$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00cbf30e-db75-4c8f-938b-1007226dec9b.roa File: 00cbf30e-db75-4c8f-938b-1007226dec9b.roa (raw, json) Hash identifier: Zz2bUiVTkJQTnFc5OxE76/i1w9Yx5IE8AxS7ST8Bko8= Subject key identifier: BB:69:A4:1F:98:B5:90:96:95:03:8A:9B:4F:A2:E3:B4:79:40:29:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72B46F46AE0F450839FEFE1F7147E8751EE5FA41 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00cbf30e-db75-4c8f-938b-1007226dec9b.roa Signing time: Wed 09 Apr 2025 00:50:11 +0000 ROA not before: Wed 09 Apr 2025 00:50:11 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:b4:6f:46:ae:0f:45:08:39:fe:fe:1f:71:47:e8:75:1e:e5:fa:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:50:11 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=e340c7291494826840650e9a33bfac9f3d21f169a1c9f64db7f1cba8a4e2c52a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ae:3c:de:22:40:54:ea:08:3a:48:47:1e:68: ab:e5:30:d4:28:e4:b7:5e:1a:4c:bb:b2:14:27:3f: ba:e9:7f:d1:30:e3:f0:ef:71:61:dc:18:b4:62:99: a6:78:0d:bd:1f:75:71:f3:94:14:f8:d6:13:47:20: 28:cb:0f:eb:89:fd:7e:89:f4:0b:50:ac:37:45:3b: a4:87:91:42:51:3e:89:8a:fb:90:19:bd:8d:6c:6d: 3e:73:72:bb:94:31:14:a4:db:a3:68:e3:c7:ff:2a: b7:e8:9b:9f:8e:b0:99:2a:d3:5e:1f:f8:3a:3f:fa: 06:cb:8d:41:c0:33:fc:80:7a:73:91:23:c0:ea:91: de:d7:92:a0:c1:fb:b9:84:22:c8:fc:ec:af:ac:3e: 65:04:94:de:1d:09:53:a4:6c:d1:f8:ac:50:dd:2a: 9c:0c:76:6e:7c:c5:42:33:a6:35:ed:fc:da:3b:d1: 48:01:3c:08:d4:2d:46:3e:26:fd:f6:7e:b8:e5:e2: b9:dd:c6:34:31:61:63:59:30:5c:e8:b4:c3:a4:24: a4:9c:9b:bc:cd:ab:4e:96:ff:75:52:52:ab:15:4a: c3:79:0b:f2:b0:a3:9d:a4:d0:56:e2:8d:71:04:82: ef:60:bf:49:fc:06:db:f7:e1:92:9b:3b:c2:3c:23: 87:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:69:A4:1F:98:B5:90:96:95:03:8A:9B:4F:A2:E3:B4:79:40:29:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00cbf30e-db75-4c8f-938b-1007226dec9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.128.0/17 Signature Algorithm: sha256WithRSAEncryption cd:12:93:35:a2:7a:e4:8c:63:f2:6b:f6:ac:e4:25:e7:42:91: c7:e1:5e:96:ed:83:ad:3a:c1:62:d3:40:b5:71:fe:61:ad:58: df:be:e1:dd:eb:de:0c:c9:6a:55:9f:b3:d4:b0:fe:1e:9a:bb: 3f:11:91:bd:63:83:04:50:b7:d1:62:8f:eb:74:62:e1:37:b7: 1e:8c:ba:a9:cb:09:c7:b2:71:9f:8e:58:0f:67:f3:99:bf:b5: 7a:16:90:2a:28:55:3a:d6:d3:01:e9:65:73:0a:20:e9:fb:48: 8a:73:4d:30:8d:41:bd:17:f3:91:3b:58:da:5e:ee:9b:df:21: 2a:a8:57:8c:a1:27:d9:ed:4e:b9:70:a1:73:2b:05:cc:20:d4: 68:ff:4f:9a:1c:bf:d8:bf:3f:ee:35:5d:72:4f:5d:f9:6f:18: 04:57:28:7a:8b:c2:24:64:c6:b2:92:1f:3d:67:5a:a8:0f:1a: 42:fb:9d:7b:68:44:41:c2:8e:09:55:ea:4b:fb:c3:ff:48:d7: 23:43:00:ef:d8:a1:78:37:74:ca:34:0b:bb:95:ec:e8:8a:56: d8:83:4a:db:38:fe:7e:e6:a5:26:52:be:d4:48:dc:50:97:0a: 39:18:33:a8:a3:ad:c2:8d:dc:a8:0a:51:23:11:c9:a8:2e:39: b4:58:d7:c8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcrRvRq4PRQg5/v4fcUfodR7l+kEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDA1MDExWhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzQwYzcyOTE0OTQ4MjY4NDA2NTBlOWEzM2JmYWM5ZjNk MjFmMTY5YTFjOWY2NGRiN2YxY2JhOGE0ZTJjNTJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmrjzeIkBU6gg6SEceaKvlMNQo5LdeGky7shQnP7rpf9Ew 4/DvcWHcGLRimaZ4Db0fdXHzlBT41hNHICjLD+uJ/X6J9AtQrDdFO6SHkUJRPomK +5AZvY1sbT5zcruUMRSk26No48f/Krfom5+OsJkq014f+Do/+gbLjUHAM/yAenOR I8Dqkd7XkqDB+7mEIsj87K+sPmUElN4dCVOkbNH4rFDdKpwMdm58xUIzpjXt/No7 0UgBPAjULUY+Jv32frjl4rndxjQxYWNZMFzotMOkJKScm7zNq06W/3VSUqsVSsN5 C/Kwo52k0FbijXEEgu9gv0n8Btv34ZKbO8I8I4ftAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUu2mkH5i1kJaVA4qbT6LjtHlAKeYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAwY2JmMzBlLWRiNzUtNGM4Zi05MzhiLTEwMDcyMjZkZWM5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjTYAwDQYJKoZIhvcNAQELBQADggEBAM0SkzWieuSMY/Jr9qzkJedCkcfh Xpbtg606wWLTQLVx/mGtWN++4d3r3gzJalWfs9Sw/h6auz8Rkb1jgwRQt9Fij+t0 YuE3tx6MuqnLCceycZ+OWA9n85m/tXoWkCooVTrW0wHpZXMKIOn7SIpzTTCNQb0X 85E7WNpe7pvfISqoV4yhJ9ntTrlwoXMrBcwg1Gj/T5ocv9i/P+41XXJPXflvGARX KHqLwiRkxrKSHz1nWqgPGkL7nXtoREHCjglV6kv7w/9I1yNDAO/YoXg3dMo0C7uV 7OiKVtiDSts4/n7mpSZSvtRI3FCXCjkYM6ijrcKN3KgKUSMRyaguObRY18g= -----END CERTIFICATE-----Generated at Sat Apr 26 18:31:58 2025 by rpki-client