$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaca10ed-f765-4a76-9ea5-32f39b19c36b.roa File: eaca10ed-f765-4a76-9ea5-32f39b19c36b.roa (raw, json) Hash identifier: 8CP20gk359bg0eNwhU/tuduBIo4jbNlDQx7VWQTcJfA= Subject key identifier: AD:EB:E1:64:55:90:B7:C9:D0:02:43:1A:54:33:6B:33:06:20:49:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A2FE786A0626C99A010F122EEE4C4C9ECFB5C21 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaca10ed-f765-4a76-9ea5-32f39b19c36b.roa Signing time: Tue 29 Apr 2025 00:21:09 +0000 ROA not before: Tue 29 Apr 2025 00:21:09 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:2f:e7:86:a0:62:6c:99:a0:10:f1:22:ee:e4:c4:c9:ec:fb:5c:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:21:09 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=7d246194fccbbffe5dcf4483f2432be63929a2785449acc4c26bed542906c4c1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:28:03:6b:6e:bf:95:89:07:a8:15:d9:98:bf: d3:89:5b:5b:35:b2:6a:2f:b4:c1:a9:9a:de:17:47: 28:e3:2a:7d:77:76:2a:b5:89:47:2e:95:77:46:de: df:32:9a:7d:2d:d4:e2:79:04:4d:30:d2:7d:57:44: 65:03:9f:d8:0d:86:a0:89:c5:b1:ed:ff:ff:48:9c: de:3a:6c:05:0e:20:7e:fd:38:17:a7:85:96:1b:b0: e0:6c:b3:fa:c1:02:a2:d2:e0:36:38:d4:73:8c:7f: 1c:21:76:65:a6:d9:21:f1:b6:8b:ff:b2:0f:94:78: 7b:bc:4a:ad:63:fc:11:45:24:bd:83:76:50:dd:8c: 9b:c4:2c:b8:89:f3:26:b6:0a:19:dd:18:78:cc:61: ba:e3:e3:ed:f1:39:80:89:c4:53:87:f6:7b:51:a3: 7c:8c:6f:97:07:c7:39:b3:03:2a:3d:70:d0:63:50: 95:bc:41:e4:55:26:ce:89:92:cc:d9:3e:a3:19:a7: ee:65:27:14:f6:e3:3f:aa:c5:f2:c7:8e:4b:0a:b1: 61:b5:2c:45:c9:a5:f5:42:9c:27:2f:7f:ad:6b:15: cf:eb:17:83:aa:e3:77:16:5c:3d:fe:1a:08:4e:bd: 30:dc:e6:7d:78:1a:1e:80:d5:11:40:51:0d:ec:81: 96:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:EB:E1:64:55:90:B7:C9:D0:02:43:1A:54:33:6B:33:06:20:49:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eaca10ed-f765-4a76-9ea5-32f39b19c36b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.16.0/21 Signature Algorithm: sha256WithRSAEncryption 74:7d:85:8a:1d:c2:24:26:1e:a2:88:61:9a:4d:0a:61:96:fd: 48:a3:4c:e8:13:72:d9:1e:18:66:64:95:5e:2a:f0:7b:f9:21: 40:27:ba:ca:86:73:08:b9:99:cf:4a:62:b7:56:61:cc:42:de: fd:d7:d5:76:11:b3:3a:4f:f7:d1:be:55:74:9d:70:ce:16:22: 47:f6:45:1f:5b:cb:ee:97:57:d8:c2:7a:71:de:6d:f3:ee:83: c5:2b:bd:29:04:ea:10:45:51:ac:df:7d:d1:cb:39:d7:ca:48: 78:e3:46:8a:ec:00:09:08:5a:cf:81:cc:e9:d9:c2:8f:88:3c: 52:65:e7:cc:21:41:eb:cb:e6:87:dd:c2:db:43:38:b1:8b:a6: 58:ce:81:3c:20:43:df:e8:b7:72:f8:7d:be:84:66:13:06:ee: 02:9d:e0:6e:5f:b2:ee:c3:3f:9d:e4:9b:de:97:4c:62:40:11: 47:37:d0:09:91:8c:4d:e2:d2:00:f8:10:14:dd:86:9d:a9:1c: d9:45:3c:dd:a2:91:84:f6:bd:42:24:0e:b7:7e:16:d4:9f:07: 39:0e:52:ca:ca:6d:2f:15:4a:7b:26:ef:b0:e2:4f:bb:fe:63: a7:a3:3a:69:4d:ce:7e:9b:84:2f:2a:a9:9c:b7:d9:6b:59:61: e9:70:d2:8c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCi/nhqBibJmgEPEi7uTEyez7XCEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAyMTA5WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDI0NjE5NGZjY2JiZmZlNWRjZjQ0ODNmMjQzMmJlNjM5 MjlhMjc4NTQ0OWFjYzRjMjZiZWQ1NDI5MDZjNGMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiKANrbr+ViQeoFdmYv9OJW1s1smovtMGpmt4XRyjjKn13 diq1iUculXdG3t8ymn0t1OJ5BE0w0n1XRGUDn9gNhqCJxbHt//9InN46bAUOIH79 OBenhZYbsOBss/rBAqLS4DY41HOMfxwhdmWm2SHxtov/sg+UeHu8Sq1j/BFFJL2D dlDdjJvELLiJ8ya2ChndGHjMYbrj4+3xOYCJxFOH9ntRo3yMb5cHxzmzAyo9cNBj UJW8QeRVJs6JkszZPqMZp+5lJxT24z+qxfLHjksKsWG1LEXJpfVCnCcvf61rFc/r F4Oq43cWXD3+GghOvTDc5n14Gh6A1RFAUQ3sgZYLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrevhZFWQt8nQAkMaVDNrMwYgSWQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhY2ExMGVkLWY3NjUtNGE3Ni05ZWE1LTMyZjM5YjE5YzM2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjlhAwDQYJKoZIhvcNAQELBQADggEBAHR9hYodwiQmHqKIYZpNCmGW/Uij TOgTctkeGGZklV4q8Hv5IUAnusqGcwi5mc9KYrdWYcxC3v3X1XYRszpP99G+VXSd cM4WIkf2RR9by+6XV9jCenHebfPug8UrvSkE6hBFUazffdHLOdfKSHjjRorsAAkI Ws+BzOnZwo+IPFJl58whQevL5ofdwttDOLGLpljOgTwgQ9/ot3L4fb6EZhMG7gKd 4G5fsu7DP53km96XTGJAEUc30AmRjE3i0gD4EBTdhp2pHNlFPN2ikYT2vUIkDrd+ FtSfBzkOUsrKbS8VSnsm77DiT7v+Y6ejOmlNzn6bhC8qqZy32WtZYelw0ow= -----END CERTIFICATE-----Generated at Mon May 5 10:16:46 2025 by rpki-client