$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2983c2e1-ba11-40a6-9ad5-b5b22db61183.roa File: 2983c2e1-ba11-40a6-9ad5-b5b22db61183.roa (raw, json) Hash identifier: +4jQCqTcRkD2aIFr8Ja5Rjxs9x7mz1OZlTNV+S6zvDY= Subject key identifier: DF:E3:08:C9:E0:1D:C5:AC:0A:23:A9:59:3B:1A:7C:53:63:F5:C1:A0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36958103046F9414C3F2792C6B3CB7B0B3015804 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2983c2e1-ba11-40a6-9ad5-b5b22db61183.roa Signing time: Tue 08 Apr 2025 00:01:37 +0000 ROA not before: Tue 08 Apr 2025 00:01:37 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.1.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:95:81:03:04:6f:94:14:c3:f2:79:2c:6b:3c:b7:b0:b3:01:58:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:01:37 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=7624b75ad0dc831e00b6e0f9dc6423a71b3f61d4fb247b1653a40f74c5dd2a2a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:dc:c7:6b:af:7a:81:46:26:e4:d3:39:78:81: 58:ea:49:ae:8a:2d:c5:ec:ef:94:d3:62:0c:8b:ed: 2a:8a:81:31:fd:db:1c:af:da:e3:2b:89:2d:2d:c8: c3:4a:da:be:fe:35:ad:97:2b:5e:82:e8:ce:f5:6b: 3e:08:2f:d2:3b:33:79:cc:f2:67:35:23:dd:9f:a6: f9:0f:1f:78:31:e0:9e:ad:a3:bb:63:03:c3:50:29: 5c:f4:f5:68:ba:d6:a0:6f:c7:81:f3:65:62:62:31: bc:2c:79:ca:5a:95:26:43:2f:a0:8b:06:c6:76:7c: ad:1c:63:f8:b6:3d:62:a5:c3:d4:9f:b9:8d:18:a7: ed:bf:b6:84:69:9e:77:98:58:4b:bd:3e:8c:56:ce: e6:2b:79:73:d5:9a:16:18:30:eb:66:7c:d6:e6:d9: 84:b2:54:3a:f3:71:b4:35:a1:e3:80:72:b7:7e:ea: 82:a3:35:06:30:8b:76:c3:6f:33:b2:74:6e:d6:3a: dc:b0:d8:5e:73:a9:c8:7a:9d:73:de:6f:40:06:75: 16:17:60:46:dd:9f:93:46:a2:f5:75:c0:92:eb:1a: d9:60:b1:10:9e:b2:a8:61:a8:41:da:f3:57:45:55: 68:4d:92:8e:d0:5b:67:fb:a0:5a:a1:31:b0:79:62: 44:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E3:08:C9:E0:1D:C5:AC:0A:23:A9:59:3B:1A:7C:53:63:F5:C1:A0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2983c2e1-ba11-40a6-9ad5-b5b22db61183.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.1.0.0/16 Signature Algorithm: sha256WithRSAEncryption 63:01:4f:f8:57:bc:76:76:ff:0c:31:5a:3e:64:61:eb:0e:a5: a8:cb:88:89:98:32:f9:07:89:4f:3a:84:f1:0c:f5:d4:9a:78: 4c:17:70:b7:10:25:a1:33:f7:48:1d:32:47:a9:a6:c5:86:8d: d4:f1:e8:5e:2e:74:51:86:70:e4:6f:a3:55:df:1a:5d:ed:50: aa:05:0e:eb:5d:99:92:bd:99:40:36:f7:8a:7b:c2:89:d6:26: 0d:7d:bd:fa:d1:ef:20:0e:98:29:fb:fa:d6:e3:1a:2c:6b:06: 5c:1e:3f:bf:10:41:c5:fb:23:35:81:b1:32:97:56:49:0e:a8: da:cf:52:d5:b1:57:2d:6c:3a:92:b7:0a:63:ca:b7:61:8e:5d: 9f:59:28:60:81:04:3b:1c:31:b6:7d:a4:f9:a0:23:90:a3:70: 7d:d9:e4:a7:19:eb:fb:f3:04:79:a9:56:77:cb:a5:cf:b6:f8: ee:53:44:54:30:3b:01:a6:55:30:81:6b:8a:40:86:52:b1:52: e1:9f:d2:e6:be:b5:02:05:ad:fd:22:1f:63:ff:46:82:e2:40: 97:47:70:3b:9f:b5:3c:e1:1c:6f:7e:fd:24:1c:f2:85:3f:b6: 39:b0:ae:b8:e6:7c:a6:77:02:5a:1a:45:de:3c:35:43:b8:cc: 3c:68:64:f7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNpWBAwRvlBTD8nksazy3sLMBWAQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAwMTM3WhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjI0Yjc1YWQwZGM4MzFlMDBiNmUwZjlkYzY0MjNhNzFi M2Y2MWQ0ZmIyNDdiMTY1M2E0MGY3NGM1ZGQyYTJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR3Mdrr3qBRibk0zl4gVjqSa6KLcXs75TTYgyL7SqKgTH9 2xyv2uMriS0tyMNK2r7+Na2XK16C6M71az4IL9I7M3nM8mc1I92fpvkPH3gx4J6t o7tjA8NQKVz09Wi61qBvx4HzZWJiMbwsecpalSZDL6CLBsZ2fK0cY/i2PWKlw9Sf uY0Yp+2/toRpnneYWEu9PoxWzuYreXPVmhYYMOtmfNbm2YSyVDrzcbQ1oeOAcrd+ 6oKjNQYwi3bDbzOydG7WOtyw2F5zqch6nXPeb0AGdRYXYEbdn5NGovV1wJLrGtlg sRCesqhhqEHa81dFVWhNko7QW2f7oFqhMbB5YkR5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3+MIyeAdxawKI6lZOxp8U2P1waAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5ODNjMmUxLWJhMTEtNDBhNi05YWQ1LWI1YjIyZGI2MTE4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCIATANBgkqhkiG9w0BAQsFAAOCAQEAYwFP+Fe8dnb/DDFaPmRh6w6lqMuI iZgy+QeJTzqE8Qz11Jp4TBdwtxAloTP3SB0yR6mmxYaN1PHoXi50UYZw5G+jVd8a Xe1QqgUO612Zkr2ZQDb3invCidYmDX29+tHvIA6YKfv61uMaLGsGXB4/vxBBxfsj NYGxMpdWSQ6o2s9S1bFXLWw6krcKY8q3YY5dn1koYIEEOxwxtn2k+aAjkKNwfdnk pxnr+/MEealWd8ulz7b47lNEVDA7AaZVMIFrikCGUrFS4Z/S5r61AgWt/SIfY/9G guJAl0dwO5+1POEcb379JBzyhT+2ObCuuOZ8pncCWhpF3jw1Q7jMPGhk9w== -----END CERTIFICATE-----Generated at Wed Apr 16 16:58:24 2025 by rpki-client