$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa File: cffa990e-6fc2-4b61-89ad-172287c16758.roa (raw, json) Hash identifier: 42cYRo+GHSkN0iURXPign0TJRtzAjrQ4XE1KevTIJA8= Subject key identifier: B8:56:CC:8E:6A:66:2C:43:1D:7F:48:75:40:13:9E:E2:41:6F:33:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 10FFE1689CF7740ACD4708D7A5FF678E176257A9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa Signing time: Mon 28 Apr 2025 15:30:21 +0000 ROA not before: Mon 28 Apr 2025 15:30:21 +0000 ROA not after: Mon 02 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 77.122.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:ff:e1:68:9c:f7:74:0a:cd:47:08:d7:a5:ff:67:8e:17:62:57:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 15:30:21 2025 GMT Not After : Jun 2 23:59:59 2025 GMT Subject: serialNumber=a0db9c4054055f3fdfdb476a8a4f8ce0a238a553ec2fa0c88c5a1a66755a0527, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dc:95:a1:18:ff:43:ed:98:2a:5c:03:a6:ff: 43:9c:0a:bf:5f:58:12:2d:08:4d:31:ea:04:6d:15: 85:f2:72:d7:b0:ed:b4:00:89:4d:3a:ff:f7:fe:cc: 1a:46:4a:69:4f:af:33:f3:bb:cc:ca:8e:15:ab:6f: 7a:2b:ee:ae:6e:db:40:71:a3:6c:78:8b:98:84:e2: 02:16:a8:c5:db:6e:4e:66:60:b6:ab:33:a8:8e:b6: 69:e0:f1:6a:a1:12:86:74:cb:5a:8a:b0:3f:e2:cf: 5f:a1:ce:f9:c9:5e:28:ee:b0:d0:4f:2c:fb:30:b2: 8c:b9:7d:7e:e8:6e:4d:da:59:ad:08:87:f2:d7:5e: fc:f4:30:18:4f:ce:53:68:05:49:e1:1a:14:33:03: a4:05:92:ae:d2:03:18:9a:9a:34:70:11:09:b0:c6: 47:89:ed:7f:04:30:2f:d3:1b:90:35:13:a7:3f:11: 4d:da:21:64:2e:f5:c9:42:9e:89:54:ba:45:7e:b7: 0e:88:ca:cc:0c:3d:20:f5:9f:61:72:f2:40:a0:6a: 0a:96:02:b8:29:30:05:13:86:cf:9e:b8:a5:07:85: ec:c3:36:48:41:ed:5c:3b:ab:31:e2:f4:d9:54:a3: d6:77:e3:95:7c:18:84:9f:ad:37:39:0b:a7:50:28: 78:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:56:CC:8E:6A:66:2C:43:1D:7F:48:75:40:13:9E:E2:41:6F:33:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.122.0.0/16 Signature Algorithm: sha256WithRSAEncryption b1:77:94:20:a7:c8:19:db:eb:80:24:55:c2:41:1d:0a:92:80: 74:2e:7b:95:20:88:3a:74:8a:d6:ac:20:78:8c:46:39:7e:fe: 49:cf:c4:46:2f:1c:40:69:f4:8d:ea:32:c8:2a:95:6d:c7:47: 62:ba:2c:5a:ce:e0:3f:21:24:43:6f:a5:39:d4:bd:39:53:8e: cd:15:16:d4:4a:e6:a3:cf:e3:52:c8:db:a8:fc:30:63:98:35: 2f:7d:4c:88:0b:2f:4d:17:27:6b:fb:fd:bb:10:ef:ca:f4:38: b5:08:fa:f8:e5:62:59:9a:33:03:d7:4b:b0:0a:09:d1:47:46: 5a:70:5d:d2:6c:b2:34:a5:70:32:c5:8e:79:41:9f:1c:83:16: 31:b3:7d:ce:91:90:df:26:2d:54:31:e3:a6:4f:30:8a:92:02: eb:01:80:b2:db:66:a6:88:27:1d:b5:51:d1:9b:fb:97:df:52: 31:5f:38:d6:5e:98:03:b4:ff:d0:bb:19:52:8a:49:33:30:61: 10:04:89:7a:24:fc:26:da:8b:51:22:64:67:af:48:a9:2a:15: 33:43:0d:59:a1:5b:61:2a:c1:03:c2:f1:f3:1c:84:04:9f:38: 98:ff:92:72:74:d1:b8:8e:5d:3e:d1:19:bd:47:71:0b:32:b7: 5c:e7:c8:5d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEP/haJz3dArNRwjXpf9njhdiV6kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI4MTUzMDIxWhcNMjUwNjAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMGRiOWM0MDU0MDU1ZjNmZGZkYjQ3NmE4YTRmOGNlMGEy MzhhNTUzZWMyZmEwYzg4YzVhMWE2Njc1NWEwNTI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO3JWhGP9D7ZgqXAOm/0OcCr9fWBItCE0x6gRtFYXyctew 7bQAiU06//f+zBpGSmlPrzPzu8zKjhWrb3or7q5u20Bxo2x4i5iE4gIWqMXbbk5m YLarM6iOtmng8WqhEoZ0y1qKsD/iz1+hzvnJXijusNBPLPswsoy5fX7obk3aWa0I h/LXXvz0MBhPzlNoBUnhGhQzA6QFkq7SAxiamjRwEQmwxkeJ7X8EMC/TG5A1E6c/ EU3aIWQu9clCnolUukV+tw6IyswMPSD1n2Fy8kCgagqWArgpMAUThs+euKUHhezD NkhB7Vw7qzHi9NlUo9Z345V8GISfrTc5C6dQKHj7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUuFbMjmpmLEMdf0h1QBOe4kFvMycwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmZmE5OTBlLTZmYzItNGI2MS04OWFkLTE3MjI4N2MxNjc1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBNejANBgkqhkiG9w0BAQsFAAOCAQEAsXeUIKfIGdvrgCRVwkEdCpKAdC57 lSCIOnSK1qwgeIxGOX7+Sc/ERi8cQGn0jeoyyCqVbcdHYrosWs7gPyEkQ2+lOdS9 OVOOzRUW1Ermo8/jUsjbqPwwY5g1L31MiAsvTRcna/v9uxDvyvQ4tQj6+OViWZoz A9dLsAoJ0UdGWnBd0myyNKVwMsWOeUGfHIMWMbN9zpGQ3yYtVDHjpk8wipIC6wGA sttmpognHbVR0Zv7l99SMV841l6YA7T/0LsZUopJMzBhEASJeiT8JtqLUSJkZ69I qSoVM0MNWaFbYSrBA8Lx8xyEBJ84mP+ScnTRuI5dPtEZvUdxCzK3XOfIXQ== -----END CERTIFICATE-----Generated at Mon May 12 18:55:38 2025 by rpki-client