$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8fcd08bd-8804-431a-91b2-125f53ab7f0b.roa File: 8fcd08bd-8804-431a-91b2-125f53ab7f0b.roa (raw, json) Hash identifier: PrxzaiWF4gMgFQ/Y+K9v/l8BIc0ikWluDnFNeInzl1Q= Subject key identifier: 81:7C:6B:02:3C:35:25:B5:09:A8:47:0C:E4:66:33:A4:8D:0D:BE:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C985FD94931104A6EF3C1640EEA52405D2516DA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8fcd08bd-8804-431a-91b2-125f53ab7f0b.roa Signing time: Sat 15 Mar 2025 00:50:43 +0000 ROA not before: Sat 15 Mar 2025 00:50:43 +0000 ROA not after: Sat 19 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:98:5f:d9:49:31:10:4a:6e:f3:c1:64:0e:ea:52:40:5d:25:16:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 15 00:50:43 2025 GMT Not After : Apr 19 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8d:e5:37:4e:82:be:a2:54:19:4b:d9:95:50: 38:14:4d:18:0a:70:aa:4b:92:3b:b3:ce:99:0b:c8: 74:a4:97:8b:aa:81:5a:15:db:07:1e:c8:27:ea:bf: 3c:90:6e:ac:68:44:73:94:f8:6f:c8:80:c6:ca:d6: 92:73:53:f8:6a:dd:c7:79:db:5b:29:ab:05:8d:0c: db:8b:2d:fc:b6:8a:f0:2e:78:1a:4c:7d:e0:bb:d7: d4:2e:03:2b:56:f1:ef:1b:56:31:74:0d:9a:4b:e7: dc:3b:8f:35:30:35:21:45:d5:09:48:6a:2a:c8:f8: 0b:7f:9e:58:57:92:bd:8a:87:fe:a4:4a:a4:ce:69: 28:b7:64:09:ce:53:22:98:5d:6b:d5:67:cd:04:16: 66:58:53:73:3d:c8:a9:a5:d1:9c:4c:d9:55:38:d1: ad:76:4d:11:02:34:3a:2f:06:6d:35:37:cf:c4:aa: 58:69:64:2f:bf:2f:38:3e:a2:19:50:66:54:0f:2f: d7:37:63:d6:8f:b9:6c:6f:6b:d4:26:34:34:bc:f8: be:fb:80:e1:d0:a0:ec:95:02:82:2f:92:3f:a7:c7: 5a:8a:40:be:57:03:b3:3f:e1:8f:57:8d:f2:d5:ef: 7a:92:6f:a6:a3:97:a5:ad:d4:4a:8a:50:f7:a1:0c: 7f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:7C:6B:02:3C:35:25:B5:09:A8:47:0C:E4:66:33:A4:8D:0D:BE:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8fcd08bd-8804-431a-91b2-125f53ab7f0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.145.0/24 Signature Algorithm: sha256WithRSAEncryption 77:a2:5e:6e:df:af:2a:0b:68:d6:5f:ef:7f:8e:f5:39:fd:56: 14:04:8d:da:69:33:a0:0a:54:59:35:63:e8:b0:f7:5c:da:1b: 2c:c0:ce:a3:df:c7:45:34:bd:28:40:76:d1:cf:5a:70:53:89: d1:39:22:77:17:a6:4f:52:3d:02:ac:eb:70:73:bd:f9:1e:01: d3:4d:86:28:47:37:79:b4:b8:3d:fc:02:58:55:c6:55:8d:aa: 4c:56:cf:84:1d:54:a3:90:cf:3a:46:11:6d:75:56:a7:a6:0f: 77:be:6d:cb:9b:16:47:06:c9:56:7d:62:c1:43:36:e7:c5:a4: 7c:ec:21:c9:a2:c6:81:3d:b0:cc:39:e5:7b:05:03:e1:1a:98: da:e6:d5:5e:fa:9c:ea:84:21:36:d2:03:8a:7a:44:72:b9:c3: d8:63:78:20:db:ee:b9:56:a7:98:b8:e1:49:f9:db:3d:c9:a5: a8:59:96:88:8c:fa:72:32:a1:04:c4:ee:2c:eb:40:5f:91:3f: 24:23:0f:55:f1:82:8a:bf:b6:bf:a2:80:9f:e2:23:98:fe:fd: 7a:68:db:0a:a7:16:ec:c9:8c:28:6a:42:22:e1:7e:29:a7:77: 4d:86:90:22:88:bc:e8:c1:5d:28:71:56:40:ac:ef:5f:10:39: 16:32:b9:99 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPJhf2UkxEEpu88FkDupSQF0lFtowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE1MDA1MDQzWhcNMjUwNDE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNWQ0ODM5Y2FkMjNiZWZjOTdiNjljOGU2YmUwYjIyYmVi ZTAzNWQ5MzNhZmVkZTRiMWUzZjY4ZGRjZTM5OWU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChjeU3ToK+olQZS9mVUDgUTRgKcKpLkjuzzpkLyHSkl4uq gVoV2wceyCfqvzyQbqxoRHOU+G/IgMbK1pJzU/hq3cd521spqwWNDNuLLfy2ivAu eBpMfeC719QuAytW8e8bVjF0DZpL59w7jzUwNSFF1QlIairI+At/nlhXkr2Kh/6k SqTOaSi3ZAnOUyKYXWvVZ80EFmZYU3M9yKml0ZxM2VU40a12TRECNDovBm01N8/E qlhpZC+/Lzg+ohlQZlQPL9c3Y9aPuWxva9QmNDS8+L77gOHQoOyVAoIvkj+nx1qK QL5XA7M/4Y9XjfLV73qSb6ajl6Wt1EqKUPehDH+pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgXxrAjw1JbUJqEcM5GYzpI0NvhIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmY2QwOGJkLTg4MDQtNDMxYS05MWIyLTEyNWY1M2FiN2YwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZEwDQYJKoZIhvcNAQELBQADggEBAHeiXm7fryoLaNZf73+O9Tn9VhQE jdppM6AKVFk1Y+iw91zaGyzAzqPfx0U0vShAdtHPWnBTidE5IncXpk9SPQKs63Bz vfkeAdNNhihHN3m0uD38AlhVxlWNqkxWz4QdVKOQzzpGEW11VqemD3e+bcubFkcG yVZ9YsFDNufFpHzsIcmixoE9sMw55XsFA+EamNrm1V76nOqEITbSA4p6RHK5w9hj eCDb7rlWp5i44Un52z3JpahZloiM+nIyoQTE7izrQF+RPyQjD1Xxgoq/tr+igJ/i I5j+/Xpo2wqnFuzJjChqQiLhfimnd02GkCKIvOjBXShxVkCs718QORYyuZk= -----END CERTIFICATE-----Generated at Sat Apr 5 16:50:46 2025 by rpki-client