$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1708c9ff-3127-454f-89db-7342094cdf97.roa File: 1708c9ff-3127-454f-89db-7342094cdf97.roa (raw, json) Hash identifier: GFbgWUrtXxWefHJNcTeIOE86YJQ3zAOj6wj6B0UZZHY= Subject key identifier: 93:CC:3D:F7:2F:47:C7:CA:6D:CD:7C:DD:FC:FE:4C:2C:6F:3C:7A:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E734492CC4B2A24254EBF340392381A6A61F4C8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1708c9ff-3127-454f-89db-7342094cdf97.roa Signing time: Wed 28 May 2025 00:51:24 +0000 ROA not before: Wed 28 May 2025 00:51:24 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:73:44:92:cc:4b:2a:24:25:4e:bf:34:03:92:38:1a:6a:61:f4:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:51:24 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=1ae24094dd36bb2864efee3a91f791a18a7a5a890f2957e2446f91b8c4373a5c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:28:f4:80:40:62:99:b6:6d:5b:f4:af:fe:ae: f8:cc:ab:29:f2:c1:44:96:a7:61:98:88:34:c0:cf: 46:88:99:89:f5:d1:b8:be:d5:b6:49:1f:8c:8f:b7: f9:f2:fa:cb:c8:24:51:df:86:79:76:b1:4a:0e:5c: 0b:b9:65:31:d9:5f:b8:70:53:28:35:80:c3:f7:55: 3d:2c:1f:82:37:e3:09:ec:93:7b:f1:92:8d:26:b5: 4c:7f:4a:93:9e:51:a9:70:63:45:e5:0c:41:44:0d: d4:d2:e1:f8:fa:4f:fb:c9:97:c1:0e:55:a0:d3:61: 38:3b:75:48:21:7f:df:e4:b8:80:b0:48:00:97:c1: 8f:ac:2b:ca:e7:32:ae:65:33:4a:44:79:54:81:51: 41:5a:2d:87:83:ea:a3:a8:63:93:24:89:b1:3b:c4: 41:55:a8:25:67:d6:9d:47:35:1c:da:44:34:96:89: 17:ab:dc:2b:b7:c6:b5:9e:87:b8:65:7f:e8:a6:ff: 5c:93:b1:df:11:1b:41:35:15:10:0f:b4:ee:f5:04: dc:6e:07:cd:7f:2e:46:ed:c6:d4:2f:82:c8:f1:95: c3:b5:62:7b:87:4d:c3:10:ec:61:2b:e3:64:a5:26: 3f:da:e4:73:6f:bb:6b:e2:7d:98:a7:9b:11:d2:d6: 66:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:CC:3D:F7:2F:47:C7:CA:6D:CD:7C:DD:FC:FE:4C:2C:6F:3C:7A:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1708c9ff-3127-454f-89db-7342094cdf97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.133.0/24 Signature Algorithm: sha256WithRSAEncryption 33:6b:60:c5:a2:19:d0:e2:5b:dd:9d:2e:ed:7e:11:e0:b4:e4: f2:ae:9b:ba:a5:1f:6e:d6:d5:fd:fa:cf:a0:a1:20:c0:c2:cd: 8a:e6:30:31:1d:bf:e6:ba:31:6c:33:ee:8d:8c:ee:6d:8f:58: 29:01:16:b2:dc:bb:6a:15:ba:37:f8:52:35:3b:e3:30:98:21: ac:ab:1b:d8:06:25:42:63:ed:d8:99:1e:54:07:08:44:f2:33: 64:33:fa:df:2e:41:31:38:ab:42:7d:5f:e5:4c:e8:76:35:70: 95:13:fa:46:63:75:37:86:21:c9:9c:1f:84:96:1c:e1:af:44: 4d:b0:19:97:8d:bf:21:28:46:32:a8:65:9f:ff:35:a6:4a:02: b8:ad:da:62:a1:5d:c7:8c:ae:0e:51:d1:b6:80:67:e6:1b:09: af:d3:7b:67:11:fc:a1:0a:4a:66:12:ac:a4:c3:82:87:fe:0c: b5:21:5e:ff:c1:0d:3a:4c:b8:e9:f2:13:3c:85:d7:d7:3b:6f: 7b:c2:19:2e:73:5a:90:91:4a:5d:29:7d:50:cd:98:5e:ec:6c: c9:48:50:4f:0a:eb:56:89:67:51:cc:51:14:c1:2b:25:42:71: 54:54:9b:5b:85:27:b6:46:31:49:d3:08:c4:b3:e4:60:2a:35: c1:60:5a:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfnNEksxLKiQlTr80A5I4Gmph9MgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDA1MTI0WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYWUyNDA5NGRkMzZiYjI4NjRlZmVlM2E5MWY3OTFhMThh N2E1YTg5MGYyOTU3ZTI0NDZmOTFiOGM0MzczYTVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLKPSAQGKZtm1b9K/+rvjMqynywUSWp2GYiDTAz0aImYn1 0bi+1bZJH4yPt/ny+svIJFHfhnl2sUoOXAu5ZTHZX7hwUyg1gMP3VT0sH4I34wns k3vxko0mtUx/SpOeUalwY0XlDEFEDdTS4fj6T/vJl8EOVaDTYTg7dUghf9/kuICw SACXwY+sK8rnMq5lM0pEeVSBUUFaLYeD6qOoY5MkibE7xEFVqCVn1p1HNRzaRDSW iRer3Cu3xrWeh7hlf+im/1yTsd8RG0E1FRAPtO71BNxuB81/LkbtxtQvgsjxlcO1 YnuHTcMQ7GEr42SlJj/a5HNvu2vifZinmxHS1ma3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUk8w99y9Hx8ptzXzd/P5MLG88ejswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3MDhjOWZmLTMxMjctNDU0Zi04OWRiLTczNDIwOTRjZGY5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYUwDQYJKoZIhvcNAQELBQADggEBADNrYMWiGdDiW92dLu1+EeC05PKu m7qlH27W1f36z6ChIMDCzYrmMDEdv+a6MWwz7o2M7m2PWCkBFrLcu2oVujf4UjU7 4zCYIayrG9gGJUJj7diZHlQHCETyM2Qz+t8uQTE4q0J9X+VM6HY1cJUT+kZjdTeG IcmcH4SWHOGvRE2wGZeNvyEoRjKoZZ//NaZKArit2mKhXceMrg5R0baAZ+YbCa/T e2cR/KEKSmYSrKTDgof+DLUhXv/BDTpMuOnyEzyF19c7b3vCGS5zWpCRSl0pfVDN mF7sbMlIUE8K61aJZ1HMURTBKyVCcVRUm1uFJ7ZGMUnTCMSz5GAqNcFgWuw= -----END CERTIFICATE-----Generated at Sun Jun 1 04:50:31 2025 by rpki-client