$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa File: e718f292-3534-48a9-a800-2739137ff5ea.roa (raw, json) Hash identifier: pXwE+EH4MRj2IuJLknrHa1oIqH87fl9XR4VDgD5wg5U= Subject key identifier: B8:91:50:14:59:41:A4:AB:74:55:3A:5C:6E:7B:9B:49:63:78:D9:C7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 722B94BAD8B7A81A59E1857B149B5DC4FE117C73 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa Signing time: Mon 05 May 2025 15:40:26 +0000 ROA not before: Mon 05 May 2025 15:40:26 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 15 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:2b:94:ba:d8:b7:a8:1a:59:e1:85:7b:14:9b:5d:c4:fe:11:7c:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:40:26 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=cfaea03988e17422f114d50a9e16dc893de396e9f00234f666370ef780e24b08, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c5:85:9a:f8:c9:4c:c4:9f:d9:44:ad:da:95: d2:57:4f:a4:e0:7f:b4:be:bf:94:11:0c:dc:9f:9e: 62:5b:bc:f1:79:93:34:06:88:db:01:38:77:77:9a: af:62:78:05:01:18:bf:b1:84:63:cb:04:e8:fc:ab: 54:00:f0:37:1d:4b:09:ae:45:ab:80:74:ac:18:7f: 39:4e:f6:55:ce:21:d8:02:c6:26:0e:f9:e3:14:78: a5:7e:f1:99:17:8f:74:2a:d9:0e:c9:1d:ce:fd:f2: 41:2e:12:83:a6:85:bb:d8:0d:ce:ff:0b:12:bf:f0: 9f:13:df:4e:96:1e:d2:64:af:1d:d6:59:13:0a:b2: b7:8d:64:18:69:37:00:5e:a3:40:e1:25:84:93:25: 10:ea:49:93:6a:14:53:14:57:e5:cb:64:35:97:2c: 91:fa:a1:c4:0f:6c:b9:0b:ae:d6:02:5f:27:12:73: c2:e7:25:97:e1:aa:bc:91:bd:f7:55:d3:7c:70:09: 2a:f2:db:69:2b:93:f5:6d:04:a0:30:20:b2:d4:91: ce:35:78:69:23:25:b4:6b:de:75:03:9e:72:c5:89: 71:d8:e0:e5:8b:b6:3e:12:87:0e:51:54:d3:b3:b3: 9a:49:25:bc:97:20:bb:c2:49:bc:7e:87:91:21:41: d8:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:91:50:14:59:41:A4:AB:74:55:3A:5C:6E:7B:9B:49:63:78:D9:C7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.246.0/24 Signature Algorithm: sha256WithRSAEncryption 11:4a:7f:31:22:51:81:a8:10:20:b3:62:0f:b5:ad:54:ad:e8: 38:c0:40:46:fe:77:a5:46:8b:90:b6:7f:6a:58:e0:61:91:64: 6e:86:6a:8d:94:eb:73:91:76:81:27:55:68:64:5a:73:c8:78: 30:27:47:5c:75:de:f1:93:a4:fc:3a:c1:23:e6:ac:01:a0:61: 9c:fd:22:d7:8d:d9:fc:e7:0e:24:c8:13:01:98:1e:18:4f:2b: 8c:f8:3a:03:8a:3a:73:a6:14:0b:49:7c:44:a0:e1:6e:31:4d: 83:36:ad:52:2f:1a:c1:ae:a8:67:59:ed:98:4c:4c:ee:17:a4: 89:c3:92:b1:06:09:5f:b7:3b:b1:19:c3:19:58:61:4d:ee:e4: d0:71:3e:84:3d:b5:e1:9a:b0:67:c8:bc:ee:3c:64:ec:5a:20: 88:06:19:bc:fd:ea:af:c3:f5:f6:7d:da:50:44:a9:0f:16:0e: 24:27:9b:7e:70:db:83:06:88:ff:97:d3:7a:8d:ee:f2:28:27: a7:6e:4e:41:8b:d3:f6:82:5e:8e:1b:3d:e9:5b:0e:0d:90:c4: a9:80:e9:c3:59:03:86:71:24:80:f5:1b:72:63:cd:e3:fb:39: df:a5:2c:16:d2:92:da:09:ca:8b:09:7a:a8:76:05:45:c6:ff: 37:2c:91:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUciuUuti3qBpZ4YV7FJtdxP4RfHMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTU0MDI2WhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmFlYTAzOTg4ZTE3NDIyZjExNGQ1MGE5ZTE2ZGM4OTNk ZTM5NmU5ZjAwMjM0ZjY2NjM3MGVmNzgwZTI0YjA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxxYWa+MlMxJ/ZRK3aldJXT6Tgf7S+v5QRDNyfnmJbvPF5 kzQGiNsBOHd3mq9ieAUBGL+xhGPLBOj8q1QA8DcdSwmuRauAdKwYfzlO9lXOIdgC xiYO+eMUeKV+8ZkXj3Qq2Q7JHc798kEuEoOmhbvYDc7/CxK/8J8T306WHtJkrx3W WRMKsreNZBhpNwBeo0DhJYSTJRDqSZNqFFMUV+XLZDWXLJH6ocQPbLkLrtYCXycS c8LnJZfhqryRvfdV03xwCSry22krk/VtBKAwILLUkc41eGkjJbRr3nUDnnLFiXHY 4OWLtj4Shw5RVNOzs5pJJbyXILvCSbx+h5EhQdhZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuJFQFFlBpKt0VTpcbnubSWN42ccwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U3MThmMjkyLTM1MzQtNDhhOS1hODAwLTI3MzkxMzdmZjVlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfYwDQYJKoZIhvcNAQELBQADggEBABFKfzEiUYGoECCzYg+1rVSt6DjA QEb+d6VGi5C2f2pY4GGRZG6Gao2U63ORdoEnVWhkWnPIeDAnR1x13vGTpPw6wSPm rAGgYZz9IteN2fznDiTIEwGYHhhPK4z4OgOKOnOmFAtJfESg4W4xTYM2rVIvGsGu qGdZ7ZhMTO4XpInDkrEGCV+3O7EZwxlYYU3u5NBxPoQ9teGasGfIvO48ZOxaIIgG Gbz96q/D9fZ92lBEqQ8WDiQnm35w24MGiP+X03qN7vIoJ6duTkGL0/aCXo4bPelb Dg2QxKmA6cNZA4ZxJID1G3JjzeP7Od+lLBbSktoJyosJeqh2BUXG/zcske0= -----END CERTIFICATE-----Generated at Wed May 14 16:21:01 2025 by rpki-client