$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c8e082-8d94-40aa-ab10-227e1c1538ab.roa File: 99c8e082-8d94-40aa-ab10-227e1c1538ab.roa (raw, json) Hash identifier: knUBjCjX2vl4IMg8ikeNfL8y+7xd6f43fcrNNIEFBko= Subject key identifier: E0:60:D4:A7:8F:FB:0F:33:FB:77:9F:18:42:CD:28:63:B7:F8:2D:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E4954ADED122B3BD73D4F57CDD8272B37012E28 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c8e082-8d94-40aa-ab10-227e1c1538ab.roa Signing time: Fri 25 Apr 2025 15:01:20 +0000 ROA not before: Fri 25 Apr 2025 15:01:20 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 75.101.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:49:54:ad:ed:12:2b:3b:d7:3d:4f:57:cd:d8:27:2b:37:01:2e:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 25 15:01:20 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=72655fbc5ce134580b80dbcc9ebb614c3a9484a337c22c8766c3c94ccd6d120e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:52:76:8f:2d:95:a8:de:be:b8:8e:66:dd:8e: ab:7a:9e:ab:02:cb:a3:f8:f1:30:5f:d0:da:02:2a: ba:5d:15:3f:7c:29:73:0f:b3:bd:8f:1d:bd:b4:8b: d7:ba:09:97:b0:13:8e:49:72:ae:47:f1:11:83:cd: a9:79:05:3d:4e:df:d2:05:ba:eb:18:26:f7:02:dc: 7f:50:a5:4c:59:36:dd:f6:62:7b:d2:48:a0:de:3c: e7:fe:bf:65:7b:5a:18:83:f9:3c:cd:27:82:04:2e: e8:56:c8:e4:6b:5b:91:4a:21:91:e4:b2:d0:59:91: 6a:1c:11:50:50:3a:17:d0:9c:6f:c3:c2:bd:00:1a: b5:0b:bd:7e:24:63:b5:67:fb:f9:e3:ae:84:fb:3b: 87:24:29:0d:25:48:57:b5:67:c8:f8:c3:e5:1b:36: 6f:f7:0d:a6:54:68:e3:11:94:99:46:05:18:23:25: 2e:9d:60:24:26:72:64:f5:ec:c4:2b:a3:ba:01:64: 5d:7a:81:63:c6:26:30:7a:d6:e5:ae:a0:30:fa:c9: 6a:a5:a5:30:97:37:55:53:dc:27:2f:f1:fd:aa:fc: 98:f2:f6:47:41:27:08:dc:c2:dd:3c:60:bc:e1:9a: 24:69:95:0e:b8:54:87:48:62:6b:be:4d:12:78:47: 27:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:60:D4:A7:8F:FB:0F:33:FB:77:9F:18:42:CD:28:63:B7:F8:2D:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c8e082-8d94-40aa-ab10-227e1c1538ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.101.162.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:c9:82:ae:e4:95:80:1e:ab:58:93:13:d4:1f:2d:de:f5:53: 69:ef:7e:8b:43:10:b0:3b:bd:11:0e:ae:07:3a:6d:fc:a9:09: 28:e5:06:0b:71:68:4f:b1:fb:cf:45:46:95:cf:ab:87:27:07: 83:f4:03:9e:45:d0:4b:1f:8a:64:7d:30:0f:64:f6:cd:e2:e6: ea:e2:58:6d:8b:85:46:f5:e9:59:4b:19:43:6b:c4:ad:b8:6e: fc:a8:f1:35:3f:7c:50:10:26:77:8b:18:79:34:5b:95:42:6f: 99:e4:4a:ab:c7:e2:dd:50:b5:44:ff:e3:40:24:f7:b6:5d:7f: d0:74:de:cd:d5:74:12:97:bd:8d:ef:89:86:c9:a9:c7:1b:bd: 0e:73:6d:fa:71:bc:ac:34:e4:ad:dc:fd:c8:17:92:41:97:99: c9:40:d0:ee:2a:93:4b:23:5e:0b:2f:10:ac:44:9f:c0:2d:39: fe:53:47:89:ba:2d:e1:37:ec:eb:c4:f0:14:bd:61:24:f9:8e: 01:6c:06:df:5c:ac:66:e3:ff:f4:f3:d1:ad:d1:07:41:50:54: e7:f6:09:d8:b6:16:f1:82:ae:78:83:35:a5:21:ab:fb:78:12: 3a:47:c7:01:ab:6c:d2:5b:34:97:f1:e4:a0:95:d8:65:87:21: 17:c9:4b:f4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPklUre0SKzvXPU9XzdgnKzcBLigwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI1MTUwMTIwWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjY1NWZiYzVjZTEzNDU4MGI4MGRiY2M5ZWJiNjE0YzNh OTQ4NGEzMzdjMjJjODc2NmMzYzk0Y2NkNmQxMjBlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJUnaPLZWo3r64jmbdjqt6nqsCy6P48TBf0NoCKrpdFT98 KXMPs72PHb20i9e6CZewE45Jcq5H8RGDzal5BT1O39IFuusYJvcC3H9QpUxZNt32 YnvSSKDePOf+v2V7WhiD+TzNJ4IELuhWyORrW5FKIZHkstBZkWocEVBQOhfQnG/D wr0AGrULvX4kY7Vn+/njroT7O4ckKQ0lSFe1Z8j4w+UbNm/3DaZUaOMRlJlGBRgj JS6dYCQmcmT17MQro7oBZF16gWPGJjB61uWuoDD6yWqlpTCXN1VT3Ccv8f2q/Jjy 9kdBJwjcwt08YLzhmiRplQ64VIdIYmu+TRJ4Ryf/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4GDUp4/7DzP7d58YQs0oY7f4LeswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5YzhlMDgyLThkOTQtNDBhYS1hYjEwLTIyN2UxYzE1MzhhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFLZaIwDQYJKoZIhvcNAQELBQADggEBAJzJgq7klYAeq1iTE9QfLd71U2nv fotDELA7vREOrgc6bfypCSjlBgtxaE+x+89FRpXPq4cnB4P0A55F0EsfimR9MA9k 9s3i5uriWG2LhUb16VlLGUNrxK24bvyo8TU/fFAQJneLGHk0W5VCb5nkSqvH4t1Q tUT/40Ak97Zdf9B03s3VdBKXvY3viYbJqccbvQ5zbfpxvKw05K3c/cgXkkGXmclA 0O4qk0sjXgsvEKxEn8AtOf5TR4m6LeE37OvE8BS9YST5jgFsBt9crGbj//Tz0a3R B0FQVOf2Cdi2FvGCrniDNaUhq/t4EjpHxwGrbNJbNJfx5KCV2GWHIRfJS/Q= -----END CERTIFICATE-----Generated at Sat Apr 26 13:33:38 2025 by rpki-client