$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30f734a0-9e04-47f5-ad60-e34bea5ab9ec.roa File: 30f734a0-9e04-47f5-ad60-e34bea5ab9ec.roa (raw, json) Hash identifier: saH9lEpjOoe3pS+JnSECuobZMWGFKdDlzRUcxoQJXr4= Subject key identifier: FB:65:8E:5B:C9:33:E7:C5:A1:68:25:C8:73:60:EE:B9:A1:BB:B5:AA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52D77D8116326BAC7A3124C8EF58FEC412B74EF7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30f734a0-9e04-47f5-ad60-e34bea5ab9ec.roa Signing time: Fri 21 Mar 2025 00:22:03 +0000 ROA not before: Fri 21 Mar 2025 00:22:03 +0000 ROA not after: Fri 25 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:d7:7d:81:16:32:6b:ac:7a:31:24:c8:ef:58:fe:c4:12:b7:4e:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 21 00:22:03 2025 GMT Not After : Apr 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d4:c6:53:e9:02:e3:48:71:6d:a3:9a:fd:6b: b1:1d:58:6c:dd:5b:6c:8a:9c:42:d7:5e:dc:44:8f: 98:07:ad:b6:af:8e:74:54:5e:38:90:ca:7c:aa:90: 1c:aa:ad:f1:c4:2a:d1:6f:32:a3:f6:59:98:90:13: b2:bf:73:4a:87:05:44:bf:fc:37:ae:53:88:8f:c1: e5:02:d1:17:88:4c:43:a6:2c:6a:bb:b0:6b:3f:98: 67:3e:d6:3d:8b:87:30:ae:aa:2e:0b:1b:38:94:fc: 25:bc:3c:1e:da:1e:b7:86:ca:df:2a:dd:b1:2d:fe: ac:1a:4b:ea:83:5e:6f:f9:ea:28:31:90:f0:30:af: 8c:80:23:a5:e3:82:d2:f8:56:92:e0:fb:62:1d:00: 41:82:0d:50:25:c3:98:b7:2f:d9:cf:4a:62:53:d3: df:8f:8c:62:44:33:b0:9d:b2:7e:cf:69:d0:e0:c4: ee:a3:f7:62:db:cf:6d:67:cc:40:63:45:76:1d:67: 6a:56:ad:8d:f3:f2:a5:5f:51:05:72:3f:be:fb:03: 62:32:ae:2b:60:ba:ea:8c:da:1e:b5:c7:96:3f:9c: 11:46:96:5f:51:e0:40:27:61:73:dd:a4:7f:ce:1d: e8:db:9c:af:0d:1a:31:58:a3:e1:51:f5:9c:51:04: 41:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:65:8E:5B:C9:33:E7:C5:A1:68:25:C8:73:60:EE:B9:A1:BB:B5:AA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30f734a0-9e04-47f5-ad60-e34bea5ab9ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.58.0/23 Signature Algorithm: sha256WithRSAEncryption 90:89:37:2c:44:54:84:06:71:06:17:5e:0c:11:e7:1b:5c:3f: e0:3e:1f:14:c3:b4:1d:f4:10:23:47:42:84:87:cd:29:22:b1: 8e:81:8c:0d:af:e2:33:05:86:ac:9e:71:64:54:74:9d:b9:41: 02:1e:69:91:1a:2e:72:ad:19:dd:ac:62:a3:dc:d9:70:e9:fe: ca:43:98:77:5d:d8:ee:17:8b:c4:67:0e:04:f5:bf:2b:c3:7c: 66:88:e3:51:00:a8:8a:03:95:48:79:46:2e:71:b3:a5:15:12: 33:97:ab:6e:e7:1f:85:26:51:eb:1f:0d:16:ef:6d:8b:66:40: 3a:c2:ae:eb:86:0a:aa:a9:49:f8:77:97:ee:c1:e1:6b:df:28: 1c:ef:16:d8:4d:d6:cc:3e:7b:d6:23:a4:04:d0:59:76:bf:5d: e5:6a:4a:8b:25:ee:d8:0a:a9:b5:5f:e1:c3:3e:97:a2:fb:bf: 42:88:90:77:4c:cd:da:c4:5f:25:8a:40:15:96:fa:c6:37:7f: 61:46:4c:4c:1a:17:ce:10:1d:84:1b:ac:18:75:7a:f7:39:bc: de:3a:67:29:34:3c:16:1c:82:b1:fb:1b:34:c0:bb:c1:be:a6: 95:d4:23:a7:9f:1e:cd:cf:88:db:93:5f:18:cf:c5:d2:28:4c: 20:89:de:3b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUtd9gRYya6x6MSTI71j+xBK3TvcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzIxMDAyMjAzWhcNMjUwNDI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZWM3ZGVmZDA0ZWE0MGY0NzdkOTY0YzA2ODYzMmNkNjEy OWQxZWM3ZWE2YzEyNDFmNjBhOTc0MDQyMTBhNjMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw1MZT6QLjSHFto5r9a7EdWGzdW2yKnELXXtxEj5gHrbav jnRUXjiQynyqkByqrfHEKtFvMqP2WZiQE7K/c0qHBUS//DeuU4iPweUC0ReITEOm LGq7sGs/mGc+1j2LhzCuqi4LGziU/CW8PB7aHreGyt8q3bEt/qwaS+qDXm/56igx kPAwr4yAI6XjgtL4VpLg+2IdAEGCDVAlw5i3L9nPSmJT09+PjGJEM7Cdsn7PadDg xO6j92Lbz21nzEBjRXYdZ2pWrY3z8qVfUQVyP777A2IyritguuqM2h61x5Y/nBFG ll9R4EAnYXPdpH/OHejbnK8NGjFYo+FR9ZxRBEG1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+2WOW8kz58WhaCXIc2DuuaG7taowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMwZjczNGEwLTllMDQtNDdmNS1hZDYwLWUzNGJlYTVhYjllYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjljowDQYJKoZIhvcNAQELBQADggEBAJCJNyxEVIQGcQYXXgwR5xtcP+A+ HxTDtB30ECNHQoSHzSkisY6BjA2v4jMFhqyecWRUdJ25QQIeaZEaLnKtGd2sYqPc 2XDp/spDmHdd2O4Xi8RnDgT1vyvDfGaI41EAqIoDlUh5Ri5xs6UVEjOXq27nH4Um UesfDRbvbYtmQDrCruuGCqqpSfh3l+7B4WvfKBzvFthN1sw+e9YjpATQWXa/XeVq Sosl7tgKqbVf4cM+l6L7v0KIkHdMzdrEXyWKQBWW+sY3f2FGTEwaF84QHYQbrBh1 evc5vN46Zyk0PBYcgrH7GzTAu8G+ppXUI6efHs3PiNuTXxjPxdIoTCCJ3js= -----END CERTIFICATE-----Generated at Sat Apr 5 11:13:57 2025 by rpki-client