$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b18b21ad-4915-4e1b-b1b2-4c7435def663.roa File: b18b21ad-4915-4e1b-b1b2-4c7435def663.roa (raw, json) Hash identifier: eKDN6tA7+fAeZac/bGyrm0LOZp8lPYgy5xgqIgZK5GY= Subject key identifier: 63:D5:CD:D3:14:EE:79:90:BA:47:C1:FC:07:E5:12:92:D7:06:6E:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4CDEBE86FA8C7FF25956006922D57D74ED2CEE4F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b18b21ad-4915-4e1b-b1b2-4c7435def663.roa Signing time: Tue 04 Mar 2025 17:00:15 +0000 ROA not before: Tue 04 Mar 2025 17:00:15 +0000 ROA not after: Tue 08 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 32.236.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 15 Mar 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:de:be:86:fa:8c:7f:f2:59:56:00:69:22:d5:7d:74:ed:2c:ee:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 4 17:00:15 2025 GMT Not After : Apr 8 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:99:0b:ca:9b:de:d0:b7:30:c0:08:09:ad:7c: 5f:2c:7b:93:10:ca:30:b6:f9:b3:bf:be:46:bf:b2: 69:b6:fe:f4:3b:4d:9c:90:09:f2:b0:04:06:72:6f: d1:7c:84:be:af:ea:c0:14:92:ff:5b:55:3e:a3:03: c1:76:23:09:e0:7b:4e:df:da:d2:65:d4:95:aa:b7: 24:34:75:e9:e2:21:b3:ac:48:5b:1d:7e:da:0b:de: 47:04:82:1c:ea:f4:ce:8c:dc:b1:ba:44:79:1a:58: 72:c8:18:f7:67:62:ea:31:1f:dd:3d:fd:4e:d5:60: ff:6e:a3:3d:8f:54:03:59:b6:ba:61:5e:91:44:06: 4a:51:7a:20:1d:e8:03:f0:77:5b:7c:ab:ab:a2:8a: c8:23:0a:be:1b:95:0c:4a:9d:b4:65:3c:99:4b:48: d8:9b:36:c4:1a:72:35:48:2e:89:c2:81:6a:5d:02: 88:8c:e9:aa:8c:e8:e7:89:24:f2:28:c7:7e:19:c6: d2:6d:c5:59:45:b1:77:43:75:42:1f:a4:44:30:5d: 21:ea:a0:93:a7:a2:54:e2:d4:50:d2:7d:04:78:d3: 1b:a4:c0:58:a9:91:e3:02:4c:4e:5c:7e:80:a5:bd: 3e:5e:c2:33:5c:8e:3d:38:5d:6d:c7:14:23:14:a0: 38:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D5:CD:D3:14:EE:79:90:BA:47:C1:FC:07:E5:12:92:D7:06:6E:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b18b21ad-4915-4e1b-b1b2-4c7435def663.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.236.0.0/15 Signature Algorithm: sha256WithRSAEncryption d3:92:80:e1:7f:b4:cb:75:94:78:5b:51:79:3a:3f:74:59:a0: 11:fb:08:cb:2e:ba:7c:a9:8f:0f:83:46:5c:39:a5:3c:06:12: 99:66:a6:36:9d:92:fe:74:fa:11:67:2f:da:9f:a6:92:95:dd: 2b:bd:8d:64:9f:94:82:4a:a4:9a:f1:51:da:9e:7f:34:f1:96: 37:81:b2:a3:e6:31:04:f0:3f:b4:b0:4d:8f:6e:67:33:0c:23: 61:a6:b6:1e:6c:b9:65:31:51:75:19:27:41:82:80:4e:f9:df: 07:f7:13:5b:cf:1e:2c:9b:d5:a8:55:61:15:bf:b9:b5:a4:6c: 85:28:fa:ea:19:25:56:26:55:29:fb:a8:42:c1:b6:c5:88:cb: f1:02:88:0c:5a:73:73:ef:30:bf:90:19:36:d8:38:10:a4:7c: f9:43:56:d7:0c:27:4d:cb:f4:e1:d9:67:be:a7:bc:6c:22:a0: d8:58:c0:32:cc:24:ae:7a:6f:1b:02:9c:35:42:31:56:33:dd: c6:dc:8a:24:9b:02:b0:91:31:0e:b6:bd:26:d8:d9:9c:ce:9b: 16:90:38:f2:de:17:d3:58:2f:13:94:91:eb:5b:41:d5:a5:ea: 9c:a8:fa:f7:94:92:8a:76:64:04:b1:0c:ff:81:58:b1:2c:43: 03:ab:97:4e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTN6+hvqMf/JZVgBpItV9dO0s7k8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzA0MTcwMDE1WhcNMjUwNDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1M2M1ZTIxMDZjYzI0MmU2YjhhZmJjMzVmMzI0NWE3Y2E1 NTFhMmM5NWU5OTNhNjk3NWZlODczMDBiNTI4Nzg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdmQvKm97QtzDACAmtfF8se5MQyjC2+bO/vka/smm2/vQ7 TZyQCfKwBAZyb9F8hL6v6sAUkv9bVT6jA8F2Iwnge07f2tJl1JWqtyQ0deniIbOs SFsdftoL3kcEghzq9M6M3LG6RHkaWHLIGPdnYuoxH909/U7VYP9uoz2PVANZtrph XpFEBkpReiAd6APwd1t8q6uiisgjCr4blQxKnbRlPJlLSNibNsQacjVILonCgWpd AoiM6aqM6OeJJPIox34ZxtJtxVlFsXdDdUIfpEQwXSHqoJOnolTi1FDSfQR40xuk wFipkeMCTE5cfoClvT5ewjNcjj04XW3HFCMUoDi3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUY9XN0xTueZC6R8H8B+USktcGbuMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxOGIyMWFkLTQ5MTUtNGUxYi1iMWIyLTRjNzQzNWRlZjY2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEg7DANBgkqhkiG9w0BAQsFAAOCAQEA05KA4X+0y3WUeFtReTo/dFmgEfsI yy66fKmPD4NGXDmlPAYSmWamNp2S/nT6EWcv2p+mkpXdK72NZJ+UgkqkmvFR2p5/ NPGWN4Gyo+YxBPA/tLBNj25nMwwjYaa2Hmy5ZTFRdRknQYKATvnfB/cTW88eLJvV qFVhFb+5taRshSj66hklViZVKfuoQsG2xYjL8QKIDFpzc+8wv5AZNtg4EKR8+UNW 1wwnTcv04dlnvqe8bCKg2FjAMswkrnpvGwKcNUIxVjPdxtyKJJsCsJExDra9JtjZ nM6bFpA48t4X01gvE5SR61tB1aXqnKj695SSinZkBLEM/4FYsSxDA6uXTg== -----END CERTIFICATE-----Generated at Thu Mar 13 23:54:21 2025 by rpki-client