$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5332b03c-61a9-413c-af32-f67a7d5c8781.roa File: 5332b03c-61a9-413c-af32-f67a7d5c8781.roa (raw, json) Hash identifier: OQW2NuS8+vRf+2h3831ZkayM0mul/kP4c9fvS1RVW6Q= Subject key identifier: F1:D9:6C:71:5A:15:78:A8:CB:C8:2E:FB:B6:DD:00:F0:CE:C9:B5:3C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4170B4700EF3D4477E268D4C7293D9A336B629DA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5332b03c-61a9-413c-af32-f67a7d5c8781.roa Signing time: Sat 10 May 2025 00:20:13 +0000 ROA not before: Sat 10 May 2025 00:20:13 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:70:b4:70:0e:f3:d4:47:7e:26:8d:4c:72:93:d9:a3:36:b6:29:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:20:13 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=211e6f1671699e91476c8d81b45e83c89c08deb036988282b7fb419a78fd2347, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:a7:24:03:72:44:6c:25:95:47:f7:82:a9:c3: f5:1c:04:c9:f2:0f:7c:8f:55:2c:2e:28:f4:2d:e0: 71:92:bf:00:4b:89:16:b6:4d:12:f0:19:8a:06:ab: 77:5d:a9:3b:66:46:36:b2:21:06:2a:cb:de:68:77: c6:88:c3:84:fa:7e:82:8f:a3:95:59:63:ac:d8:5c: 8a:ae:8e:36:d3:3d:8b:14:f5:2c:fc:5b:6c:74:6f: 74:de:3c:97:a3:59:35:a5:56:39:ec:34:81:d6:6f: a9:b9:78:9b:2b:e7:f7:fb:ad:56:aa:38:78:67:af: d1:99:dd:4a:56:d4:2a:cf:63:d8:55:93:23:7d:d2: f5:45:a7:eb:22:97:bb:5f:88:01:8c:c5:25:ab:30: 08:6e:a3:71:ba:e3:f9:ec:23:0e:ca:8a:2b:aa:9f: f5:28:b3:cf:25:3d:26:96:ba:8a:13:02:b6:a2:a7: 35:b4:1f:19:f4:8f:1f:ab:69:72:60:59:5d:eb:ef: 77:e4:43:1d:2b:c9:da:53:78:a5:4f:9b:5d:95:ac: 67:72:e1:08:4d:f0:75:39:9a:c7:e1:e4:14:21:d8: 26:71:78:1a:cf:f7:49:b0:7f:45:b9:e5:f3:44:59: 23:26:3f:ee:ff:2d:34:28:a8:d2:8f:27:c6:42:69: 5b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D9:6C:71:5A:15:78:A8:CB:C8:2E:FB:B6:DD:00:F0:CE:C9:B5:3C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5332b03c-61a9-413c-af32-f67a7d5c8781.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.19.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:c7:54:17:51:33:b4:bb:6e:fd:3c:ad:2e:e0:00:ad:66:87: f1:fe:06:3d:58:a4:bd:82:b0:bd:45:fb:8d:12:79:0a:ee:58: cf:0d:ee:53:a3:ac:74:dd:c7:d2:6a:e8:46:7b:fa:e4:80:be: ac:58:49:84:47:55:7e:7f:ac:8e:21:59:86:a5:7d:8f:fe:98: 45:7b:b2:fe:15:73:17:6c:68:37:95:76:1a:13:58:d5:f8:ec: c1:e9:2d:00:6b:90:2a:75:9f:d0:22:b9:e7:26:62:81:d2:92: 33:2f:be:c3:40:aa:11:fd:98:f8:7c:cd:21:b8:4f:f6:ab:1d: be:0e:91:74:5b:65:e1:6c:31:ba:f7:9c:2a:5a:11:27:a0:ad: e3:91:7f:de:4e:60:dc:9f:b5:91:55:13:80:77:f3:33:a0:b0: c7:d1:8d:69:6a:6b:19:50:53:b2:e6:13:8d:8a:94:90:76:69: 71:b6:59:6b:e1:28:d2:d6:1b:3b:ae:2f:9f:90:63:e4:18:9d: bd:28:d0:ef:77:56:a3:a3:0b:3c:3b:10:70:e0:72:f1:f7:15: 33:ec:47:33:cb:cd:62:01:0a:04:e8:13:0e:8a:db:c2:a5:d5: 1e:e0:23:c2:77:3b:2c:84:35:74:8a:03:8d:4b:a1:60:20:b3: 87:6b:e2:94 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQXC0cA7z1Ed+Jo1McpPZoza2KdowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDAyMDEzWhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTFlNmYxNjcxNjk5ZTkxNDc2YzhkODFiNDVlODNjODlj MDhkZWIwMzY5ODgyODJiN2ZiNDE5YTc4ZmQyMzQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRpyQDckRsJZVH94Kpw/UcBMnyD3yPVSwuKPQt4HGSvwBL iRa2TRLwGYoGq3ddqTtmRjayIQYqy95od8aIw4T6foKPo5VZY6zYXIqujjbTPYsU 9Sz8W2x0b3TePJejWTWlVjnsNIHWb6m5eJsr5/f7rVaqOHhnr9GZ3UpW1CrPY9hV kyN90vVFp+sil7tfiAGMxSWrMAhuo3G64/nsIw7Kiiuqn/Uos88lPSaWuooTArai pzW0Hxn0jx+raXJgWV3r73fkQx0rydpTeKVPm12VrGdy4QhN8HU5msfh5BQh2CZx eBrP90mwf0W55fNEWSMmP+7/LTQoqNKPJ8ZCaVsXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8dlscVoVeKjLyC77tt0A8M7JtTwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzMzJiMDNjLTYxYTktNDEzYy1hZjMyLWY2N2E3ZDVjODc4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjlhMwDQYJKoZIhvcNAQELBQADggEBAI/HVBdRM7S7bv08rS7gAK1mh/H+ Bj1YpL2CsL1F+40SeQruWM8N7lOjrHTdx9Jq6EZ7+uSAvqxYSYRHVX5/rI4hWYal fY/+mEV7sv4VcxdsaDeVdhoTWNX47MHpLQBrkCp1n9AiuecmYoHSkjMvvsNAqhH9 mPh8zSG4T/arHb4OkXRbZeFsMbr3nCpaESegreORf95OYNyftZFVE4B38zOgsMfR jWlqaxlQU7LmE42KlJB2aXG2WWvhKNLWGzuuL5+QY+QYnb0o0O93VqOjCzw7EHDg cvH3FTPsRzPLzWIBCgToEw6K28Kl1R7gI8J3OyyENXSKA41LoWAgs4dr4pQ= -----END CERTIFICATE-----Generated at Sun Jun 1 04:26:49 2025 by rpki-client