$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1970fdae-d81d-4d44-bdc0-2931ee225a83.roa File: 1970fdae-d81d-4d44-bdc0-2931ee225a83.roa (raw, json) Hash identifier: M7PgNQQtN6SOjpprncnAbi9PmO8jrkH0GKi7vjxiOHo= Subject key identifier: 28:28:D6:8C:98:4F:24:39:16:29:02:D3:A8:A9:B2:EF:2D:2F:47:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2DA33F457C1384676E36D8DCC84CFA16BDC60E86 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1970fdae-d81d-4d44-bdc0-2931ee225a83.roa Signing time: Sat 10 May 2025 00:31:11 +0000 ROA not before: Sat 10 May 2025 00:31:11 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:a3:3f:45:7c:13:84:67:6e:36:d8:dc:c8:4c:fa:16:bd:c6:0e:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:31:11 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=87738a7ed24cfd589b8f74ff9dba94f6b76770e8e62fea1df8a1aefeb26d381c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:71:c5:02:39:43:96:a5:4c:f2:4a:ce:3f:27: 2d:fb:88:17:6d:98:c3:c9:c4:0c:88:2e:8d:d3:5e: 81:65:2d:83:d6:6f:d1:e3:9a:c4:fa:64:c0:c3:17: 69:81:c4:a1:66:5e:83:98:26:69:1f:7c:5a:b4:28: 44:e6:15:e0:89:91:1a:bb:f4:dd:44:37:7c:82:69: c4:05:5e:5d:57:3e:d6:18:0f:3e:0a:76:b8:05:da: 39:b3:97:5f:7a:12:56:69:e4:fb:80:86:e5:01:c5: fa:24:f2:75:db:8a:79:a6:79:d0:7a:4d:24:26:b5: 90:43:66:bc:e7:bd:26:7c:a2:86:f9:e8:24:d1:6a: 51:4e:eb:ec:d1:fd:17:75:35:4e:b6:78:3f:2a:a1: f6:75:75:ab:f6:41:f9:48:82:0d:5a:16:73:c6:60: 43:f8:00:d9:c0:c5:1c:aa:bb:8e:6e:f3:8a:8c:69: 10:f9:8b:80:52:99:b4:57:a4:78:fe:19:7c:70:9e: 20:15:f4:9c:cd:93:c2:2a:a0:ed:56:37:22:b7:e2: 6e:ce:26:22:02:49:07:bc:19:4e:70:4d:b6:0a:2f: 38:f4:cb:77:6c:85:48:28:c4:e8:21:99:2e:06:03: 48:d6:9e:b1:fa:85:6d:ac:90:6b:b7:e4:5d:d9:e6: 77:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:28:D6:8C:98:4F:24:39:16:29:02:D3:A8:A9:B2:EF:2D:2F:47:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1970fdae-d81d-4d44-bdc0-2931ee225a83.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.186.0/24 Signature Algorithm: sha256WithRSAEncryption 08:5e:0a:68:dd:75:4c:96:d0:a8:09:55:e8:11:20:a4:48:98: ff:e2:70:ae:e7:07:f3:ec:d4:09:c7:d5:1b:c9:16:af:fe:55: 57:cd:98:4b:0d:23:52:aa:33:ac:ce:bb:32:44:48:57:f1:5e: 1c:f3:fa:94:be:34:22:34:6e:58:88:ce:01:95:0c:45:3b:86: 91:c8:80:85:e6:f5:49:e4:65:ef:a7:67:f4:dd:3f:c5:3c:4c: 09:0d:20:01:ca:7e:75:d8:7a:91:d2:cb:3c:4f:40:50:65:17: a8:35:c2:91:7a:15:71:14:9d:cb:02:f5:70:a8:44:85:b6:5e: ce:be:64:53:b0:bf:07:32:ba:2a:6f:81:21:3f:1d:11:5e:c5: da:8b:d5:37:26:63:15:bc:fe:a8:31:6b:e2:2d:58:37:b4:63: bc:75:cf:f2:67:97:96:9f:01:5f:4d:9e:8a:62:f7:72:5c:7d: ae:18:94:e7:4a:1b:f1:84:f8:54:19:7d:a2:26:5a:53:b6:6f: 99:a6:6a:49:b6:83:8c:95:d8:27:9a:83:11:63:24:fa:7f:fb: 3c:88:7b:58:ab:e6:c9:6a:75:10:27:71:eb:54:b0:36:5b:5a: d1:ee:cb:5e:34:9f:89:81:fb:9b:56:80:a0:22:81:54:0a:bc: d6:fa:b0:80 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULaM/RXwThGduNtjcyEz6Fr3GDoYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDAzMTExWhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzczOGE3ZWQyNGNmZDU4OWI4Zjc0ZmY5ZGJhOTRmNmI3 Njc3MGU4ZTYyZmVhMWRmOGExYWVmZWIyNmQzODFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjccUCOUOWpUzySs4/Jy37iBdtmMPJxAyILo3TXoFlLYPW b9HjmsT6ZMDDF2mBxKFmXoOYJmkffFq0KETmFeCJkRq79N1EN3yCacQFXl1XPtYY Dz4KdrgF2jmzl196ElZp5PuAhuUBxfok8nXbinmmedB6TSQmtZBDZrznvSZ8oob5 6CTRalFO6+zR/Rd1NU62eD8qofZ1dav2QflIgg1aFnPGYEP4ANnAxRyqu45u84qM aRD5i4BSmbRXpHj+GXxwniAV9JzNk8IqoO1WNyK34m7OJiICSQe8GU5wTbYKLzj0 y3dshUgoxOghmS4GA0jWnrH6hW2skGu35F3Z5neRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKCjWjJhPJDkWKQLTqKmy7y0vR9IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE5NzBmZGFlLWQ4MWQtNGQ0NC1iZGMwLTI5MzFlZTIyNWE4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl7owDQYJKoZIhvcNAQELBQADggEBAAheCmjddUyW0KgJVegRIKRImP/i cK7nB/Ps1AnH1RvJFq/+VVfNmEsNI1KqM6zOuzJESFfxXhzz+pS+NCI0bliIzgGV DEU7hpHIgIXm9UnkZe+nZ/TdP8U8TAkNIAHKfnXYepHSyzxPQFBlF6g1wpF6FXEU ncsC9XCoRIW2Xs6+ZFOwvwcyuipvgSE/HRFexdqL1TcmYxW8/qgxa+ItWDe0Y7x1 z/Jnl5afAV9Nnopi93Jcfa4YlOdKG/GE+FQZfaImWlO2b5mmakm2g4yV2CeagxFj JPp/+zyIe1ir5slqdRAncetUsDZbWtHuy140n4mB+5tWgKAigVQKvNb6sIA= -----END CERTIFICATE-----Generated at Sun Jun 1 05:31:57 2025 by rpki-client