$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0253c6b-0ad3-46f5-bb41-d219105c7dc3.roa File: d0253c6b-0ad3-46f5-bb41-d219105c7dc3.roa (raw, json) Hash identifier: 7QJYyxS6m/Qs59t5vPSoe1u6pRcaq/b5j39+xUJ3EIQ= Subject key identifier: F9:FF:05:D6:1F:FC:E1:1E:CC:0B:63:D8:D0:62:33:BE:37:6F:7F:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B43904C2FD61E13687CD7D38551F28150D01FDB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0253c6b-0ad3-46f5-bb41-d219105c7dc3.roa Signing time: Sat 10 May 2025 00:40:51 +0000 ROA not before: Sat 10 May 2025 00:40:51 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:43:90:4c:2f:d6:1e:13:68:7c:d7:d3:85:51:f2:81:50:d0:1f:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:40:51 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=d5706fce007895eeebd234f21101d175ee99609df9efba9ef9f842466375cf66, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6b:fb:93:19:20:c2:23:66:9f:08:44:8d:7e: 61:cc:7a:6f:4a:bb:8a:00:35:64:ec:84:28:ea:1e: 8e:21:d0:34:fc:96:ac:d2:cf:c5:6a:4d:7e:b8:d7: 61:83:06:48:d3:0c:ca:34:55:be:9b:ee:f4:bc:ac: 2e:ec:6a:a7:c2:35:04:a3:34:21:3d:7d:5d:8b:a3: b4:13:b6:f5:41:63:da:57:68:f7:e9:22:54:d6:a3: c2:7c:01:97:d4:9b:1b:88:38:0f:90:d5:32:57:11: 6b:4f:f9:97:04:66:d2:af:3a:99:9a:90:bb:4f:7b: 19:01:a9:81:8e:d3:33:0c:92:f2:1d:94:2b:51:d3: ef:cc:46:3c:67:e0:d5:73:1a:7a:69:0d:a6:07:74: bb:20:19:46:5e:a6:41:8d:d9:0f:38:51:fb:8c:7d: c9:c7:10:ae:ea:9a:d6:0c:a5:65:9c:e4:cf:fc:20: 42:45:9b:15:5a:e6:6b:c8:7e:9e:16:6d:f1:27:85: b5:df:fa:4b:d3:9b:71:9d:f5:45:18:e9:f4:9b:ec: ca:ab:03:fd:e0:67:f8:24:af:78:5e:f1:12:0b:19: a8:cd:75:31:2d:d6:45:d7:d2:45:8e:95:80:a6:be: c9:ea:d2:c7:71:e7:2e:5c:8a:d9:c2:6f:cf:25:31: f6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:FF:05:D6:1F:FC:E1:1E:CC:0B:63:D8:D0:62:33:BE:37:6F:7F:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0253c6b-0ad3-46f5-bb41-d219105c7dc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.88.0/21 Signature Algorithm: sha256WithRSAEncryption 91:5d:a3:8c:87:90:ba:d1:c2:b5:4a:88:23:0b:d1:04:cc:9c: 3f:22:06:e8:6d:db:ab:23:89:bf:6c:d0:21:bf:62:de:f0:2b: 8e:d2:9d:a3:82:6c:1b:36:be:b5:81:c1:f3:be:4a:68:34:f3: 49:59:28:97:12:cc:e9:1d:23:e2:9d:4e:bb:05:c1:b6:56:16: 9e:44:5f:01:3f:43:dd:1f:c5:18:30:67:8d:8a:31:a9:0d:a2: 45:e2:49:92:fb:ed:4a:b9:cb:25:9d:41:e8:3a:33:3a:86:53: 3a:21:22:76:8e:2c:e2:68:7f:4c:63:69:ef:0e:23:19:23:2e: 8f:e8:47:ac:70:d7:7c:dd:a6:d4:60:60:29:ce:6f:f1:c9:9d: 22:0d:5c:e5:53:18:49:e3:93:0a:b4:8a:d4:ba:f4:62:14:aa: 9c:16:50:0d:c0:70:6c:43:bf:11:04:fa:0e:69:cf:35:60:bb: ac:df:b7:44:e0:55:16:9a:e8:e2:96:77:4b:4b:79:17:df:39: 3d:41:2f:21:7b:0a:34:d2:3f:bf:3c:7c:ee:29:f6:b7:04:61: 8c:e6:db:62:35:5c:55:24:ba:3f:93:a6:6b:3c:b5:b3:86:7f: 79:0e:2c:ed:ae:5e:69:9d:66:b7:d0:25:ff:47:0c:9f:9f:3c: d0:8f:b3:e4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa0OQTC/WHhNofNfThVHygVDQH9swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDA0MDUxWhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTcwNmZjZTAwNzg5NWVlZWJkMjM0ZjIxMTAxZDE3NWVl OTk2MDlkZjllZmJhOWVmOWY4NDI0NjYzNzVjZjY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3a/uTGSDCI2afCESNfmHMem9Ku4oANWTshCjqHo4h0DT8 lqzSz8VqTX6412GDBkjTDMo0Vb6b7vS8rC7saqfCNQSjNCE9fV2Lo7QTtvVBY9pX aPfpIlTWo8J8AZfUmxuIOA+Q1TJXEWtP+ZcEZtKvOpmakLtPexkBqYGO0zMMkvId lCtR0+/MRjxn4NVzGnppDaYHdLsgGUZepkGN2Q84UfuMfcnHEK7qmtYMpWWc5M/8 IEJFmxVa5mvIfp4WbfEnhbXf+kvTm3Gd9UUY6fSb7MqrA/3gZ/gkr3he8RILGajN dTEt1kXX0kWOlYCmvsnq0sdx5y5citnCb88lMfb5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+f8F1h/84R7MC2PY0GIzvjdvfwgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwMjUzYzZiLTBhZDMtNDZmNS1iYjQxLWQyMTkxMDVjN2RjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl1gwDQYJKoZIhvcNAQELBQADggEBAJFdo4yHkLrRwrVKiCML0QTMnD8i Buht26sjib9s0CG/Yt7wK47SnaOCbBs2vrWBwfO+Smg080lZKJcSzOkdI+KdTrsF wbZWFp5EXwE/Q90fxRgwZ42KMakNokXiSZL77Uq5yyWdQeg6MzqGUzohInaOLOJo f0xjae8OIxkjLo/oR6xw13zdptRgYCnOb/HJnSINXOVTGEnjkwq0itS69GIUqpwW UA3AcGxDvxEE+g5pzzVgu6zft0TgVRaa6OKWd0tLeRffOT1BLyF7CjTSP788fO4p 9rcEYYzm22I1XFUkuj+Tpms8tbOGf3kOLO2uXmmdZrfQJf9HDJ+fPNCPs+Q= -----END CERTIFICATE-----Generated at Sun May 11 07:46:54 2025 by rpki-client