$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68af9002-6d9c-4a97-b412-41140a596dc9.roa File: 68af9002-6d9c-4a97-b412-41140a596dc9.roa (raw, json) Hash identifier: Mv++MM2uK+noEbtQ9WinEisFz6y6ZVqktEdpY1pthF0= Subject key identifier: 6F:1C:54:55:AA:EC:DB:4A:97:FA:E8:8B:BA:11:1B:CE:6F:51:6E:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F678D05F3B7473EC110F404F8381FC99922B04B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68af9002-6d9c-4a97-b412-41140a596dc9.roa Signing time: Tue 15 Apr 2025 00:31:23 +0000 ROA not before: Tue 15 Apr 2025 00:31:23 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:67:8d:05:f3:b7:47:3e:c1:10:f4:04:f8:38:1f:c9:99:22:b0:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:31:23 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=94a2d53ffcab8068ef458356ed03e59a2922aa6656feb0741790901437eca2b1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d0:c6:ec:9c:0e:9a:10:63:ce:7d:12:62:cb: 4b:1e:1b:d6:79:9e:2b:8c:e7:f5:7c:a7:9a:f5:38: 84:df:c3:9d:da:2d:c9:9a:63:ee:18:a0:f8:d6:5c: 76:7b:d4:3a:32:fd:56:2a:fa:cf:a7:ac:84:79:ae: 83:ec:00:93:cc:6e:85:76:de:05:40:1c:89:2f:ea: 1f:be:ad:0e:45:07:e2:44:d2:a4:3e:e8:06:e4:c7: e5:77:51:ed:5e:00:b1:b3:6e:ef:31:fe:15:0a:be: 13:1a:9a:e9:83:1a:dc:45:3e:1b:2c:0b:00:ca:ea: ea:f1:09:e3:aa:7a:af:a1:eb:3b:66:11:95:cc:2d: 9e:67:32:a6:a0:5d:9b:8f:cc:1a:d3:04:6e:50:30: 5b:c6:1f:e2:ce:ae:89:4c:90:e2:96:d5:7a:17:a2: 2a:f2:01:b2:d6:e5:92:af:3f:fe:01:31:7f:14:c9: 22:cb:ac:11:86:db:71:ca:10:ba:f8:65:3a:44:da: f6:cd:b5:16:ea:4b:a7:59:e5:1f:51:71:6f:fc:17: 85:60:1a:d3:1d:a8:48:ba:12:c4:f6:5d:10:22:94: 33:84:36:ea:47:a9:2d:d3:64:a9:c3:98:84:9d:bc: 9d:23:60:a9:83:6e:ee:10:68:15:da:29:26:94:dc: 6a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:1C:54:55:AA:EC:DB:4A:97:FA:E8:8B:BA:11:1B:CE:6F:51:6E:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68af9002-6d9c-4a97-b412-41140a596dc9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.56.0/21 Signature Algorithm: sha256WithRSAEncryption 38:64:6f:7f:fc:ed:d3:4b:d2:90:18:74:b3:8b:c1:02:1b:4c: 4a:91:de:e9:9e:4a:56:6f:ab:1b:45:25:ae:d5:9f:f3:33:da: ce:2b:88:9c:0c:11:df:a7:8b:56:10:7b:24:19:dd:32:56:dc: 8e:e8:77:ca:40:ca:92:8d:68:e3:f7:da:12:78:81:e9:d5:f1: 56:32:96:81:a1:4c:98:56:9f:6b:d4:89:b5:1c:9e:90:4f:2f: dc:6c:05:5f:f7:29:f8:48:d7:f4:e5:57:ea:20:87:f3:eb:15: 06:cf:0e:d3:12:3d:da:c2:64:7a:1f:c8:f3:64:a7:35:c6:8d: a5:e6:b6:a1:3c:0a:f1:45:30:7a:65:0e:42:9e:23:ee:cf:e8: 36:05:86:59:84:ee:28:f8:33:3d:95:76:cc:d6:0b:79:04:50: f1:fc:fd:79:56:c7:d8:c3:3d:ed:10:70:02:3f:78:df:a5:7b: a0:cb:49:6a:a5:a2:f0:42:88:61:77:58:e9:21:f3:3c:f8:15: 16:d1:68:e2:f8:df:d2:36:e9:b0:b7:12:28:37:77:4a:c4:56: 5a:ae:80:42:08:79:7f:3f:84:fe:d8:d9:ba:14:a9:ec:22:6a: b6:d0:0e:26:cf:a4:1e:f8:12:22:25:b5:12:f9:57:5e:53:ee: 09:18:80:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP2eNBfO3Rz7BEPQE+DgfyZkisEswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAzMTIzWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NGEyZDUzZmZjYWI4MDY4ZWY0NTgzNTZlZDAzZTU5YTI5 MjJhYTY2NTZmZWIwNzQxNzkwOTAxNDM3ZWNhMmIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf0MbsnA6aEGPOfRJiy0seG9Z5niuM5/V8p5r1OITfw53a LcmaY+4YoPjWXHZ71Doy/VYq+s+nrIR5roPsAJPMboV23gVAHIkv6h++rQ5FB+JE 0qQ+6Abkx+V3Ue1eALGzbu8x/hUKvhMamumDGtxFPhssCwDK6urxCeOqeq+h6ztm EZXMLZ5nMqagXZuPzBrTBG5QMFvGH+LOrolMkOKW1XoXoiryAbLW5ZKvP/4BMX8U ySLLrBGG23HKELr4ZTpE2vbNtRbqS6dZ5R9RcW/8F4VgGtMdqEi6EsT2XRAilDOE NupHqS3TZKnDmISdvJ0jYKmDbu4QaBXaKSaU3Gq1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbxxUVars20qX+uiLuhEbzm9RblowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4YWY5MDAyLTZkOWMtNGE5Ny1iNDEyLTQxMTQwYTU5NmRjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjljgwDQYJKoZIhvcNAQELBQADggEBADhkb3/87dNL0pAYdLOLwQIbTEqR 3umeSlZvqxtFJa7Vn/Mz2s4riJwMEd+ni1YQeyQZ3TJW3I7od8pAypKNaOP32hJ4 genV8VYyloGhTJhWn2vUibUcnpBPL9xsBV/3KfhI1/TlV+ogh/PrFQbPDtMSPdrC ZHofyPNkpzXGjaXmtqE8CvFFMHplDkKeI+7P6DYFhlmE7ij4Mz2VdszWC3kEUPH8 /XlWx9jDPe0QcAI/eN+le6DLSWqlovBCiGF3WOkh8zz4FRbRaOL439I26bC3Eig3 d0rEVlqugEIIeX8/hP7Y2boUqewiarbQDibPpB74EiIltRL5V15T7gkYgP0= -----END CERTIFICATE-----Generated at Sat Apr 26 16:43:52 2025 by rpki-client