$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa File: 3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa (raw, json) Hash identifier: xkHSXA1bBgSTeSH5GMPBsm5zWFJOKk29JnthDeIXElE= Subject key identifier: 31:BE:51:00:27:35:52:19:9E:4C:72:4A:EB:18:C3:4B:C6:71:1F:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CD487705FCB6C7FCC1FD7F683C844056DF2FC23 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa Signing time: Wed 28 May 2025 00:51:16 +0000 ROA not before: Wed 28 May 2025 00:51:16 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:d4:87:70:5f:cb:6c:7f:cc:1f:d7:f6:83:c8:44:05:6d:f2:fc:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:51:16 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=1817bbfed1eed1e715b668ce7b8cc4710a5e016d9ed9cf70467acc4fcaebb13a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:81:37:ec:c1:7c:93:6e:d6:19:71:ed:87:38: 86:0a:57:a4:4c:65:ec:5d:86:45:1a:ff:59:5e:8b: 9e:31:bd:ec:d9:76:27:44:6d:09:09:ab:9e:9f:bd: e2:a6:a9:38:10:91:c7:c0:99:3d:5f:f2:27:dc:72: d3:73:1c:e8:4a:d1:c6:27:82:6e:72:4b:8d:f6:7f: 85:dd:0d:ba:43:b8:ce:4a:d1:26:20:b2:f2:47:bc: 85:4c:42:41:34:39:f2:de:60:36:50:6f:21:f3:a8: 14:c3:2e:04:c8:27:59:c9:20:83:5b:31:f2:1e:7e: f2:7a:34:73:5f:f2:46:12:cb:5f:11:65:25:0c:ea: db:7c:9c:dc:d0:c4:40:01:dd:2a:74:4c:00:3c:5f: f6:45:41:6b:46:a0:e5:3a:53:8d:5d:92:9d:37:53: 06:a6:fc:4e:6a:d8:d4:07:9c:a4:31:5f:86:b6:90: 98:7c:76:7d:11:67:da:89:bf:66:39:4e:39:61:6a: b0:f8:5b:1e:87:01:6d:db:c5:a8:58:21:79:72:69: 1c:4b:d9:59:75:11:c0:57:63:d5:8e:aa:68:06:4a: c1:74:7f:80:90:86:a4:c8:d3:a5:e1:b3:20:c3:bb: 92:46:5e:6a:ae:3e:65:75:c0:51:85:df:7b:9c:53: 51:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:BE:51:00:27:35:52:19:9E:4C:72:4A:EB:18:C3:4B:C6:71:1F:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.186.0/24 Signature Algorithm: sha256WithRSAEncryption b3:60:05:56:61:01:75:5a:fd:62:df:d0:f1:32:b7:de:23:6c: 36:98:18:82:92:38:8d:01:7e:88:c0:04:fb:5b:99:7f:29:68: 8c:f4:d4:c8:ac:04:7b:f5:49:36:d8:0a:09:93:f7:e8:76:2e: 88:5f:74:96:c9:c9:2d:36:78:86:80:9b:ca:07:05:03:ef:a0: 08:ef:f1:77:12:46:30:15:b9:10:5e:84:26:51:c9:b7:e8:f4: b5:3f:16:79:cc:34:98:06:d3:76:f4:54:26:04:1b:b9:23:00: d9:45:8e:86:5e:03:08:02:8c:14:61:2c:b9:92:99:db:fb:a4: e7:c5:97:b2:ff:ce:15:20:84:23:f6:e4:20:89:38:96:24:74: ec:67:9e:69:08:1e:b4:87:0f:97:f9:c3:d7:9c:c3:24:0a:74: fd:73:0c:00:b5:68:a0:d3:9b:11:ad:49:9d:df:a0:f5:6d:02: 23:f7:24:b4:f5:9c:b1:e2:06:46:89:ed:ef:8e:83:4f:2b:6e: a0:79:20:5c:37:ca:8c:cb:89:6a:f0:16:68:c7:e0:a2:36:19: ef:af:b1:63:ce:cc:6c:7d:1d:1d:f3:f7:90:e0:7e:f7:cd:fb: 68:21:5a:b6:66:07:dd:f4:70:2c:e8:fe:d2:cd:f3:8f:5a:a6: 86:6d:b3:ad -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfNSHcF/LbH/MH9f2g8hEBW3y/CMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDA1MTE2WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxODE3YmJmZWQxZWVkMWU3MTViNjY4Y2U3YjhjYzQ3MTBh NWUwMTZkOWVkOWNmNzA0NjdhY2M0ZmNhZWJiMTNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqgTfswXyTbtYZce2HOIYKV6RMZexdhkUa/1lei54xvezZ didEbQkJq56fveKmqTgQkcfAmT1f8ifcctNzHOhK0cYngm5yS432f4XdDbpDuM5K 0SYgsvJHvIVMQkE0OfLeYDZQbyHzqBTDLgTIJ1nJIINbMfIefvJ6NHNf8kYSy18R ZSUM6tt8nNzQxEAB3Sp0TAA8X/ZFQWtGoOU6U41dkp03Uwam/E5q2NQHnKQxX4a2 kJh8dn0RZ9qJv2Y5TjlharD4Wx6HAW3bxahYIXlyaRxL2Vl1EcBXY9WOqmgGSsF0 f4CQhqTI06XhsyDDu5JGXmquPmV1wFGF33ucU1EnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMb5RACc1UhmeTHJK6xjDS8ZxH1QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1MzNjNzgyLTRhOGUtNGIwNS1iMjNlLWUzNzQxZTlmYjAyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTbowDQYJKoZIhvcNAQELBQADggEBALNgBVZhAXVa/WLf0PEyt94jbDaY GIKSOI0BfojABPtbmX8paIz01MisBHv1STbYCgmT9+h2LohfdJbJyS02eIaAm8oH BQPvoAjv8XcSRjAVuRBehCZRybfo9LU/FnnMNJgG03b0VCYEG7kjANlFjoZeAwgC jBRhLLmSmdv7pOfFl7L/zhUghCP25CCJOJYkdOxnnmkIHrSHD5f5w9ecwyQKdP1z DAC1aKDTmxGtSZ3foPVtAiP3JLT1nLHiBkaJ7e+Og08rbqB5IFw3yozLiWrwFmjH 4KI2Ge+vsWPOzGx9HR3z95DgfvfN+2ghWrZmB930cCzo/tLN849apoZts60= -----END CERTIFICATE-----Generated at Sun Jun 1 04:25:05 2025 by rpki-client