$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa File: c59f8dc7-041e-43d0-86e8-47f290f42602.roa (raw, json) Hash identifier: 1Mnw3HRojROiF1e7sLi04SqLTJkjuG2ovuq80sv5XPM= Subject key identifier: C4:09:8D:46:E6:9D:78:27:88:30:E6:92:3E:09:09:A5:1D:6A:95:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43FA9F937E3B1A19BE85718FF1C2CA774EAC24DE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa Signing time: Sat 03 May 2025 00:51:01 +0000 ROA not before: Sat 03 May 2025 00:51:01 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.82.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:fa:9f:93:7e:3b:1a:19:be:85:71:8f:f1:c2:ca:77:4e:ac:24:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:51:01 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=71ac2f67991dfc1d9362ca8e04c93454a41c41bef0dc94cdcd8da2882e57c79d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:45:2c:18:e1:90:4f:29:94:f2:da:b4:fd:bc: ca:f1:4a:d9:7f:31:df:bc:68:ce:35:0d:dc:11:93: 27:56:71:e7:9d:a7:41:de:5d:01:21:bd:0d:17:cf: 2b:d3:e3:30:be:6c:a9:66:7d:ae:41:e6:8a:85:63: e3:ef:1e:3c:52:1e:d9:71:07:89:6e:f6:e5:05:e3: 8f:46:bf:71:cc:d9:31:df:61:29:ff:b4:7e:9c:49: c6:b1:f4:e0:b1:c7:12:68:4e:fe:ce:36:5f:74:eb: da:80:42:c4:8d:c9:cb:14:ab:2f:0c:97:aa:ee:39: 98:ab:37:a3:26:ad:df:ec:5b:07:47:9f:10:5b:52: 93:3f:cf:1f:c7:03:41:fb:a1:2e:a6:82:35:94:db: a7:f6:08:e9:5e:aa:f8:a9:6b:2e:b4:cb:ef:85:a2: 43:a8:46:70:99:00:27:eb:aa:8c:da:7b:9e:9b:28: 65:67:c3:f1:aa:3a:ef:06:71:0b:10:f9:dd:be:fb: 66:d5:51:63:30:77:dd:d1:74:1b:fd:89:5a:f5:e6: d6:b4:64:a9:88:42:b1:29:3d:03:08:96:a6:1b:c8: 64:7c:02:70:44:0c:a1:15:ca:0d:ca:92:3a:da:2d: 94:b4:9e:87:72:24:d7:69:8f:bb:c1:0b:f2:6d:16: 74:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:09:8D:46:E6:9D:78:27:88:30:E6:92:3E:09:09:A5:1D:6A:95:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.82.0.0/17 Signature Algorithm: sha256WithRSAEncryption 8c:ce:bc:ab:de:d3:83:ca:fe:40:21:0b:a8:a9:48:a8:96:0a: 30:a1:d1:9b:90:13:2e:fe:f2:55:eb:2f:36:b1:1c:04:e2:e6: 46:50:0f:c5:d2:bd:72:0e:18:fb:cc:58:78:c0:9b:92:f5:7d: ad:4e:2b:27:c0:b7:43:a1:c1:3a:bf:bf:93:43:bb:00:1d:1c: 02:a5:48:5e:e7:5c:bb:aa:e5:09:68:52:1b:0c:b1:c0:7f:76: f1:5c:41:0e:df:b9:16:f8:20:10:86:6e:ef:3e:d1:86:bb:eb: 99:85:c9:40:5c:ac:5e:9c:fc:dd:92:90:dc:80:b0:27:91:67: 25:0d:72:24:d9:aa:ff:87:5e:eb:59:d5:00:cf:f9:54:03:a4: ef:6a:a8:41:8a:e7:0a:3a:12:4f:c7:79:a8:08:be:30:57:ff: 5b:2a:2a:a5:f5:ab:fa:ec:71:89:6d:3a:8c:fb:83:67:d5:54: 34:98:ce:62:97:64:fa:ca:4e:b2:f2:d0:21:aa:98:d6:0d:da: d9:a1:e9:a7:61:41:da:78:eb:45:10:a3:b7:f3:5a:5f:a1:5a: 91:fd:6a:44:5d:f0:29:f9:18:84:49:44:da:92:3b:a7:f2:21: d1:4d:02:aa:be:63:02:58:71:f6:cb:92:f1:78:9a:83:c7:a2: 67:13:bc:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ/qfk347Ghm+hXGP8cLKd06sJN4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA1MTAxWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWFjMmY2Nzk5MWRmYzFkOTM2MmNhOGUwNGM5MzQ1NGE0 MWM0MWJlZjBkYzk0Y2RjZDhkYTI4ODJlNTdjNzlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtRSwY4ZBPKZTy2rT9vMrxStl/Md+8aM41DdwRkydWceed p0HeXQEhvQ0XzyvT4zC+bKlmfa5B5oqFY+PvHjxSHtlxB4lu9uUF449Gv3HM2THf YSn/tH6cScax9OCxxxJoTv7ONl9069qAQsSNycsUqy8Ml6ruOZirN6Mmrd/sWwdH nxBbUpM/zx/HA0H7oS6mgjWU26f2COleqvipay60y++FokOoRnCZACfrqozae56b KGVnw/GqOu8GcQsQ+d2++2bVUWMwd93RdBv9iVr15ta0ZKmIQrEpPQMIlqYbyGR8 AnBEDKEVyg3KkjraLZS0nodyJNdpj7vBC/JtFnTZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxAmNRuadeCeIMOaSPgkJpR1qlR0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1OWY4ZGM3LTA0MWUtNDNkMC04NmU4LTQ3ZjI5MGY0MjYwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjUgAwDQYJKoZIhvcNAQELBQADggEBAIzOvKve04PK/kAhC6ipSKiWCjCh 0ZuQEy7+8lXrLzaxHATi5kZQD8XSvXIOGPvMWHjAm5L1fa1OKyfAt0OhwTq/v5ND uwAdHAKlSF7nXLuq5QloUhsMscB/dvFcQQ7fuRb4IBCGbu8+0Ya765mFyUBcrF6c /N2SkNyAsCeRZyUNciTZqv+HXutZ1QDP+VQDpO9qqEGK5wo6Ek/HeagIvjBX/1sq KqX1q/rscYltOoz7g2fVVDSYzmKXZPrKTrLy0CGqmNYN2tmh6adhQdp460UQo7fz Wl+hWpH9akRd8Cn5GIRJRNqSO6fyIdFNAqq+YwJYcfbLkvF4moPHomcTvA0= -----END CERTIFICATE-----Generated at Sat May 10 07:38:21 2025 by rpki-client