$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d32d1e22-993d-4ec7-ac95-98f30ee5cdb9.roa File: d32d1e22-993d-4ec7-ac95-98f30ee5cdb9.roa (raw, json) Hash identifier: zc7/YIPbjRfcX58OuTtywqsPh6Sfq76qxfz1Ec4hIWY= Subject key identifier: E4:43:6A:82:BE:67:71:53:D6:C7:66:C8:1A:94:BA:6A:1D:82:CA:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 79A3E8C44A4671E021B166CDFC0278EFBBD73017 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d32d1e22-993d-4ec7-ac95-98f30ee5cdb9.roa Signing time: Tue 25 Mar 2025 16:50:31 +0000 ROA not before: Tue 25 Mar 2025 16:50:31 +0000 ROA not after: Tue 29 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.0.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:a3:e8:c4:4a:46:71:e0:21:b1:66:cd:fc:02:78:ef:bb:d7:30:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 25 16:50:31 2025 GMT Not After : Apr 29 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:96:93:20:f4:ac:ad:3a:26:fa:b5:37:37:9f: 1b:56:86:a3:1f:20:28:d7:9c:8d:a6:41:06:7d:0e: ad:80:09:8c:88:4a:ac:ea:99:0a:cd:c1:c2:76:99: 4e:66:a6:24:03:8c:df:97:06:8b:97:9b:ea:ec:37: cd:ec:fe:d3:29:26:4c:81:e3:e0:bc:b0:3f:b8:87: bb:f0:21:ea:c0:a3:5e:01:e6:82:e7:54:e6:cc:00: 30:df:3d:52:1c:79:32:4b:7d:48:c0:e2:09:5f:e5: 41:60:6b:97:c2:08:5d:d8:4c:5d:e7:ee:1c:6d:36: db:c3:1d:45:8d:13:8b:a1:5a:62:d8:f3:d1:44:c4: ff:28:15:86:e4:2c:89:b2:28:4e:f3:6f:01:6b:ac: 4b:3e:07:fb:6a:95:58:c7:53:9c:d5:21:ee:c6:a9: c7:2e:c9:be:e1:b7:ce:b1:42:5c:5f:b7:17:93:21: 73:ba:4b:c4:f2:d7:b1:12:0b:9d:79:ec:29:eb:fb: 1f:e4:e4:cb:0f:0c:67:e1:9c:6f:ab:21:1b:e9:1e: 55:d9:65:18:6d:c8:36:1d:f5:fe:90:c9:e9:c6:32: 79:75:a8:69:7f:6a:6d:90:95:2e:2e:6a:1c:35:d0: fe:3c:31:ff:d4:79:fa:e9:71:10:fb:66:42:83:71: 23:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:43:6A:82:BE:67:71:53:D6:C7:66:C8:1A:94:BA:6A:1D:82:CA:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d32d1e22-993d-4ec7-ac95-98f30ee5cdb9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.0.0/23 Signature Algorithm: sha256WithRSAEncryption c5:ef:59:cd:11:f2:e3:92:c2:e6:a7:51:72:6a:52:39:b4:f8: 97:61:73:2f:c3:d8:86:4f:b4:f8:b7:a2:56:ad:5e:96:fa:44: 75:6f:b3:18:3c:11:06:f4:45:ab:8e:11:93:02:12:41:f6:2e: 94:f3:78:f2:83:00:0c:ea:3c:a9:31:45:bb:cd:72:f3:80:68: ac:51:67:5e:2a:05:80:35:88:c8:1d:e9:f7:eb:9f:3a:cf:40: 02:59:4f:5a:17:21:72:57:04:7f:d9:cf:e6:92:fb:06:e4:13: 52:25:7f:ea:75:d9:ec:28:2f:21:13:29:a4:10:75:f3:36:e5: f6:39:f9:0d:18:22:d5:59:90:07:60:ab:99:6e:42:a0:6d:1c: d9:8c:66:62:0f:43:df:38:09:99:22:a6:b2:ee:d8:fc:55:90: 07:71:3d:94:7a:d0:55:36:a4:70:ed:d7:c6:39:da:33:3b:f3: f6:f7:74:76:49:87:63:2c:bb:11:9d:4f:26:2d:dc:67:89:e5: 3e:04:af:9c:2d:ee:c1:c4:fb:92:1a:a3:9e:85:b6:f2:c5:46: 9e:32:2b:db:15:89:a3:87:c4:fe:ac:eb:09:e5:64:f7:89:e5: c5:03:70:c7:d0:b4:3e:f8:82:6e:e5:3a:81:f3:5f:54:fa:77: 9d:20:33:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeaPoxEpGceAhsWbN/AJ477vXMBcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI1MTY1MDMxWhcNMjUwNDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjllN2YyNThjZDhhNDMwNWM0NDk0M2I3MGUzZGY0YjUy YjBhNDUyNDYwMDY3Zjg2MzY4ZTY4MmIwYzk4NDdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdlpMg9KytOib6tTc3nxtWhqMfICjXnI2mQQZ9Dq2ACYyI SqzqmQrNwcJ2mU5mpiQDjN+XBouXm+rsN83s/tMpJkyB4+C8sD+4h7vwIerAo14B 5oLnVObMADDfPVIceTJLfUjA4glf5UFga5fCCF3YTF3n7hxtNtvDHUWNE4uhWmLY 89FExP8oFYbkLImyKE7zbwFrrEs+B/tqlVjHU5zVIe7Gqccuyb7ht86xQlxftxeT IXO6S8Ty17ESC5157Cnr+x/k5MsPDGfhnG+rIRvpHlXZZRhtyDYd9f6QyenGMnl1 qGl/am2QlS4uahw10P48Mf/UefrpcRD7ZkKDcSOBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5ENqgr5ncVPWx2bIGpS6ah2CyrUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzMmQxZTIyLTk5M2QtNGVjNy1hYzk1LTk4ZjMwZWU1Y2RiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGIEgAwDQYJKoZIhvcNAQELBQADggEBAMXvWc0R8uOSwuanUXJqUjm0+Jdh cy/D2IZPtPi3olatXpb6RHVvsxg8EQb0RauOEZMCEkH2LpTzePKDAAzqPKkxRbvN cvOAaKxRZ14qBYA1iMgd6ffrnzrPQAJZT1oXIXJXBH/Zz+aS+wbkE1Ilf+p12ewo LyETKaQQdfM25fY5+Q0YItVZkAdgq5luQqBtHNmMZmIPQ984CZkiprLu2PxVkAdx PZR60FU2pHDt18Y52jM78/b3dHZJh2MsuxGdTyYt3GeJ5T4Er5wt7sHE+5Iao56F tvLFRp4yK9sViaOHxP6s6wnlZPeJ5cUDcMfQtD74gm7lOoHzX1T6d50gM0k= -----END CERTIFICATE-----Generated at Sat Apr 5 11:19:42 2025 by rpki-client