$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ee3f969-775f-4571-b834-3ffb3e1dd5f9.roa File: 5ee3f969-775f-4571-b834-3ffb3e1dd5f9.roa (raw, json) Hash identifier: /b6EIipBCdqxgggFsUl30nA7nybGrkHsw6hI0nJrGpM= Subject key identifier: F8:35:D7:46:36:BF:54:8A:40:4A:92:B6:E1:7D:F0:E4:D2:37:BC:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 71288203767AB0F3A1C1EC815F2FF93B1B5D28BD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ee3f969-775f-4571-b834-3ffb3e1dd5f9.roa Signing time: Tue 22 Apr 2025 17:40:18 +0000 ROA not before: Tue 22 Apr 2025 17:40:18 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:28:82:03:76:7a:b0:f3:a1:c1:ec:81:5f:2f:f9:3b:1b:5d:28:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 22 17:40:18 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=f49ccb65fcbf8bb0b6473fa2f24bd779cb0422a1d8fe4a2af946a76e59a09576, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f2:c3:ea:5d:7d:33:7e:ec:2f:ee:ec:91:b8: 6e:53:17:d9:c7:7f:20:b6:32:2c:39:e7:ea:53:e8: f1:c2:9c:24:b1:9d:ef:56:bc:fd:c2:05:d3:e7:2c: 37:e1:22:4f:65:0b:90:90:db:3e:db:bf:4f:a8:9d: 56:4d:0f:e5:87:3d:80:25:e0:a0:47:5c:ff:99:ed: 11:78:58:14:3d:6c:d5:92:f1:6e:06:13:e6:a2:43: b7:43:98:03:4c:8a:6b:c3:f5:33:3d:8f:a9:16:eb: 4f:f4:ca:70:d5:49:03:08:62:5a:0e:7d:49:1d:01: 40:18:13:64:c2:96:73:61:e4:8c:96:d5:36:1c:4d: 29:9c:84:45:6a:8b:f1:c0:a4:fa:ef:b1:6e:05:02: 31:94:7b:54:f8:bb:66:26:8c:f6:1e:8a:a8:dc:b8: c8:42:f7:27:ba:b4:1e:8c:c1:fe:40:f6:07:07:8c: 9d:20:af:cb:cb:3a:1f:44:47:29:5e:38:af:1b:e8: 6b:dc:68:2b:15:c6:c1:4d:8d:7a:a8:e8:eb:de:07: 9c:46:1f:9c:d1:fe:c7:91:22:9c:05:ba:89:e8:f4: 94:37:ad:8d:26:ee:fd:15:21:b9:f2:a9:55:25:d5: 13:1e:eb:ce:27:7f:a4:8b:b7:b3:bf:89:41:70:66: 61:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:35:D7:46:36:BF:54:8A:40:4A:92:B6:E1:7D:F0:E4:D2:37:BC:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ee3f969-775f-4571-b834-3ffb3e1dd5f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.104.0/21 Signature Algorithm: sha256WithRSAEncryption 4e:28:4e:24:09:72:d1:2a:cc:27:9c:93:d1:83:e9:c6:93:cf: 02:91:b7:7a:c6:cb:6b:2d:28:55:55:e3:59:68:f4:33:c6:81: e5:b3:98:a4:59:e4:0f:85:01:b0:fe:c1:c6:4e:fe:34:7c:c4: 78:44:16:79:9a:b5:d7:d1:c3:75:92:50:b5:67:46:99:c8:35: 14:45:04:ae:c7:3d:94:f8:70:64:b4:e0:32:ab:de:70:d4:ab: 4e:54:4e:8b:fd:57:f0:8d:fa:f7:b3:3e:bc:4e:b2:21:f8:38: 24:3a:5a:c6:96:5d:64:6b:cd:3c:62:2c:5c:52:9a:49:15:dc: 38:c3:35:08:47:e6:3c:35:a4:20:07:96:9e:b4:87:bb:b2:8b: ee:3d:e7:a6:b8:4b:30:68:b8:0c:c1:96:6d:d1:fd:e5:cf:4c: c4:b5:3e:1a:b2:1b:f3:49:b3:55:d6:51:0e:54:07:27:13:60: c1:36:fa:96:0a:1a:0e:7b:f0:77:93:5f:6e:d3:98:50:07:fa: 9a:56:15:81:cb:64:a8:b6:6b:2f:52:a4:95:85:84:a8:d5:52: 45:0f:62:04:34:9b:35:7d:67:58:51:95:80:d8:ca:d0:5a:bd: 26:56:46:65:b1:a1:43:96:80:59:d2:12:46:82:bd:eb:71:6a: 7b:61:e7:1b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcSiCA3Z6sPOhweyBXy/5OxtdKL0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDIyMTc0MDE4WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDljY2I2NWZjYmY4YmIwYjY0NzNmYTJmMjRiZDc3OWNi MDQyMmExZDhmZTRhMmFmOTQ2YTc2ZTU5YTA5NTc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi8sPqXX0zfuwv7uyRuG5TF9nHfyC2Miw55+pT6PHCnCSx ne9WvP3CBdPnLDfhIk9lC5CQ2z7bv0+onVZND+WHPYAl4KBHXP+Z7RF4WBQ9bNWS 8W4GE+aiQ7dDmANMimvD9TM9j6kW60/0ynDVSQMIYloOfUkdAUAYE2TClnNh5IyW 1TYcTSmchEVqi/HApPrvsW4FAjGUe1T4u2YmjPYeiqjcuMhC9ye6tB6Mwf5A9gcH jJ0gr8vLOh9ERyleOK8b6GvcaCsVxsFNjXqo6OveB5xGH5zR/seRIpwFuono9JQ3 rY0m7v0VIbnyqVUl1RMe684nf6SLt7O/iUFwZmFhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+DXXRja/VIpASpK24X3w5NI3vPcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlZTNmOTY5LTc3NWYtNDU3MS1iODM0LTNmZmIzZTFkZDVmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl2gwDQYJKoZIhvcNAQELBQADggEBAE4oTiQJctEqzCeck9GD6caTzwKR t3rGy2stKFVV41lo9DPGgeWzmKRZ5A+FAbD+wcZO/jR8xHhEFnmatdfRw3WSULVn RpnINRRFBK7HPZT4cGS04DKr3nDUq05UTov9V/CN+vezPrxOsiH4OCQ6WsaWXWRr zTxiLFxSmkkV3DjDNQhH5jw1pCAHlp60h7uyi+4956a4SzBouAzBlm3R/eXPTMS1 PhqyG/NJs1XWUQ5UBycTYME2+pYKGg578HeTX27TmFAH+ppWFYHLZKi2ay9SpJWF hKjVUkUPYgQ0mzV9Z1hRlYDYytBavSZWRmWxoUOWgFnSEkaCvetxanth5xs= -----END CERTIFICATE-----Generated at Sat Apr 26 15:02:37 2025 by rpki-client