$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79a3066d-ab33-44e5-b364-14423e757820.roa File: 79a3066d-ab33-44e5-b364-14423e757820.roa (raw, json) Hash identifier: xGZexBAX261PQYP1gowrZHpVU8X7LcixEUYRhybRoKo= Subject key identifier: F1:30:1B:06:13:01:A6:31:CF:83:1A:A2:B6:A4:80:5D:74:7E:C0:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D4CE3E56EAC20ABF498969AF47128E17BD16C53 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79a3066d-ab33-44e5-b364-14423e757820.roa Signing time: Fri 30 May 2025 00:41:28 +0000 ROA not before: Fri 30 May 2025 00:41:28 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:4c:e3:e5:6e:ac:20:ab:f4:98:96:9a:f4:71:28:e1:7b:d1:6c:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:41:28 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=61a25c61cdb83d1f5f06b070c47b317e21178f275be89aa5cf3ae41c082b1aba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:81:ad:4e:0c:a8:65:01:6f:12:fc:18:1b:22: 01:dc:08:a6:72:c1:79:54:65:5e:8d:bb:f6:97:e0: 70:8d:2b:53:8b:f0:5b:1d:36:04:d3:76:72:0d:16: e5:c1:09:a0:b7:d9:8c:bc:71:42:93:47:05:0d:ee: c8:22:42:da:69:ba:93:71:e9:8c:de:5f:80:73:c4: 9d:81:67:d7:61:15:2b:75:88:b5:f0:5a:6e:1c:f5: 25:0a:30:3a:4f:bf:d6:00:2d:5a:dd:3a:d5:af:5c: 25:5a:da:91:75:29:2c:69:ae:be:ab:fa:c9:83:84: 0b:73:6a:fb:86:75:ba:ce:40:64:87:53:96:82:3f: 33:e0:40:0f:98:61:8c:77:bf:76:1c:05:39:ec:e5: dd:42:ac:ef:ff:0c:52:ce:69:c1:bb:36:cc:dc:a6: 08:84:bb:7e:ca:52:28:a0:20:61:cc:cf:f3:78:f7: 03:8b:39:82:e9:f6:7a:f4:d2:58:c8:9f:b2:d2:1c: fc:92:f6:86:9d:b6:42:bc:cc:0d:5a:a3:24:14:7f: c6:7f:04:0d:69:c8:92:e8:36:b2:a6:4f:02:15:e5: 64:9a:83:e0:ad:eb:0d:65:39:24:c6:b5:fc:4d:22: 79:04:ba:c4:95:2b:b1:e6:a0:70:aa:68:1c:92:9c: 10:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:30:1B:06:13:01:A6:31:CF:83:1A:A2:B6:A4:80:5D:74:7E:C0:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79a3066d-ab33-44e5-b364-14423e757820.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.245.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:01:a6:5a:1d:4b:5e:c8:e7:2e:14:9e:f7:35:58:99:73:85: 32:6e:38:87:66:32:ac:09:7f:75:29:81:c3:4f:db:bb:db:9b: ed:12:4e:43:9a:73:0a:de:47:6c:14:9f:a0:29:a2:b7:5b:6e: 22:fd:b9:16:7c:a3:51:c5:9e:48:13:3c:b7:7a:64:a1:13:58: 34:a2:51:0f:a3:0a:74:28:2e:86:ab:f3:20:ec:a8:63:0b:b5: 9a:72:ee:a6:96:29:a0:c7:f2:aa:64:79:8b:59:6b:36:a2:6f: 9d:a7:41:b9:12:e7:6f:19:99:e5:5b:bb:f4:4b:3a:9d:ca:af: 80:2f:49:d7:08:18:f0:85:83:ab:45:80:b0:8c:3d:4d:58:58: a2:b6:ba:58:dc:c2:73:95:ab:cf:41:7a:51:fd:4b:35:37:b9: 25:98:fc:13:46:11:35:31:14:7f:1a:cc:48:25:64:ed:a7:d2: b5:9b:b1:04:fc:a6:45:27:8c:1c:f2:a8:2d:96:b4:3c:f1:18: ed:88:d5:fc:71:a5:85:8b:13:72:d9:75:bb:c7:44:07:7b:c1: f4:76:fd:36:0f:79:00:5c:bc:0d:e1:e9:76:b4:3f:44:7b:76: 5f:d0:55:22:d7:5e:e9:2e:1a:83:e5:27:de:50:0b:86:fb:0b: 27:69:52:1f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULUzj5W6sIKv0mJaa9HEo4XvRbFMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDA0MTI4WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MWEyNWM2MWNkYjgzZDFmNWYwNmIwNzBjNDdiMzE3ZTIx MTc4ZjI3NWJlODlhYTVjZjNhZTQxYzA4MmIxYWJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5ga1ODKhlAW8S/BgbIgHcCKZywXlUZV6Nu/aX4HCNK1OL 8FsdNgTTdnINFuXBCaC32Yy8cUKTRwUN7sgiQtppupNx6YzeX4BzxJ2BZ9dhFSt1 iLXwWm4c9SUKMDpPv9YALVrdOtWvXCVa2pF1KSxprr6r+smDhAtzavuGdbrOQGSH U5aCPzPgQA+YYYx3v3YcBTns5d1CrO//DFLOacG7NszcpgiEu37KUiigIGHMz/N4 9wOLOYLp9nr00ljIn7LSHPyS9oadtkK8zA1aoyQUf8Z/BA1pyJLoNrKmTwIV5WSa g+Ct6w1lOSTGtfxNInkEusSVK7HmoHCqaBySnBDXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8TAbBhMBpjHPgxqitqSAXXR+wAMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc5YTMwNjZkLWFiMzMtNDRlNS1iMzY0LTE0NDIzZTc1NzgyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfUwDQYJKoZIhvcNAQELBQADggEBAHsBplodS17I5y4Unvc1WJlzhTJu OIdmMqwJf3UpgcNP27vbm+0STkOacwreR2wUn6ApordbbiL9uRZ8o1HFnkgTPLd6 ZKETWDSiUQ+jCnQoLoar8yDsqGMLtZpy7qaWKaDH8qpkeYtZazaib52nQbkS528Z meVbu/RLOp3Kr4AvSdcIGPCFg6tFgLCMPU1YWKK2uljcwnOVq89BelH9SzU3uSWY /BNGETUxFH8azEglZO2n0rWbsQT8pkUnjBzyqC2WtDzxGO2I1fxxpYWLE3LZdbvH RAd7wfR2/TYPeQBcvA3h6Xa0P0R7dl/QVSLXXukuGoPlJ95QC4b7CydpUh8= -----END CERTIFICATE-----Generated at Wed Jun 4 11:25:12 2025 by rpki-client