$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa File: e718f292-3534-48a9-a800-2739137ff5ea.roa (raw, json) Hash identifier: gOSjMZxq8tZvxwLifMEpBFRv764F5GtYlPP0akGsd8M= Subject key identifier: 70:7C:96:85:AC:AF:2E:2A:AE:F0:02:14:F7:6D:9F:DC:2C:3A:C7:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 169FE42125908E715880C439FBDBCFE49BD20945 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa Signing time: Fri 30 May 2025 00:42:11 +0000 ROA not before: Fri 30 May 2025 00:42:11 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:9f:e4:21:25:90:8e:71:58:80:c4:39:fb:db:cf:e4:9b:d2:09:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:42:11 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=8eb247789637cbb8e07c830a42029e7253d8812866eec14a98ec8b1e1f1a59f8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cd:32:a8:d0:89:2b:bd:86:41:3e:77:47:45: 9f:cb:05:ba:8b:6c:ae:51:b9:1a:cd:44:77:54:67: 8e:85:9b:b5:c7:60:d5:fa:c1:e6:e2:0b:69:36:aa: 7e:8c:e1:e2:4d:92:f7:c6:f4:ab:55:a0:34:01:fe: 4a:3a:2e:bb:d8:22:b0:43:db:bf:79:48:27:e6:6f: d7:11:ed:d5:b5:16:17:2f:eb:53:fc:8e:e2:2d:cc: 87:ec:b7:51:ef:8b:3b:f0:52:27:7a:4c:6f:76:70: b4:b8:5d:c7:e4:22:85:76:17:61:d4:07:31:ae:3e: f3:61:9e:5d:f6:48:8a:33:e1:07:6c:76:66:1b:bb: e6:0e:ec:bd:55:88:0b:17:0f:e5:8b:03:61:4a:67: f8:26:1b:ef:45:db:5e:1e:00:00:57:dc:a4:be:9e: b9:8c:61:b9:78:cc:b9:31:f8:41:8b:f2:15:f1:de: b1:9d:d3:77:55:58:0a:bf:75:f7:7f:95:32:0f:f6: 62:56:f0:ae:c8:ae:b6:b5:87:90:45:eb:ad:be:a3: 67:5d:26:e0:22:13:6a:f6:c4:fb:72:ec:51:48:e6: af:14:c3:61:20:a9:45:e3:52:a0:4f:d7:4b:1c:68: 7f:4c:f0:d9:f0:69:76:15:65:66:ce:ee:0f:58:e5: 63:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:7C:96:85:AC:AF:2E:2A:AE:F0:02:14:F7:6D:9F:DC:2C:3A:C7:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e718f292-3534-48a9-a800-2739137ff5ea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.246.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:e7:9f:c9:54:cb:af:1b:a5:94:28:3b:b2:1e:ad:b6:91:a3: 63:4d:f8:0e:64:8c:60:6c:82:43:79:a3:4c:bb:c5:9d:aa:6e: d8:13:99:a5:d3:62:40:1b:ec:c6:90:4a:0c:77:aa:06:57:09: 53:1f:bf:46:07:f3:38:1f:73:05:f0:03:91:ec:ae:20:f2:02: cd:a5:74:2a:0a:e3:9f:15:b5:c5:60:23:f7:82:6c:66:6f:36: c6:23:bf:cc:66:f8:f0:e6:77:c4:6d:22:bf:cf:be:cc:62:36: 7c:da:48:45:62:6c:29:7b:3e:f9:47:21:a3:75:93:c7:19:96: 1c:ac:c1:d5:17:33:a0:e7:ed:3d:7f:2e:3c:8d:85:a1:96:56: 9d:38:dd:4f:da:29:b3:e6:b7:67:2d:c6:0b:6d:a4:c9:b6:84: c8:5e:c3:b7:72:94:aa:25:7c:9e:73:85:65:4a:98:97:e9:a8: 2f:34:33:ef:f0:23:fc:ce:98:fc:54:51:1f:10:c7:81:b7:11: 3d:4a:00:b7:b0:06:65:4e:78:f1:00:0f:76:d6:20:0a:c7:b9: c5:2a:aa:db:96:20:1f:f8:88:12:0b:59:b1:59:3b:f2:04:5a: 03:e7:7d:ee:35:f1:88:67:f5:71:8a:ae:63:80:00:db:f3:f4: de:03:5d:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFp/kISWQjnFYgMQ5+9vP5JvSCUUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDA0MjExWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZWIyNDc3ODk2MzdjYmI4ZTA3YzgzMGE0MjAyOWU3MjUz ZDg4MTI4NjZlZWMxNGE5OGVjOGIxZTFmMWE1OWY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCozTKo0IkrvYZBPndHRZ/LBbqLbK5RuRrNRHdUZ46Fm7XH YNX6webiC2k2qn6M4eJNkvfG9KtVoDQB/ko6LrvYIrBD2795SCfmb9cR7dW1Fhcv 61P8juItzIfst1HvizvwUid6TG92cLS4XcfkIoV2F2HUBzGuPvNhnl32SIoz4Qds dmYbu+YO7L1ViAsXD+WLA2FKZ/gmG+9F214eAABX3KS+nrmMYbl4zLkx+EGL8hXx 3rGd03dVWAq/dfd/lTIP9mJW8K7Irra1h5BF662+o2ddJuAiE2r2xPty7FFI5q8U w2EgqUXjUqBP10scaH9M8NnwaXYVZWbO7g9Y5WOfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcHyWhayvLiqu8AIU922f3Cw6x34wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U3MThmMjkyLTM1MzQtNDhhOS1hODAwLTI3MzkxMzdmZjVlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfYwDQYJKoZIhvcNAQELBQADggEBAG3nn8lUy68bpZQoO7IerbaRo2NN +A5kjGBsgkN5o0y7xZ2qbtgTmaXTYkAb7MaQSgx3qgZXCVMfv0YH8zgfcwXwA5Hs riDyAs2ldCoK458VtcVgI/eCbGZvNsYjv8xm+PDmd8RtIr/PvsxiNnzaSEVibCl7 PvlHIaN1k8cZlhyswdUXM6Dn7T1/LjyNhaGWVp043U/aKbPmt2ctxgttpMm2hMhe w7dylKolfJ5zhWVKmJfpqC80M+/wI/zOmPxUUR8Qx4G3ET1KALewBmVOePEAD3bW IArHucUqqtuWIB/4iBILWbFZO/IEWgPnfe418Yhn9XGKrmOAANvz9N4DXVA= -----END CERTIFICATE-----Generated at Sun Jun 1 05:30:40 2025 by rpki-client