ddb-97de-5cb09ac9c624.roa (raw, json) Hash identifier: l+uTyHWeZ3kV2OVr9LnIhvZvSor5DQEdpPGAoteeIZg= Subject key identifier: 53:F7:2A:81:17:A6:A2:85:5B:6F:12:F7:35:06:63:B8:24:E5:68:EE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50D5B56A1CF1EA6B736223D93F87069909BB49DD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9188fa7b-db94-4ddb-97de-5cb09ac9c624.roa Signing time: Wed 04 Jun 2025 00:31:47 +0000 ROA not before: Wed 04 Jun 2025 00:31:47 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 99.151.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:d5:b5:6a:1c:f1:ea:6b:73:62:23:d9:3f:87:06:99:09:bb:49:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:31:47 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=143c3d40d6cf58d3aa59b3df60586b9e87e76bf858c00162863b89912cbd2263, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:bd:42:19:c2:91:11:7e:74:10:c9:fc:51:dc: 73:13:a3:c6:ea:6e:c1:e5:96:c0:b2:f2:99:ca:0d: 1e:07:b7:d5:e2:a2:e4:de:14:62:aa:12:66:e3:df: 13:fd:2d:92:63:3f:d4:7a:7a:5c:5e:ee:24:2b:56: a0:7e:3e:09:3e:d9:95:5a:89:32:c1:99:1e:88:0c: 0c:63:0d:bc:4f:40:b4:08:b2:ac:62:ea:a0:83:bf: f8:aa:5a:aa:82:95:f7:ed:90:8e:a9:0f:de:84:47: 2b:77:f7:d7:e9:4d:16:88:d8:69:e1:1f:96:26:17: da:63:66:05:0e:c1:9e:ed:2f:35:6f:2b:65:b6:ff: eb:fd:29:8d:19:58:80:81:05:8a:58:bc:66:17:50: 73:bc:46:57:84:5e:1e:04:02:30:5f:e4:4a:e2:8b: 9e:28:7b:f5:27:9a:b3:f2:d4:a5:96:5b:fe:43:fe: 77:b3:e0:22:02:05:e2:98:3a:66:f8:11:9b:6c:59: b8:38:0b:2c:d3:12:c2:92:cb:0a:57:4c:22:c6:6a: 9d:27:94:f6:7c:19:60:5b:c4:19:6a:e9:46:a5:a9: 45:9f:ac:08:e8:2b:cc:bd:1a:87:da:4f:d7:98:97: 3f:75:0b:6d:d2:0c:da:51:c0:36:9b:92:8d:f9:ae: 8e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:F7:2A:81:17:A6:A2:85:5B:6F:12:F7:35:06:63:B8:24:E5:68:EE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9188fa7b-db94-4ddb-97de-5cb09ac9c624.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.190.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:b9:0f:e9:c1:8c:18:5d:eb:47:88:e9:30:ba:f8:8e:69:2c: 8c:eb:96:bc:0c:44:ac:f9:ce:13:a3:1d:c9:f8:01:0e:c1:f0: b0:0e:79:bb:7c:be:54:c6:4d:4a:bc:a1:bd:ab:37:23:7e:3b: 50:1f:67:9d:0d:75:28:a3:22:c5:f1:ac:e1:ae:81:a3:03:16: da:a5:d6:ff:3c:10:6c:1a:2c:bc:0a:43:d0:88:e0:62:bd:ef: 64:53:c1:44:1c:87:47:be:13:6c:0a:68:83:31:ec:d7:bf:01: 5d:f1:70:c7:98:d1:80:88:6b:9c:56:4b:34:ed:4b:8f:2a:c3: d8:ae:ff:92:da:a4:da:89:e9:d7:5e:2b:bc:04:8c:3b:75:da: b5:6e:1f:20:4c:2c:b6:4e:4b:a3:f2:16:0f:e3:f1:b2:a3:9c: de:ed:d5:d1:b8:46:01:0d:af:e7:f7:27:4e:f7:14:45:6f:4f: d5:22:1b:ea:da:20:76:d0:67:06:90:54:6f:0c:5b:d2:c2:81: 61:25:91:c3:04:7e:67:f5:09:b9:bb:7d:7c:7f:d1:a0:d7:58: 0c:3f:ef:b6:2c:89:d8:4d:63:ad:21:9f:2c:81:7a:83:37:b4: 6a:71:74:28:32:f7:a6:6a:05:58:51:6f:85:40:4b:e0:a0:45: 2c:bb:43:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUNW1ahzx6mtzYiPZP4cGmQm7Sd0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAzMTQ3WhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDNjM2Q0MGQ2Y2Y1OGQzYWE1OWIzZGY2MDU4NmI5ZTg3 ZTc2YmY4NThjMDAxNjI4NjNiODk5MTJjYmQyMjYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCivUIZwpERfnQQyfxR3HMTo8bqbsHllsCy8pnKDR4Ht9Xi ouTeFGKqEmbj3xP9LZJjP9R6elxe7iQrVqB+Pgk+2ZVaiTLBmR6IDAxjDbxPQLQI sqxi6qCDv/iqWqqClfftkI6pD96ERyt399fpTRaI2GnhH5YmF9pjZgUOwZ7tLzVv K2W2/+v9KY0ZWICBBYpYvGYXUHO8RleEXh4EAjBf5Erii54oe/UnmrPy1KWWW/5D /nez4CICBeKYOmb4EZtsWbg4CyzTEsKSywpXTCLGap0nlPZ8GWBbxBlq6UalqUWf rAjoK8y9GofaT9eYlz91C23SDNpRwDabko35ro6BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUU/cqgRemooVbbxL3NQZjuCTlaO4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxODhmYTdiLWRiOTQtNGRkYi05N2RlLTVjYjA5YWM5YzYyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl74wDQYJKoZIhvcNAQELBQADggEBAF25D+nBjBhd60eI6TC6+I5pLIzr lrwMRKz5zhOjHcn4AQ7B8LAOebt8vlTGTUq8ob2rNyN+O1AfZ50NdSijIsXxrOGu gaMDFtql1v88EGwaLLwKQ9CI4GK972RTwUQch0e+E2wKaIMx7Ne/AV3xcMeY0YCI a5xWSzTtS48qw9iu/5LapNqJ6ddeK7wEjDt12rVuHyBMLLZOS6PyFg/j8bKjnN7t 1dG4RgENr+f3J073FEVvT9UiG+raIHbQZwaQVG8MW9LCgWElkcMEfmf1Cbm7fXx/ 0aDXWAw/77YsidhNY60hnyyBeoM3tGpxdCgy96ZqBVhRb4VAS+CgRSy7Q5I= -----END CERTIFICATE-----Generated at Sun Jun 29 14:42:38 2025 by rpki-client