$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24a00a0f-2e6e-4bf0-9ea3-983eb53556b2.roa File: 24a00a0f-2e6e-4bf0-9ea3-983eb53556b2.roa (raw, json) Hash identifier: 5fe8wpN4rxxMXJHzBHS0TElOmPEx3Y6jdOGZnCLZF3o= Subject key identifier: 19:CF:8A:8D:03:83:A9:F1:BF:56:DA:D2:FC:AF:F3:F6:C6:61:B9:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 28664867EEB5F0EFFFB0B333E18900F8711CB856 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24a00a0f-2e6e-4bf0-9ea3-983eb53556b2.roa Signing time: Tue 08 Apr 2025 00:51:11 +0000 ROA not before: Tue 08 Apr 2025 00:51:11 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:66:48:67:ee:b5:f0:ef:ff:b0:b3:33:e1:89:00:f8:71:1c:b8:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:51:11 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=34f9268ba1b86bd8c96d1cf9f88d7370b8bcbff3cad8063928034bc5ea250a9f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:96:f3:e5:bc:fb:7e:18:36:55:5b:84:fe:ea: bf:c6:57:0d:7b:43:dd:9e:b9:8e:17:cd:94:35:54: 1d:c8:d4:b8:8d:00:5c:71:cc:96:48:6d:5c:5a:1d: 9a:46:b8:4a:6b:0f:47:e8:4d:b1:0d:aa:32:7c:8d: aa:94:fe:32:e0:03:55:b7:bb:70:f9:b9:c0:e7:7d: b1:dd:36:ee:95:dc:43:a1:8b:82:a0:a6:7e:f7:c7: 5e:7f:cf:5f:0b:d5:01:34:bf:8c:e3:ce:45:cf:91: 7a:84:4e:c1:03:d9:96:ce:9a:0b:85:9e:bf:5a:23: 27:4b:41:08:cf:09:65:cd:24:e9:8c:56:37:0b:69: bd:eb:f2:e6:60:39:23:a2:01:5f:be:4a:3d:0b:44: f3:9f:e4:02:9f:99:23:fe:8a:3a:e3:53:41:e5:3c: 05:a4:01:fb:ae:93:bb:c5:5c:5c:b4:dc:09:97:bd: 2d:3c:79:19:d2:c1:7e:fe:f8:9d:d6:e5:e9:10:84: f3:71:7b:64:54:96:47:df:d7:f3:33:3d:b5:93:aa: d9:78:96:8f:7c:27:08:ad:ec:77:3a:80:51:1c:66: 49:56:1b:da:52:79:28:7b:75:80:52:37:ec:ca:0d: b4:5b:48:eb:9f:13:c7:63:cb:10:b8:ec:9d:4a:82: 65:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:CF:8A:8D:03:83:A9:F1:BF:56:DA:D2:FC:AF:F3:F6:C6:61:B9:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24a00a0f-2e6e-4bf0-9ea3-983eb53556b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.159.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:b4:d5:c9:20:4c:fa:cc:01:77:4d:20:84:c4:8e:01:ed:6e: 30:61:d0:1b:f1:10:66:23:8f:3f:1a:bf:06:c3:c0:6b:88:68: 4b:bb:82:9b:b7:23:5e:8e:f5:79:a8:4c:97:5f:d7:d2:f5:7b: 7b:33:a3:79:85:b2:86:04:6c:33:dc:30:6a:5d:c0:00:2f:fe: 9c:3f:38:df:d4:85:d5:88:93:a1:c1:73:3b:3a:8a:6a:66:33: d1:c5:f2:94:85:cb:2b:ea:af:e0:8c:69:22:46:34:f0:1f:44: 24:79:69:4d:49:27:22:03:8b:ac:99:a4:09:f7:c0:7c:8c:af: c3:9f:50:dd:0b:bd:2c:5e:d7:87:4d:ef:09:31:66:44:19:7b: 5b:32:68:7b:75:77:cb:d1:da:cd:f0:31:95:91:66:db:b3:9b: 0f:62:cd:b5:95:95:58:6d:44:60:16:cb:b9:d4:92:a2:61:02: 4d:11:16:ca:c9:df:a6:69:5f:30:66:e4:53:ce:86:42:61:6a: 90:8d:5a:fa:9f:a0:48:47:aa:00:bf:f3:8a:6e:ab:37:01:dc: 90:9b:9f:79:c2:8f:93:78:66:e2:9d:b0:4e:2e:f5:64:41:82: fa:c6:23:98:99:b1:63:17:93:a2:5a:5f:00:d1:81:6d:8d:bd: 56:1e:5f:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKGZIZ+618O//sLMz4YkA+HEcuFYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDA1MTExWhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNGY5MjY4YmExYjg2YmQ4Yzk2ZDFjZjlmODhkNzM3MGI4 YmNiZmYzY2FkODA2MzkyODAzNGJjNWVhMjUwYTlmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+lvPlvPt+GDZVW4T+6r/GVw17Q92euY4XzZQ1VB3I1LiN AFxxzJZIbVxaHZpGuEprD0foTbENqjJ8jaqU/jLgA1W3u3D5ucDnfbHdNu6V3EOh i4Kgpn73x15/z18L1QE0v4zjzkXPkXqETsED2ZbOmguFnr9aIydLQQjPCWXNJOmM VjcLab3r8uZgOSOiAV++Sj0LRPOf5AKfmSP+ijrjU0HlPAWkAfuuk7vFXFy03AmX vS08eRnSwX7++J3W5ekQhPNxe2RUlkff1/MzPbWTqtl4lo98Jwit7Hc6gFEcZklW G9pSeSh7dYBSN+zKDbRbSOufE8djyxC47J1KgmXZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGc+KjQODqfG/VtrS/K/z9sZhudgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0YTAwYTBmLTJlNmUtNGJmMC05ZWEzLTk4M2ViNTM1NTZiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZ8wDQYJKoZIhvcNAQELBQADggEBAJ+01ckgTPrMAXdNIITEjgHtbjBh 0BvxEGYjjz8avwbDwGuIaEu7gpu3I16O9XmoTJdf19L1e3szo3mFsoYEbDPcMGpd wAAv/pw/ON/UhdWIk6HBczs6impmM9HF8pSFyyvqr+CMaSJGNPAfRCR5aU1JJyID i6yZpAn3wHyMr8OfUN0LvSxe14dN7wkxZkQZe1syaHt1d8vR2s3wMZWRZtuzmw9i zbWVlVhtRGAWy7nUkqJhAk0RFsrJ36ZpXzBm5FPOhkJhapCNWvqfoEhHqgC/84pu qzcB3JCbn3nCj5N4ZuKdsE4u9WRBgvrGI5iZsWMXk6JaXwDRgW2NvVYeX7A= -----END CERTIFICATE-----Generated at Wed Apr 16 16:52:09 2025 by rpki-client