$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/85de87b1-afc8-4537-b67d-7b26be4a293c.roa File: 85de87b1-afc8-4537-b67d-7b26be4a293c.roa (raw, json) Hash identifier: MMIok6pJhnvUomGxfQ+2ddhg+pgeER9KnQCOxgslsOM= Subject key identifier: E1:11:CA:10:58:5A:C8:09:FF:00:A1:45:40:AD:C4:F2:18:BB:3A:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72462F7AC4108531C5FD5A19E19EECD0F1115496 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/85de87b1-afc8-4537-b67d-7b26be4a293c.roa Signing time: Wed 28 May 2025 00:51:22 +0000 ROA not before: Wed 28 May 2025 00:51:22 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:46:2f:7a:c4:10:85:31:c5:fd:5a:19:e1:9e:ec:d0:f1:11:54:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:51:22 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=bfb0e1d8f0b23333d95f9c52b25df7540f91b01ad252b3b1118ed4dc29d010e7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ab:95:bd:be:ee:92:7d:9e:8e:ba:e5:ed:2f: 24:45:4e:a1:d3:d3:3a:48:b3:2b:2a:76:10:15:a3: 66:89:29:d3:9c:4f:1c:08:95:33:a7:76:e9:40:e6: b6:c3:e6:9c:50:08:a2:10:79:99:00:e1:7a:52:6e: f6:30:95:37:dc:51:3f:37:f7:85:17:ff:72:7a:90: 50:91:4c:cf:a2:d0:df:a5:67:8a:8d:ff:91:7a:2d: 09:00:a4:5c:e6:17:be:75:43:a4:cb:e9:1d:0d:44: 8d:f3:c5:bc:50:ec:08:ba:f2:53:1d:e3:93:9e:b6: 37:2e:9d:f1:32:0a:1a:b8:af:bc:79:e9:08:b3:ae: 06:e5:e5:ad:84:58:4b:d3:cc:56:9e:63:08:d9:ec: 31:9e:d5:19:b3:fc:06:56:8d:8b:17:fc:c5:0c:5a: 90:b5:b0:fe:6e:a9:1e:fc:11:62:53:e0:53:a2:55: 96:fd:21:99:19:aa:92:9c:0c:34:7c:df:34:f1:fd: 20:12:dd:ed:a9:61:cc:01:4d:e3:b7:4b:25:6f:4d: 7c:27:aa:bf:9f:76:6b:91:20:08:84:c5:59:2a:22: 65:49:95:22:1d:f3:08:84:6c:1b:17:51:5a:c9:90: eb:f1:f6:18:c4:8d:d4:af:88:06:2a:ee:04:22:d1: 64:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:11:CA:10:58:5A:C8:09:FF:00:A1:45:40:AD:C4:F2:18:BB:3A:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/85de87b1-afc8-4537-b67d-7b26be4a293c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.157.0/24 Signature Algorithm: sha256WithRSAEncryption 66:df:28:0c:dd:19:22:f1:d2:8b:74:11:bc:e1:c0:e1:b1:37: 2a:88:5f:71:71:c6:4c:00:a7:f2:1a:85:5b:bb:a0:df:f9:c0: e5:86:c5:88:8c:d3:5f:37:66:fb:fe:df:f0:ec:93:be:91:b5: 43:2e:86:87:4f:64:d2:d8:cc:9b:6d:ff:b7:70:a7:6c:3f:65: 12:55:fa:95:aa:99:3f:a7:eb:c2:2e:44:40:63:03:45:21:06: ff:eb:31:8d:45:7f:e4:ec:54:e8:17:5a:7c:a7:f1:39:24:a3: 06:19:05:7a:a3:00:dd:9c:d3:e9:9d:56:77:89:ea:34:1a:b7: 31:20:a9:9d:f4:c5:a5:51:4a:bf:0e:ee:0e:e7:e3:36:08:f9: 8a:d6:0f:67:40:fa:99:ae:2d:c2:d8:bd:0f:ec:21:26:ee:b9: 30:e5:0c:72:f9:7d:b2:6f:58:8e:d6:46:ff:75:a9:c7:42:13: 73:68:81:9a:95:a5:94:8c:83:4f:27:b9:b4:cf:6b:31:57:ff: 54:47:99:4f:a4:36:52:da:d5:dd:fb:e9:bf:69:f8:58:11:23: b6:15:15:a9:d2:aa:f1:6c:bc:7f:e6:95:ec:14:08:8e:08:74: 7a:f8:31:72:22:6e:7f:19:77:32:4d:05:9e:7c:ae:0f:b5:ad: 47:64:d0:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUckYvesQQhTHF/VoZ4Z7s0PERVJYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDA1MTIyWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZmIwZTFkOGYwYjIzMzMzZDk1ZjljNTJiMjVkZjc1NDBm OTFiMDFhZDI1MmIzYjExMThlZDRkYzI5ZDAxMGU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0q5W9vu6SfZ6OuuXtLyRFTqHT0zpIsysqdhAVo2aJKdOc TxwIlTOndulA5rbD5pxQCKIQeZkA4XpSbvYwlTfcUT8394UX/3J6kFCRTM+i0N+l Z4qN/5F6LQkApFzmF751Q6TL6R0NRI3zxbxQ7Ai68lMd45OetjcunfEyChq4r7x5 6Qizrgbl5a2EWEvTzFaeYwjZ7DGe1Rmz/AZWjYsX/MUMWpC1sP5uqR78EWJT4FOi VZb9IZkZqpKcDDR83zTx/SAS3e2pYcwBTeO3SyVvTXwnqr+fdmuRIAiExVkqImVJ lSId8wiEbBsXUVrJkOvx9hjEjdSviAYq7gQi0WRLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4RHKEFhayAn/AKFFQK3E8hi7OrYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg1ZGU4N2IxLWFmYzgtNDUzNy1iNjdkLTdiMjZiZTRhMjkzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZ0wDQYJKoZIhvcNAQELBQADggEBAGbfKAzdGSLx0ot0EbzhwOGxNyqI X3FxxkwAp/IahVu7oN/5wOWGxYiM0183Zvv+3/Dsk76RtUMuhodPZNLYzJtt/7dw p2w/ZRJV+pWqmT+n68IuREBjA0UhBv/rMY1Ff+TsVOgXWnyn8TkkowYZBXqjAN2c 0+mdVneJ6jQatzEgqZ30xaVRSr8O7g7n4zYI+YrWD2dA+pmuLcLYvQ/sISbuuTDl DHL5fbJvWI7WRv91qcdCE3NogZqVpZSMg08nubTPazFX/1RHmU+kNlLa1d376b9p +FgRI7YVFanSqvFsvH/mlewUCI4IdHr4MXIibn8ZdzJNBZ58rg+1rUdk0J0= -----END CERTIFICATE-----Generated at Sun Jun 1 04:38:29 2025 by rpki-client