$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4309ae2d-10c1-465c-8b74-6a7e0e3f71b8.roa File: 4309ae2d-10c1-465c-8b74-6a7e0e3f71b8.roa (raw, json) Hash identifier: NuAqPNn8ki7aYZDayz9ROFOqAMn9rF+k/istVtbVlWk= Subject key identifier: 4E:F4:33:DF:A7:E9:69:89:DE:83:87:F9:0E:7C:13:29:2F:AD:F2:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1AAEB5F2CA415F86C014EADB6DBE9BFA26111791 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4309ae2d-10c1-465c-8b74-6a7e0e3f71b8.roa Signing time: Sat 24 May 2025 00:21:08 +0000 ROA not before: Sat 24 May 2025 00:21:08 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:ae:b5:f2:ca:41:5f:86:c0:14:ea:db:6d:be:9b:fa:26:11:17:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:21:08 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=9627d87a9c59b1bed3106613e895b03b553f953cb2fd06a9c15b76f82f67ef61, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f8:7e:af:cf:a3:ac:2a:c9:3f:30:df:af:2a: ca:fd:fb:9b:10:4b:17:c9:55:fc:68:6a:09:12:2d: a3:93:af:d2:6d:09:12:fa:0c:0b:2f:35:a4:a3:62: c2:a6:5e:4b:62:f6:06:33:0a:ff:fe:36:44:bb:13: ef:3c:43:ea:f9:92:05:ef:29:db:5d:7d:26:41:70: 7e:89:1f:65:c2:7c:8a:0d:17:70:df:92:c0:ba:b6: 2d:47:4d:a4:2f:00:12:35:a8:cd:07:a2:18:8e:bf: bd:96:fe:f5:19:0c:a2:80:61:f6:db:f2:3e:be:64: c6:cd:7e:e2:21:76:d4:de:1d:ff:5f:f7:33:b0:c9: 70:ac:0a:4a:52:76:77:95:76:62:15:3c:1f:21:e7: b7:5c:58:91:33:18:24:fb:b0:c0:8b:cf:6b:bc:21: 5c:38:1e:6f:fd:fe:22:2e:2d:33:2a:9d:5f:7d:19: 1b:9b:f5:ea:47:52:f4:78:fe:e5:d3:75:97:7a:75: c0:14:c1:40:b7:a6:15:61:53:60:04:67:57:f5:7f: b8:0e:88:6c:14:a4:d9:3d:ac:6b:8d:8a:5d:86:0c: 9b:43:19:35:8e:25:e3:7a:9e:f8:f2:8f:9e:ac:66: c5:25:e8:97:bb:c7:cd:85:3c:08:1b:1a:d8:b7:22: 29:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:F4:33:DF:A7:E9:69:89:DE:83:87:F9:0E:7C:13:29:2F:AD:F2:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4309ae2d-10c1-465c-8b74-6a7e0e3f71b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.242.0/24 Signature Algorithm: sha256WithRSAEncryption 07:7d:3e:ae:ac:f3:84:76:9e:0b:77:28:21:2b:34:23:1c:a0: d7:68:7f:82:e7:01:98:5e:90:ad:1c:75:ce:b2:d1:f7:fd:48: 09:87:f0:4c:35:65:19:05:a5:3a:ef:b3:e7:b2:d4:6d:21:e5: a3:c1:68:8d:6f:4d:f2:af:e3:41:89:fd:25:90:e5:74:5f:b9: 2e:f8:15:b7:a6:cf:b9:eb:d1:c9:61:e1:5d:bc:95:0b:09:a7: e3:9e:b5:bc:b3:cf:49:e1:f2:87:54:0e:74:33:33:5c:cc:db: fe:25:b8:3e:6a:81:25:a2:dd:3a:7f:fd:81:e2:a8:34:c1:cb: 53:68:e3:46:26:f8:0c:66:5c:2d:e5:aa:b9:39:19:82:64:63: f2:b0:78:d6:79:52:65:ca:2f:13:23:f8:2f:95:1d:62:b8:29: 1f:d5:fb:a3:66:e5:c7:7c:cf:05:1e:a0:09:32:78:ed:a9:ab: 07:a9:0f:6d:e3:55:0f:54:68:81:23:23:c8:21:74:b9:a7:d8: a3:cd:fe:fa:3e:0d:7f:21:b2:9f:85:15:a3:e9:45:89:95:8c: d0:39:bb:ba:f3:80:e3:45:89:26:9d:04:9c:a8:2a:b6:44:04: 63:3e:dc:94:d7:08:96:5d:37:20:3e:37:3f:69:13:6c:3c:3b: 54:4c:38:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGq618spBX4bAFOrbbb6b+iYRF5EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAyMTA4WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjI3ZDg3YTljNTliMWJlZDMxMDY2MTNlODk1YjAzYjU1 M2Y5NTNjYjJmZDA2YTljMTViNzZmODJmNjdlZjYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx+H6vz6OsKsk/MN+vKsr9+5sQSxfJVfxoagkSLaOTr9Jt CRL6DAsvNaSjYsKmXkti9gYzCv/+NkS7E+88Q+r5kgXvKdtdfSZBcH6JH2XCfIoN F3DfksC6ti1HTaQvABI1qM0HohiOv72W/vUZDKKAYfbb8j6+ZMbNfuIhdtTeHf9f 9zOwyXCsCkpSdneVdmIVPB8h57dcWJEzGCT7sMCLz2u8IVw4Hm/9/iIuLTMqnV99 GRub9epHUvR4/uXTdZd6dcAUwUC3phVhU2AEZ1f1f7gOiGwUpNk9rGuNil2GDJtD GTWOJeN6nvjyj56sZsUl6Je7x82FPAgbGti3IikHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTvQz36fpaYneg4f5DnwTKS+t8pYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzMDlhZTJkLTEwYzEtNDY1Yy04Yjc0LTZhN2UwZTNmNzFiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfIwDQYJKoZIhvcNAQELBQADggEBAAd9Pq6s84R2ngt3KCErNCMcoNdo f4LnAZhekK0cdc6y0ff9SAmH8Ew1ZRkFpTrvs+ey1G0h5aPBaI1vTfKv40GJ/SWQ 5XRfuS74Fbemz7nr0clh4V28lQsJp+Oetbyzz0nh8odUDnQzM1zM2/4luD5qgSWi 3Tp//YHiqDTBy1No40Ym+AxmXC3lqrk5GYJkY/KweNZ5UmXKLxMj+C+VHWK4KR/V +6Nm5cd8zwUeoAkyeO2pqwepD23jVQ9UaIEjI8ghdLmn2KPN/vo+DX8hsp+FFaPp RYmVjNA5u7rzgONFiSadBJyoKrZEBGM+3JTXCJZdNyA+Nz9pE2w8O1RMOMM= -----END CERTIFICATE-----Generated at Sun Jun 1 04:43:14 2025 by rpki-client