$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d52a2426-22bb-4acf-ba82-9cc75ad6512e.roa File: d52a2426-22bb-4acf-ba82-9cc75ad6512e.roa (raw, json) Hash identifier: 7oa7OeJWnBDJOVU1oQ4XuxsntpYBSrPwr3beQrQEUvw= Subject key identifier: C5:71:D3:77:41:5F:57:DE:88:6B:D2:46:21:A7:97:C1:B8:D6:B8:86 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AF2A3C67325564FF169B3DCEA9BBCF9FF4773E6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d52a2426-22bb-4acf-ba82-9cc75ad6512e.roa Signing time: Sat 03 May 2025 00:51:40 +0000 ROA not before: Sat 03 May 2025 00:51:40 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:f2:a3:c6:73:25:56:4f:f1:69:b3:dc:ea:9b:bc:f9:ff:47:73:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:51:40 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=61c190787fac6ed29a8392ea99c4a9c11ff0f29c94c7547148124f59d15877f1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:50:95:55:e0:f7:ef:4a:52:af:6b:32:3b:00: 56:0e:98:e4:11:c0:94:03:cd:63:ac:43:c9:bf:70: 46:4a:75:59:64:3a:cc:ab:d0:cb:87:54:d2:30:e4: 93:8a:21:10:fa:36:94:42:bc:a7:c9:21:12:a6:4f: 1e:9b:da:24:28:db:e5:b9:41:a0:e0:3e:a4:ed:69: 96:12:7b:07:e9:ce:ce:39:13:0c:a1:13:d4:13:79: bd:d5:c6:10:ca:82:58:f5:d0:35:f0:ef:00:f6:23: a4:9c:88:b7:90:e4:23:67:53:3b:1f:6f:3f:b2:88: e1:8c:4d:7f:99:64:aa:70:21:18:33:39:ea:e0:da: f8:b7:37:b3:bc:ee:6c:a2:0c:e1:7a:51:88:cf:6b: 2a:95:e6:76:4a:96:bc:14:ab:ce:0a:b6:33:e3:54: 08:c6:14:14:ed:4e:de:86:fe:4b:51:7b:34:46:d3: 48:fc:a8:f2:56:39:eb:b9:26:d1:58:96:c9:3f:c5: 7f:71:59:7f:a8:cb:32:3c:c0:46:ab:61:f6:b1:4c: 39:87:62:bc:b0:bc:c8:81:f6:00:59:5c:84:ef:24: 50:54:5a:e0:98:93:cf:d5:76:fd:09:02:8a:91:2b: 16:8d:71:0f:86:d1:3a:45:61:19:b1:14:e5:20:ca: 98:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:71:D3:77:41:5F:57:DE:88:6B:D2:46:21:A7:97:C1:B8:D6:B8:86 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d52a2426-22bb-4acf-ba82-9cc75ad6512e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.247.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:36:8e:ad:b4:32:b9:c8:35:e1:8d:37:ef:ad:7d:a9:01:d1: b9:12:20:fd:dc:13:b1:8b:b9:6e:11:7e:4f:19:41:1d:ad:94: 88:b4:98:47:e9:4d:ce:9a:91:2d:4c:d9:b6:24:4e:4d:ca:18: b2:f9:34:b0:42:32:f4:8f:d6:ff:be:93:4b:ed:d8:43:19:f5: a8:e8:a0:8a:35:aa:e5:7f:b5:4c:a6:db:32:f9:28:e5:68:b3: 40:4f:b0:3b:f5:65:47:72:4e:b8:de:53:dc:5c:14:96:eb:e8: 7f:88:41:85:6c:5d:4a:15:c5:62:31:0d:b8:4d:66:fc:7f:8e: 4e:6b:c1:fd:bd:3d:cd:4a:2a:67:ef:54:11:3a:3e:cd:7e:4c: e9:bf:59:b6:35:6e:5c:09:50:72:00:2f:54:1d:bb:a3:70:fa: 4e:39:90:f7:ba:bb:19:5f:9d:6b:8d:f8:16:16:36:db:0c:45: ec:4d:48:53:ae:8e:f8:38:66:4c:40:9d:9e:99:16:52:4d:63: e5:60:40:68:f3:dc:9f:7e:bd:cd:9b:25:9b:6f:1f:15:1b:4c: 60:7a:f7:ce:91:b3:9d:af:50:80:4d:4d:95:bc:95:4d:ac:27: 53:c0:ed:81:27:d0:33:04:10:88:a8:53:18:d6:a0:c1:99:30: b9:3b:b6:de -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKvKjxnMlVk/xabPc6pu8+f9Hc+YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA1MTQwWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MWMxOTA3ODdmYWM2ZWQyOWE4MzkyZWE5OWM0YTljMTFm ZjBmMjljOTRjNzU0NzE0ODEyNGY1OWQxNTg3N2YxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYUJVV4PfvSlKvazI7AFYOmOQRwJQDzWOsQ8m/cEZKdVlk Osyr0MuHVNIw5JOKIRD6NpRCvKfJIRKmTx6b2iQo2+W5QaDgPqTtaZYSewfpzs45 EwyhE9QTeb3VxhDKglj10DXw7wD2I6SciLeQ5CNnUzsfbz+yiOGMTX+ZZKpwIRgz Oerg2vi3N7O87myiDOF6UYjPayqV5nZKlrwUq84KtjPjVAjGFBTtTt6G/ktRezRG 00j8qPJWOeu5JtFYlsk/xX9xWX+oyzI8wEarYfaxTDmHYrywvMiB9gBZXITvJFBU WuCYk8/Vdv0JAoqRKxaNcQ+G0TpFYRmxFOUgypjPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxXHTd0FfV96Ia9JGIaeXwbjWuIYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q1MmEyNDI2LTIyYmItNGFjZi1iYTgyLTljYzc1YWQ2NTEyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfcwDQYJKoZIhvcNAQELBQADggEBAAs2jq20MrnINeGNN++tfakB0bkS IP3cE7GLuW4Rfk8ZQR2tlIi0mEfpTc6akS1M2bYkTk3KGLL5NLBCMvSP1v++k0vt 2EMZ9ajooIo1quV/tUym2zL5KOVos0BPsDv1ZUdyTrjeU9xcFJbr6H+IQYVsXUoV xWIxDbhNZvx/jk5rwf29Pc1KKmfvVBE6Ps1+TOm/WbY1blwJUHIAL1Qdu6Nw+k45 kPe6uxlfnWuN+BYWNtsMRexNSFOujvg4ZkxAnZ6ZFlJNY+VgQGjz3J9+vc2bJZtv HxUbTGB6986Rs52vUIBNTZW8lU2sJ1PA7YEn0DMEEIioUxjWoMGZMLk7tt4= -----END CERTIFICATE-----Generated at Sun May 11 16:44:42 2025 by rpki-client