$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c8e082-8d94-40aa-ab10-227e1c1538ab.roa File: 99c8e082-8d94-40aa-ab10-227e1c1538ab.roa (raw, json) Hash identifier: IWIBUe7nqb0WBp4Zo67FglKE38Bw80IyYmNoUenLLTY= Subject key identifier: 8C:FC:B6:B6:5D:3A:95:44:8A:62:82:91:0C:E8:F0:09:E5:8B:EF:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63DC160563A80DE60EBB2B9959927BA6A286C984 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c8e082-8d94-40aa-ab10-227e1c1538ab.roa Signing time: Mon 31 Mar 2025 15:50:28 +0000 ROA not before: Mon 31 Mar 2025 15:50:28 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 75.101.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:dc:16:05:63:a8:0d:e6:0e:bb:2b:99:59:92:7b:a6:a2:86:c9:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:50:28 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=75136e5a98796359bf48363318c4473bd11c1b48ebb7467d4a1b7b148ba99434, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:44:19:fe:1d:51:37:62:08:15:16:a5:8d:51: 6d:1c:58:b3:d8:50:e3:02:97:f7:74:f8:41:da:06: 35:ac:82:b4:d7:d3:6e:36:70:64:f3:a7:5a:02:f7: af:50:24:69:48:42:82:7b:76:39:fb:88:50:f2:82: 54:8a:b5:ff:75:3a:60:a1:21:63:7e:2e:68:c5:ce: 38:ed:f9:68:63:50:a2:03:3e:aa:63:e6:cb:0f:aa: 5a:75:b5:49:08:65:e8:89:ff:fa:4a:98:70:f5:76: fb:82:c6:f4:78:9e:57:ec:2e:11:b8:27:46:3e:cf: 88:b4:6b:35:58:8f:30:e9:33:1e:6a:bd:ff:de:a0: f5:ee:54:fa:76:2d:0a:d8:17:0e:b4:45:68:c9:0e: 81:c7:9d:80:42:cb:36:43:5d:d4:e9:fc:a8:90:6e: c4:69:15:fe:3b:00:ed:0b:86:d4:d8:d2:e1:74:58: f9:9c:44:f0:4a:e0:34:d1:8e:44:7b:c8:8d:6e:a5: 2a:24:2f:bf:b6:f8:d9:c4:3f:e9:94:17:41:e5:55: 33:ae:5a:93:60:e5:5a:2b:30:71:83:40:2c:ae:4c: 59:41:e6:79:89:ca:8c:db:fa:34:c0:9c:09:2a:ff: 12:88:83:14:bd:f3:02:99:48:cc:2a:06:99:fd:14: 0c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:FC:B6:B6:5D:3A:95:44:8A:62:82:91:0C:E8:F0:09:E5:8B:EF:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c8e082-8d94-40aa-ab10-227e1c1538ab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.101.162.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:87:06:a4:91:08:aa:af:7d:b6:a9:76:4e:de:32:af:88:a9: 61:04:04:78:15:de:c8:03:82:38:a8:08:02:41:b5:b7:38:d9: 80:3a:37:27:b1:59:85:50:83:31:b9:c4:7b:44:51:00:78:a4: f1:86:62:0b:b2:80:1f:37:4a:21:cd:b4:75:b7:2c:e9:ee:bf: 0b:e6:b2:de:27:91:8a:70:83:c5:34:c9:1f:40:23:f4:2b:a1: e6:e9:32:76:cc:50:2f:1c:7a:3a:dd:6f:92:84:4f:de:f3:3d: 8c:f0:8c:98:c9:06:4b:f5:a4:f7:6c:7f:d5:17:ca:d2:c6:92: b5:73:90:15:b5:a7:fc:7a:87:79:8a:7d:fa:dc:be:5b:bb:9e: 4e:5c:6e:c5:c0:8d:f0:c5:c5:97:83:ed:31:3f:0f:4e:82:be: 79:24:32:ce:99:a5:0d:9b:3b:52:d9:55:e8:40:67:e7:0e:d7: d5:82:78:c5:81:bc:36:b3:b8:2b:2e:b1:4e:ae:f9:ab:52:3a: 20:bb:f2:47:4b:90:d1:4f:43:67:6c:f4:10:d4:6c:3d:b6:dd: 36:32:f8:d6:6b:14:13:8d:3a:e2:c3:38:58:fb:e8:01:db:ab: d5:79:b4:24:00:75:95:cd:43:c4:6a:61:7c:4e:bc:3b:8f:00: d9:aa:84:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY9wWBWOoDeYOuyuZWZJ7pqKGyYQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTU1MDI4WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTEzNmU1YTk4Nzk2MzU5YmY0ODM2MzMxOGM0NDczYmQx MWMxYjQ4ZWJiNzQ2N2Q0YTFiN2IxNDhiYTk5NDM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCRBn+HVE3YggVFqWNUW0cWLPYUOMCl/d0+EHaBjWsgrTX 0242cGTzp1oC969QJGlIQoJ7djn7iFDyglSKtf91OmChIWN+LmjFzjjt+WhjUKID Pqpj5ssPqlp1tUkIZeiJ//pKmHD1dvuCxvR4nlfsLhG4J0Y+z4i0azVYjzDpMx5q vf/eoPXuVPp2LQrYFw60RWjJDoHHnYBCyzZDXdTp/KiQbsRpFf47AO0LhtTY0uF0 WPmcRPBK4DTRjkR7yI1upSokL7+2+NnEP+mUF0HlVTOuWpNg5VorMHGDQCyuTFlB 5nmJyozb+jTAnAkq/xKIgxS98wKZSMwqBpn9FAypAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjPy2tl06lUSKYoKRDOjwCeWL7zIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5YzhlMDgyLThkOTQtNDBhYS1hYjEwLTIyN2UxYzE1MzhhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFLZaIwDQYJKoZIhvcNAQELBQADggEBAF+HBqSRCKqvfbapdk7eMq+IqWEE BHgV3sgDgjioCAJBtbc42YA6NyexWYVQgzG5xHtEUQB4pPGGYguygB83SiHNtHW3 LOnuvwvmst4nkYpwg8U0yR9AI/QroebpMnbMUC8cejrdb5KET97zPYzwjJjJBkv1 pPdsf9UXytLGkrVzkBW1p/x6h3mKffrcvlu7nk5cbsXAjfDFxZeD7TE/D06Cvnkk Ms6ZpQ2bO1LZVehAZ+cO19WCeMWBvDazuCsusU6u+atSOiC78kdLkNFPQ2ds9BDU bD223TYy+NZrFBONOuLDOFj76AHbq9V5tCQAdZXNQ8RqYXxOvDuPANmqhDc= -----END CERTIFICATE-----Generated at Wed Apr 16 17:15:47 2025 by rpki-client