$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18be7a76-724b-4e6a-9d5a-ba51fd885a5e.roa File: 18be7a76-724b-4e6a-9d5a-ba51fd885a5e.roa (raw, json) Hash identifier: ey/s0VT4uhw8OCIrUEEk2mcheXItZTDA8B85FSedamI= Subject key identifier: 15:7B:FB:5E:1E:41:16:10:E8:BA:71:46:E3:3B:B8:80:39:81:4E:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72D950DD944F12453B091BAAACE7F631D6BEDC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18be7a76-724b-4e6a-9d5a-ba51fd885a5e.roa Signing time: Fri 16 May 2025 16:00:52 +0000 ROA not before: Fri 16 May 2025 16:00:52 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:d9:50:dd:94:4f:12:45:3b:09:1b:aa:ac:e7:f6:31:d6:be:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 16:00:52 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=82ee9eb5d6aa2a26320c5dede1cfef4b8bc579de366893a2af65833e65a3e60f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:59:54:9f:a1:35:a5:ee:dc:74:c2:a3:d7:c1: 34:0a:2b:83:3b:b0:92:15:7b:78:54:35:f1:00:f2: ed:fe:5c:e2:56:c5:d3:59:8b:ce:da:09:95:ae:87: 4c:7c:d9:8c:7c:e4:75:1b:2a:bf:f0:2f:80:8a:48: 14:0e:d3:9e:39:6d:5b:bb:b0:81:89:27:66:45:68: 5f:a3:b7:83:80:b8:be:75:3d:26:b8:cc:d1:f3:ea: 60:4b:49:38:51:60:81:78:09:99:2d:45:67:e5:b3: 92:9c:bf:31:2d:f5:f7:c7:c5:29:1a:14:6f:47:9c: 69:11:8f:f7:c1:86:c5:8d:a2:e5:c7:6a:20:c1:75: 8c:ea:73:08:8e:b6:df:f3:0f:cc:de:9b:b1:f2:cb: 2e:92:92:85:ec:ed:ce:ed:65:52:74:7c:8b:d1:e5: 77:4b:e4:6d:43:0f:33:29:e0:e9:52:9c:fc:2f:72: 58:3f:0b:36:bf:92:f9:7a:ce:fd:9f:42:bd:71:62: 86:89:37:ce:7b:45:93:ad:30:fa:5a:43:08:b6:3f: ac:8f:21:5b:88:10:e5:ad:ed:4d:5c:80:5c:6b:10: 3e:45:ec:ca:5f:48:43:c2:40:d1:c1:dc:1e:56:6e: 0a:80:4c:bf:d1:19:b1:d4:c0:ca:e5:73:4e:07:d1: a2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:7B:FB:5E:1E:41:16:10:E8:BA:71:46:E3:3B:B8:80:39:81:4E:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18be7a76-724b-4e6a-9d5a-ba51fd885a5e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.32.0/20 Signature Algorithm: sha256WithRSAEncryption 5b:dc:44:a2:27:07:25:1c:c5:a5:54:c3:d2:80:76:17:7e:f7: eb:22:1f:75:32:09:0c:e2:5b:e2:df:19:00:f2:89:7f:60:ba: bc:7c:90:ab:41:d3:99:a5:a6:e5:ee:98:53:01:ee:8f:33:04: 24:5d:35:a9:06:90:38:2c:e4:e6:51:22:56:0b:d9:36:58:fe: 9c:78:ce:5f:3d:77:88:7f:54:6e:f2:d4:26:31:b9:c3:3d:20: bb:fb:d8:ec:38:03:33:4c:c6:7f:a5:8a:76:3e:25:d3:c6:e5: 3d:d0:cf:cd:85:ea:e3:b3:ee:98:c2:a1:0c:86:10:ed:0f:8c: 30:0a:05:a7:4b:73:34:f4:5c:7a:1a:1e:d2:d7:ab:21:eb:4e: 8a:82:f2:00:83:aa:5b:6f:11:07:0b:14:af:28:33:05:fa:82: 08:34:96:89:49:c8:d6:ce:93:a6:6d:0f:10:82:a4:85:e6:96: 41:5b:f2:32:d3:d8:50:2e:b5:9f:36:d7:e5:c7:94:62:01:3d: 7f:90:d9:c2:71:71:bd:f2:97:c4:e8:bc:ca:94:0d:2e:31:30: 46:98:63:12:57:80:23:06:79:fe:3c:e7:24:a2:ef:21:de:b0: da:46:9d:0f:18:38:61:84:c7:61:fd:71:16:20:4e:37:64:d6: e8:70:c3:fc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITctlQ3ZRPEkU7CRuqrOf2Mda+3DANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA1MTYxNjAwNTJaFw0yNTA2MjAyMzU5NTla MHoxSTBHBgNVBAUTQDgyZWU5ZWI1ZDZhYTJhMjYzMjBjNWRlZGUxY2ZlZjRiOGJj NTc5ZGUzNjY4OTNhMmFmNjU4MzNlNjVhM2U2MGYxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAL1ZVJ+hNaXu3HTCo9fBNAorgzuwkhV7eFQ18QDy7f5c4lbF 01mLztoJla6HTHzZjHzkdRsqv/AvgIpIFA7TnjltW7uwgYknZkVoX6O3g4C4vnU9 JrjM0fPqYEtJOFFggXgJmS1FZ+Wzkpy/MS3198fFKRoUb0ecaRGP98GGxY2i5cdq IMF1jOpzCI623/MPzN6bsfLLLpKSheztzu1lUnR8i9Hld0vkbUMPMyng6VKc/C9y WD8LNr+S+XrO/Z9CvXFihok3zntFk60w+lpDCLY/rI8hW4gQ5a3tTVyAXGsQPkXs yl9IQ8JA0cHcHlZuCoBMv9EZsdTAyuVzTgfRotMCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQVe/teHkEWEOi6cUbjO7iAOYFOuDAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMThiZTdhNzYtNzI0Yi00ZTZhLTlkNWEtYmE1MWZkODg1YTVlLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBIgSIDANBgkqhkiG9w0BAQsFAAOCAQEAW9xEoicHJRzFpVTD0oB2F3736yIf dTIJDOJb4t8ZAPKJf2C6vHyQq0HTmaWm5e6YUwHujzMEJF01qQaQOCzk5lEiVgvZ Nlj+nHjOXz13iH9UbvLUJjG5wz0gu/vY7DgDM0zGf6WKdj4l08blPdDPzYXq47Pu mMKhDIYQ7Q+MMAoFp0tzNPRcehoe0terIetOioLyAIOqW28RBwsUrygzBfqCCDSW iUnI1s6Tpm0PEIKkheaWQVvyMtPYUC61nzbX5ceUYgE9f5DZwnFxvfKXxOi8ypQN LjEwRphjEleAIwZ5/jznJKLvId6w2kadDxg4YYTHYf1xFiBON2TW6HDD/A== -----END CERTIFICATE-----Generated at Sun Jun 1 05:11:06 2025 by rpki-client