$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28cf4189-648d-467b-9ef1-b6e9fa5ba3dd.roa File: 28cf4189-648d-467b-9ef1-b6e9fa5ba3dd.roa (raw, json) Hash identifier: KRLqVxOngdAvDUSzcHw9aqJ6bicW1TydIggr8L6tfng= Subject key identifier: 3A:4C:5B:7A:52:83:75:79:9C:F7:C3:40:2C:99:CF:72:DD:0D:AD:A0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 423597499B66792FC9CA4C0CB7796571871E83A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28cf4189-648d-467b-9ef1-b6e9fa5ba3dd.roa Signing time: Mon 10 Mar 2025 15:21:01 +0000 ROA not before: Mon 10 Mar 2025 15:21:01 +0000 ROA not after: Mon 14 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:35:97:49:9b:66:79:2f:c9:ca:4c:0c:b7:79:65:71:87:1e:83:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 10 15:21:01 2025 GMT Not After : Apr 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c6:fa:2b:3a:e6:75:5c:4a:64:90:60:22:18: 92:af:df:24:4b:18:85:30:c2:5f:b7:fa:94:be:91: 8e:7b:cd:8a:07:93:6f:33:dc:14:25:5c:aa:53:21: ac:61:3e:2f:d2:ce:49:57:59:b8:a7:cc:d0:76:eb: 98:8a:47:24:f9:9e:d4:04:72:cc:d5:1f:94:6e:47: 0a:bc:52:06:78:11:ca:cb:fa:3c:e9:3b:21:02:28: 5d:ce:9d:4a:b6:b8:23:d8:51:b1:39:8c:c2:59:d7: 14:49:13:04:99:e7:82:e7:29:10:ba:c4:7e:8d:4d: ac:99:f4:f8:e0:8c:d5:a1:15:20:db:04:8f:c7:b1: 07:49:79:2e:bb:70:b5:78:e5:51:cb:19:d7:73:60: 1f:1c:77:73:47:eb:e0:26:5a:2d:1b:84:a2:5b:cd: 44:b0:c1:40:68:53:3b:28:4f:f7:5c:52:f5:06:27: 36:1c:4c:93:cb:46:48:5b:5f:f2:03:dd:cb:fc:28: 57:d6:4a:ca:eb:42:05:0a:e4:54:2f:10:a6:02:2f: 4f:11:80:62:17:48:4c:61:f5:0e:d1:0a:31:f3:3d: ad:d4:eb:09:af:a4:aa:e5:ee:87:dc:ae:e7:b3:62: 13:92:c7:ba:69:79:b7:8a:83:c0:0e:50:ec:fc:ca: 41:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:4C:5B:7A:52:83:75:79:9C:F7:C3:40:2C:99:CF:72:DD:0D:AD:A0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28cf4189-648d-467b-9ef1-b6e9fa5ba3dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.158.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:59:0f:15:1c:c0:e0:11:86:01:03:bd:9a:74:78:27:a1:dc: 62:f2:26:61:a0:c4:f2:a5:64:7f:63:2b:17:39:49:6f:3a:bf: ac:48:cd:3b:27:8b:6e:59:01:42:8c:69:23:02:ce:6d:ec:80: a5:70:dd:cb:f0:21:d0:6e:aa:b9:56:5b:ce:58:f7:8f:f5:f8: 44:5a:74:ad:c8:47:e3:2f:26:95:34:30:e0:18:3f:c2:31:a6: bd:ea:85:ac:ef:de:a7:1b:f0:ba:bf:91:86:0f:0a:31:55:8e: c8:07:50:78:df:e2:d4:df:a6:a2:db:ac:82:b2:d5:44:95:47: 37:49:3a:41:04:57:de:9a:09:a6:60:c2:04:49:6c:14:79:72: b0:74:d3:4c:a6:43:a4:e6:e1:a8:08:01:2a:b3:1d:e8:32:8e: a0:60:dc:05:f8:9b:05:ed:9d:a4:a2:0c:16:9a:86:7d:ed:c3: f1:07:4c:09:6a:9a:88:bf:c7:e9:c6:75:ce:84:83:67:d2:64: af:be:45:05:5b:5c:a1:45:66:af:a3:e2:b2:c7:d6:71:03:2f: f2:23:d2:cf:4d:44:55:76:26:a3:33:1f:2d:d0:ec:43:f2:78: 20:a9:94:b9:0f:79:ce:6d:8f:9f:7c:8d:78:17:3a:46:d4:9d: 07:6c:2e:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQjWXSZtmeS/JykwMt3llcYceg6EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzEwMTUyMTAxWhcNMjUwNDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzdiOTk2NzUwMmFlMjkwYWI4Zjg4MDQ1NjcyOTZkYzg3 YmMyODZmYTdkM2YwOWYzYTNiY2UzM2JkNGEzOGJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjxvorOuZ1XEpkkGAiGJKv3yRLGIUwwl+3+pS+kY57zYoH k28z3BQlXKpTIaxhPi/SzklXWbinzNB265iKRyT5ntQEcszVH5RuRwq8UgZ4EcrL +jzpOyECKF3OnUq2uCPYUbE5jMJZ1xRJEwSZ54LnKRC6xH6NTayZ9PjgjNWhFSDb BI/HsQdJeS67cLV45VHLGddzYB8cd3NH6+AmWi0bhKJbzUSwwUBoUzsoT/dcUvUG JzYcTJPLRkhbX/ID3cv8KFfWSsrrQgUK5FQvEKYCL08RgGIXSExh9Q7RCjHzPa3U 6wmvpKrl7ofcruezYhOSx7ppebeKg8AOUOz8ykFfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOkxbelKDdXmc98NALJnPct0NraAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4Y2Y0MTg5LTY0OGQtNDY3Yi05ZWYxLWI2ZTlmYTViYTNkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZ4wDQYJKoZIhvcNAQELBQADggEBAH5ZDxUcwOARhgEDvZp0eCeh3GLy JmGgxPKlZH9jKxc5SW86v6xIzTsni25ZAUKMaSMCzm3sgKVw3cvwIdBuqrlWW85Y 94/1+ERadK3IR+MvJpU0MOAYP8Ixpr3qhazv3qcb8Lq/kYYPCjFVjsgHUHjf4tTf pqLbrIKy1USVRzdJOkEEV96aCaZgwgRJbBR5crB000ymQ6Tm4agIASqzHegyjqBg 3AX4mwXtnaSiDBaahn3tw/EHTAlqmoi/x+nGdc6Eg2fSZK++RQVbXKFFZq+j4rLH 1nEDL/Ij0s9NRFV2JqMzHy3Q7EPyeCCplLkPec5tj598jXgXOkbUnQdsLuI= -----END CERTIFICATE-----Generated at Thu Mar 13 23:54:17 2025 by rpki-client