$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00a5e67e-d81d-4547-b011-580d41cad494.roa File: 00a5e67e-d81d-4547-b011-580d41cad494.roa (raw, json) Hash identifier: b/ORqP1tCRO+kNtyG2eFjozc5MEq90URUkBhYA7qjBs= Subject key identifier: FE:A8:35:61:85:ED:35:4C:A6:65:19:66:CC:34:E0:FB:C9:78:FB:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1393DB63B9D23675B16D24A5BC7FEC71E4BAD4C7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00a5e67e-d81d-4547-b011-580d41cad494.roa Signing time: Wed 09 Apr 2025 00:40:16 +0000 ROA not before: Wed 09 Apr 2025 00:40:16 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:93:db:63:b9:d2:36:75:b1:6d:24:a5:bc:7f:ec:71:e4:ba:d4:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:40:16 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=67dd05b31fe2abe0c285493ce36e6baac0ffdc71ad5e1d39c7d7a23f5af52642, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:af:d5:4c:e8:78:f0:96:78:5a:b5:0b:24:15: bd:ad:97:d6:fe:b7:76:47:e3:1c:14:15:38:3c:c7: e9:59:c9:f7:c3:16:00:f2:6d:2a:e5:e1:d3:a6:2d: 5b:0f:4b:42:8c:68:d4:83:0c:b6:bc:5d:26:e1:d8: 03:be:a8:40:91:14:57:fc:87:44:24:6c:5c:a2:31: 3f:af:aa:d3:ff:a5:23:c2:94:39:b8:61:5c:66:7e: 49:2e:47:17:40:e0:45:6b:23:04:86:b6:aa:5d:bd: 77:b0:d8:77:9d:f1:9b:d4:8d:57:6f:6a:68:07:15: c0:aa:ff:ad:a5:e6:8c:62:08:8d:0a:47:e7:92:f5: 63:f8:32:de:c3:03:d6:9b:b2:07:6f:9c:cb:e0:80: 19:7e:c5:b3:96:a8:6d:b4:87:cf:c7:37:00:10:68: a2:5f:57:7d:46:0f:7f:70:a4:81:8b:e2:be:ad:4b: 30:73:45:59:20:a7:70:64:3c:26:9a:31:ce:34:32: 63:59:dd:2f:40:2a:fa:18:28:f3:d0:66:a6:64:05: 77:a7:e7:56:d1:40:0a:d8:c2:44:a6:a3:d5:7f:34: 30:ff:39:74:8d:a0:a0:fd:e0:e1:15:0e:48:15:00: fc:26:02:05:50:8d:cb:4b:d4:b3:b4:65:f4:5d:e4: 92:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:A8:35:61:85:ED:35:4C:A6:65:19:66:CC:34:E0:FB:C9:78:FB:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00a5e67e-d81d-4547-b011-580d41cad494.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.243.0/24 Signature Algorithm: sha256WithRSAEncryption 46:0f:bb:c0:a4:1c:a1:a2:89:b6:cc:ab:a4:c5:4e:90:b3:6d: 4c:88:7c:f0:50:3b:8c:fb:33:4e:64:5c:50:fc:03:82:cf:e3: 8d:9f:59:60:67:a9:f2:31:f1:81:7f:33:ad:ce:78:40:6d:4a: b0:a6:7e:5d:07:cd:c4:f1:3e:3f:a4:c5:64:4b:8b:71:d2:6a: af:08:1f:93:f4:5d:3e:5b:51:f3:aa:64:83:58:aa:98:09:48: 0a:f6:bf:fe:3e:5d:33:cd:e3:1f:84:3f:b9:ae:85:98:32:bc: 28:48:a6:13:57:0c:5b:df:5c:c0:5c:3c:7d:99:70:9c:91:00: d3:6e:09:4d:d3:6c:a6:5e:cc:35:07:b6:72:80:e2:bc:3b:1f: c8:19:11:0e:fe:3e:f9:63:a0:86:cb:98:05:46:85:57:1d:1f: 39:bd:a3:f5:77:af:d0:fd:8a:81:a5:09:8d:84:5b:e2:03:cb: 4e:49:77:09:29:9e:48:84:86:b0:c5:e6:49:0c:6d:50:7c:3d: 06:ce:7f:b7:21:e0:85:e2:3c:64:7b:94:1d:66:e3:8f:83:9d: 55:78:5c:87:01:56:ab:7b:9c:29:56:0e:fb:d3:82:a5:f4:23: d2:6a:b7:bf:f2:1f:83:1b:25:9b:0d:3c:38:c0:6e:fe:5a:fd: d5:26:f4:62 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE5PbY7nSNnWxbSSlvH/sceS61McwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDA0MDE2WhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2N2RkMDViMzFmZTJhYmUwYzI4NTQ5M2NlMzZlNmJhYWMw ZmZkYzcxYWQ1ZTFkMzljN2Q3YTIzZjVhZjUyNjQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyr9VM6HjwlnhatQskFb2tl9b+t3ZH4xwUFTg8x+lZyffD FgDybSrl4dOmLVsPS0KMaNSDDLa8XSbh2AO+qECRFFf8h0QkbFyiMT+vqtP/pSPC lDm4YVxmfkkuRxdA4EVrIwSGtqpdvXew2Hed8ZvUjVdvamgHFcCq/62l5oxiCI0K R+eS9WP4Mt7DA9absgdvnMvggBl+xbOWqG20h8/HNwAQaKJfV31GD39wpIGL4r6t SzBzRVkgp3BkPCaaMc40MmNZ3S9AKvoYKPPQZqZkBXen51bRQArYwkSmo9V/NDD/ OXSNoKD94OEVDkgVAPwmAgVQjctL1LO0ZfRd5JIJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/qg1YYXtNUymZRlmzDTg+8l4+1swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAwYTVlNjdlLWQ4MWQtNDU0Ny1iMDExLTU4MGQ0MWNhZDQ5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfMwDQYJKoZIhvcNAQELBQADggEBAEYPu8CkHKGiibbMq6TFTpCzbUyI fPBQO4z7M05kXFD8A4LP442fWWBnqfIx8YF/M63OeEBtSrCmfl0HzcTxPj+kxWRL i3HSaq8IH5P0XT5bUfOqZINYqpgJSAr2v/4+XTPN4x+EP7muhZgyvChIphNXDFvf XMBcPH2ZcJyRANNuCU3TbKZezDUHtnKA4rw7H8gZEQ7+PvljoIbLmAVGhVcdHzm9 o/V3r9D9ioGlCY2EW+IDy05JdwkpnkiEhrDF5kkMbVB8PQbOf7ch4IXiPGR7lB1m 44+DnVV4XIcBVqt7nClWDvvTgqX0I9Jqt7/yH4MbJZsNPDjAbv5a/dUm9GI= -----END CERTIFICATE-----Generated at Wed Apr 16 17:11:41 2025 by rpki-client