$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/953c69de-561a-4b58-b97f-351e4f067bef.roa File: 953c69de-561a-4b58-b97f-351e4f067bef.roa (raw, json) Hash identifier: uYvoibRU8BTKsy5wwaNf1WAh6iX/SkoISenq5nu13rs= Subject key identifier: 8A:1A:00:0B:CF:C3:0E:08:0B:C8:B9:17:E1:1E:F7:DF:8D:BE:78:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44072BB00E069562D4D60C1A5C53B5A759363A06 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/953c69de-561a-4b58-b97f-351e4f067bef.roa Signing time: Fri 30 May 2025 00:42:01 +0000 ROA not before: Fri 30 May 2025 00:42:01 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:07:2b:b0:0e:06:95:62:d4:d6:0c:1a:5c:53:b5:a7:59:36:3a:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:42:01 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=3d69ed771a04537e635f714c1de372e2184b5654a02b5473f59f66110efc6d1f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:af:50:13:bf:61:61:5b:7c:7f:49:26:a3:eb: 69:77:cb:86:d5:ec:11:76:0e:5f:c9:dd:67:56:dc: 9a:8e:03:82:b9:85:bb:37:2f:1e:07:0f:07:5c:69: cc:4c:ba:57:79:e5:54:07:eb:0c:6b:eb:31:7d:13: ae:46:4a:7a:4b:7f:f2:d7:9f:63:de:a8:72:ff:8e: 28:fc:bf:04:7b:9e:43:56:00:bd:44:7c:4c:dc:c5: 41:33:f0:8c:b1:a7:16:cb:0a:90:5b:db:f7:64:2c: 54:ba:f2:5e:76:54:b5:12:6a:f7:28:8a:75:4d:76: a4:7a:e7:98:85:ed:d3:d9:d2:bd:99:07:97:d5:b2: 6b:85:56:75:54:f3:fa:1b:ce:b9:2f:3e:3e:e2:5f: e1:ed:44:0e:ad:4c:39:5d:b1:56:9f:ae:bc:5d:02: d7:1c:ce:07:5f:16:2b:22:75:71:1e:8c:9e:39:ed: 5c:dc:07:a1:f6:f7:fe:87:cd:78:3f:0e:63:db:de: b7:93:a2:0f:21:e9:73:2e:52:04:ed:34:22:00:35: 88:6e:77:99:d5:d9:ad:2c:f0:fc:ff:c9:cb:04:99: b0:19:cb:4a:8a:ff:84:ba:19:bf:46:7a:01:f5:df: db:e8:d6:c5:41:08:66:89:c0:8a:b8:e1:c7:df:7b: ce:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1A:00:0B:CF:C3:0E:08:0B:C8:B9:17:E1:1E:F7:DF:8D:BE:78:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/953c69de-561a-4b58-b97f-351e4f067bef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.160.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:99:b3:10:f1:d3:40:6f:28:61:33:15:b1:2a:84:98:c3:fa: 90:9e:55:ca:04:5b:d7:58:fc:f6:23:2b:fc:84:86:51:d8:ea: ca:5c:55:3f:2f:e7:1a:71:8c:0e:9a:49:d3:b6:26:78:e3:3b: bf:88:13:85:da:58:0f:63:25:8f:86:d6:41:9d:ce:bf:88:41: 69:58:1d:fe:59:d4:6d:61:da:47:34:c5:3a:0a:74:74:8b:f4: 0a:ff:10:ba:fb:e6:1a:b5:6a:42:6b:32:73:45:ee:9c:0d:2d: 07:f8:b2:d2:54:15:72:72:c4:a5:f4:c9:e2:7e:34:d2:4d:3b: b7:12:69:58:a6:e3:b2:10:61:74:6e:b2:4d:73:df:0d:a8:f7: 56:fc:b4:01:5f:e4:15:94:99:f0:5e:05:78:f6:17:80:4a:5c: e1:e9:61:eb:8c:13:c4:27:2d:14:93:d7:fd:4b:f6:a7:e8:c6: 3d:6a:78:e4:47:3e:05:10:b0:69:ab:38:e3:ee:e0:d1:d6:9a: 9e:1f:8d:24:a4:07:49:76:bb:ae:83:cf:f1:cf:0d:1d:0b:f9: da:68:37:93:d3:ee:61:32:53:46:18:dd:40:ed:2b:0d:1b:ea: 2f:42:00:55:ff:c2:81:7c:46:7d:11:82:12:33:0c:2a:6b:00: f6:57:65:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURAcrsA4GlWLU1gwaXFO1p1k2OgYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDA0MjAxWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDY5ZWQ3NzFhMDQ1MzdlNjM1ZjcxNGMxZGUzNzJlMjE4 NGI1NjU0YTAyYjU0NzNmNTlmNjYxMTBlZmM2ZDFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmr1ATv2FhW3x/SSaj62l3y4bV7BF2Dl/J3WdW3JqOA4K5 hbs3Lx4HDwdcacxMuld55VQH6wxr6zF9E65GSnpLf/LXn2PeqHL/jij8vwR7nkNW AL1EfEzcxUEz8IyxpxbLCpBb2/dkLFS68l52VLUSavcoinVNdqR655iF7dPZ0r2Z B5fVsmuFVnVU8/obzrkvPj7iX+HtRA6tTDldsVafrrxdAtcczgdfFisidXEejJ45 7VzcB6H29/6HzXg/DmPb3reTog8h6XMuUgTtNCIANYhud5nV2a0s8Pz/ycsEmbAZ y0qK/4S6Gb9GegH139vo1sVBCGaJwIq44cffe871AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUihoAC8/DDggLyLkX4R73342+eJYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1M2M2OWRlLTU2MWEtNGI1OC1iOTdmLTM1MWU0ZjA2N2JlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTaAwDQYJKoZIhvcNAQELBQADggEBAH2ZsxDx00BvKGEzFbEqhJjD+pCe VcoEW9dY/PYjK/yEhlHY6spcVT8v5xpxjA6aSdO2JnjjO7+IE4XaWA9jJY+G1kGd zr+IQWlYHf5Z1G1h2kc0xToKdHSL9Ar/ELr75hq1akJrMnNF7pwNLQf4stJUFXJy xKX0yeJ+NNJNO7cSaVim47IQYXRusk1z3w2o91b8tAFf5BWUmfBeBXj2F4BKXOHp YeuME8QnLRST1/1L9qfoxj1qeORHPgUQsGmrOOPu4NHWmp4fjSSkB0l2u66Dz/HP DR0L+dpoN5PT7mEyU0YY3UDtKw0b6i9CAFX/woF8Rn0RghIzDCprAPZXZVo= -----END CERTIFICATE-----Generated at Sun Jun 1 04:54:37 2025 by rpki-client