$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32a489d5-a860-420d-b8b0-ce06cb8942f4.roa File: 32a489d5-a860-420d-b8b0-ce06cb8942f4.roa (raw, json) Hash identifier: d3QQwX8A5/3EpdDCuCcC0iksLMDhut3flvYz9cAdjwo= Subject key identifier: 37:49:AE:0C:39:37:CA:63:3B:7F:D9:AB:AA:A9:07:29:04:61:C2:3E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D453EAC1A3E3561F3EB0C99A3DBB48D03C9A12C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32a489d5-a860-420d-b8b0-ce06cb8942f4.roa Signing time: Fri 16 May 2025 16:00:50 +0000 ROA not before: Fri 16 May 2025 16:00:50 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:45:3e:ac:1a:3e:35:61:f3:eb:0c:99:a3:db:b4:8d:03:c9:a1:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 16:00:50 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=6e4f3051c611df351e0387a534376b7dece89142f1eac6e94bb57c616cbf22ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:50:94:a2:8d:2a:8a:97:13:01:59:f0:95:ec: 6b:00:fe:2d:fa:74:c6:a3:18:21:f2:0a:2d:0a:ad: 24:00:e4:e2:ee:7e:6d:8d:f9:1c:b0:b0:ab:15:63: 91:dd:74:5a:00:22:62:03:dd:fc:ac:83:6e:27:40: 14:4a:8e:4e:23:a9:80:d0:4b:24:3e:0f:d8:cf:e1: 0d:40:af:a3:6e:bf:1b:ce:21:ed:74:b9:46:f4:94: 66:78:54:07:53:ff:18:58:3c:b0:63:06:47:8e:72: 47:e6:3c:3a:5a:f7:98:89:9d:88:02:1c:9d:5b:fe: 7b:80:a3:c2:c3:d6:78:e7:4a:d7:cf:c5:7a:01:2b: 0e:82:4e:46:17:29:9c:59:6d:27:b4:06:54:98:42: 3b:c3:5d:4d:8a:12:5e:72:50:21:a6:a7:ad:fd:33: 20:6e:01:2f:8d:db:8d:18:08:36:d8:3a:f8:d4:9f: d1:96:3b:17:63:e1:df:6e:6d:c0:a9:b1:0f:29:b8: ce:a5:90:40:47:c4:e7:31:e5:10:14:c4:46:41:c4: 57:c5:98:db:67:6d:7e:1c:dd:f9:f5:74:f5:30:29: 6a:47:f5:61:52:9a:1a:9e:fe:de:81:f7:64:3f:34: 9d:ce:1e:cb:85:fe:2c:07:68:80:dd:b8:70:3b:bb: 2b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:49:AE:0C:39:37:CA:63:3B:7F:D9:AB:AA:A9:07:29:04:61:C2:3E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32a489d5-a860-420d-b8b0-ce06cb8942f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.3.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:2e:10:97:d8:c8:59:1a:eb:73:17:65:75:ed:33:cc:04:56: 49:43:bf:22:da:f0:0a:f3:17:7c:80:75:52:60:ac:19:2c:29: 8d:7c:1e:a9:c3:2b:95:98:1c:e3:b3:dc:00:49:6e:c0:5b:da: ba:27:04:4e:1a:bb:06:cf:a9:50:2f:e9:ce:f3:1c:bc:4a:dd: 86:8c:0b:b8:24:31:9d:88:91:8f:64:ca:a0:a0:a2:68:f4:c4: 97:01:98:d2:f8:7b:e4:4d:14:ed:99:5c:6f:fa:24:0c:d7:d1: 1d:4b:83:c2:65:45:28:4c:e4:2a:5f:ec:c8:36:f3:52:54:14: a2:3e:21:f9:fc:2f:71:bf:cc:a3:42:a0:d1:0a:c1:03:d0:b2: 1a:5b:69:2b:a9:fb:79:54:05:33:38:ff:2d:5d:fc:6a:38:17: 30:ab:ee:37:16:b5:c4:37:2d:fb:69:62:81:69:a4:a4:38:ff: 53:d0:86:4b:45:64:71:b6:ba:f8:2c:ea:88:ce:8b:e5:54:9a: ff:a7:d5:82:b8:18:04:7a:03:ee:88:7e:5d:11:1b:1e:1d:8b: b2:ea:55:d6:fd:59:18:9e:09:d3:47:5f:cf:e7:e6:f1:e2:3d: c9:2a:89:c2:86:8f:45:dd:bd:99:5f:aa:2a:4f:3a:09:55:44: a0:d1:c2:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfUU+rBo+NWHz6wyZo9u0jQPJoSwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE2MTYwMDUwWhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTRmMzA1MWM2MTFkZjM1MWUwMzg3YTUzNDM3NmI3ZGVj ZTg5MTQyZjFlYWM2ZTk0YmI1N2M2MTZjYmYyMmNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAUJSijSqKlxMBWfCV7GsA/i36dMajGCHyCi0KrSQA5OLu fm2N+RywsKsVY5HddFoAImID3fysg24nQBRKjk4jqYDQSyQ+D9jP4Q1Ar6NuvxvO Ie10uUb0lGZ4VAdT/xhYPLBjBkeOckfmPDpa95iJnYgCHJ1b/nuAo8LD1njnStfP xXoBKw6CTkYXKZxZbSe0BlSYQjvDXU2KEl5yUCGmp639MyBuAS+N240YCDbYOvjU n9GWOxdj4d9ubcCpsQ8puM6lkEBHxOcx5RAUxEZBxFfFmNtnbX4c3fn1dPUwKWpH 9WFSmhqe/t6B92Q/NJ3OHsuF/iwHaIDduHA7uyt9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUN0muDDk3ymM7f9mrqqkHKQRhwj4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMyYTQ4OWQ1LWE4NjAtNDIwZC1iOGIwLWNlMDZjYjg5NDJmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEgMwDQYJKoZIhvcNAQELBQADggEBAE4uEJfYyFka63MXZXXtM8wEVklD vyLa8ArzF3yAdVJgrBksKY18HqnDK5WYHOOz3ABJbsBb2ronBE4auwbPqVAv6c7z HLxK3YaMC7gkMZ2IkY9kyqCgomj0xJcBmNL4e+RNFO2ZXG/6JAzX0R1Lg8JlRShM 5Cpf7Mg281JUFKI+Ifn8L3G/zKNCoNEKwQPQshpbaSup+3lUBTM4/y1d/Go4FzCr 7jcWtcQ3LftpYoFppKQ4/1PQhktFZHG2uvgs6ojOi+VUmv+n1YK4GAR6A+6Ifl0R Gx4di7LqVdb9WRieCdNHX8/n5vHiPckqicKGj0XdvZlfqipPOglVRKDRwkc= -----END CERTIFICATE-----Generated at Sun Jun 1 05:05:11 2025 by rpki-client