$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d52a2426-22bb-4acf-ba82-9cc75ad6512e.roa File: d52a2426-22bb-4acf-ba82-9cc75ad6512e.roa (raw, json) Hash identifier: ZOD5gRsDhypoDKdESnNx4/JK9uXQcxtYRZCnfJLEZJs= Subject key identifier: 62:FB:CC:98:0A:09:79:AD:C4:83:0A:4E:2F:15:DD:E2:A2:0B:FF:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C355978251C8C20611049AA23AF00879EDC5D1A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d52a2426-22bb-4acf-ba82-9cc75ad6512e.roa Signing time: Tue 08 Apr 2025 00:50:23 +0000 ROA not before: Tue 08 Apr 2025 00:50:23 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:35:59:78:25:1c:8c:20:61:10:49:aa:23:af:00:87:9e:dc:5d:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:50:23 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=7a7b24365216f8b67130d4f6d0a24d53eecc05e9db67d76d569e4529a288416e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7a:c1:1c:e3:2d:60:ac:2e:aa:93:55:64:72: 96:74:38:25:b2:ac:b5:f5:2c:f0:93:09:da:e3:aa: fe:31:0c:9f:42:17:cf:e1:44:fd:8c:ec:77:42:2d: 5a:52:32:48:60:f5:94:f5:1d:6d:14:89:64:c2:e1: d2:fc:84:fb:21:cc:21:ef:06:d6:bc:98:e7:9a:f9: 0d:20:fe:86:1c:c7:ec:15:ef:a6:cf:8b:83:af:de: 1b:fe:af:56:5b:4a:59:94:2c:1d:6f:66:ed:05:41: 71:4f:42:27:5b:a3:62:83:53:9e:eb:75:39:c5:be: 99:39:7b:40:5d:d5:09:ee:40:23:ab:37:b1:69:74: a8:80:7b:50:47:00:b1:d3:bf:6f:d8:7a:ba:8c:c1: e0:79:0a:94:e1:ab:d1:5a:56:e9:73:5a:8c:ae:fc: 6f:15:76:f6:74:51:47:85:76:c6:d0:ba:6a:cb:e9: b2:0e:9a:da:d5:e1:57:3b:99:6e:b8:8f:b7:13:5c: a1:aa:ea:21:bd:c0:66:06:2c:7a:0f:4c:f3:d6:cf: ad:45:e3:bb:cd:0d:a5:ba:02:55:6d:30:70:07:39: 75:52:a8:ec:30:8b:c9:a0:08:00:e2:21:9e:21:d2: 5f:47:50:5b:71:61:b2:65:92:02:bf:ae:e7:ab:59: 22:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:FB:CC:98:0A:09:79:AD:C4:83:0A:4E:2F:15:DD:E2:A2:0B:FF:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d52a2426-22bb-4acf-ba82-9cc75ad6512e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.247.0/24 Signature Algorithm: sha256WithRSAEncryption 38:0f:15:1b:97:63:3d:bd:a1:9a:60:16:e3:bc:02:9f:60:ab: a0:27:0f:22:62:9c:81:d0:70:f6:8f:40:35:28:12:5c:76:8b: eb:0d:c2:ac:02:d3:67:01:91:f7:bb:c5:da:2e:bd:1c:c3:84: 57:f5:d1:a8:81:f0:0b:1e:74:29:f7:42:64:aa:49:fa:22:68: 22:af:e1:17:51:c6:03:4f:ec:b9:19:bb:f7:34:78:67:0f:12: 92:70:59:23:88:a8:5c:51:cd:6e:46:bb:30:be:d0:02:ee:17: 79:4c:11:bf:e5:40:71:c1:48:63:a4:f6:ff:84:d1:13:7a:a3: c8:d8:88:c3:1f:b8:1d:39:9e:b0:54:69:c5:68:63:0d:3c:9a: f8:b0:c1:09:5b:2c:ba:c9:b7:15:cd:4a:4b:6b:7a:89:7f:dc: e7:0e:9e:db:b6:38:37:98:5f:8d:80:cb:30:ed:c2:cd:95:e0: bf:5d:bd:1d:e0:4a:41:85:11:c5:fb:5a:62:49:c9:be:60:2b: 07:c2:39:0d:d9:40:7d:f8:06:50:bc:30:59:9e:ef:3a:84:42: 81:a2:d4:72:94:10:60:5a:55:ab:f3:09:04:5c:a9:24:6d:a8: d7:16:d9:e9:2b:e0:7f:cb:e4:97:9b:e4:e8:bd:16:ae:a1:50: 22:ef:8b:21 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfDVZeCUcjCBhEEmqI68Ah57cXRowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDA1MDIzWhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTdiMjQzNjUyMTZmOGI2NzEzMGQ0ZjZkMGEyNGQ1M2Vl Y2MwNWU5ZGI2N2Q3NmQ1NjllNDUyOWEyODg0MTZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjesEc4y1grC6qk1VkcpZ0OCWyrLX1LPCTCdrjqv4xDJ9C F8/hRP2M7HdCLVpSMkhg9ZT1HW0UiWTC4dL8hPshzCHvBta8mOea+Q0g/oYcx+wV 76bPi4Ov3hv+r1ZbSlmULB1vZu0FQXFPQidbo2KDU57rdTnFvpk5e0Bd1QnuQCOr N7FpdKiAe1BHALHTv2/YerqMweB5CpThq9FaVulzWoyu/G8VdvZ0UUeFdsbQumrL 6bIOmtrV4Vc7mW64j7cTXKGq6iG9wGYGLHoPTPPWz61F47vNDaW6AlVtMHAHOXVS qOwwi8mgCADiIZ4h0l9HUFtxYbJlkgK/ruerWSJvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYvvMmAoJea3EgwpOLxXd4qIL/2gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q1MmEyNDI2LTIyYmItNGFjZi1iYTgyLTljYzc1YWQ2NTEyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfcwDQYJKoZIhvcNAQELBQADggEBADgPFRuXYz29oZpgFuO8Ap9gq6An DyJinIHQcPaPQDUoElx2i+sNwqwC02cBkfe7xdouvRzDhFf10aiB8AsedCn3QmSq SfoiaCKv4RdRxgNP7LkZu/c0eGcPEpJwWSOIqFxRzW5GuzC+0ALuF3lMEb/lQHHB SGOk9v+E0RN6o8jYiMMfuB05nrBUacVoYw08mviwwQlbLLrJtxXNSktreol/3OcO ntu2ODeYX42AyzDtws2V4L9dvR3gSkGFEcX7WmJJyb5gKwfCOQ3ZQH34BlC8MFme 7zqEQoGi1HKUEGBaVavzCQRcqSRtqNcW2ekr4H/L5Jeb5Oi9Fq6hUCLviyE= -----END CERTIFICATE-----Generated at Sat Apr 26 16:44:10 2025 by rpki-client