$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c30ae5a-50c2-4463-b773-79404fc3c67d.roa File: 0c30ae5a-50c2-4463-b773-79404fc3c67d.roa (raw, json) Hash identifier: ZrC+f3R39MsPy93unqGhyIzuoSNXrUKeRiknU/Agwlo= Subject key identifier: 97:67:20:98:CF:23:E8:63:9E:68:B3:E3:2C:D0:08:91:C8:71:D6:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 24CDD73A63B57C4A18F742C7F1F1E887FA49E66B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c30ae5a-50c2-4463-b773-79404fc3c67d.roa Signing time: Fri 04 Apr 2025 00:20:18 +0000 ROA not before: Fri 04 Apr 2025 00:20:18 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:cd:d7:3a:63:b5:7c:4a:18:f7:42:c7:f1:f1:e8:87:fa:49:e6:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:20:18 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=d6542c8f4eaf2c7ef6177460e2f382f6666bede7d6e43f7af4fae6168bf1f93e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0d:9d:a6:d5:7b:0c:3b:d2:b9:1c:70:f9:58: c1:9b:cf:b7:9c:7e:65:00:4c:2a:f9:a0:7e:c6:73: ed:c7:91:e3:27:f8:fc:0a:56:29:77:d1:ba:05:df: 64:c5:12:77:72:65:61:c8:64:88:0e:5e:78:07:ff: 9d:7f:75:15:1d:e9:ea:ef:3b:17:4c:a4:d5:b8:0a: 0b:ca:1e:5e:a4:4d:01:f8:47:68:47:c2:f0:ed:17: c2:e1:d8:af:23:97:c0:2a:29:6f:c0:d4:7e:c1:31: e5:1e:cf:22:95:cc:44:f6:46:bd:48:78:5b:d7:77: 3e:ca:db:08:19:55:dd:e6:3a:0d:e1:5e:a8:42:31: 12:83:68:27:cf:b0:e4:5f:ee:79:5a:db:a6:d1:9d: d5:07:30:fc:da:94:f2:e5:ad:3f:71:c9:74:ca:ab: 96:29:7e:90:3d:49:4e:23:5b:f6:f1:18:be:fa:36: d3:74:de:c1:ff:2d:4e:c0:d7:d4:ec:01:f5:09:e6: a8:09:35:3b:f6:5d:ea:de:6b:20:da:90:6d:b7:b9: bb:1a:9f:e1:1c:9f:db:b8:0c:1f:1b:d5:68:d1:73: a4:ea:98:04:d8:a4:eb:e6:b1:45:32:ae:9d:4e:40: a6:90:2f:dc:ea:8a:4e:80:ba:22:ce:07:04:15:05: 0f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:67:20:98:CF:23:E8:63:9E:68:B3:E3:2C:D0:08:91:C8:71:D6:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c30ae5a-50c2-4463-b773-79404fc3c67d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.150.0/24 Signature Algorithm: sha256WithRSAEncryption 74:09:e3:b6:65:24:13:bb:7e:c5:3a:b7:70:2d:db:cd:60:f4: 12:d2:08:9a:d5:92:18:b8:b9:b7:77:09:83:94:09:a7:f8:35: 4c:de:5f:18:ca:97:0c:5f:c7:c6:52:a0:65:9e:cc:6a:8d:53: 92:42:f6:9a:74:90:f8:6c:9e:e7:ca:a2:68:09:2e:95:9d:d8: 20:8e:8d:ab:b6:7e:56:88:eb:9c:40:b2:6e:7d:e5:e9:2f:fb: 2d:98:ea:44:22:8c:85:19:f3:80:9b:6a:7e:44:81:17:70:28: bd:b6:ef:e6:71:28:db:82:f3:ca:62:b4:24:11:7e:bc:ee:ae: 2d:bb:cd:44:4b:e5:36:86:3c:ba:58:16:3c:e2:64:d9:3e:25: 93:43:69:e2:07:0f:1e:65:6d:26:ac:0b:cc:b3:c4:74:6d:e1: 03:2c:f1:5b:c5:3e:47:27:ed:42:f1:b7:7f:52:00:50:ad:df: a7:eb:21:44:04:f8:94:d0:ce:1c:31:d9:07:b0:7b:d5:6e:54: d1:dc:85:7f:84:ac:c4:91:f3:9c:5d:5c:43:1c:58:4c:09:aa: 00:70:75:92:a4:1e:93:8c:7e:6d:1e:1a:6b:89:55:e5:ee:19: a9:d0:36:78:e6:c4:30:c9:bf:d8:34:68:11:e4:0e:7b:51:26: bb:8a:79:ff -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJM3XOmO1fEoY90LH8fHoh/pJ5mswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAyMDE4WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjU0MmM4ZjRlYWYyYzdlZjYxNzc0NjBlMmYzODJmNjY2 NmJlZGU3ZDZlNDNmN2FmNGZhZTYxNjhiZjFmOTNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3DZ2m1XsMO9K5HHD5WMGbz7ecfmUATCr5oH7Gc+3HkeMn +PwKVil30boF32TFEndyZWHIZIgOXngH/51/dRUd6ervOxdMpNW4CgvKHl6kTQH4 R2hHwvDtF8Lh2K8jl8AqKW/A1H7BMeUezyKVzET2Rr1IeFvXdz7K2wgZVd3mOg3h XqhCMRKDaCfPsORf7nla26bRndUHMPzalPLlrT9xyXTKq5YpfpA9SU4jW/bxGL76 NtN03sH/LU7A19TsAfUJ5qgJNTv2XereayDakG23ubsan+Ecn9u4DB8b1WjRc6Tq mATYpOvmsUUyrp1OQKaQL9zqik6AuiLOBwQVBQ//AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUl2cgmM8j6GOeaLPjLNAIkchx1hgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjMzBhZTVhLTUwYzItNDQ2My1iNzczLTc5NDA0ZmMzYzY3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZYwDQYJKoZIhvcNAQELBQADggEBAHQJ47ZlJBO7fsU6t3At281g9BLS CJrVkhi4ubd3CYOUCaf4NUzeXxjKlwxfx8ZSoGWezGqNU5JC9pp0kPhsnufKomgJ LpWd2CCOjau2flaI65xAsm595ekv+y2Y6kQijIUZ84Cban5EgRdwKL227+ZxKNuC 88pitCQRfrzuri27zURL5TaGPLpYFjziZNk+JZNDaeIHDx5lbSasC8yzxHRt4QMs 8VvFPkcn7ULxt39SAFCt36frIUQE+JTQzhwx2Qewe9VuVNHchX+ErMSR85xdXEMc WEwJqgBwdZKkHpOMfm0eGmuJVeXuGanQNnjmxDDJv9g0aBHkDntRJruKef8= -----END CERTIFICATE-----Generated at Sat Apr 26 16:52:45 2025 by rpki-client