$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92e3388a-3322-44eb-9d70-a9abc7a26fb3.roa File: 92e3388a-3322-44eb-9d70-a9abc7a26fb3.roa (raw, json) Hash identifier: r7NO98vSRLoI1aEvwygb1FM24KJqBRX9d85p0tjvzG8= Subject key identifier: AE:4D:82:24:5F:C7:55:6C:0D:E5:2E:64:AE:AA:F3:50:A6:36:43:46 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46FCEB92AFAAD65DA35FEC9298BCFD400BC5F757 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92e3388a-3322-44eb-9d70-a9abc7a26fb3.roa Signing time: Fri 30 May 2025 00:51:07 +0000 ROA not before: Fri 30 May 2025 00:51:07 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.86.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:fc:eb:92:af:aa:d6:5d:a3:5f:ec:92:98:bc:fd:40:0b:c5:f7:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:51:07 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=acf9efc57c1cf148af21506731379ba0cc640b6c7068d9d9cf1d1351104b235d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a6:b1:31:d1:cc:bd:2f:18:8d:57:73:7d:8e: 93:84:e6:51:47:f5:ba:a5:a8:25:f7:df:1b:61:5a: 65:22:dc:72:af:7d:6b:ff:b8:40:fa:ab:08:62:db: a9:ca:06:75:af:d7:c3:fa:7f:79:cc:3b:19:43:60: c7:5c:b2:8c:e9:8a:55:d8:1f:42:f5:69:75:2b:a9: 8c:87:65:3c:cf:e3:ec:e2:8a:c1:6d:f7:ed:ad:18: 12:85:21:ae:c6:7e:4f:01:d6:38:f8:cc:42:90:cd: 43:9f:65:8d:d7:71:7e:b9:7e:96:2b:bd:d5:0b:28: bd:8d:90:5b:e1:b8:6c:41:43:51:50:a7:c7:60:a0: 1c:6a:10:17:07:70:a1:af:bb:80:6e:d4:65:88:da: 15:4b:08:33:4f:50:20:c5:37:90:26:15:56:36:45: cb:aa:d6:f8:64:ad:7e:7d:9c:28:0f:52:5b:4e:80: 91:98:78:64:60:87:0a:bd:82:6e:f4:10:0d:bd:9c: 59:9e:e9:f9:88:2f:f5:f4:e9:e7:85:d3:cc:b4:a2: d2:9f:72:cf:15:37:3e:b3:32:6d:74:a7:66:2e:4f: 55:ec:b5:ba:5e:86:61:81:ff:b6:77:1a:f5:c7:c4: 0e:35:60:a1:26:e1:7a:db:00:e7:9e:35:49:20:45: c0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:4D:82:24:5F:C7:55:6C:0D:E5:2E:64:AE:AA:F3:50:A6:36:43:46 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92e3388a-3322-44eb-9d70-a9abc7a26fb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption 44:6b:84:c2:df:c4:29:07:15:c3:33:e0:c8:56:1f:5b:0b:f8: fb:51:88:9d:53:82:8b:26:07:fa:a2:98:1b:79:c5:47:d6:32: c2:42:a8:4c:d7:7d:09:cb:db:2f:f5:30:7c:eb:f1:34:1d:37: 16:0d:3e:67:d9:4b:05:3b:e4:d4:7d:55:98:36:22:bc:60:e7: 1f:f9:61:40:a6:33:26:94:46:56:ea:ad:f6:b4:2b:44:ac:0b: 08:2c:6f:b6:ff:c1:66:9b:7f:89:e4:a2:6d:d3:2b:06:9a:8c: 91:d1:77:9e:55:d2:7b:90:8a:d8:c9:ab:c5:ba:e3:fa:64:4d: a1:e6:34:10:c5:f7:3e:87:6d:17:2d:74:f3:1c:54:0c:ed:09: 8f:92:bc:30:9a:78:87:72:8c:ca:da:c8:e8:7a:25:ba:3e:35: 2b:9b:8b:3f:ff:78:60:f6:93:ce:c8:ce:70:db:fd:2f:c8:9a: 57:90:19:12:0d:42:83:77:a9:e5:cb:bb:e8:b0:91:18:88:24: 86:35:4d:e6:ee:4b:be:24:40:56:1a:21:30:8a:4c:b2:ff:76: d9:97:92:bb:71:6d:a9:4a:e1:e6:3a:45:f9:58:c2:a2:79:4b: 31:62:a4:9d:6d:48:f6:ea:1e:c6:f2:8f:aa:1d:13:30:1e:6e: dd:01:c7:31 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURvzrkq+q1l2jX+ySmLz9QAvF91cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDA1MTA3WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhY2Y5ZWZjNTdjMWNmMTQ4YWYyMTUwNjczMTM3OWJhMGNj NjQwYjZjNzA2OGQ5ZDljZjFkMTM1MTEwNGIyMzVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjprEx0cy9LxiNV3N9jpOE5lFH9bqlqCX33xthWmUi3HKv fWv/uED6qwhi26nKBnWv18P6f3nMOxlDYMdcsozpilXYH0L1aXUrqYyHZTzP4+zi isFt9+2tGBKFIa7Gfk8B1jj4zEKQzUOfZY3XcX65fpYrvdULKL2NkFvhuGxBQ1FQ p8dgoBxqEBcHcKGvu4Bu1GWI2hVLCDNPUCDFN5AmFVY2Rcuq1vhkrX59nCgPUltO gJGYeGRghwq9gm70EA29nFme6fmIL/X06eeF08y0otKfcs8VNz6zMm10p2YuT1Xs tbpehmGB/7Z3GvXHxA41YKEm4XrbAOeeNUkgRcD7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUrk2CJF/HVWwN5S5krqrzUKY2Q0YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyZTMzODhhLTMzMjItNDRlYi05ZDcwLWE5YWJjN2EyNmZiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBjVjANBgkqhkiG9w0BAQsFAAOCAQEARGuEwt/EKQcVwzPgyFYfWwv4+1GI nVOCiyYH+qKYG3nFR9YywkKoTNd9CcvbL/UwfOvxNB03Fg0+Z9lLBTvk1H1VmDYi vGDnH/lhQKYzJpRGVuqt9rQrRKwLCCxvtv/BZpt/ieSibdMrBpqMkdF3nlXSe5CK 2Mmrxbrj+mRNoeY0EMX3PodtFy108xxUDO0Jj5K8MJp4h3KMytrI6Holuj41K5uL P/94YPaTzsjOcNv9L8iaV5AZEg1Cg3ep5cu76LCRGIgkhjVN5u5LviRAVhohMIpM sv922ZeSu3FtqUrh5jpF+VjConlLMWKknW1I9uoexvKPqh0TMB5u3QHHMQ== -----END CERTIFICATE-----Generated at Sun Jun 1 05:02:15 2025 by rpki-client