$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189fe35-f464-4842-bd64-d80fe1cd1e2a.roa File: f189fe35-f464-4842-bd64-d80fe1cd1e2a.roa (raw, json) Hash identifier: qJWRYOy7eeCz3yFcnmkLVkdeSZVMz2O4Tc07U/sW9QE= Subject key identifier: 3B:A8:4C:8D:2B:61:0E:46:35:61:E3:EB:A6:02:4A:EF:8F:A1:E9:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E659A86EB16BE02170658ABB480A2850C66CC7F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189fe35-f464-4842-bd64-d80fe1cd1e2a.roa Signing time: Fri 30 May 2025 00:41:21 +0000 ROA not before: Fri 30 May 2025 00:41:21 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:65:9a:86:eb:16:be:02:17:06:58:ab:b4:80:a2:85:0c:66:cc:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:41:21 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=b81ecb744c6165c0003977be9572aa7ea80b66afd781cff6939dbfa789d05f3b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a4:66:ec:4b:b1:f2:14:0f:51:03:84:fb:23: 9c:52:06:cc:06:34:bf:18:23:87:46:2e:2c:32:f0: 03:a1:2f:8d:bc:9a:f6:6a:87:6c:54:80:18:3b:9e: 7a:2a:a7:34:79:ab:aa:c9:65:bb:b9:17:a1:29:39: 64:1b:f2:3e:6e:c0:a7:94:47:6a:f1:22:bb:fa:7d: e2:3a:a6:e3:b5:33:3b:92:d4:a6:03:11:a2:cc:11: d5:f2:ab:61:92:ec:24:72:b3:9f:cf:fd:cb:c0:ac: fd:5a:dd:ee:1f:db:05:dc:39:20:2b:5c:ef:7a:17: 28:31:10:6d:8a:2c:0f:6d:fb:93:dc:5e:d7:53:66: de:64:66:b4:1f:c1:07:7c:6a:5e:de:83:7d:c0:6f: 7e:a7:97:32:c9:0a:d9:4c:2c:bb:1a:58:12:30:9b: 54:25:e1:3a:e8:c0:5d:57:81:35:32:6a:24:b7:bf: fe:26:10:a5:a7:02:59:5e:f4:9f:db:ff:2d:e9:7d: 45:6b:41:fc:83:b8:81:1e:fe:ce:ae:f7:df:e3:9c: 8f:68:93:d4:71:4b:3d:c3:21:09:6c:27:03:74:50: f7:04:8b:0f:a2:1d:20:81:80:00:23:ff:db:58:5b: 33:5d:65:d4:dd:a2:8c:40:4f:b7:12:86:9c:12:9d: 73:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:A8:4C:8D:2B:61:0E:46:35:61:E3:EB:A6:02:4A:EF:8F:A1:E9:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189fe35-f464-4842-bd64-d80fe1cd1e2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.254.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:38:d1:17:59:50:70:e6:2a:e8:97:38:91:6b:cd:6c:b9:95: 03:43:54:71:e2:dd:c6:97:b1:78:a7:06:b5:08:6a:0c:1a:e5: 45:05:10:32:f1:37:81:e7:0f:d6:95:e7:de:67:13:5e:15:8b: c2:dc:26:73:87:8b:f9:0a:51:e0:b7:65:3f:d4:0f:99:8c:89: d2:7f:23:c1:1f:f8:c2:e2:7f:08:53:89:9e:d2:69:3b:80:37: d7:2b:73:2e:71:3c:aa:02:5f:71:0a:e6:d8:6c:4a:0a:6b:f7: 81:17:30:99:5f:80:fa:ab:d6:a0:df:18:8a:55:2d:e3:6e:2f: 1f:87:97:83:9e:0e:2a:37:85:31:dc:75:52:10:1c:94:67:b4: a9:d0:93:99:aa:02:f9:c8:29:0a:bc:3f:c4:83:fd:84:30:3c: 35:41:00:4b:72:c7:3f:a3:a8:d5:35:42:ed:13:b1:64:a4:dd: e7:23:e6:ac:eb:ad:ae:55:c6:b2:65:7d:9c:66:67:19:3d:80: 67:b2:81:67:27:48:3a:1b:61:68:ce:d3:f3:e0:b7:91:5c:1e: 49:17:52:99:3c:02:11:5e:42:30:11:24:fb:2f:be:ad:5f:eb: e8:83:73:c6:af:64:22:96:4a:1b:d6:78:6e:6f:df:0f:b2:74: df:27:0a:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULmWahusWvgIXBlirtICihQxmzH8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDA0MTIxWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiODFlY2I3NDRjNjE2NWMwMDAzOTc3YmU5NTcyYWE3ZWE4 MGI2NmFmZDc4MWNmZjY5MzlkYmZhNzg5ZDA1ZjNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCipGbsS7HyFA9RA4T7I5xSBswGNL8YI4dGLiwy8AOhL428 mvZqh2xUgBg7nnoqpzR5q6rJZbu5F6EpOWQb8j5uwKeUR2rxIrv6feI6puO1MzuS 1KYDEaLMEdXyq2GS7CRys5/P/cvArP1a3e4f2wXcOSArXO96FygxEG2KLA9t+5Pc XtdTZt5kZrQfwQd8al7eg33Ab36nlzLJCtlMLLsaWBIwm1Ql4TrowF1XgTUyaiS3 v/4mEKWnAlle9J/b/y3pfUVrQfyDuIEe/s6u99/jnI9ok9RxSz3DIQlsJwN0UPcE iw+iHSCBgAAj/9tYWzNdZdTdooxAT7cShpwSnXNbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUO6hMjSthDkY1YePrpgJK74+h6TUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxODlmZTM1LWY0NjQtNDg0Mi1iZDY0LWQ4MGZlMWNkMWUyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTf4wDQYJKoZIhvcNAQELBQADggEBACo40RdZUHDmKuiXOJFrzWy5lQND VHHi3caXsXinBrUIagwa5UUFEDLxN4HnD9aV595nE14Vi8LcJnOHi/kKUeC3ZT/U D5mMidJ/I8Ef+MLifwhTiZ7SaTuAN9crcy5xPKoCX3EK5thsSgpr94EXMJlfgPqr 1qDfGIpVLeNuLx+Hl4OeDio3hTHcdVIQHJRntKnQk5mqAvnIKQq8P8SD/YQwPDVB AEtyxz+jqNU1Qu0TsWSk3ecj5qzrra5VxrJlfZxmZxk9gGeygWcnSDobYWjO0/Pg t5FcHkkXUpk8AhFeQjARJPsvvq1f6+iDc8avZCKWShvWeG5v3w+ydN8nCio= -----END CERTIFICATE-----Generated at Sat Jun 14 18:59:25 2025 by rpki-client