$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa File: af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa (raw, json) Hash identifier: dcu90uOO53y+SINE4+FeCtYWJtVjAxgAZcRKbV1wXgw= Subject key identifier: 22:8C:7B:0F:12:51:EF:3E:3C:B2:E0:30:2D:1D:F2:0B:9E:A6:E0:BC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 207EECD16B00F3F55F104D4C4D1275A76520A38D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa Signing time: Sat 03 May 2025 00:51:45 +0000 ROA not before: Sat 03 May 2025 00:51:45 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:7e:ec:d1:6b:00:f3:f5:5f:10:4d:4c:4d:12:75:a7:65:20:a3:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:51:45 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=236df21f5eef0cf1e7196b2588e13de0d2b079171395de61a049ee2ced8bbb57, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e5:84:fc:be:e4:e2:c1:95:17:4c:cf:ac:c2: 80:65:d7:d0:9a:7d:91:69:11:9e:08:62:b4:a2:c0: 06:55:bc:fc:98:09:07:50:72:f9:04:49:32:95:36: 85:7a:ff:97:b7:64:15:d8:48:4a:eb:f9:d0:0c:21: 51:9e:26:3e:4e:ab:7c:59:d0:69:d8:33:80:26:1f: 70:fb:12:6f:72:c5:9b:48:28:3b:fd:fd:a2:92:19: 1a:22:a5:34:a9:da:9b:7a:a0:2a:42:28:b3:39:4d: 16:87:37:33:da:84:a6:bb:1b:a6:f4:15:14:3d:02: 07:5f:6e:00:44:08:90:d8:fd:e3:55:61:90:4f:65: c0:c3:3e:35:f6:99:e2:08:1c:fa:f7:ce:1b:a5:73: 52:7a:bc:be:62:40:4d:20:6d:ee:59:8a:23:5e:89: 89:04:4a:8c:72:c0:ce:11:47:4d:0c:7f:47:fb:98: 1b:5e:14:3c:de:4a:f5:af:fc:d0:9d:9f:40:6d:08: 96:aa:25:5d:3a:bd:c5:ea:7b:b0:9b:4e:13:02:fb: 03:36:d2:e1:45:5a:9b:e6:27:11:a5:45:02:b9:58: f0:ec:ab:ea:e9:df:e9:26:8d:58:64:99:1d:5b:e2: c5:b1:1a:f1:70:79:da:e0:0a:b1:36:5d:d1:a6:64: 5a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:8C:7B:0F:12:51:EF:3E:3C:B2:E0:30:2D:1D:F2:0B:9E:A6:E0:BC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af7a28ad-c2f9-435e-a8ee-e84639d006cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.138.0/24 Signature Algorithm: sha256WithRSAEncryption 84:62:7b:7e:c5:c0:af:a3:53:4e:0a:cb:d8:f0:fd:e0:69:36: ba:e5:bb:cd:51:d1:ed:35:f3:3f:5c:72:40:f3:6e:56:85:b4: 06:a0:94:ac:9a:99:6f:0a:8d:d4:94:61:46:45:a5:64:31:5b: 5a:74:3b:01:73:06:d4:9e:a6:02:a7:14:1c:d1:04:7d:e4:af: df:04:fb:c8:92:0f:65:2a:fd:3f:4a:45:a8:1d:89:71:2e:14: c7:ba:37:d6:07:e8:06:11:2e:a1:4e:ad:25:38:de:fd:52:85: 79:72:d6:dc:e1:49:ab:a4:87:60:1d:d7:90:8a:f0:eb:7a:d6: f2:f7:66:f3:0e:8f:2e:94:72:f9:d0:b9:f7:bb:d2:0d:57:a2: 7e:5f:ee:ea:60:9a:27:68:07:1d:68:b5:e9:e0:38:07:c2:48: 51:13:a8:d0:13:63:56:0c:46:f4:12:ca:cb:c2:e5:e3:b6:93: fa:aa:5d:cb:c7:96:18:cd:ba:92:6c:c1:cb:c2:a1:f7:6a:db: 59:fc:36:cd:38:c2:4c:f8:9e:4e:2c:ae:36:4f:a0:06:83:3c: 29:4f:2f:0f:f1:f3:5c:2f:35:2e:38:f4:5d:63:db:73:aa:be: f2:19:42:93:04:2e:ef:83:10:07:15:69:60:f1:07:53:b7:9e: ca:ae:4c:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIH7s0WsA8/VfEE1MTRJ1p2Ugo40wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA1MTQ1WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzZkZjIxZjVlZWYwY2YxZTcxOTZiMjU4OGUxM2RlMGQy YjA3OTE3MTM5NWRlNjFhMDQ5ZWUyY2VkOGJiYjU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO5YT8vuTiwZUXTM+swoBl19CafZFpEZ4IYrSiwAZVvPyY CQdQcvkESTKVNoV6/5e3ZBXYSErr+dAMIVGeJj5Oq3xZ0GnYM4AmH3D7Em9yxZtI KDv9/aKSGRoipTSp2pt6oCpCKLM5TRaHNzPahKa7G6b0FRQ9AgdfbgBECJDY/eNV YZBPZcDDPjX2meIIHPr3zhulc1J6vL5iQE0gbe5ZiiNeiYkESoxywM4RR00Mf0f7 mBteFDzeSvWv/NCdn0BtCJaqJV06vcXqe7CbThMC+wM20uFFWpvmJxGlRQK5WPDs q+rp3+kmjVhkmR1b4sWxGvFwedrgCrE2XdGmZFpfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIox7DxJR7z48suAwLR3yC56m4LwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmN2EyOGFkLWMyZjktNDM1ZS1hOGVlLWU4NDYzOWQwMDZjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYowDQYJKoZIhvcNAQELBQADggEBAIRie37FwK+jU04Ky9jw/eBpNrrl u81R0e018z9cckDzblaFtAaglKyamW8KjdSUYUZFpWQxW1p0OwFzBtSepgKnFBzR BH3kr98E+8iSD2Uq/T9KRagdiXEuFMe6N9YH6AYRLqFOrSU43v1ShXly1tzhSauk h2Ad15CK8Ot61vL3ZvMOjy6UcvnQufe70g1Xon5f7upgmidoBx1otengOAfCSFET qNATY1YMRvQSysvC5eO2k/qqXcvHlhjNupJswcvCofdq21n8Ns04wkz4nk4srjZP oAaDPClPLw/x81wvNS449F1j23OqvvIZQpMELu+DEAcVaWDxB1O3nsquTBU= -----END CERTIFICATE-----Generated at Sat May 10 13:23:28 2025 by rpki-client