$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24a00a0f-2e6e-4bf0-9ea3-983eb53556b2.roa File: 24a00a0f-2e6e-4bf0-9ea3-983eb53556b2.roa (raw, json) Hash identifier: xKgjeMkNN2DJ0j0QI6tdr8YNdky9IXEVjHIWD90CSxc= Subject key identifier: B5:E6:96:C1:EA:60:B1:E8:90:B5:E2:E9:A9:87:61:6B:43:2D:F8:B3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0986D009FB0BAE88211872E1BA9AD416FA4C59C7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24a00a0f-2e6e-4bf0-9ea3-983eb53556b2.roa Signing time: Wed 28 May 2025 00:50:17 +0000 ROA not before: Wed 28 May 2025 00:50:17 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:86:d0:09:fb:0b:ae:88:21:18:72:e1:ba:9a:d4:16:fa:4c:59:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:50:17 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=dee8cab03e6bdeb67a80125da9ef8b9a40a9066211972e700df04d9f57612737, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ad:7b:1d:0b:34:e6:bd:0e:93:09:eb:70:dd: df:49:10:3c:8c:36:5c:5a:5e:c9:3e:e7:aa:8b:93: a0:2d:7a:50:b1:5f:81:05:4a:3b:8e:ee:45:99:7e: 5c:46:d9:d7:d0:05:b9:06:fe:1c:44:3a:7e:80:82: 1d:33:5a:9e:c2:84:d2:ef:d3:9f:98:62:f7:32:93: 9d:c4:58:1d:bb:28:56:84:4f:3c:fa:4d:b8:e7:29: bd:d9:54:b5:8a:8a:45:a2:da:db:5c:ac:6c:4e:44: 78:26:30:72:c8:a1:b2:ae:d8:49:c6:f1:44:98:e6: 94:73:31:c7:1b:ff:db:da:d0:89:f4:71:73:13:17: 17:c6:ad:ef:4f:36:df:f6:59:85:2d:bb:7d:99:93: cf:47:92:64:f7:df:2c:a5:a5:2b:9c:f1:26:3f:63: 7e:ec:47:b7:84:98:3d:c8:e3:b0:28:83:fe:ff:57: 47:a3:b6:9a:d2:74:3b:78:70:1e:2f:d2:25:cc:1e: c6:40:57:bd:95:09:5f:20:65:e0:2d:a8:2a:59:67: 3e:0f:19:bb:67:3a:ca:81:2d:05:46:93:93:72:ab: e8:01:ca:b0:0d:1d:3e:59:ba:4b:41:93:eb:32:8d: 1d:96:f8:91:3f:c3:fd:eb:e2:cc:52:ed:69:62:ae: 35:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:E6:96:C1:EA:60:B1:E8:90:B5:E2:E9:A9:87:61:6B:43:2D:F8:B3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24a00a0f-2e6e-4bf0-9ea3-983eb53556b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.159.0/24 Signature Algorithm: sha256WithRSAEncryption c9:db:7e:f8:a6:fd:78:6d:59:b9:78:fc:cc:b6:0c:94:6a:51: 6f:fd:a7:d2:11:0e:82:1d:c6:5a:5b:9a:70:59:3a:45:4a:2b: 48:b8:b2:ba:2a:94:51:7a:6f:72:57:a2:df:4a:bb:21:6e:56: cb:6f:d7:43:af:42:cf:55:7d:d1:ef:8c:4a:27:f4:ec:d7:a0: 92:c5:62:ab:71:81:63:5b:26:83:d2:5e:e9:90:52:ca:34:cb: 36:76:54:a2:a7:7f:83:8d:78:01:b4:04:4b:52:6c:8b:94:fb: fe:5d:ee:71:34:72:5d:6b:87:92:20:ee:49:ab:45:1e:e5:0a: c6:ea:78:a6:fb:94:90:5c:01:0d:5a:af:d6:68:a7:1a:3e:ae: 7c:60:98:3a:df:af:b2:a2:58:24:ba:b7:d0:7b:46:dd:57:6a: f3:18:dc:aa:5c:f0:d6:93:25:45:46:6a:b1:10:9c:79:71:2d: 5e:d6:90:e9:21:70:35:d1:61:61:4b:64:e6:12:40:3e:56:d6: b3:c5:ba:d3:45:2e:c7:ae:60:7f:1a:52:ed:79:4a:85:3e:a5: 04:df:5e:c3:e4:76:64:c1:c9:7e:3a:31:08:fb:bd:a0:4f:82: 84:d6:90:ef:97:3c:87:a3:1e:68:33:e9:17:e4:4a:10:fc:a0: 18:fa:cb:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCYbQCfsLroghGHLhuprUFvpMWccwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDA1MDE3WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZWU4Y2FiMDNlNmJkZWI2N2E4MDEyNWRhOWVmOGI5YTQw YTkwNjYyMTE5NzJlNzAwZGYwNGQ5ZjU3NjEyNzM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrrXsdCzTmvQ6TCetw3d9JEDyMNlxaXsk+56qLk6AtelCx X4EFSjuO7kWZflxG2dfQBbkG/hxEOn6Agh0zWp7ChNLv05+YYvcyk53EWB27KFaE Tzz6TbjnKb3ZVLWKikWi2ttcrGxORHgmMHLIobKu2EnG8USY5pRzMccb/9va0In0 cXMTFxfGre9PNt/2WYUtu32Zk89HkmT33yylpSuc8SY/Y37sR7eEmD3I47Aog/7/ V0ejtprSdDt4cB4v0iXMHsZAV72VCV8gZeAtqCpZZz4PGbtnOsqBLQVGk5Nyq+gB yrANHT5ZuktBk+syjR2W+JE/w/3r4sxS7WlirjVNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUteaWwepgseiQteLpqYdha0Mt+LMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0YTAwYTBmLTJlNmUtNGJmMC05ZWEzLTk4M2ViNTM1NTZiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZ8wDQYJKoZIhvcNAQELBQADggEBAMnbfvim/XhtWbl4/My2DJRqUW/9 p9IRDoIdxlpbmnBZOkVKK0i4sroqlFF6b3JXot9KuyFuVstv10OvQs9VfdHvjEon 9OzXoJLFYqtxgWNbJoPSXumQUso0yzZ2VKKnf4ONeAG0BEtSbIuU+/5d7nE0cl1r h5Ig7kmrRR7lCsbqeKb7lJBcAQ1ar9Zopxo+rnxgmDrfr7KiWCS6t9B7Rt1XavMY 3Kpc8NaTJUVGarEQnHlxLV7WkOkhcDXRYWFLZOYSQD5W1rPFutNFLseuYH8aUu15 SoU+pQTfXsPkdmTByX46MQj7vaBPgoTWkO+XPIejHmgz6RfkShD8oBj6y5w= -----END CERTIFICATE-----Generated at Sun Jun 1 04:46:05 2025 by rpki-client