$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b050e21b-38ce-445b-9e45-ef4e4384cc13.roa File: b050e21b-38ce-445b-9e45-ef4e4384cc13.roa (raw, json) Hash identifier: hEq9/knBJyHDINLOY/P1hI42Po6pY42zKhNC9HkKrWU= Subject key identifier: 86:11:2B:96:3E:DF:D6:2D:7A:27:7C:37:8D:3D:0A:A1:CF:29:84:91 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 45CDA7E149E8635841DE66B95DE7BAA42E6EF571 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b050e21b-38ce-445b-9e45-ef4e4384cc13.roa Signing time: Sat 10 May 2025 00:32:00 +0000 ROA not before: Sat 10 May 2025 00:32:00 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:cd:a7:e1:49:e8:63:58:41:de:66:b9:5d:e7:ba:a4:2e:6e:f5:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:32:00 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=d410357106812dcf63fe573e84af6390530824407f187421a23db4a0d5b9b002, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:61:a8:7e:c1:0f:cb:e4:6e:c2:c0:3c:b6:c2: 5e:ac:9c:ce:4f:7a:ec:e7:86:da:58:a9:4f:2a:42: 0d:94:62:58:09:f1:22:28:49:9c:7f:ea:3b:7a:9e: 9d:21:fa:68:04:b8:c3:71:50:36:23:65:f6:4c:7e: b7:f7:d1:2c:6b:14:88:db:01:ab:f2:42:6b:bf:32: 4f:60:2a:99:24:ba:82:52:28:76:fb:4a:c6:d3:f6: 3a:7c:f6:b3:83:4b:6e:8b:c3:1a:2d:e5:f1:d9:5c: d3:a3:27:e7:ae:78:8e:5c:c8:c3:b2:7d:f3:f5:85: 1a:16:87:29:58:63:34:3d:0f:03:5f:bd:2d:a6:be: 25:b5:cb:2d:26:72:44:fa:36:74:15:37:c2:4f:36: 7a:fd:51:5f:e6:ed:12:76:2b:4f:1e:32:e7:60:8d: a7:aa:95:b1:a6:65:0f:b8:35:41:db:70:8f:70:45: c0:38:23:94:48:02:0d:75:ce:09:ba:53:9b:61:d8: 1e:bb:79:12:a0:11:16:3c:d0:6f:08:f2:0f:0e:49: 6f:dc:18:31:cc:16:ba:f0:7e:bb:39:cf:39:f3:d0: ec:38:a3:08:85:1a:93:22:cf:28:70:d2:9b:89:84: b3:1b:4e:57:06:20:01:37:a1:4b:d3:dc:84:9c:80: 03:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:11:2B:96:3E:DF:D6:2D:7A:27:7C:37:8D:3D:0A:A1:CF:29:84:91 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b050e21b-38ce-445b-9e45-ef4e4384cc13.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.64.0/21 Signature Algorithm: sha256WithRSAEncryption bc:bc:fa:ce:48:42:6f:aa:2c:d2:57:fb:4a:6d:cd:ac:60:f4: 20:19:b0:22:7e:7d:54:03:fa:ac:94:eb:20:6f:1d:34:28:bf: 09:c2:1f:6d:dd:4a:be:0b:76:b8:43:5f:8a:f4:9f:dd:3d:71: b1:47:36:a6:ce:31:bd:3c:da:74:da:94:3f:84:c1:05:ed:d6: ec:05:90:19:bf:e1:a9:b8:25:9f:db:82:69:f7:b7:06:65:d2: 8b:53:7d:ae:9c:6d:03:5d:81:ab:d2:34:9f:f6:c3:f7:93:1d: 58:5f:8f:c9:af:a9:03:0e:98:0a:62:03:a5:2a:1f:86:54:a7: ac:62:d0:b5:f8:0b:32:9c:23:d1:71:6f:3d:e2:02:8b:f1:20: a9:91:56:ab:69:68:c7:72:8a:ba:b8:ff:3f:88:18:73:4b:1f: 4a:20:1f:56:3f:b8:c4:17:f1:3d:1e:91:d2:69:dd:de:15:26: d1:26:89:62:05:38:46:6e:a9:35:d1:a1:f3:91:19:a6:1d:28: 3b:77:13:15:63:c4:f6:1d:95:a0:db:15:20:93:de:2c:30:68: b2:de:df:7f:8b:22:41:af:e9:38:27:1d:ff:23:22:c2:92:c3: a4:c2:06:e2:97:9d:cd:11:72:1a:ee:c1:77:36:8b:d5:85:90: 0d:de:8b:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURc2n4UnoY1hB3ma5Xee6pC5u9XEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDAzMjAwWhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDEwMzU3MTA2ODEyZGNmNjNmZTU3M2U4NGFmNjM5MDUz MDgyNDQwN2YxODc0MjFhMjNkYjRhMGQ1YjliMDAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyYah+wQ/L5G7CwDy2wl6snM5PeuznhtpYqU8qQg2UYlgJ 8SIoSZx/6jt6np0h+mgEuMNxUDYjZfZMfrf30SxrFIjbAavyQmu/Mk9gKpkkuoJS KHb7SsbT9jp89rODS26Lwxot5fHZXNOjJ+eueI5cyMOyffP1hRoWhylYYzQ9DwNf vS2mviW1yy0mckT6NnQVN8JPNnr9UV/m7RJ2K08eMudgjaeqlbGmZQ+4NUHbcI9w RcA4I5RIAg11zgm6U5th2B67eRKgERY80G8I8g8OSW/cGDHMFrrwfrs5zznz0Ow4 owiFGpMizyhw0puJhLMbTlcGIAE3oUvT3IScgAOHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhhErlj7f1i16J3w3jT0Koc8phJEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IwNTBlMjFiLTM4Y2UtNDQ1Yi05ZTQ1LWVmNGU0Mzg0Y2MxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjlkAwDQYJKoZIhvcNAQELBQADggEBALy8+s5IQm+qLNJX+0ptzaxg9CAZ sCJ+fVQD+qyU6yBvHTQovwnCH23dSr4LdrhDX4r0n909cbFHNqbOMb082nTalD+E wQXt1uwFkBm/4am4JZ/bgmn3twZl0otTfa6cbQNdgavSNJ/2w/eTHVhfj8mvqQMO mApiA6UqH4ZUp6xi0LX4CzKcI9Fxbz3iAovxIKmRVqtpaMdyirq4/z+IGHNLH0og H1Y/uMQX8T0ekdJp3d4VJtEmiWIFOEZuqTXRofORGaYdKDt3ExVjxPYdlaDbFSCT 3iwwaLLe33+LIkGv6TgnHf8jIsKSw6TCBuKXnc0RchruwXc2i9WFkA3ei6g= -----END CERTIFICATE-----Generated at Tue May 13 04:56:51 2025 by rpki-client