$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28cf4189-648d-467b-9ef1-b6e9fa5ba3dd.roa File: 28cf4189-648d-467b-9ef1-b6e9fa5ba3dd.roa (raw, json) Hash identifier: ZhKTv9HWNd2950k3GsysJI56x2V8JAhwHigtUacNnOs= Subject key identifier: E5:24:13:BE:59:FB:10:8D:2A:FE:4C:EA:77:65:34:AD:85:A0:56:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 585EAE370638728DCCE8A6C036E6600C98B7D78C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28cf4189-648d-467b-9ef1-b6e9fa5ba3dd.roa Signing time: Fri 04 Apr 2025 00:20:24 +0000 ROA not before: Fri 04 Apr 2025 00:20:24 +0000 ROA not after: Fri 09 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:5e:ae:37:06:38:72:8d:cc:e8:a6:c0:36:e6:60:0c:98:b7:d7:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 4 00:20:24 2025 GMT Not After : May 9 23:59:59 2025 GMT Subject: serialNumber=8033b34bbcbf366d4bc72e8bf367bc2d4842096cbbcf098776d59ee28592482c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:fc:5a:a5:0c:92:3e:31:fb:a0:b7:c8:1e:2d: dc:7f:b9:ec:03:73:67:a3:61:e1:80:d6:fa:c1:cb: 16:67:29:6a:84:0d:ed:f6:a1:a1:75:e0:b0:87:7f: 6a:10:16:5b:20:8e:00:f1:6d:a4:1c:a5:cc:ce:0f: 77:14:81:0a:ba:9d:13:dd:45:2c:eb:cf:fb:58:6f: ed:3a:92:58:ce:78:c4:e5:f2:ed:df:e4:d8:a8:98: ed:73:67:91:88:f9:10:0f:6e:13:5b:79:cf:fd:b5: 62:00:98:ae:15:61:23:b0:8b:26:ee:83:1c:33:2d: 66:63:78:9d:15:a9:c2:b4:e2:2b:6e:2e:06:6d:20: dc:37:11:30:c1:46:6c:e7:91:96:6e:06:f7:76:37: 8f:44:0a:7f:f1:3d:80:55:b2:3a:c5:16:30:61:55: 93:55:9c:4d:24:54:fe:84:6d:59:47:49:ed:f6:a4: 3d:c9:fe:72:94:d5:b2:41:6b:85:06:51:91:6d:6f: 54:cc:21:14:29:a3:42:a9:3f:54:af:b3:96:54:0e: dc:21:3d:9d:77:e0:8b:17:03:7f:6d:36:cb:05:89: 40:a2:ad:0f:ba:fe:9c:28:be:22:48:ae:3a:a9:9c: d8:87:c9:fd:e4:0d:58:4c:3b:1f:03:a6:45:71:2a: a2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:24:13:BE:59:FB:10:8D:2A:FE:4C:EA:77:65:34:AD:85:A0:56:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28cf4189-648d-467b-9ef1-b6e9fa5ba3dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.158.0/24 Signature Algorithm: sha256WithRSAEncryption 09:ed:50:5c:4c:6d:d0:71:8a:9e:10:bc:2e:a3:78:17:27:8b: aa:eb:a8:7b:ec:30:b8:85:f8:d9:f5:42:d0:ef:f5:52:d7:8b: 03:55:68:10:31:f6:6d:37:bc:1f:cf:13:8f:19:11:5a:bf:4c: fe:a4:21:1f:ee:7f:c4:f3:55:4a:21:15:cc:19:c2:65:c1:92: c2:db:41:46:8a:0a:59:1b:b7:94:4c:9c:3e:8f:32:87:cc:fd: dc:e6:bf:82:28:0d:66:81:da:b2:e1:ec:87:7e:50:ef:5c:b9: d6:3c:ba:43:cc:94:f0:3e:53:93:02:b2:dc:f2:f5:e6:3f:48: 84:bf:53:69:bf:35:15:92:36:3b:bb:38:d9:fc:8d:84:f3:3c: 8a:cd:23:49:4b:a8:e8:0d:49:86:23:7d:96:8a:6a:55:c2:4c: 87:8e:1d:95:66:d8:43:b0:91:b0:0a:5e:fc:99:f9:32:95:7b: dd:ef:83:44:c9:1a:c8:5b:5b:15:50:b5:e5:a6:ca:d7:32:e6: ce:7e:b6:8b:ec:8b:fb:a2:fa:83:17:65:91:46:38:f6:a8:1b: 9c:0d:4c:f6:c7:36:a8:84:bd:51:b9:4c:3f:6b:14:7a:26:62: fd:81:d9:4d:42:44:aa:f4:7d:58:8c:34:7d:ba:16:4d:96:52: a3:46:b8:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWF6uNwY4co3M6KbANuZgDJi314wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA0MDAyMDI0WhcNMjUwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDMzYjM0YmJjYmYzNjZkNGJjNzJlOGJmMzY3YmMyZDQ4 NDIwOTZjYmJjZjA5ODc3NmQ1OWVlMjg1OTI0ODJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCP/FqlDJI+Mfugt8geLdx/uewDc2ejYeGA1vrByxZnKWqE De32oaF14LCHf2oQFlsgjgDxbaQcpczOD3cUgQq6nRPdRSzrz/tYb+06kljOeMTl 8u3f5NiomO1zZ5GI+RAPbhNbec/9tWIAmK4VYSOwiybugxwzLWZjeJ0VqcK04itu LgZtINw3ETDBRmznkZZuBvd2N49ECn/xPYBVsjrFFjBhVZNVnE0kVP6EbVlHSe32 pD3J/nKU1bJBa4UGUZFtb1TMIRQpo0KpP1Svs5ZUDtwhPZ134IsXA39tNssFiUCi rQ+6/pwoviJIrjqpnNiHyf3kDVhMOx8DpkVxKqLhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5SQTvln7EI0q/kzqd2U0rYWgVnowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4Y2Y0MTg5LTY0OGQtNDY3Yi05ZWYxLWI2ZTlmYTViYTNkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZ4wDQYJKoZIhvcNAQELBQADggEBAAntUFxMbdBxip4QvC6jeBcni6rr qHvsMLiF+Nn1QtDv9VLXiwNVaBAx9m03vB/PE48ZEVq/TP6kIR/uf8TzVUohFcwZ wmXBksLbQUaKClkbt5RMnD6PMofM/dzmv4IoDWaB2rLh7Id+UO9cudY8ukPMlPA+ U5MCstzy9eY/SIS/U2m/NRWSNju7ONn8jYTzPIrNI0lLqOgNSYYjfZaKalXCTIeO HZVm2EOwkbAKXvyZ+TKVe93vg0TJGshbWxVQteWmytcy5s5+tovsi/ui+oMXZZFG OPaoG5wNTPbHNqiEvVG5TD9rFHomYv2B2U1CRKr0fViMNH26Fk2WUqNGuJw= -----END CERTIFICATE-----Generated at Wed Apr 16 17:12:33 2025 by rpki-client