$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00cbf30e-db75-4c8f-938b-1007226dec9b.roa File: 00cbf30e-db75-4c8f-938b-1007226dec9b.roa (raw, json) Hash identifier: uVXVHJ8nEaMUrqYuR0g08IpT44k50zPd2NjiEU+cr70= Subject key identifier: 7D:2F:38:BA:09:92:AD:16:78:B3:1F:91:AF:4F:1E:6F:DB:C3:C4:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 321FF500615A5AC3466E069398C61375411865D0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00cbf30e-db75-4c8f-938b-1007226dec9b.roa Signing time: Fri 30 May 2025 00:50:49 +0000 ROA not before: Fri 30 May 2025 00:50:49 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:1f:f5:00:61:5a:5a:c3:46:6e:06:93:98:c6:13:75:41:18:65:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:50:49 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=d9aee4f9a6f87c57450cabe40501c639e79fe7be17c21f7ff8c0aa21f2cd7875, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:be:23:de:3b:63:46:27:82:4a:b3:e3:f0:76: b9:04:c6:1c:4d:61:99:68:8b:e7:20:f6:0b:a0:a4: 4f:61:f2:66:33:05:67:a5:e1:0f:85:08:6b:5c:42: f0:a8:a1:af:9c:9a:71:9c:bf:64:ef:68:89:56:bb: 80:d1:33:5f:be:ab:1f:64:87:68:a2:16:7e:31:35: db:4a:88:00:53:f9:af:f9:98:2f:ff:7f:c4:5e:52: 31:55:cc:00:7d:77:3e:32:fb:49:f1:e4:fb:1c:0b: da:88:52:9d:04:dc:4f:0e:ae:98:8b:17:df:c4:ba: a7:44:04:65:fd:41:e0:37:eb:24:d3:f2:d2:66:5c: 37:08:5b:84:62:ad:e9:a8:c8:79:89:a3:d3:de:f3: bf:1b:31:11:ae:6b:07:75:97:c5:d5:8d:52:ca:6f: 38:ed:cc:d0:b8:3c:28:b5:8a:d3:1e:fb:f7:cb:8d: 14:d6:7b:d3:4f:9e:ae:2e:03:6d:09:c8:9c:76:b6: 54:e2:44:8f:6c:c1:6a:01:b1:c0:64:d9:c3:6f:e6: ea:70:5b:85:8d:7c:64:e2:ce:79:01:59:de:a6:11: b5:de:25:91:e2:18:a3:2c:24:5a:08:70:cb:5d:51: f0:74:74:fb:98:ec:7d:87:f2:85:ab:34:71:12:61: 6b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:2F:38:BA:09:92:AD:16:78:B3:1F:91:AF:4F:1E:6F:DB:C3:C4:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/00cbf30e-db75-4c8f-938b-1007226dec9b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.128.0/17 Signature Algorithm: sha256WithRSAEncryption 69:06:75:1b:39:8b:a8:14:5f:a3:63:3b:2b:df:80:37:88:4e: fc:a6:84:a3:6f:a7:82:94:cf:d4:a5:12:67:09:c1:89:16:14: 14:0d:1d:e6:bf:8b:d6:af:3f:f3:db:93:3a:74:e0:6e:9b:ba: 35:f1:79:5e:f8:4f:11:1a:b4:f0:91:72:46:5a:03:6a:93:66: 39:f1:3a:b8:22:0a:1a:e5:2a:b8:b3:1d:52:c7:41:33:55:2e: b6:d4:12:5a:f4:f6:3b:ea:7d:1f:b1:eb:57:8d:ac:e2:76:07: 7b:e8:12:07:3b:ed:11:b4:fd:c6:9b:1b:29:2f:f7:f9:ae:a4: 81:34:94:53:4e:08:d3:24:9b:38:fe:be:2c:56:c2:d8:e0:94: d6:3b:86:b3:ef:71:9e:66:0c:42:21:7d:08:31:01:f0:24:9a: 65:a4:a6:0b:be:8a:b9:77:28:f5:f6:2d:97:15:c6:5d:4c:66: aa:16:d3:6b:b2:ee:4f:85:20:12:01:31:ab:54:36:8d:e1:d6: 82:82:98:f8:e3:3c:7c:94:b6:70:08:ff:22:eb:0e:81:3b:ce: 51:2c:3d:5d:9c:e1:30:32:22:49:3c:d4:fd:d2:2c:e7:b9:71: 9c:d5:6c:97:bd:bf:51:23:4e:2f:62:d7:60:db:57:5b:8a:a6: ec:54:11:29 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMh/1AGFaWsNGbgaTmMYTdUEYZdAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDA1MDQ5WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOWFlZTRmOWE2Zjg3YzU3NDUwY2FiZTQwNTAxYzYzOWU3 OWZlN2JlMTdjMjFmN2ZmOGMwYWEyMWYyY2Q3ODc1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuviPeO2NGJ4JKs+PwdrkExhxNYZloi+cg9gugpE9h8mYz BWel4Q+FCGtcQvCooa+cmnGcv2TvaIlWu4DRM1++qx9kh2iiFn4xNdtKiABT+a/5 mC//f8ReUjFVzAB9dz4y+0nx5PscC9qIUp0E3E8OrpiLF9/EuqdEBGX9QeA36yTT 8tJmXDcIW4RiremoyHmJo9Pe878bMRGuawd1l8XVjVLKbzjtzNC4PCi1itMe+/fL jRTWe9NPnq4uA20JyJx2tlTiRI9swWoBscBk2cNv5upwW4WNfGTiznkBWd6mEbXe JZHiGKMsJFoIcMtdUfB0dPuY7H2H8oWrNHESYWvzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfS84ugmSrRZ4sx+Rr08eb9vDxBEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAwY2JmMzBlLWRiNzUtNGM4Zi05MzhiLTEwMDcyMjZkZWM5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjTYAwDQYJKoZIhvcNAQELBQADggEBAGkGdRs5i6gUX6NjOyvfgDeITvym hKNvp4KUz9SlEmcJwYkWFBQNHea/i9avP/Pbkzp04G6bujXxeV74TxEatPCRckZa A2qTZjnxOrgiChrlKrizHVLHQTNVLrbUElr09jvqfR+x61eNrOJ2B3voEgc77RG0 /cabGykv9/mupIE0lFNOCNMkmzj+vixWwtjglNY7hrPvcZ5mDEIhfQgxAfAkmmWk pgu+irl3KPX2LZcVxl1MZqoW02uy7k+FIBIBMatUNo3h1oKCmPjjPHyUtnAI/yLr DoE7zlEsPV2c4TAyIkk81P3SLOe5cZzVbJe9v1EjTi9i12DbV1uKpuxUESk= -----END CERTIFICATE-----Generated at Sun Jun 1 04:21:41 2025 by rpki-client