$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa File: 5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa (raw, json) Hash identifier: 2HVpX+4kvrFZKG9d0AIjIAo/I3e9ahvDCxRmJH/EEh4= Subject key identifier: 68:8F:6C:12:44:B9:93:AB:2B:6B:DF:13:BB:D7:C2:E2:C4:41:FA:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0953340B396401F682000EC341929DEDD17B893A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa Signing time: Tue 18 Feb 2025 15:40:47 +0000 ROA not before: Tue 18 Feb 2025 15:40:47 +0000 ROA not after: Tue 25 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:53:34:0b:39:64:01:f6:82:00:0e:c3:41:92:9d:ed:d1:7b:89:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 18 15:40:47 2025 GMT Not After : Mar 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:96:a6:66:00:4b:07:2a:97:33:90:57:8e:2e: bd:f0:8c:67:c3:ef:3b:ee:33:73:e8:87:ff:49:9f: 6e:8f:20:67:fd:f6:f4:dd:47:b7:57:65:64:e2:e0: a4:8c:9c:c5:e2:79:83:37:1b:f8:99:59:59:d1:7c: 52:85:ef:c4:81:e8:c0:86:7e:49:73:1b:f4:62:6d: 1c:e6:75:01:aa:2f:86:c8:18:fe:87:15:be:ae:b1: 68:e2:1e:fa:87:6f:59:a2:bd:0a:a0:0d:f4:7e:4b: cb:c8:98:d9:30:8b:25:59:bf:f8:89:da:cf:ac:96: 11:c8:c3:e7:4d:4d:92:81:17:34:fe:1c:dd:d1:12: 5b:89:32:9f:f2:18:21:86:61:57:47:7f:87:b6:71: bb:d0:f5:f9:dc:c8:08:6c:de:d3:c9:bb:ff:de:24: 3b:0b:9e:8a:01:ad:79:a4:15:42:46:9b:00:a9:e7: 17:e1:aa:7e:b1:c8:99:a8:94:d7:ad:6b:2c:25:31: 6d:dc:f9:6d:50:7e:8f:28:a0:95:2c:fd:1a:48:c7: 04:80:a1:46:61:a6:42:4a:0e:ec:a2:e6:c8:6e:50: df:9a:cc:13:b6:26:8a:5a:45:ed:91:03:1f:70:13: cd:38:68:7a:ea:15:5c:9a:fc:6d:12:84:ba:a4:c7: 3a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:8F:6C:12:44:B9:93:AB:2B:6B:DF:13:BB:D7:C2:E2:C4:41:FA:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.249.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:f4:57:0b:9d:72:c3:2e:41:5d:87:39:8a:45:07:a5:01:f1: 29:0d:bc:09:76:00:69:d1:80:83:14:32:00:17:40:b3:5f:bf: 41:0b:1e:4a:08:fe:2e:68:d7:ad:24:59:9d:63:46:be:39:58: 20:4b:b8:0a:24:97:40:89:d6:73:01:10:0d:62:ba:e9:a6:2b: 11:2a:97:c2:19:73:a6:50:d1:b5:58:06:78:81:28:25:65:7a: 65:e3:15:5f:79:a7:c0:6d:d5:25:68:39:ce:0f:86:6a:84:7b: f3:d5:bb:32:ff:c9:0b:23:4c:28:19:1e:e9:05:9d:73:36:f7: a9:e5:d7:68:fd:ed:4f:0a:18:7d:99:e1:b7:a0:1d:35:26:60: 04:0f:57:1a:cc:3d:cc:c4:2d:0f:b2:b2:ed:fc:19:a8:a4:8a: 5f:7c:5f:b2:80:6a:99:5a:ec:9b:fd:31:b4:59:aa:86:03:8f: 53:1f:70:48:9a:7a:4c:1c:9f:91:d1:4a:a7:59:b1:f6:03:9b: 0f:f1:e3:fa:97:95:32:da:1f:75:95:82:e7:f4:a7:39:e3:43: bf:a7:22:98:78:0a:da:28:e6:79:41:6a:e7:11:54:e1:74:5a: 9e:d3:1c:6c:f2:86:a7:cf:f5:19:9a:a9:3e:d3:94:36:e1:ca: fa:1b:26:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCVM0CzlkAfaCAA7DQZKd7dF7iTowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE4MTU0MDQ3WhcNMjUwMzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTliYjU3OTAzMzliYTdjNjgzZWNmNzkyZjcxOWNiNTUz N2FhMzhmOGYxYzc3MmU4NzgxNWMwNmE2MDBlODJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHlqZmAEsHKpczkFeOLr3wjGfD7zvuM3Poh/9Jn26PIGf9 9vTdR7dXZWTi4KSMnMXieYM3G/iZWVnRfFKF78SB6MCGfklzG/RibRzmdQGqL4bI GP6HFb6usWjiHvqHb1mivQqgDfR+S8vImNkwiyVZv/iJ2s+slhHIw+dNTZKBFzT+ HN3REluJMp/yGCGGYVdHf4e2cbvQ9fncyAhs3tPJu//eJDsLnooBrXmkFUJGmwCp 5xfhqn6xyJmolNetaywlMW3c+W1Qfo8ooJUs/RpIxwSAoUZhpkJKDuyi5shuUN+a zBO2JopaRe2RAx9wE804aHrqFVya/G0ShLqkxzrBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaI9sEkS5k6sra98Tu9fC4sRB+o8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzViZGIyMDI1LTcxODEtNDM5Zi04YmQ4LWQxMDkxYzFmOGQ3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfkwDQYJKoZIhvcNAQELBQADggEBACz0VwudcsMuQV2HOYpFB6UB8SkN vAl2AGnRgIMUMgAXQLNfv0ELHkoI/i5o160kWZ1jRr45WCBLuAokl0CJ1nMBEA1i uummKxEql8IZc6ZQ0bVYBniBKCVlemXjFV95p8Bt1SVoOc4PhmqEe/PVuzL/yQsj TCgZHukFnXM296nl12j97U8KGH2Z4begHTUmYAQPVxrMPczELQ+ysu38Gaikil98 X7KAapla7Jv9MbRZqoYDj1MfcEiaekwcn5HRSqdZsfYDmw/x4/qXlTLaH3WVguf0 pznjQ7+nIph4Ctoo5nlBaucRVOF0Wp7THGzyhqfP9RmaqT7TlDbhyvobJq4= -----END CERTIFICATE-----Generated at Thu Mar 13 23:53:12 2025 by rpki-client