$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e290ea6c-d4f0-4297-bdf2-dbf8c85e8140.roa File: e290ea6c-d4f0-4297-bdf2-dbf8c85e8140.roa (raw, json) Hash identifier: LKqxPTdCHiUnekukTVZlFsvMNSLrHOvvlcoqKyzXl8c= Subject key identifier: 10:A3:8E:31:18:D1:59:D2:85:F7:BD:66:77:6E:A7:DB:E3:D6:32:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 51233EAF90678C9C082A5CFE9E2C879EBF53D4E0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e290ea6c-d4f0-4297-bdf2-dbf8c85e8140.roa Signing time: Sat 15 Mar 2025 00:50:54 +0000 ROA not before: Sat 15 Mar 2025 00:50:54 +0000 ROA not after: Sat 19 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:23:3e:af:90:67:8c:9c:08:2a:5c:fe:9e:2c:87:9e:bf:53:d4:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 15 00:50:54 2025 GMT Not After : Apr 19 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8d:4d:3b:ab:d8:b9:3d:f9:da:6f:fa:af:1e: 2a:75:2c:83:17:03:47:4c:14:9e:85:6a:19:7c:cc: e4:1d:d9:c5:69:9d:a0:57:69:75:e9:45:e8:87:ce: 49:0b:0e:ac:37:ae:e1:3f:b3:86:de:da:ba:83:e2: 24:77:8a:0c:bf:3d:96:02:69:7d:1d:04:07:15:ce: bf:02:96:fc:d4:75:98:56:01:53:91:24:98:54:73: fc:07:5f:75:e3:c5:7f:55:d0:d4:7c:5c:55:73:29: d3:a0:aa:a6:45:7d:d5:b0:cc:7f:35:a5:8c:b7:94: e0:e9:b5:df:c1:56:0c:a4:94:ac:51:c1:29:39:94: 66:e0:c4:ba:f2:20:0f:25:3d:4a:45:da:bb:0e:58: 5b:c8:5f:3a:f1:1a:12:67:5f:8a:c6:4d:74:05:d2: 19:3f:a6:bf:5f:c7:e5:a6:48:50:d3:a3:e4:c4:9b: 90:3c:a7:8b:18:86:70:4b:6b:1f:2a:f3:ee:42:87: d5:e4:2b:7b:10:06:07:6a:16:73:c9:86:4e:a4:e3: 6c:c1:27:7d:08:96:15:80:35:dd:60:e1:5d:32:ae: 73:b1:e5:ad:5f:b5:4f:93:a5:6d:04:2f:a7:dc:b2: f5:1d:71:94:6d:fd:47:33:55:10:b9:95:d1:c8:eb: c1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:A3:8E:31:18:D1:59:D2:85:F7:BD:66:77:6E:A7:DB:E3:D6:32:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e290ea6c-d4f0-4297-bdf2-dbf8c85e8140.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.188.0/24 Signature Algorithm: sha256WithRSAEncryption 68:6b:c7:81:82:3f:a7:91:f5:09:b2:d9:82:30:d2:48:13:d0: ae:ab:75:43:a0:8f:0b:8f:3d:40:84:2b:9d:7b:68:a9:52:49: eb:54:93:e5:6b:c5:d7:70:e5:af:a0:2a:14:75:52:24:38:74: 77:39:68:61:18:e8:df:70:5e:17:5a:0d:33:22:97:4c:53:38: a1:a7:c5:96:a5:62:3d:1d:1a:50:d4:8f:89:05:23:9f:82:9b: ea:17:89:0a:34:b1:c1:7c:2e:75:36:b9:63:d3:69:a0:16:57: 90:fe:33:ad:6e:16:d8:66:e1:eb:3e:0a:b7:1b:96:7a:46:a0: 3f:cd:7b:6c:84:52:35:6e:17:66:59:25:ad:ad:2f:cb:9f:85: 53:dd:b8:83:8b:ae:46:d3:46:3c:0e:99:a1:aa:69:44:4d:08: 9f:bb:5e:e7:33:2d:a3:c9:12:ac:61:f4:a4:0b:e4:5f:57:89: 9d:92:d8:46:59:a4:b6:13:e6:0f:d5:b0:c6:47:fa:1d:5b:cc: 7e:bf:5d:2f:52:b3:e7:02:00:12:bd:9e:30:78:a0:d0:db:41: 27:2a:b5:dc:4c:29:a8:e3:5c:fa:0d:3a:d2:3c:60:be:84:24: 7f:f8:0b:16:b8:02:f0:97:bd:00:d2:10:4d:27:2b:91:25:d0: 59:b0:ff:de -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUSM+r5BnjJwIKlz+niyHnr9T1OAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzE1MDA1MDU0WhcNMjUwNDE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZGEzYzljNzI1OTNiMzhjY2FlYmM5NzllZDg3NWFiOTQy NzIyODliYmU5OTlkNjRjZTI0NzBkNzg4NDM0NDFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNjU07q9i5Pfnab/qvHip1LIMXA0dMFJ6Fahl8zOQd2cVp naBXaXXpReiHzkkLDqw3ruE/s4be2rqD4iR3igy/PZYCaX0dBAcVzr8ClvzUdZhW AVORJJhUc/wHX3XjxX9V0NR8XFVzKdOgqqZFfdWwzH81pYy3lODptd/BVgyklKxR wSk5lGbgxLryIA8lPUpF2rsOWFvIXzrxGhJnX4rGTXQF0hk/pr9fx+WmSFDTo+TE m5A8p4sYhnBLax8q8+5Ch9XkK3sQBgdqFnPJhk6k42zBJ30IlhWANd1g4V0yrnOx 5a1ftU+TpW0EL6fcsvUdcZRt/UczVRC5ldHI68F1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEKOOMRjRWdKF971md26n2+PWMsQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyOTBlYTZjLWQ0ZjAtNDI5Ny1iZGYyLWRiZjhjODVlODE0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTbwwDQYJKoZIhvcNAQELBQADggEBAGhrx4GCP6eR9Qmy2YIw0kgT0K6r dUOgjwuPPUCEK517aKlSSetUk+Vrxddw5a+gKhR1UiQ4dHc5aGEY6N9wXhdaDTMi l0xTOKGnxZalYj0dGlDUj4kFI5+Cm+oXiQo0scF8LnU2uWPTaaAWV5D+M61uFthm 4es+CrcblnpGoD/Ne2yEUjVuF2ZZJa2tL8ufhVPduIOLrkbTRjwOmaGqaURNCJ+7 XuczLaPJEqxh9KQL5F9XiZ2S2EZZpLYT5g/VsMZH+h1bzH6/XS9Ss+cCABK9njB4 oNDbQScqtdxMKajjXPoNOtI8YL6EJH/4Cxa4AvCXvQDSEE0nK5El0Fmw/94= -----END CERTIFICATE-----Generated at Sat Apr 5 12:14:57 2025 by rpki-client