$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d63cd7b-5f9f-40bd-a7d4-e2a1d5ca5822.roa File: 9d63cd7b-5f9f-40bd-a7d4-e2a1d5ca5822.roa (raw, json) Hash identifier: BWQ24WrxwWcReyezHhvOChAGJoAf8m06QNZW8CApYrs= Subject key identifier: 94:8D:0C:53:25:2E:D0:22:C2:31:8F:E2:D3:8B:E0:98:59:62:33:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 687FF24FFAE7744002FFD4E2FCF1E37757B4DAF8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d63cd7b-5f9f-40bd-a7d4-e2a1d5ca5822.roa Signing time: Tue 15 Apr 2025 00:32:11 +0000 ROA not before: Tue 15 Apr 2025 00:32:11 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 07 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:7f:f2:4f:fa:e7:74:40:02:ff:d4:e2:fc:f1:e3:77:57:b4:da:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:32:11 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=34f8e55a3bdabc8b26b248f56b4d86fbe10b4553a6afcab23bec5e44a2216e5a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f9:df:bc:0e:38:52:00:19:39:93:52:4c:ff: 2e:87:5d:48:ea:52:55:92:f8:d1:aa:9c:04:0f:84: 71:fe:2a:eb:12:f3:4b:b1:4d:b5:23:46:93:a7:34: 1d:18:66:ee:57:9a:70:8f:2c:f6:04:46:85:92:51: f1:30:dc:6a:14:6c:6d:2b:11:ef:83:f4:e0:6e:3f: e9:c2:81:8e:72:e3:16:57:06:c6:e3:55:b7:8f:49: f4:5c:d1:2a:e2:41:38:83:db:72:34:a8:10:f6:92: 7b:51:7c:6b:c9:d6:af:8d:e5:fd:68:4f:58:af:a8: a8:31:96:1c:9d:ac:c6:f1:ca:c9:c4:a3:76:95:8d: 39:0c:bd:5a:26:38:7b:9f:b2:d3:a5:d7:a9:45:24: d1:36:79:57:45:95:47:3f:b6:cb:93:f8:8a:80:b9: c7:d7:0f:33:35:7c:2e:43:1e:b3:67:77:28:60:e9: 13:7f:64:91:77:df:24:e3:a3:35:ea:95:3a:a1:58: b8:65:69:e8:75:24:f1:09:f1:05:35:3b:ad:10:c4: 24:6d:3b:01:87:85:5c:cc:64:02:b3:1d:9d:65:ee: d6:63:72:4a:02:a3:04:a5:64:be:ff:f5:f5:10:18: 4f:28:0d:dc:bb:90:cd:aa:b1:aa:37:34:d1:ff:3c: 8e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:8D:0C:53:25:2E:D0:22:C2:31:8F:E2:D3:8B:E0:98:59:62:33:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d63cd7b-5f9f-40bd-a7d4-e2a1d5ca5822.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.128.0/21 Signature Algorithm: sha256WithRSAEncryption 27:b4:50:d6:af:e7:32:5c:50:88:35:aa:9e:0e:25:24:0a:6a: a4:41:2b:db:a5:79:34:b2:07:7c:e6:be:67:f3:c9:d5:8d:78: 32:a2:7e:02:ce:85:e6:3b:c2:01:3a:0e:14:37:c5:c4:6b:0c: 29:d5:01:a6:7a:02:94:51:f2:dc:e3:1d:c4:8d:20:fd:cf:7e: 82:a7:9d:f0:d6:41:78:fc:d2:f1:ab:bb:26:92:57:70:a5:11: 50:e1:18:e3:41:f0:ca:ce:52:44:c6:44:c1:85:c0:b7:5e:26: c7:19:8b:8b:c7:84:5a:5b:81:d9:2a:b0:a7:fb:9e:0a:37:76: 3e:cb:bb:a4:d0:e2:73:23:f1:5a:4b:b0:f0:f7:8c:1e:e1:3f: 4e:90:8a:d5:35:5c:0b:de:7c:b7:c7:ea:98:ac:37:c5:85:8b: a6:35:ab:09:48:92:a8:93:ad:1c:54:90:ec:66:40:32:1f:41: 19:64:3d:44:06:59:bf:c7:19:c4:a6:bd:6c:45:4c:d8:78:7e: 27:e9:fe:0b:14:da:82:cb:2f:db:7d:84:9c:8e:ce:75:a3:f5: 52:8e:13:23:e4:62:93:ca:4f:60:20:1c:82:aa:fc:47:fd:a9: ab:3e:d2:f4:76:6c:6b:4f:a5:70:ee:5b:ac:04:71:4c:80:58: 6a:fe:33:5d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaH/yT/rndEAC/9Ti/PHjd1e02vgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAzMjExWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNGY4ZTU1YTNiZGFiYzhiMjZiMjQ4ZjU2YjRkODZmYmUx MGI0NTUzYTZhZmNhYjIzYmVjNWU0NGEyMjE2ZTVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDL+d+8DjhSABk5k1JM/y6HXUjqUlWS+NGqnAQPhHH+KusS 80uxTbUjRpOnNB0YZu5XmnCPLPYERoWSUfEw3GoUbG0rEe+D9OBuP+nCgY5y4xZX BsbjVbePSfRc0SriQTiD23I0qBD2kntRfGvJ1q+N5f1oT1ivqKgxlhydrMbxysnE o3aVjTkMvVomOHufstOl16lFJNE2eVdFlUc/tsuT+IqAucfXDzM1fC5DHrNndyhg 6RN/ZJF33yTjozXqlTqhWLhlaeh1JPEJ8QU1O60QxCRtOwGHhVzMZAKzHZ1l7tZj ckoCowSlZL7/9fUQGE8oDdy7kM2qsao3NNH/PI4xAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlI0MUyUu0CLCMY/i04vgmFliM2IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkNjNjZDdiLTVmOWYtNDBiZC1hN2Q0LWUyYTFkNWNhNTgyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl4AwDQYJKoZIhvcNAQELBQADggEBACe0UNav5zJcUIg1qp4OJSQKaqRB K9uleTSyB3zmvmfzydWNeDKifgLOheY7wgE6DhQ3xcRrDCnVAaZ6ApRR8tzjHcSN IP3PfoKnnfDWQXj80vGruyaSV3ClEVDhGONB8MrOUkTGRMGFwLdeJscZi4vHhFpb gdkqsKf7ngo3dj7Lu6TQ4nMj8VpLsPD3jB7hP06QitU1XAvefLfH6pisN8WFi6Y1 qwlIkqiTrRxUkOxmQDIfQRlkPUQGWb/HGcSmvWxFTNh4fifp/gsU2oLLL9t9hJyO znWj9VKOEyPkYpPKT2AgHIKq/Ef9qas+0vR2bGtPpXDuW6wEcUyAWGr+M10= -----END CERTIFICATE-----Generated at Mon May 5 15:50:25 2025 by rpki-client