$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c37dc97f-f822-4490-8284-28680dd0e6ce.roa File: c37dc97f-f822-4490-8284-28680dd0e6ce.roa (raw, json) Hash identifier: T0WnxFvfV383Kz3p8SI3c/hJXT68IP6XOM+frQZHtYI= Subject key identifier: D2:0B:3A:65:72:2A:54:1B:F7:2A:53:35:B1:DF:35:D0:77:AD:C6:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E393E53D10B51FAF2EA7DDAB9570117C288A275 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c37dc97f-f822-4490-8284-28680dd0e6ce.roa Signing time: Tue 15 Apr 2025 00:32:04 +0000 ROA not before: Tue 15 Apr 2025 00:32:04 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 99.151.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:39:3e:53:d1:0b:51:fa:f2:ea:7d:da:b9:57:01:17:c2:88:a2:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 15 00:32:04 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=0a4cd2b7fe684da38919b1b5feeab4cfe1dfdc27ae0af9e4ff8aad6c3e7143dc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8d:f0:06:9d:b2:e2:42:f9:cb:e6:7e:aa:98: 22:10:21:90:c5:b3:21:2c:17:cd:ba:b9:2d:28:09: 27:6f:11:24:db:d8:5f:96:d5:58:aa:26:71:ec:b9: bd:df:93:58:cc:95:29:2d:39:ea:85:06:49:18:c7: 79:9b:5e:28:72:ff:4a:dd:1c:81:03:d4:a7:a2:6f: 0c:f2:09:08:5b:8b:b6:67:87:d6:87:b4:33:7c:b9: 50:b7:d9:d9:09:5e:c1:d8:12:ef:9e:83:c9:57:c4: 35:aa:f2:5a:2b:23:db:a7:ee:83:53:2d:70:f6:19: 68:7c:bd:f3:7e:9b:36:fc:6a:01:06:7b:3f:d8:25: 13:d8:54:5b:86:9c:bc:1a:38:dd:33:31:76:62:91: ac:f4:b7:e7:25:fa:3d:4e:df:b0:bf:82:ed:51:eb: 12:43:94:eb:9e:96:4e:5d:31:47:e8:26:b1:01:20: 81:b6:8a:db:52:08:7d:00:77:4e:fb:a3:06:50:f6: bf:df:6e:b8:a9:f3:8e:62:b7:94:3e:68:48:e4:5b: 35:71:c8:4c:ed:89:2d:3d:4a:d8:2d:bb:5d:56:e7: fc:59:32:45:a7:cb:51:8a:16:20:40:87:ad:de:8a: 12:12:fb:07:2d:13:48:46:84:e3:3e:90:e3:c6:47: 9c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:0B:3A:65:72:2A:54:1B:F7:2A:53:35:B1:DF:35:D0:77:AD:C6:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c37dc97f-f822-4490-8284-28680dd0e6ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.185.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:7e:1a:fa:bb:b1:e1:9f:79:95:2b:e9:63:97:57:20:1c:13: 26:5c:8b:e9:f1:49:ff:1f:4c:f7:14:ce:26:af:65:cf:eb:f1: 3a:39:a1:99:b9:09:9f:c0:69:7d:9b:63:78:c4:6d:74:01:1b: ed:66:a3:11:d4:f1:60:0e:97:4e:8b:38:f9:0b:e0:db:3e:43: bc:1c:05:7c:d6:90:65:1a:96:f8:22:3e:c1:99:ce:b0:7e:4f: 1d:e6:6e:a7:56:3f:e6:30:c5:db:91:e3:7c:5f:5b:08:58:98: 29:48:2b:d1:16:17:22:dc:63:c2:07:94:b2:13:08:c0:06:9d: 13:26:3c:b4:2e:2d:df:cf:15:36:70:14:c3:64:f0:24:16:c8: fb:65:8c:6e:22:a4:15:24:a6:2d:47:e9:95:6e:5e:0c:09:71: b0:26:00:42:d0:ce:50:54:51:c0:4a:b1:26:09:2d:cf:74:db: 18:4e:8a:e0:3d:4a:38:5c:b5:0f:2f:72:e4:f1:e5:cc:8a:4a: 7c:31:3a:d8:78:18:41:7a:a0:c3:a0:48:f9:78:37:c9:ec:fc: 5b:23:0c:0f:11:55:ae:2a:2d:9f:7b:ea:1f:08:30:a7:48:3a: 21:3c:b8:02:59:eb:11:3f:f9:38:4a:2f:c9:d1:cb:c5:0f:1f: 18:c5:b2:c5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPjk+U9ELUfry6n3auVcBF8KIonUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE1MDAzMjA0WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTRjZDJiN2ZlNjg0ZGEzODkxOWIxYjVmZWVhYjRjZmUx ZGZkYzI3YWUwYWY5ZTRmZjhhYWQ2YzNlNzE0M2RjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0jfAGnbLiQvnL5n6qmCIQIZDFsyEsF826uS0oCSdvESTb 2F+W1ViqJnHsub3fk1jMlSktOeqFBkkYx3mbXihy/0rdHIED1KeibwzyCQhbi7Zn h9aHtDN8uVC32dkJXsHYEu+eg8lXxDWq8lorI9un7oNTLXD2GWh8vfN+mzb8agEG ez/YJRPYVFuGnLwaON0zMXZikaz0t+cl+j1O37C/gu1R6xJDlOuelk5dMUfoJrEB IIG2ittSCH0Ad077owZQ9r/fbrip845it5Q+aEjkWzVxyEztiS09Stgtu11W5/xZ MkWny1GKFiBAh63eihIS+wctE0hGhOM+kOPGR5whAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0gs6ZXIqVBv3KlM1sd810HetxrcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MzN2RjOTdmLWY4MjItNDQ5MC04Mjg0LTI4NjgwZGQwZTZjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl7kwDQYJKoZIhvcNAQELBQADggEBAI5+Gvq7seGfeZUr6WOXVyAcEyZc i+nxSf8fTPcUziavZc/r8To5oZm5CZ/AaX2bY3jEbXQBG+1moxHU8WAOl06LOPkL 4Ns+Q7wcBXzWkGUalvgiPsGZzrB+Tx3mbqdWP+YwxduR43xfWwhYmClIK9EWFyLc Y8IHlLITCMAGnRMmPLQuLd/PFTZwFMNk8CQWyPtljG4ipBUkpi1H6ZVuXgwJcbAm AELQzlBUUcBKsSYJLc902xhOiuA9SjhctQ8vcuTx5cyKSnwxOth4GEF6oMOgSPl4 N8ns/FsjDA8RVa4qLZ976h8IMKdIOiE8uAJZ6xE/+ThKL8nRy8UPHxjFssU= -----END CERTIFICATE-----Generated at Sat Apr 26 13:30:07 2025 by rpki-client