$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ab4bbb2-995f-426a-b772-87c418889125.roa File: 0ab4bbb2-995f-426a-b772-87c418889125.roa (raw, json) Hash identifier: WjOkKWc3Q0PpSx84tMkbSqLjYBkmZJq7TM65V9Ivgcg= Subject key identifier: 7A:79:3C:79:17:D0:3B:E9:41:89:9A:3F:48:55:56:9F:7E:C2:38:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 296E5DE62A19AF27B9382A6465D2FF2BD11523D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ab4bbb2-995f-426a-b772-87c418889125.roa Signing time: Wed 09 Apr 2025 00:50:13 +0000 ROA not before: Wed 09 Apr 2025 00:50:13 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:6e:5d:e6:2a:19:af:27:b9:38:2a:64:65:d2:ff:2b:d1:15:23:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:50:13 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=ac08a4d34cda86f25115fcca27ad07662d0b1909ca5ecd67da7f3e4a6cf6cdfa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8b:a9:41:63:82:59:e9:d4:48:c5:8d:54:e8: a4:da:e6:12:aa:70:b5:c8:33:36:e1:33:b7:0e:b3: 50:16:76:71:da:8b:a6:83:e8:f9:70:6e:02:62:09: f5:01:e8:0a:9b:48:6e:3b:bb:63:46:32:d5:cf:7d: c0:51:44:57:04:8e:c6:6f:19:81:49:6c:55:a7:1f: cf:56:7d:11:ab:3d:ac:8e:80:14:aa:1b:33:f9:0f: cb:b1:52:49:c1:d7:aa:b1:aa:80:9b:a7:39:45:92: cf:a5:12:4a:6a:f8:e7:3b:af:75:f9:5b:78:20:cc: 7e:46:6d:e2:1b:bc:d4:19:c6:b1:1d:1b:dc:d6:dd: 21:ac:02:da:5b:f4:ba:8a:43:e6:ed:7c:1b:3f:a1: eb:78:d2:58:f7:bb:9d:10:3f:af:8e:aa:e5:3a:c1: d6:31:c3:d8:05:a2:92:a9:fa:e2:29:e3:7b:d2:ff: 96:b5:3d:11:8f:8d:02:cf:95:8b:9f:fa:cf:61:3e: fb:46:50:eb:55:30:4d:cf:ca:d9:bf:74:66:60:82: 0d:77:55:04:a7:52:31:b0:59:14:66:19:d5:84:7c: 18:12:53:ad:54:9e:3f:31:f7:a8:af:38:ca:8d:dc: 6b:cb:fb:df:19:00:e5:2c:fc:53:a5:ff:30:98:78: 19:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:79:3C:79:17:D0:3B:E9:41:89:9A:3F:48:55:56:9F:7E:C2:38:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ab4bbb2-995f-426a-b772-87c418889125.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.239.0/24 Signature Algorithm: sha256WithRSAEncryption d5:3a:55:57:b4:6b:06:4a:49:e7:30:f6:d7:b9:82:78:30:ca: ad:c2:94:01:a9:45:4b:6a:04:e4:a0:0b:ce:0c:a8:ae:ba:5b: 33:c8:69:ba:2b:6b:ea:50:33:cc:84:99:2b:20:24:3b:5a:4c: 4c:44:de:6c:ab:3d:d8:ed:de:44:c5:a5:68:15:59:90:00:2b: 4b:f3:6b:47:99:28:29:79:ba:06:0b:d9:92:76:be:72:0a:72: 02:f5:a3:d7:e1:ab:f2:71:6b:8e:a6:f1:04:50:d9:46:d2:43: 00:da:df:57:a2:31:54:f4:49:a4:6a:4f:92:f6:dc:3c:7c:db: 95:c2:fa:00:c8:87:90:42:91:10:28:f4:88:fd:40:85:bd:50: 01:7b:70:01:1d:0f:76:dc:41:c3:a9:34:cd:a3:ae:91:4c:77: e0:db:bf:28:9b:e5:42:95:6c:81:5b:62:fa:fc:f1:0a:ab:63: 73:3b:22:e9:7e:23:56:42:ec:a2:1d:e0:f8:ac:3f:e6:1b:42: c8:82:04:93:42:7a:04:fa:9b:ea:ae:a9:f7:15:f1:6b:2f:a4: 4e:50:2a:91:eb:67:ee:01:78:c1:f1:df:7d:e1:62:bb:bc:1d: d4:fb:7d:e3:9b:0c:92:35:e9:88:da:fb:f0:e0:6b:51:c8:2e: 60:a7:fb:62 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKW5d5ioZrye5OCpkZdL/K9EVI9YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDA1MDEzWhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzA4YTRkMzRjZGE4NmYyNTExNWZjY2EyN2FkMDc2NjJk MGIxOTA5Y2E1ZWNkNjdkYTdmM2U0YTZjZjZjZGZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbi6lBY4JZ6dRIxY1U6KTa5hKqcLXIMzbhM7cOs1AWdnHa i6aD6PlwbgJiCfUB6AqbSG47u2NGMtXPfcBRRFcEjsZvGYFJbFWnH89WfRGrPayO gBSqGzP5D8uxUknB16qxqoCbpzlFks+lEkpq+Oc7r3X5W3ggzH5GbeIbvNQZxrEd G9zW3SGsAtpb9LqKQ+btfBs/oet40lj3u50QP6+OquU6wdYxw9gFopKp+uIp43vS /5a1PRGPjQLPlYuf+s9hPvtGUOtVME3Pytm/dGZggg13VQSnUjGwWRRmGdWEfBgS U61Unj8x96ivOMqN3GvL+98ZAOUs/FOl/zCYeBmdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUenk8eRfQO+lBiZo/SFVWn37COCcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhYjRiYmIyLTk5NWYtNDI2YS1iNzcyLTg3YzQxODg4OTEyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTe8wDQYJKoZIhvcNAQELBQADggEBANU6VVe0awZKSecw9te5gngwyq3C lAGpRUtqBOSgC84MqK66WzPIabora+pQM8yEmSsgJDtaTExE3myrPdjt3kTFpWgV WZAAK0vza0eZKCl5ugYL2ZJ2vnIKcgL1o9fhq/Jxa46m8QRQ2UbSQwDa31eiMVT0 SaRqT5L23Dx825XC+gDIh5BCkRAo9Ij9QIW9UAF7cAEdD3bcQcOpNM2jrpFMd+Db vyib5UKVbIFbYvr88QqrY3M7Iul+I1ZC7KId4PisP+YbQsiCBJNCegT6m+quqfcV 8WsvpE5QKpHrZ+4BeMHx333hYru8HdT7feObDJI16Yja+/Dga1HILmCn+2I= -----END CERTIFICATE-----Generated at Wed Apr 16 17:19:23 2025 by rpki-client