$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14a5a826-4e23-42a8-bf85-ad094f67717e.roa File: 14a5a826-4e23-42a8-bf85-ad094f67717e.roa (raw, json) Hash identifier: Y1rY8eJY2KPf1ekk7kIfPtVGzgqadjcdCfw4TnnuGPY= Subject key identifier: 2B:5C:01:5F:65:59:F5:9F:F6:9B:58:8C:7D:31:E4:55:86:4C:37:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 274E8A41FFA0169C87A093F134A9134D48C767F8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14a5a826-4e23-42a8-bf85-ad094f67717e.roa Signing time: Sat 10 May 2025 00:40:41 +0000 ROA not before: Sat 10 May 2025 00:40:41 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:4e:8a:41:ff:a0:16:9c:87:a0:93:f1:34:a9:13:4d:48:c7:67:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:40:41 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=4419440f65285e3a86e182b35d9320c144c9863bafb49025dc78cb618536e133, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:74:e2:d1:af:c6:49:ad:ab:da:d9:6d:49:2e: a2:ec:97:40:b0:97:f8:12:40:02:64:a2:d5:02:ef: e4:fc:57:5c:93:d5:b1:9c:8b:17:25:53:5f:c1:b4: dd:25:23:7d:bc:e1:2e:2a:ad:4c:94:fa:60:69:0e: e3:40:4c:de:20:2b:12:6e:30:50:fe:00:a8:9e:91: 83:f7:23:3a:e4:c0:1b:fb:b3:41:69:fa:ba:2b:e6: ca:38:d7:a9:b8:45:43:69:54:04:ce:d8:42:e9:bf: cd:9e:fa:ea:4c:ad:eb:f0:d0:5a:09:e6:a8:3c:80: 16:8f:49:95:1b:38:59:03:fd:65:58:38:93:a8:4d: 52:e4:51:c4:57:98:56:c9:55:d8:36:05:83:10:07: 5f:4f:97:14:6a:8c:2f:cf:01:17:70:b6:e9:c0:40: 81:11:c3:1a:84:0b:d2:36:0e:a6:f6:ef:27:d9:4a: d4:ad:ff:0d:ab:a5:3c:68:c9:04:de:e1:a8:19:e5: 66:53:a1:ee:d3:3f:2b:dc:cb:84:af:23:e3:fc:85: 7b:5f:83:7c:cb:fb:3d:94:61:84:b7:a2:77:9a:67: ad:87:0a:c8:91:dd:8f:b1:a4:63:38:f9:65:23:45: a6:b6:c0:3d:8e:f0:76:af:5c:cb:e4:0b:4c:59:26: 9d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:5C:01:5F:65:59:F5:9F:F6:9B:58:8C:7D:31:E4:55:86:4C:37:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14a5a826-4e23-42a8-bf85-ad094f67717e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.112.0/23 Signature Algorithm: sha256WithRSAEncryption a2:40:1f:69:c7:0b:3b:40:13:1b:ab:05:c0:e5:ec:00:3e:b3: 9b:b2:5a:75:d3:54:0a:40:ee:7a:de:fb:52:1c:e4:e3:f3:d4: 22:a2:5f:c1:77:96:e2:bb:43:f7:69:a4:32:8c:4c:6b:df:55: 52:32:7c:de:d9:5b:85:ee:7c:a5:20:af:f0:33:bc:29:57:ca: 1f:9f:8d:55:ad:cc:08:a6:0b:ea:db:d3:ff:2b:d2:99:8a:d0: 4f:54:f5:61:80:f3:2e:f9:12:74:d2:be:96:47:d0:e5:86:b8: ab:59:58:7b:d3:70:5e:a9:0b:45:b2:14:ba:26:40:09:7f:34: 0a:53:fb:89:c8:1e:8a:7a:9e:04:70:b2:2f:f0:80:45:8a:8a: 1e:f3:69:f1:9c:7d:7b:57:98:6c:13:f0:9c:3d:dd:78:88:12: 04:8e:a5:dd:ae:c7:85:59:98:fa:b6:76:02:ec:f7:02:d7:64: b9:e1:ff:a9:7c:ae:f5:53:43:b9:26:c0:76:7d:5b:d4:a3:32: 2a:64:f2:8f:7b:ad:19:d9:af:32:b8:bd:fb:5c:49:af:04:9c: 59:86:dd:11:93:8f:b6:21:4c:89:b6:40:17:ca:8a:2c:14:4c: a0:45:b3:b6:56:96:47:e3:df:3b:29:f6:f6:ff:68:e7:c8:ed: 73:81:a9:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ06KQf+gFpyHoJPxNKkTTUjHZ/gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDA0MDQxWhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDE5NDQwZjY1Mjg1ZTNhODZlMTgyYjM1ZDkzMjBjMTQ0 Yzk4NjNiYWZiNDkwMjVkYzc4Y2I2MTg1MzZlMTMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjdOLRr8ZJrava2W1JLqLsl0Cwl/gSQAJkotUC7+T8V1yT 1bGcixclU1/BtN0lI3284S4qrUyU+mBpDuNATN4gKxJuMFD+AKiekYP3IzrkwBv7 s0Fp+ror5so416m4RUNpVATO2ELpv82e+upMrevw0FoJ5qg8gBaPSZUbOFkD/WVY OJOoTVLkUcRXmFbJVdg2BYMQB19PlxRqjC/PARdwtunAQIERwxqEC9I2Dqb27yfZ StSt/w2rpTxoyQTe4agZ5WZToe7TPyvcy4SvI+P8hXtfg3zL+z2UYYS3oneaZ62H CsiR3Y+xpGM4+WUjRaa2wD2O8HavXMvkC0xZJp1pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUK1wBX2VZ9Z/2m1iMfTHkVYZMN1YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE0YTVhODI2LTRlMjMtNDJhOC1iZjg1LWFkMDk0ZjY3NzE3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl3AwDQYJKoZIhvcNAQELBQADggEBAKJAH2nHCztAExurBcDl7AA+s5uy WnXTVApA7nre+1Ic5OPz1CKiX8F3luK7Q/dppDKMTGvfVVIyfN7ZW4XufKUgr/Az vClXyh+fjVWtzAimC+rb0/8r0pmK0E9U9WGA8y75EnTSvpZH0OWGuKtZWHvTcF6p C0WyFLomQAl/NApT+4nIHop6ngRwsi/wgEWKih7zafGcfXtXmGwT8Jw93XiIEgSO pd2ux4VZmPq2dgLs9wLXZLnh/6l8rvVTQ7kmwHZ9W9SjMipk8o97rRnZrzK4vftc Sa8EnFmG3RGTj7YhTIm2QBfKiiwUTKBFs7ZWlkfj3zsp9vb/aOfI7XOBqdc= -----END CERTIFICATE-----Generated at Sun Jun 1 04:37:30 2025 by rpki-client