$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3275665-17d9-4bb2-8f2d-df1421f7adfe.roa File: a3275665-17d9-4bb2-8f2d-df1421f7adfe.roa (raw, json) Hash identifier: oNRgYKr0eAut1/NCLwDsUjXDElUI/A6J6MzKTpGeDR8= Subject key identifier: 81:AF:BE:44:7C:39:17:69:B5:7B:29:2D:86:EA:7A:01:FF:27:DC:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B3B517956C08A537E77A311837645F7B43CD84A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3275665-17d9-4bb2-8f2d-df1421f7adfe.roa Signing time: Mon 05 May 2025 15:42:00 +0000 ROA not before: Mon 05 May 2025 15:42:00 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:3b:51:79:56:c0:8a:53:7e:77:a3:11:83:76:45:f7:b4:3c:d8:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:42:00 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=b0b708c3a37c5eb5986b352665d0125ca74ffe281aa000d94992eb191c5aeee4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8d:de:32:70:5c:b7:2c:86:16:b4:cc:90:11: ed:ab:01:cb:42:fa:ed:d2:04:9a:1c:ae:6c:ea:5e: 07:48:dd:bf:e6:c8:f9:d3:18:2c:99:1e:b2:6c:d7: 76:e4:d4:94:5f:27:65:60:1a:d7:de:ce:4a:cf:5a: f9:7e:62:6c:50:cd:1a:df:17:cc:7d:eb:39:6c:9e: 92:f5:e6:92:c2:e1:8c:71:42:df:b6:c0:03:5a:37: 88:ed:52:ef:17:f9:46:5b:3a:3c:36:9a:7a:54:c3: 57:40:ca:a0:c8:2d:c8:39:f7:36:0b:a3:68:11:ef: ba:fa:82:71:64:b0:93:96:f6:ec:15:8b:21:e7:af: b3:85:8a:e3:2c:5a:11:0a:c7:d7:29:65:ec:4d:f9: 56:f9:f0:3e:23:b9:07:cf:19:e4:b8:0a:d3:17:ac: 08:69:40:4f:c5:20:a9:d6:ad:58:c5:a3:b8:a9:a4: 09:e2:c4:e9:30:25:4c:d0:73:d3:fe:3f:7e:ad:85: a6:48:d8:ca:c3:b8:62:b4:42:8f:4b:51:fb:62:31: 10:05:09:f4:fd:20:4c:37:15:c8:74:90:a2:ee:92: c8:7b:dc:88:08:78:79:9a:23:60:92:ce:f5:d7:59: 2d:ec:fa:e2:27:17:6b:f1:27:47:88:5e:5f:ae:64: df:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:AF:BE:44:7C:39:17:69:B5:7B:29:2D:86:EA:7A:01:FF:27:DC:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3275665-17d9-4bb2-8f2d-df1421f7adfe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.191.0/24 Signature Algorithm: sha256WithRSAEncryption d1:2a:35:95:67:81:17:40:90:c0:49:a5:25:02:d4:2c:84:3b: 9f:82:5b:59:d7:57:4c:ea:07:e1:8a:3f:25:40:30:a4:0a:52: a4:e5:71:31:5b:45:f4:50:97:35:c1:eb:56:b3:17:03:03:69: b2:52:97:ec:2b:58:94:d4:18:96:fc:c3:63:e7:f1:e4:99:27: b1:dc:38:03:d8:8d:f3:39:bf:e7:d0:ea:69:73:fd:f7:3f:0f: a0:80:cf:1b:ae:b4:fa:08:3d:3c:cf:df:9b:2a:a1:18:ba:cc: 7c:65:8b:ad:68:90:f1:ee:fa:2a:27:9b:39:0c:81:51:67:0a: c3:b0:33:a8:9c:39:23:26:bb:a7:69:2a:91:65:7d:cf:8e:75: 3c:9f:fe:e7:bd:63:ea:d8:66:f7:2c:4e:30:37:ab:1c:1e:42: 5b:50:36:ba:93:9f:50:11:98:e9:7e:d4:52:56:b8:4b:6c:30: f2:17:9e:6c:e7:56:ae:44:20:c2:34:49:af:63:3b:1b:e2:10: c6:69:15:ff:21:f7:00:ba:a0:e4:be:d8:4b:0e:8d:15:eb:24: d1:ff:57:f5:52:d9:78:78:84:3a:53:6f:f6:5b:b2:fe:77:b5: 0f:33:a4:c2:e4:bf:39:da:1a:df:ef:51:d5:b4:9a:89:7c:c7: 4d:80:cf:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSztReVbAilN+d6MRg3ZF97Q82EowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTU0MjAwWhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMGI3MDhjM2EzN2M1ZWI1OTg2YjM1MjY2NWQwMTI1Y2E3 NGZmZTI4MWFhMDAwZDk0OTkyZWIxOTFjNWFlZWU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0jd4ycFy3LIYWtMyQEe2rActC+u3SBJocrmzqXgdI3b/m yPnTGCyZHrJs13bk1JRfJ2VgGtfezkrPWvl+YmxQzRrfF8x96zlsnpL15pLC4Yxx Qt+2wANaN4jtUu8X+UZbOjw2mnpUw1dAyqDILcg59zYLo2gR77r6gnFksJOW9uwV iyHnr7OFiuMsWhEKx9cpZexN+Vb58D4juQfPGeS4CtMXrAhpQE/FIKnWrVjFo7ip pAnixOkwJUzQc9P+P36thaZI2MrDuGK0Qo9LUftiMRAFCfT9IEw3Fch0kKLuksh7 3IgIeHmaI2CSzvXXWS3s+uInF2vxJ0eIXl+uZN/VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUga++RHw5F2m1eykthup6Af8n3GEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzMjc1NjY1LTE3ZDktNGJiMi04ZjJkLWRmMTQyMWY3YWRmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTb8wDQYJKoZIhvcNAQELBQADggEBANEqNZVngRdAkMBJpSUC1CyEO5+C W1nXV0zqB+GKPyVAMKQKUqTlcTFbRfRQlzXB61azFwMDabJSl+wrWJTUGJb8w2Pn 8eSZJ7HcOAPYjfM5v+fQ6mlz/fc/D6CAzxuutPoIPTzP35sqoRi6zHxli61okPHu +ionmzkMgVFnCsOwM6icOSMmu6dpKpFlfc+OdTyf/ue9Y+rYZvcsTjA3qxweQltQ NrqTn1ARmOl+1FJWuEtsMPIXnmznVq5EIMI0Sa9jOxviEMZpFf8h9wC6oOS+2EsO jRXrJNH/V/VS2Xh4hDpTb/Zbsv53tQ8zpMLkvznaGt/vUdW0mol8x02Azxk= -----END CERTIFICATE-----Generated at Sat May 10 13:56:19 2025 by rpki-client