$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dab24578-0ed3-4171-a698-4a0032cf4b07.roa File: dab24578-0ed3-4171-a698-4a0032cf4b07.roa (raw, json) Hash identifier: zhCmv+seoZzQQv7r2aa8pInsc50cgVzJkwunqkHdqWw= Subject key identifier: 1B:B4:13:FA:B4:56:25:B7:57:B5:91:68:1C:11:75:BA:3F:6E:74:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3DCB005F9EB86D12B1F9FDCAA487BB19C30BF9A7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dab24578-0ed3-4171-a698-4a0032cf4b07.roa Signing time: Sat 03 May 2025 00:51:08 +0000 ROA not before: Sat 03 May 2025 00:51:08 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 99.82.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:cb:00:5f:9e:b8:6d:12:b1:f9:fd:ca:a4:87:bb:19:c3:0b:f9:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:51:08 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=bc020ef291cc9f627de1b711aaa31c22badc0095d9c2f470efd82f736bb1be5c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:aa:d5:c5:12:65:97:5c:c3:c8:08:1a:4a:3d: 72:aa:a2:64:4d:e3:46:6d:06:30:7d:c2:b1:12:2b: 0e:d8:3f:cc:0a:97:4d:4b:ee:34:5d:6c:12:e6:9c: 11:da:83:38:41:f5:b4:6f:69:30:29:18:50:0b:33: 28:8d:46:fa:01:52:78:20:22:e2:01:df:78:11:a0: 4a:de:c0:44:8f:48:3f:69:c0:65:09:78:4c:af:ba: c4:b7:58:22:73:ed:07:79:05:df:e6:63:30:88:8e: 7c:8b:dd:d9:1a:c7:4b:ba:5f:7c:10:45:ba:1f:98: f9:13:79:69:21:34:97:42:06:4f:e7:d8:68:dc:ba: 55:85:21:28:49:63:4a:92:c7:43:f9:f1:23:04:1c: 06:73:72:96:66:7b:a5:2e:22:e9:e3:9c:f0:d8:98: 7c:e6:4c:09:3a:12:64:50:40:c2:5c:76:38:a5:79: 36:e6:e1:26:7f:55:3e:67:37:c7:2d:dc:ef:e5:ce: cd:9b:61:e0:37:43:6d:ce:51:11:8e:fb:8c:4d:0a: a1:74:ab:a4:08:cd:79:6f:40:b5:a4:1a:38:2a:4b: 73:24:41:94:ac:b7:c0:ad:d9:df:45:5a:8d:1c:19: 6a:42:b9:3d:f9:5b:d4:39:a0:e5:82:10:c6:77:2c: 41:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:B4:13:FA:B4:56:25:B7:57:B5:91:68:1C:11:75:BA:3F:6E:74:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dab24578-0ed3-4171-a698-4a0032cf4b07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.82.166.0/24 Signature Algorithm: sha256WithRSAEncryption 22:d2:1c:a3:b7:8f:d6:fe:67:90:ed:dc:16:1e:1a:f0:dd:06: f6:0f:ad:69:4a:6f:65:b0:24:2e:ca:cd:c9:e9:73:69:a8:71: 2b:f4:00:4a:e4:f8:e3:aa:1c:9d:b0:90:f6:e3:50:65:92:d5: 35:a8:ac:0f:6f:94:f8:56:c6:01:14:22:f7:5e:e1:81:51:8f: 87:e8:4d:29:3a:1c:84:70:c8:a9:0a:31:41:f8:a9:52:67:f4: ed:03:fe:ee:c7:88:94:a9:d3:0a:f4:4b:0b:0a:68:9c:66:71: 34:64:83:29:b8:cc:21:1b:26:be:7a:42:ac:d3:ac:f7:f2:48: 28:18:7e:5d:4c:fb:13:56:b9:48:25:74:c4:5b:82:b2:e5:3f: 44:78:95:74:16:f1:b2:ca:16:35:50:b9:22:17:98:9c:84:83: 38:69:de:7b:4f:5c:7a:a8:9f:c2:37:c9:65:3f:a3:db:49:3e: 6f:7d:62:2c:9f:c4:1b:9b:79:48:33:22:a3:ab:0d:f3:81:9a: 80:a9:81:fc:f7:6a:8a:f5:f5:f2:23:5e:6f:1d:2b:74:e4:5b: 0c:83:0b:a9:7f:c5:59:c4:fc:ef:d5:73:10:3a:78:3a:88:da: ea:2d:d9:ee:82:87:d7:2a:59:14:ce:98:91:cc:b8:92:54:36: ca:4f:a6:30 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPcsAX564bRKx+f3KpIe7GcML+acwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA1MTA4WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYzAyMGVmMjkxY2M5ZjYyN2RlMWI3MTFhYWEzMWMyMmJh ZGMwMDk1ZDljMmY0NzBlZmQ4MmY3MzZiYjFiZTVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWqtXFEmWXXMPICBpKPXKqomRN40ZtBjB9wrESKw7YP8wK l01L7jRdbBLmnBHagzhB9bRvaTApGFALMyiNRvoBUnggIuIB33gRoErewESPSD9p wGUJeEyvusS3WCJz7Qd5Bd/mYzCIjnyL3dkax0u6X3wQRbofmPkTeWkhNJdCBk/n 2GjculWFIShJY0qSx0P58SMEHAZzcpZme6UuIunjnPDYmHzmTAk6EmRQQMJcdjil eTbm4SZ/VT5nN8ct3O/lzs2bYeA3Q23OURGO+4xNCqF0q6QIzXlvQLWkGjgqS3Mk QZSst8Ct2d9FWo0cGWpCuT35W9Q5oOWCEMZ3LEEvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG7QT+rRWJbdXtZFoHBF1uj9udBYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhYjI0NTc4LTBlZDMtNDE3MS1hNjk4LTRhMDAzMmNmNGIwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjUqYwDQYJKoZIhvcNAQELBQADggEBACLSHKO3j9b+Z5Dt3BYeGvDdBvYP rWlKb2WwJC7Kzcnpc2mocSv0AErk+OOqHJ2wkPbjUGWS1TWorA9vlPhWxgEUIvde 4YFRj4foTSk6HIRwyKkKMUH4qVJn9O0D/u7HiJSp0wr0SwsKaJxmcTRkgym4zCEb Jr56QqzTrPfySCgYfl1M+xNWuUgldMRbgrLlP0R4lXQW8bLKFjVQuSIXmJyEgzhp 3ntPXHqon8I3yWU/o9tJPm99YiyfxBubeUgzIqOrDfOBmoCpgfz3aor19fIjXm8d K3TkWwyDC6l/xVnE/O/VcxA6eDqI2uot2e6Ch9cqWRTOmJHMuJJUNspPpjA= -----END CERTIFICATE-----Generated at Sat May 10 21:38:27 2025 by rpki-client