$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79a3066d-ab33-44e5-b364-14423e757820.roa File: 79a3066d-ab33-44e5-b364-14423e757820.roa (raw, json) Hash identifier: 6r/HX3PFzIRsJfXOCYNkvvgUFy4RYNZpMo6yu0UKfRg= Subject key identifier: B1:1D:4D:B9:17:CE:6B:2E:69:2D:ED:07:D3:4A:81:04:53:04:23:CA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4780A6A74F9995385240575510149CD148022F8F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79a3066d-ab33-44e5-b364-14423e757820.roa Signing time: Tue 18 Feb 2025 15:30:19 +0000 ROA not before: Tue 18 Feb 2025 15:30:19 +0000 ROA not after: Tue 25 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:80:a6:a7:4f:99:95:38:52:40:57:55:10:14:9c:d1:48:02:2f:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 18 15:30:19 2025 GMT Not After : Mar 25 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:20:19:c3:92:e0:48:97:4f:8c:11:28:84:1c: 80:41:d6:ac:8e:07:8c:58:7f:5b:6d:37:34:6c:4b: b1:85:90:e7:60:12:59:d4:57:9e:86:07:47:25:1b: da:fb:8b:4b:0c:22:ec:5c:be:19:9c:98:33:ae:b5: a6:bd:a5:57:72:bf:2f:5a:eb:97:fd:c5:5d:36:f6: c1:27:62:60:bb:64:e4:f1:49:a6:e6:05:f8:de:41: f9:36:af:a6:87:88:72:98:da:ce:2c:7b:c6:94:aa: 99:72:96:d8:3a:21:96:73:07:75:e3:1e:3e:e2:48: 84:72:49:ee:c2:3e:44:1e:96:69:03:49:11:16:4c: 9c:f4:8e:c5:79:f2:34:4e:19:39:7f:bb:16:70:49: 38:e6:56:9b:f7:f2:0f:2d:47:d7:00:8a:bc:e7:23: be:a7:73:ab:e4:51:64:0d:b5:38:07:18:23:3a:c7: 22:d5:87:9b:f3:65:1c:6b:c5:53:39:36:3b:31:32: f5:5a:23:26:38:1a:45:e9:bc:8e:67:59:51:c7:b4: 1b:3d:5d:0b:29:65:37:9d:49:9c:92:74:7c:5a:e8: 89:d8:cc:7a:c1:1d:fc:07:b1:53:b5:d5:f0:ec:91: c3:c1:e1:2e:85:81:31:3b:45:db:be:38:a4:9f:61: 96:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:1D:4D:B9:17:CE:6B:2E:69:2D:ED:07:D3:4A:81:04:53:04:23:CA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79a3066d-ab33-44e5-b364-14423e757820.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.245.0/24 Signature Algorithm: sha256WithRSAEncryption b9:e5:76:fa:f0:bd:56:85:6b:88:49:3b:63:f9:aa:38:84:f5: b8:17:26:c2:5a:a2:de:e8:04:b7:dc:a5:93:5c:fe:b6:6d:43: 4c:54:38:45:2a:8d:24:08:81:15:d8:91:9e:58:4f:52:96:01: 45:08:fd:fb:5d:6b:e8:0d:37:ee:d7:7f:17:c9:4e:42:3a:ed: 4e:0f:ce:be:39:ca:56:42:cb:35:f7:37:10:59:cb:94:b4:05: 13:ea:5a:33:38:14:3b:90:60:f3:63:12:d0:1e:f9:fc:2a:2c: 1c:21:b5:48:2d:8e:aa:eb:78:42:e6:76:7b:3d:2f:69:4e:e4: 67:17:40:ec:94:04:30:6b:34:ba:72:b6:d4:8a:2f:a9:7a:9d: 8c:de:db:19:98:27:df:78:6b:3a:4a:d4:77:04:5a:a2:0b:a4: 5b:c3:9a:0e:0a:0e:df:66:b5:ef:fc:f8:e8:a8:55:8a:d8:8c: bb:bf:d5:59:48:de:37:7a:93:39:cc:11:66:8d:eb:b1:02:cd: 6a:4a:2e:35:aa:e6:56:63:32:07:a9:72:0d:79:3a:db:66:10: 50:55:0c:1f:df:3a:d9:e9:ff:2a:cc:17:90:46:28:0d:d1:ad: d1:87:d1:2b:e7:ab:82:b8:42:51:02:4d:44:3d:4c:49:18:d2: 18:ce:f6:1e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR4Cmp0+ZlThSQFdVEBSc0UgCL48wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjE4MTUzMDE5WhcNMjUwMzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhY2Y2ZGNlNDFhNjZiMTIwMDkxMzAzNmI5MDkzNmMzNmI0 OWFiMWZjMGE3YWY1MTAxMzJhZjk4Njc2ZjZhNWQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIIBnDkuBIl0+MESiEHIBB1qyOB4xYf1ttNzRsS7GFkOdg ElnUV56GB0clG9r7i0sMIuxcvhmcmDOutaa9pVdyvy9a65f9xV029sEnYmC7ZOTx SabmBfjeQfk2r6aHiHKY2s4se8aUqplyltg6IZZzB3XjHj7iSIRySe7CPkQelmkD SREWTJz0jsV58jROGTl/uxZwSTjmVpv38g8tR9cAirznI76nc6vkUWQNtTgHGCM6 xyLVh5vzZRxrxVM5NjsxMvVaIyY4GkXpvI5nWVHHtBs9XQspZTedSZySdHxa6InY zHrBHfwHsVO11fDskcPB4S6FgTE7Rdu+OKSfYZZ1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsR1NuRfOay5pLe0H00qBBFMEI8owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc5YTMwNjZkLWFiMzMtNDRlNS1iMzY0LTE0NDIzZTc1NzgyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfUwDQYJKoZIhvcNAQELBQADggEBALnldvrwvVaFa4hJO2P5qjiE9bgX JsJaot7oBLfcpZNc/rZtQ0xUOEUqjSQIgRXYkZ5YT1KWAUUI/ftda+gNN+7XfxfJ TkI67U4Pzr45ylZCyzX3NxBZy5S0BRPqWjM4FDuQYPNjEtAe+fwqLBwhtUgtjqrr eELmdns9L2lO5GcXQOyUBDBrNLpyttSKL6l6nYze2xmYJ994azpK1HcEWqILpFvD mg4KDt9mte/8+OioVYrYjLu/1VlI3jd6kznMEWaN67ECzWpKLjWq5lZjMgepcg15 OttmEFBVDB/fOtnp/yrMF5BGKA3RrdGH0Svnq4K4QlECTUQ9TEkY0hjO9h4= -----END CERTIFICATE-----Generated at Thu Mar 13 23:47:24 2025 by rpki-client