$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5a85156-56d9-44fe-b845-5494537aa440.roa File: b5a85156-56d9-44fe-b845-5494537aa440.roa (raw, json) Hash identifier: tHNI8Fk/9KPfvbY7MT2EJdc5SYY86LpvVPRkTPtnFjA= Subject key identifier: C0:60:C5:8A:FF:60:7D:74:3F:F5:1B:62:E3:58:10:A0:8D:CE:37:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30189D24698CE0B4AE4015C52F71977F31BD346E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5a85156-56d9-44fe-b845-5494537aa440.roa Signing time: Wed 28 May 2025 00:51:31 +0000 ROA not before: Wed 28 May 2025 00:51:31 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:18:9d:24:69:8c:e0:b4:ae:40:15:c5:2f:71:97:7f:31:bd:34:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:51:31 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=88176e421b6ef1b69fc6ba926d6855b3cf1a7d14213cedd7e8fb307f52b064c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:63:d7:1d:78:6c:1b:a7:20:6a:af:61:3d:3f: 99:a7:0c:a6:98:1a:53:a3:6e:b4:d2:e1:b3:a9:fd: 19:be:22:4d:13:20:0d:f4:93:20:1a:ba:66:f1:b2: ef:06:a2:6f:bc:59:a0:a7:c7:5a:1a:9a:d2:ea:9c: 00:7b:05:01:d6:0c:68:34:87:cd:07:a2:69:a9:6c: b7:c2:de:0f:f4:60:6c:fa:30:10:d9:44:bd:2e:0f: 5c:15:ab:64:8b:95:cd:10:9b:6e:9d:71:26:3a:b9: 93:65:92:18:3f:51:a7:ad:dd:c9:72:d1:7a:8b:3e: 64:05:c0:fc:2e:4d:79:19:f8:c2:28:42:b7:cd:76: 1c:81:15:ad:27:3b:3f:8f:eb:2a:7f:41:78:ee:3f: 77:08:9d:67:04:78:aa:14:fe:73:f1:60:08:f5:c4: 35:02:f1:36:be:cc:d2:c5:b7:ed:81:0d:9d:cf:52: 4d:fb:e4:6c:12:9b:d9:2c:10:1e:af:5c:03:b1:13: 60:42:a3:cb:f2:64:db:d1:53:c7:b9:57:b0:3e:dd: 2e:5a:04:81:a5:ac:62:04:94:77:28:e7:4a:07:4b: b2:79:14:d7:b5:47:89:84:54:0d:2a:13:df:50:ac: 96:6d:5c:66:eb:86:f2:06:cb:91:13:43:90:9e:34: 77:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:60:C5:8A:FF:60:7D:74:3F:F5:1B:62:E3:58:10:A0:8D:CE:37:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5a85156-56d9-44fe-b845-5494537aa440.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.234.0/24 Signature Algorithm: sha256WithRSAEncryption 23:a0:88:cc:eb:76:0f:ee:09:21:39:ae:5e:93:d2:22:f9:1c: 9d:25:5d:05:f2:51:93:ed:97:46:07:68:e3:8e:02:5b:11:03: 6b:09:8b:9b:91:64:ca:4e:5d:7a:b0:31:a2:b1:81:1b:0f:0d: 64:88:3a:c6:8f:35:57:10:93:5e:c0:f8:74:90:5e:78:8a:bc: 0e:04:3b:1e:14:0f:fc:70:43:2c:d1:1b:e5:54:69:64:3a:28: ab:04:ed:7e:9c:9e:e8:79:a2:52:27:57:33:7d:3c:36:45:69: cb:e5:9a:9a:ec:91:cf:68:0d:4d:da:4d:c2:d6:03:4a:2b:33: 15:4a:7a:f2:22:30:d5:96:2d:62:d9:d8:b8:03:d6:dc:c3:7f: 68:b0:c3:9c:b4:d2:b2:31:94:62:c0:9b:e7:76:8a:63:93:d9: bc:0b:00:48:ef:e3:eb:a9:93:ba:c0:bd:c1:74:d5:0e:38:a3: b1:04:bb:fc:da:99:98:f8:e5:bd:5c:58:95:02:a7:93:26:32: 41:f9:1a:1b:c5:ad:e8:e5:0a:de:27:d0:9c:94:46:8c:ea:ce: dd:be:d5:ba:63:dd:0e:5a:7b:24:0d:db:c7:2a:65:1d:e9:5e: d1:91:5e:da:f7:c8:c8:e2:61:5d:86:8a:c3:e5:1b:11:28:9e: 37:42:84:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMBidJGmM4LSuQBXFL3GXfzG9NG4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDA1MTMxWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODE3NmU0MjFiNmVmMWI2OWZjNmJhOTI2ZDY4NTViM2Nm MWE3ZDE0MjEzY2VkZDdlOGZiMzA3ZjUyYjA2NGM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQY9cdeGwbpyBqr2E9P5mnDKaYGlOjbrTS4bOp/Rm+Ik0T IA30kyAaumbxsu8Gom+8WaCnx1oamtLqnAB7BQHWDGg0h80HommpbLfC3g/0YGz6 MBDZRL0uD1wVq2SLlc0Qm26dcSY6uZNlkhg/Uaet3cly0XqLPmQFwPwuTXkZ+MIo QrfNdhyBFa0nOz+P6yp/QXjuP3cInWcEeKoU/nPxYAj1xDUC8Ta+zNLFt+2BDZ3P Uk375GwSm9ksEB6vXAOxE2BCo8vyZNvRU8e5V7A+3S5aBIGlrGIElHco50oHS7J5 FNe1R4mEVA0qE99QrJZtXGbrhvIGy5ETQ5CeNHepAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwGDFiv9gfXQ/9Rti41gQoI3ONywwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I1YTg1MTU2LTU2ZDktNDRmZS1iODQ1LTU0OTQ1MzdhYTQ0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTeowDQYJKoZIhvcNAQELBQADggEBACOgiMzrdg/uCSE5rl6T0iL5HJ0l XQXyUZPtl0YHaOOOAlsRA2sJi5uRZMpOXXqwMaKxgRsPDWSIOsaPNVcQk17A+HSQ XniKvA4EOx4UD/xwQyzRG+VUaWQ6KKsE7X6cnuh5olInVzN9PDZFacvlmprskc9o DU3aTcLWA0orMxVKevIiMNWWLWLZ2LgD1tzDf2iww5y00rIxlGLAm+d2imOT2bwL AEjv4+upk7rAvcF01Q44o7EEu/zamZj45b1cWJUCp5MmMkH5GhvFrejlCt4n0JyU Rozqzt2+1bpj3Q5aeyQN28cqZR3pXtGRXtr3yMjiYV2GisPlGxEonjdChAA= -----END CERTIFICATE-----Generated at Sun Jun 1 05:25:41 2025 by rpki-client