$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8213ff38-6db2-416c-9997-d93aac442a3c.roa File: 8213ff38-6db2-416c-9997-d93aac442a3c.roa (raw, json) Hash identifier: q0TPuGbO/bcST0ww2dWg3KVEmLDfma3jMF/yb11TJjc= Subject key identifier: 2B:D5:7E:CA:EB:B3:3F:2A:97:24:7C:D2:EF:07:BD:7D:14:33:B2:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3762E56BE107EF46EEDC844B697D288F381AE483 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8213ff38-6db2-416c-9997-d93aac442a3c.roa Signing time: Tue 15 Apr 2025 00:30:33 +0000 ROA not before: Tue 15 Apr 2025 00:30:33 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.40.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:62:e5:6b:e1:07:ef:46:ee:dc:84:4b:69:7d:28:8f:38:1a:e4:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:30:33 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=31da16dde19b2af4c254aa4d9ba021fd76e25c84879c07146c0fc09ab6546d02, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:30:7d:a2:74:de:f7:c1:b1:2a:00:e5:86:e4: 78:4c:14:b1:f5:0a:bb:0e:c2:e7:5d:bb:5d:a8:04: cc:0b:58:5f:7c:82:b3:92:53:fb:23:ef:ac:cf:cb: 85:93:24:e9:49:39:ff:17:ac:48:b4:f4:e3:70:62: a3:0e:d0:c8:f9:d2:aa:a0:50:a0:c1:1e:2d:6e:e4: 3e:82:f4:f3:03:a3:47:95:bb:b0:ec:5c:02:32:7c: 97:db:84:e7:8e:60:da:6d:98:74:ee:09:85:9d:f4: 18:81:49:dc:e6:5e:28:03:10:4a:5b:53:23:af:10: a1:8c:04:3d:0f:40:b1:e0:89:76:87:f3:d5:54:f6: bc:9d:39:89:d2:ed:da:25:e8:aa:8f:09:f2:c3:ba: 1d:c9:49:a8:c0:1d:f2:2e:b9:53:13:d4:1e:54:fa: 38:52:61:d6:cb:4a:55:05:fb:4c:68:9d:d3:c0:e8: e1:ef:59:9b:18:1a:af:52:68:40:e4:17:37:62:d9: 3f:a3:1c:e2:f9:45:fe:a0:e1:05:56:0e:c9:c4:4b: 46:c9:f5:18:8c:7f:45:5d:18:0c:07:bc:52:f2:0e: 37:d2:0c:95:5a:d8:50:5f:1f:8d:ae:1a:1b:79:ab: 53:ab:4b:c0:ff:19:a5:0b:bf:6e:8a:dd:0d:13:3c: 3d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D5:7E:CA:EB:B3:3F:2A:97:24:7C:D2:EF:07:BD:7D:14:33:B2:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8213ff38-6db2-416c-9997-d93aac442a3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.40.0/23 Signature Algorithm: sha256WithRSAEncryption 04:24:a9:91:18:e1:98:1a:b7:b4:5a:60:b9:4b:27:8d:09:02: 74:ec:f4:47:9b:90:22:31:2f:b7:f9:d3:7f:bf:98:ff:9a:1f: 12:8b:d0:cb:03:9c:dd:0e:c8:31:b6:55:af:b2:76:a1:4d:07: 34:73:4a:e7:bb:6a:c0:8f:fb:de:86:31:28:a0:6a:a0:5b:1f: b0:8a:af:a4:57:5e:c6:b8:4a:43:c4:e8:9e:d8:91:e4:82:51: 9f:1a:34:26:e1:1f:6d:1f:e6:10:71:12:a9:e2:14:07:0a:ef: 08:57:12:49:b5:ad:ba:c5:e9:34:60:43:e1:39:8a:2a:19:85: cd:95:db:11:17:c5:a6:12:12:f0:a9:b0:c1:4b:44:c8:b9:b2: 39:35:11:4d:76:a8:f3:ec:70:76:a2:2f:6f:d5:fb:32:ba:12: da:00:1e:c7:7b:f3:17:cf:8f:73:7b:fe:a7:bc:5b:5e:78:65: 43:e7:44:36:23:fe:71:95:55:53:fd:16:47:64:ef:bc:cd:a3: 47:b3:8d:e8:28:f2:73:9d:48:01:1a:e0:46:3c:83:ef:64:50: 64:13:ce:9f:00:6e:4f:32:4a:6f:1e:2a:0b:9b:4c:0b:72:9b: 09:fb:c0:b9:19:57:50:2e:31:c4:35:b1:e2:84:60:70:8f:ec: 45:f5:c8:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN2Lla+EH70bu3IRLaX0ojzga5IMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAzMDMzWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMWRhMTZkZGUxOWIyYWY0YzI1NGFhNGQ5YmEwMjFmZDc2 ZTI1Yzg0ODc5YzA3MTQ2YzBmYzA5YWI2NTQ2ZDAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD1MH2idN73wbEqAOWG5HhMFLH1CrsOwuddu12oBMwLWF98 grOSU/sj76zPy4WTJOlJOf8XrEi09ONwYqMO0Mj50qqgUKDBHi1u5D6C9PMDo0eV u7DsXAIyfJfbhOeOYNptmHTuCYWd9BiBSdzmXigDEEpbUyOvEKGMBD0PQLHgiXaH 89VU9rydOYnS7dol6KqPCfLDuh3JSajAHfIuuVMT1B5U+jhSYdbLSlUF+0xondPA 6OHvWZsYGq9SaEDkFzdi2T+jHOL5Rf6g4QVWDsnES0bJ9RiMf0VdGAwHvFLyDjfS DJVa2FBfH42uGht5q1OrS8D/GaULv26K3Q0TPD3FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUK9V+yuuzPyqXJHzS7we9fRQzsrswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgyMTNmZjM4LTZkYjItNDE2Yy05OTk3LWQ5M2FhYzQ0MmEzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjligwDQYJKoZIhvcNAQELBQADggEBAAQkqZEY4Zgat7RaYLlLJ40JAnTs 9EebkCIxL7f503+/mP+aHxKL0MsDnN0OyDG2Va+ydqFNBzRzSue7asCP+96GMSig aqBbH7CKr6RXXsa4SkPE6J7YkeSCUZ8aNCbhH20f5hBxEqniFAcK7whXEkm1rbrF 6TRgQ+E5iioZhc2V2xEXxaYSEvCpsMFLRMi5sjk1EU12qPPscHaiL2/V+zK6EtoA Hsd78xfPj3N7/qe8W154ZUPnRDYj/nGVVVP9Fkdk77zNo0ezjego8nOdSAEa4EY8 g+9kUGQTzp8Abk8ySm8eKgubTAtymwn7wLkZV1AuMcQ1seKEYHCP7EX1yOk= -----END CERTIFICATE-----Generated at Sat Apr 26 14:59:22 2025 by rpki-client