$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae8d221b-7c83-4dd1-ba17-96784666216f.roa File: ae8d221b-7c83-4dd1-ba17-96784666216f.roa (raw, json) Hash identifier: sIA5g6NbWyNcIuP7FESlV0tUtchaxj5X8t2m2+iKthA= Subject key identifier: 1A:08:05:62:E7:A3:04:6A:44:4D:DF:2B:6C:D8:E9:AB:22:FF:08:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 375DC347AA934C92B78FCC9B77F610EA499AA7CA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae8d221b-7c83-4dd1-ba17-96784666216f.roa Signing time: Fri 14 Mar 2025 15:01:08 +0000 ROA not before: Fri 14 Mar 2025 15:01:08 +0000 ROA not after: Fri 18 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.83.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:5d:c3:47:aa:93:4c:92:b7:8f:cc:9b:77:f6:10:ea:49:9a:a7:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 14 15:01:08 2025 GMT Not After : Apr 18 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:08:07:c9:51:04:03:2b:64:ff:b1:f5:0c:ff: 65:bf:c4:fc:fc:d4:c3:3a:e5:2d:b6:43:03:9d:05: c1:17:45:3b:6b:73:b7:c6:a6:1a:2e:c5:2e:64:37: 66:bb:e0:1e:3e:5f:d1:a4:d8:d4:6b:ff:be:fa:c6: 13:91:db:c2:e1:62:d9:8c:b7:a8:33:cf:eb:6c:21: a8:48:0c:68:ac:3a:25:c0:81:73:0a:4c:7b:03:5d: c3:62:8b:ce:d4:ee:c4:a0:83:3d:67:2a:cd:7f:d5: b0:d3:ef:97:b3:66:cb:21:1d:75:6b:40:f4:65:40: ad:b4:df:64:f5:5b:35:17:71:aa:a5:53:7d:bf:01: 72:c6:81:b3:58:28:85:4b:5f:04:75:d5:0e:d0:33: 67:c9:32:2f:a2:30:08:28:e3:7a:40:e7:ee:f6:9e: 1e:fa:8d:0a:fa:44:69:b5:b7:65:10:f7:1a:1a:62: 95:42:94:5c:f0:33:87:e6:1d:a8:c9:3f:33:c4:7f: 56:3f:13:02:0e:5e:a5:55:58:29:62:a0:ea:d2:b3: ed:12:f3:18:ba:7f:b1:ac:39:ea:9c:68:52:77:ab: 80:31:a2:b3:da:c1:26:4e:9c:4c:16:f8:d0:f4:36: 8a:62:90:e7:28:e3:e9:2b:d5:da:0e:7e:e2:80:47: 64:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:08:05:62:E7:A3:04:6A:44:4D:DF:2B:6C:D8:E9:AB:22:FF:08:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae8d221b-7c83-4dd1-ba17-96784666216f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.83.64.0/18 Signature Algorithm: sha256WithRSAEncryption 47:68:9a:ce:b9:97:bc:d4:a1:fa:d4:c4:39:3d:57:ae:21:53: 24:19:90:c9:92:c0:8c:ff:85:6c:a0:92:25:19:2c:53:97:46: 4b:73:d9:13:43:f2:bf:8a:4c:ba:bb:17:b6:7b:ee:d7:94:08: 3b:d8:2f:67:e2:5a:ab:32:b0:64:9b:78:35:91:f6:4d:63:df: e3:4d:32:1d:57:c2:f3:cc:9a:15:c0:0a:a4:b1:82:8d:bc:66: de:7b:d0:71:16:64:1e:48:4f:4c:ba:64:25:3c:6c:01:2a:de: 2b:fd:af:dd:1f:ac:8e:d9:fe:8f:13:07:50:b7:bb:17:39:5f: 69:e9:79:fb:85:45:06:56:52:0a:37:f9:d2:e3:e7:40:99:4f: 28:6e:42:6c:75:3e:fb:cf:75:e2:ff:1c:4d:53:5d:16:4f:ac: bb:93:23:01:82:7a:b2:40:81:9b:ab:ab:c8:68:d0:ff:29:ca: 91:9c:c5:dc:c7:ad:ec:38:36:ed:20:1b:8c:fe:61:96:b4:69: 3c:a1:ae:a5:5c:dd:24:88:1b:37:37:eb:78:20:2d:93:60:cd: 68:c6:28:a7:4f:f9:d7:92:c7:05:35:8a:64:08:6b:c0:bb:d9: ed:90:76:e8:c1:9c:f9:92:cf:ab:fa:24:30:5f:5e:d4:a6:be: 4b:46:08:5b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN13DR6qTTJK3j8ybd/YQ6kmap8owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE0MTUwMTA4WhcNMjUwNDE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMmU4ZWIzYmUyNTJkMjI1MTljN2U3NDFhNTYzOTg2NGYz OGIyNWE4MGNmMTE2MTQ2ZTNjMzZkNTA5Y2JlZDk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTCAfJUQQDK2T/sfUM/2W/xPz81MM65S22QwOdBcEXRTtr c7fGphouxS5kN2a74B4+X9Gk2NRr/776xhOR28LhYtmMt6gzz+tsIahIDGisOiXA gXMKTHsDXcNii87U7sSggz1nKs1/1bDT75ezZsshHXVrQPRlQK2032T1WzUXcaql U32/AXLGgbNYKIVLXwR11Q7QM2fJMi+iMAgo43pA5+72nh76jQr6RGm1t2UQ9xoa YpVClFzwM4fmHajJPzPEf1Y/EwIOXqVVWClioOrSs+0S8xi6f7GsOeqcaFJ3q4Ax orPawSZOnEwW+ND0NopikOco4+kr1doOfuKAR2SZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGggFYuejBGpETd8rbNjpqyL/CFAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlOGQyMjFiLTdjODMtNGRkMS1iYTE3LTk2Nzg0NjY2MjE2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjU0AwDQYJKoZIhvcNAQELBQADggEBAEdoms65l7zUofrUxDk9V64hUyQZ kMmSwIz/hWygkiUZLFOXRktz2RND8r+KTLq7F7Z77teUCDvYL2fiWqsysGSbeDWR 9k1j3+NNMh1XwvPMmhXACqSxgo28Zt570HEWZB5IT0y6ZCU8bAEq3iv9r90frI7Z /o8TB1C3uxc5X2npefuFRQZWUgo3+dLj50CZTyhuQmx1PvvPdeL/HE1TXRZPrLuT IwGCerJAgZurq8ho0P8pypGcxdzHrew4Nu0gG4z+YZa0aTyhrqVc3SSIGzc363gg LZNgzWjGKKdP+deSxwU1imQIa8C72e2QdujBnPmSz6v6JDBfXtSmvktGCFs= -----END CERTIFICATE-----Generated at Sat Apr 5 13:22:39 2025 by rpki-client