$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91f64723-3e76-4b11-8f43-0a8fde10d676.roa File: 91f64723-3e76-4b11-8f43-0a8fde10d676.roa (raw, json) Hash identifier: p7DTdwHP5F3tgVzIoweyvhipmlQ0E21UbT5wxL3EUgg= Subject key identifier: 5E:CE:B0:14:1C:C0:36:BA:E0:01:E2:40:AB:11:0D:BA:E0:8A:47:72 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 185CEFFBA9CD16D4EA2A8C9C6272FC3D752274C4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91f64723-3e76-4b11-8f43-0a8fde10d676.roa Signing time: Sat 10 May 2025 00:30:30 +0000 ROA not before: Sat 10 May 2025 00:30:30 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:5c:ef:fb:a9:cd:16:d4:ea:2a:8c:9c:62:72:fc:3d:75:22:74:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:30:30 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=8dcf49cea80a02b6d36b805ca3a7de4929cf4f12bbb100b2ae07f1728f973c93, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1b:4d:9c:6c:80:35:e1:23:56:53:84:c2:af: c4:10:3e:e4:cb:db:61:22:c0:c6:5b:5a:f8:e1:83: 63:85:15:e7:c4:ba:ce:c4:57:07:a9:38:ec:4b:4f: 98:06:91:ba:64:be:7a:2e:0b:b4:af:0f:99:80:4c: c9:ec:1e:19:aa:df:d0:1f:51:e0:c2:08:c0:ee:6e: a2:28:f2:c5:9d:91:1e:9d:99:df:e7:d0:81:7a:74: 18:01:a5:26:2e:67:b6:72:ee:c2:29:f3:75:35:33: 1e:ac:06:e6:52:d3:0d:4a:be:7b:f6:c8:ba:75:d2: 98:80:d6:92:71:5a:96:de:f8:fa:a9:52:ed:2c:90: 01:9a:2f:3b:ef:ef:50:93:7e:0c:06:4a:c2:1f:67: 93:03:51:1a:cb:2b:61:6b:ea:80:dc:e2:db:91:10: 38:90:30:d7:43:f8:19:7f:8e:dc:b1:b2:6c:b7:9d: 77:fe:e4:c0:3a:77:66:d5:51:65:e3:ac:17:85:1b: 0d:04:f1:98:b3:a7:bd:10:1d:16:9d:5f:00:98:20: a5:10:6c:75:0c:9e:02:7d:ef:44:37:89:b5:72:01: 78:2f:05:69:f4:e0:80:42:d9:15:8d:97:79:d1:e3: 8f:01:6a:0b:87:c7:5d:41:18:2e:68:d1:9f:79:01: 73:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:CE:B0:14:1C:C0:36:BA:E0:01:E2:40:AB:11:0D:BA:E0:8A:47:72 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91f64723-3e76-4b11-8f43-0a8fde10d676.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.190.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:da:63:e2:4e:83:50:8b:04:03:87:42:27:2f:75:5c:d8:55: a4:7d:91:7c:a4:09:a4:73:bd:7b:27:9f:a5:33:02:40:6b:c5: ad:f8:fd:41:b5:bd:96:3b:85:42:7a:d9:51:4f:24:56:b3:87: 2d:be:2c:59:e3:c8:49:92:0a:3d:3f:c7:09:29:f2:6a:73:cd: 82:a2:dd:0d:5a:54:b7:bf:3d:be:ee:82:09:e7:57:1e:09:b8: b2:43:41:9f:81:89:5b:41:d1:2b:60:e6:bd:15:b3:a0:45:31: 08:8f:1c:e2:3c:ab:d2:aa:c1:44:a0:55:a6:af:13:36:90:aa: 32:fc:92:fb:0a:54:c7:9f:9f:7d:89:29:9d:c7:1f:ca:0c:ae: ca:85:df:61:af:82:3e:d4:19:ec:4f:4b:bf:60:c1:0e:fa:e0: 65:96:54:93:a1:a3:39:ee:f8:5a:b5:4d:83:14:f6:1b:3c:31: 10:7c:33:0a:64:54:db:61:2f:5d:50:c8:f0:53:ab:88:0c:ef: 1f:c3:22:86:99:04:a9:d8:92:32:45:e5:2c:09:c2:94:27:d3: f7:69:89:e7:2d:80:94:cf:f4:fc:d9:2a:7f:4f:ea:d7:90:a5: 70:3b:4d:46:19:9b:58:34:76:2e:55:e2:21:df:f3:14:19:fd: d7:3f:5c:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGFzv+6nNFtTqKoycYnL8PXUidMQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDAzMDMwWhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZGNmNDljZWE4MGEwMmI2ZDM2YjgwNWNhM2E3ZGU0OTI5 Y2Y0ZjEyYmJiMTAwYjJhZTA3ZjE3MjhmOTczYzkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChG02cbIA14SNWU4TCr8QQPuTL22EiwMZbWvjhg2OFFefE us7EVwepOOxLT5gGkbpkvnouC7SvD5mATMnsHhmq39AfUeDCCMDubqIo8sWdkR6d md/n0IF6dBgBpSYuZ7Zy7sIp83U1Mx6sBuZS0w1Kvnv2yLp10piA1pJxWpbe+Pqp Uu0skAGaLzvv71CTfgwGSsIfZ5MDURrLK2Fr6oDc4tuREDiQMNdD+Bl/jtyxsmy3 nXf+5MA6d2bVUWXjrBeFGw0E8Zizp70QHRadXwCYIKUQbHUMngJ970Q3ibVyAXgv BWn04IBC2RWNl3nR448BaguHx11BGC5o0Z95AXM/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXs6wFBzANrrgAeJAqxENuuCKR3IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxZjY0NzIzLTNlNzYtNGIxMS04ZjQzLTBhOGZkZTEwZDY3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl74wDQYJKoZIhvcNAQELBQADggEBAE7aY+JOg1CLBAOHQicvdVzYVaR9 kXykCaRzvXsnn6UzAkBrxa34/UG1vZY7hUJ62VFPJFazhy2+LFnjyEmSCj0/xwkp 8mpzzYKi3Q1aVLe/Pb7uggnnVx4JuLJDQZ+BiVtB0Stg5r0Vs6BFMQiPHOI8q9Kq wUSgVaavEzaQqjL8kvsKVMefn32JKZ3HH8oMrsqF32Gvgj7UGexPS79gwQ764GWW VJOhoznu+Fq1TYMU9hs8MRB8MwpkVNthL11QyPBTq4gM7x/DIoaZBKnYkjJF5SwJ wpQn0/dpiectgJTP9PzZKn9P6teQpXA7TUYZm1g0di5V4iHf8xQZ/dc/XOU= -----END CERTIFICATE-----Generated at Sun May 11 14:45:16 2025 by rpki-client