$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00cbf30e-db75-4c8f-938b-1007226dec9b.roa File: 00cbf30e-db75-4c8f-938b-1007226dec9b.roa (raw, json) Hash identifier: pDbmZz5ykrkW4abulh91eP0ypKGmJIRZ6jMndh4v/58= Subject key identifier: 0A:8A:33:F8:8C:4B:AB:FC:1E:B6:6F:0C:D7:20:41:A2:4D:91:D3:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AABE217A702FA06EB157C6397A073845D0271A2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00cbf30e-db75-4c8f-938b-1007226dec9b.roa Signing time: Fri 04 Apr 2025 00:20:13 +0000 ROA not before: Fri 04 Apr 2025 00:20:13 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:ab:e2:17:a7:02:fa:06:eb:15:7c:63:97:a0:73:84:5d:02:71:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:20:13 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a8:e8:f6:ac:de:51:35:1d:18:a4:2f:d5:7c: a2:c6:4f:8c:08:41:65:c5:f7:c8:05:0b:0e:5c:93: a4:55:28:42:ea:4f:0a:14:21:3e:aa:f6:61:56:28: 03:7c:c3:0e:07:fc:ac:23:83:ec:dd:39:df:25:fd: d6:b9:64:68:32:cf:45:3b:32:61:94:37:17:8c:4d: 68:da:e8:de:4e:eb:03:25:0c:18:87:53:2e:0e:85: 21:f4:8f:97:69:49:ea:d6:41:6a:4f:79:0f:0c:7c: d8:a9:0e:e1:68:13:b2:ce:08:c6:cf:9b:90:14:a5: ca:a3:97:05:69:ce:3e:a8:36:f5:d9:17:99:8f:5f: 25:89:3f:08:e4:38:93:80:55:d4:ce:fb:a1:78:01: 27:8a:57:1a:4b:bd:68:e8:8b:d9:23:ca:90:b2:e1: 40:38:c6:22:b5:f1:17:19:26:fe:1a:9a:c6:ea:0c: e1:c5:e6:0c:0e:10:61:a3:55:f1:18:cc:e2:6b:43: e0:5a:ad:32:40:0d:ba:3e:d1:65:c4:24:ac:d6:ac: 57:8d:7b:0c:87:de:28:11:21:3a:4f:31:4d:86:65: f2:03:db:cb:96:72:ad:15:61:35:91:14:d7:13:95: c5:5c:0a:05:10:db:b9:0d:2f:90:92:b6:0b:97:75: f5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:8A:33:F8:8C:4B:AB:FC:1E:B6:6F:0C:D7:20:41:A2:4D:91:D3:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00cbf30e-db75-4c8f-938b-1007226dec9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.128.0/17 Signature Algorithm: sha256WithRSAEncryption 07:9e:dd:44:85:37:93:9c:5b:be:e9:ed:0d:fd:80:cf:4e:3c: 9a:ec:7b:5b:23:62:51:09:d7:6d:2f:0c:b3:b4:be:e9:16:5e: 45:68:8a:82:cf:0b:a8:c0:af:ed:4b:3c:ba:d6:bd:2d:83:4f: fa:19:73:a9:72:e5:24:8a:00:5f:87:b9:40:4f:bb:fa:38:84: 88:21:9e:15:8a:9e:71:75:de:bf:3e:ad:ca:91:21:55:3b:31: dd:9d:c9:c1:23:52:c7:0f:a5:5f:95:50:ff:42:55:d1:0b:64: 41:44:0d:44:78:78:6a:77:69:8a:24:a6:0c:fa:87:36:f8:35: 0a:69:90:18:d1:aa:97:6b:69:05:31:fe:a6:90:23:d5:71:a0: f4:7e:87:7d:75:b4:ea:be:85:f3:d3:6b:85:bd:ae:28:c1:08: 1d:fe:dc:03:1a:de:11:68:b5:66:86:20:3a:14:39:2a:b0:fb: 28:6f:d2:0f:79:79:32:47:49:b1:9d:ca:51:aa:f6:d3:bc:1d: 31:ae:ca:c2:40:19:41:96:bd:8d:08:76:25:b9:e6:13:04:da: ff:a3:db:45:24:05:88:af:3d:bb:01:60:b9:f7:e1:c3:5b:74: a6:96:d2:e0:fa:c9:bf:04:dd:ab:8d:59:ae:b5:6a:47:68:07: 74:f4:77:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKqviF6cC+gbrFXxjl6BzhF0CcaIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAyMDEzWhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzcxNjJmM2ZlYTgyNWVjMWE5OTdkNTNjMzBiNzFmMDA1 N2MwNTI1NDdlNjNmZGU5OTVkNmFmNWEzNTlmMGYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMqOj2rN5RNR0YpC/VfKLGT4wIQWXF98gFCw5ck6RVKELq TwoUIT6q9mFWKAN8ww4H/Kwjg+zdOd8l/da5ZGgyz0U7MmGUNxeMTWja6N5O6wMl DBiHUy4OhSH0j5dpSerWQWpPeQ8MfNipDuFoE7LOCMbPm5AUpcqjlwVpzj6oNvXZ F5mPXyWJPwjkOJOAVdTO+6F4ASeKVxpLvWjoi9kjypCy4UA4xiK18RcZJv4amsbq DOHF5gwOEGGjVfEYzOJrQ+BarTJADbo+0WXEJKzWrFeNewyH3igRITpPMU2GZfID 28uWcq0VYTWRFNcTlcVcCgUQ27kNL5CStguXdfUHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCooz+IxLq/wetm8M1yBBok2R0+YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAwY2JmMzBlLWRiNzUtNGM4Zi05MzhiLTEwMDcyMjZkZWM5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjTYAwDQYJKoZIhvcNAQELBQADggEBAAee3USFN5OcW77p7Q39gM9OPJrs e1sjYlEJ120vDLO0vukWXkVoioLPC6jAr+1LPLrWvS2DT/oZc6ly5SSKAF+HuUBP u/o4hIghnhWKnnF13r8+rcqRIVU7Md2dycEjUscPpV+VUP9CVdELZEFEDUR4eGp3 aYokpgz6hzb4NQppkBjRqpdraQUx/qaQI9VxoPR+h311tOq+hfPTa4W9rijBCB3+ 3AMa3hFotWaGIDoUOSqw+yhv0g95eTJHSbGdylGq9tO8HTGuysJAGUGWvY0IdiW5 5hME2v+j20UkBYivPbsBYLn34cNbdKaW0uD6yb8E3auNWa61akdoB3T0d9c= -----END CERTIFICATE-----Generated at Sat Apr 5 10:53:14 2025 by rpki-client