$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d7f342-6157-48d6-afa9-e8e77d622676.roa File: 05d7f342-6157-48d6-afa9-e8e77d622676.roa (raw, json) Hash identifier: AzGEOO8stphfwtfdNVFRj50fgkHmsyKi5rrPflBDsH8= Subject key identifier: A1:E9:E3:57:8F:98:47:84:45:6C:D4:31:5F:B5:02:B2:2B:88:D9:FE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B8C209AEB7124412190872BD3F432E5B9B7F20B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d7f342-6157-48d6-afa9-e8e77d622676.roa Signing time: Sat 05 Apr 2025 00:01:06 +0000 ROA not before: Sat 05 Apr 2025 00:01:06 +0000 ROA not after: Sat 10 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:8c:20:9a:eb:71:24:41:21:90:87:2b:d3:f4:32:e5:b9:b7:f2:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 5 00:01:06 2025 GMT Not After : May 10 23:59:59 2025 GMT Subject: serialNumber=8801f6c76d2f7e6612608c676ec4537844578b6e8d88dcf965b25aa55b93068b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:59:f6:fc:7c:0e:2b:77:16:ad:6d:bf:e0:32: 4c:64:55:99:59:93:d9:a8:14:59:b6:8c:45:aa:a8: b7:03:75:e0:5e:bf:c7:97:eb:9b:5e:cd:b1:96:e3: d3:da:b1:7a:17:0d:4a:40:90:62:e9:98:89:57:4a: 51:57:1a:c5:c7:b5:ca:2a:a9:6f:fc:d3:37:fd:1b: a4:0f:de:4c:0d:29:b2:26:92:5a:15:42:9b:ef:b4: 9a:4f:c0:f4:94:d3:72:c8:ce:a5:2d:3e:01:f3:34: 65:66:5d:d6:87:e0:90:36:ed:82:da:43:48:44:54: 15:40:3e:2c:ea:15:99:5f:bb:7f:b0:02:43:fe:9a: 39:13:32:95:79:6a:45:cf:5c:92:9f:aa:78:e7:ff: 41:18:2e:0a:71:46:34:76:7f:0d:aa:cb:ac:7a:6d: 4f:bd:62:7c:ee:4d:a1:50:2b:d6:48:c6:85:f1:c1: c2:9e:67:a9:ae:7a:31:c7:e3:28:f7:1f:d7:76:2b: 2f:b2:76:a0:e4:70:41:f0:94:4d:5b:9c:25:1f:dd: a3:2d:e1:fa:f6:ec:79:44:7b:14:66:0e:4a:6f:98: 1f:04:6c:1c:1c:d9:87:05:95:4f:2b:64:e0:92:32: 89:20:d9:1e:0e:9b:43:43:24:ab:68:ba:78:8d:e4: e5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:E9:E3:57:8F:98:47:84:45:6C:D4:31:5F:B5:02:B2:2B:88:D9:FE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d7f342-6157-48d6-afa9-e8e77d622676.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.52.0/22 Signature Algorithm: sha256WithRSAEncryption 17:97:2f:98:09:a1:5f:35:b8:0e:75:0d:4f:27:3c:0e:57:c0: f9:19:db:d4:54:2f:da:cb:51:90:53:6d:e2:fa:91:c1:1e:8d: a9:7f:99:8e:9f:36:59:d8:44:e6:c9:3f:fc:1d:f0:b3:ea:43: d4:12:02:6b:b2:9e:42:9b:88:9a:bd:22:07:11:f7:52:50:f1: b6:21:2e:ca:7f:57:00:70:ce:06:6b:18:a4:33:b2:8b:83:eb: c6:28:d0:ce:69:8b:46:49:49:cd:68:1f:21:a5:90:4c:84:a5: 2c:bf:df:b5:7d:c1:79:21:fc:fc:24:02:5f:50:7f:46:69:bd: 00:bc:26:e8:b1:fd:80:26:f3:09:06:2a:df:f8:ea:a3:c9:b6: 23:4f:72:e6:06:f7:f5:85:a0:d6:f1:10:cb:21:aa:ca:a6:16: 6e:d6:29:04:fa:f1:f6:c6:dd:09:27:e1:24:bd:dd:83:55:0c: 04:df:fe:27:91:3e:9d:5e:ad:d8:f7:42:d7:cf:aa:d6:0b:a7: cb:81:57:30:0a:16:41:12:70:5e:44:94:96:d7:02:04:a3:02: c7:30:5c:6d:cc:61:b6:61:d1:f5:a1:70:2d:fd:2b:13:70:40: aa:0c:6b:20:32:66:50:3a:c7:26:a4:4a:de:24:d3:b0:66:30: b7:fc:98:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC4wgmutxJEEhkIcr0/Qy5bm38gswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA1MDAwMTA2WhcNMjUwNTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODAxZjZjNzZkMmY3ZTY2MTI2MDhjNjc2ZWM0NTM3ODQ0 NTc4YjZlOGQ4OGRjZjk2NWIyNWFhNTViOTMwNjhiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvWfb8fA4rdxatbb/gMkxkVZlZk9moFFm2jEWqqLcDdeBe v8eX65tezbGW49PasXoXDUpAkGLpmIlXSlFXGsXHtcoqqW/80zf9G6QP3kwNKbIm kloVQpvvtJpPwPSU03LIzqUtPgHzNGVmXdaH4JA27YLaQ0hEVBVAPizqFZlfu3+w AkP+mjkTMpV5akXPXJKfqnjn/0EYLgpxRjR2fw2qy6x6bU+9YnzuTaFQK9ZIxoXx wcKeZ6muejHH4yj3H9d2Ky+ydqDkcEHwlE1bnCUf3aMt4fr27HlEexRmDkpvmB8E bBwc2YcFlU8rZOCSMokg2R4Om0NDJKtouniN5OUpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoenjV4+YR4RFbNQxX7UCsiuI2f4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1ZDdmMzQyLTYxNTctNDhkNi1hZmE5LWU4ZTc3ZDYyMjY3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKIEjQwDQYJKoZIhvcNAQELBQADggEBABeXL5gJoV81uA51DU8nPA5XwPkZ 29RUL9rLUZBTbeL6kcEejal/mY6fNlnYRObJP/wd8LPqQ9QSAmuynkKbiJq9IgcR 91JQ8bYhLsp/VwBwzgZrGKQzsouD68Yo0M5pi0ZJSc1oHyGlkEyEpSy/37V9wXkh /PwkAl9Qf0ZpvQC8Juix/YAm8wkGKt/46qPJtiNPcuYG9/WFoNbxEMshqsqmFm7W KQT68fbG3Qkn4SS93YNVDATf/ieRPp1erdj3QtfPqtYLp8uBVzAKFkEScF5ElJbX AgSjAscwXG3MYbZh0fWhcC39KxNwQKoMayAyZlA6xyakSt4k07BmMLf8mOU= -----END CERTIFICATE-----Generated at Wed Apr 16 17:05:50 2025 by rpki-client