$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b18b21ad-4915-4e1b-b1b2-4c7435def663.roa File: b18b21ad-4915-4e1b-b1b2-4c7435def663.roa (raw, json) Hash identifier: TAizBvm74H3UC0OG4VyouhLDd4MtBraMVgnOK24o5aA= Subject key identifier: 3F:86:9F:6E:50:F9:8C:EC:6C:2D:90:B6:E8:38:71:9C:4E:33:99:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3340CB23BC2DCEE73CC31D1CDEAE5DE4BCBE17B9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b18b21ad-4915-4e1b-b1b2-4c7435def663.roa Signing time: Fri 07 Feb 2025 00:00:00 +0000 ROA not before: Fri 07 Feb 2025 00:00:00 +0000 ROA not after: Fri 14 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 32.236.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:40:cb:23:bc:2d:ce:e7:3c:c3:1d:1c:de:ae:5d:e4:bc:be:17:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:00:00 2025 GMT Not After : Mar 14 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:70:31:ff:84:0b:a6:e8:0c:a1:8d:80:c6:69: 4f:e0:82:65:f0:eb:36:ed:9c:c6:d0:cf:3f:23:c5: 5f:ec:64:91:b6:9e:da:8b:a3:22:23:55:5d:bd:71: f0:15:ee:84:af:bb:b5:11:bd:af:32:1b:06:1d:ad: a1:33:8d:07:97:9b:96:51:aa:91:81:11:cf:a0:db: 70:c2:c2:56:bc:c3:3e:9c:2e:ab:94:86:bf:5e:a8: 7f:dc:ae:71:cd:06:fb:11:ac:25:c5:09:aa:f3:57: ed:ba:1d:c9:2c:15:ba:16:80:20:c2:3a:50:da:75: 75:f7:32:52:3d:2d:ed:77:ca:b1:a7:3f:18:ba:bd: 2c:10:dc:d9:5a:c8:84:6d:8d:55:dc:b1:7c:11:d0: 9c:86:2b:6d:a1:45:fb:44:6b:12:d2:45:dc:1c:2c: 9d:09:19:e4:28:cb:72:12:b8:b6:ba:ec:d0:3e:81: 9e:26:1b:9a:39:98:18:ef:e0:b0:b1:86:1b:df:d9: 2e:b5:a1:2a:25:bd:6f:a0:44:b0:c2:26:62:89:b3: 88:eb:e4:3b:a8:30:9c:7f:8f:5b:2c:9a:82:34:d4: 0b:7e:ac:89:d3:74:fe:45:4b:22:95:4c:27:71:c3: e9:61:50:49:3f:3c:f4:96:d0:82:92:c0:52:87:77: 61:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:86:9F:6E:50:F9:8C:EC:6C:2D:90:B6:E8:38:71:9C:4E:33:99:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b18b21ad-4915-4e1b-b1b2-4c7435def663.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.236.0.0/15 Signature Algorithm: sha256WithRSAEncryption 3d:b0:56:cd:d2:ac:42:ee:7d:f4:d3:35:02:16:cc:c3:53:80: c2:74:1b:7e:50:8c:71:52:1f:78:2b:e6:ea:96:da:f6:b3:e6: 23:4a:d9:34:53:86:63:cf:20:8e:7a:b1:a0:72:95:b6:19:4b: ef:d4:6e:6b:72:99:09:3c:58:48:ea:e9:b6:1f:14:a7:55:38: 1c:80:4c:83:ab:ac:d2:1f:45:b5:9d:2b:09:52:be:aa:dd:a0: 5b:83:4c:34:e5:c9:6a:e8:11:20:29:a3:43:b0:77:4a:35:3c: f6:08:03:30:01:e1:d0:17:da:a2:ea:d5:ef:52:16:f2:e4:fa: fe:82:ae:9a:98:34:24:95:0c:3b:a6:ff:8d:7e:6d:5b:7f:41: 95:37:df:63:df:f7:73:ae:4f:9d:64:77:07:4f:7b:e5:a6:35: bc:b1:af:da:24:dc:30:3a:7f:0b:e3:25:9f:f9:de:85:d5:80: 57:67:45:d5:b5:b0:69:b6:a5:16:f4:6e:7c:26:19:64:ce:6d: d5:8b:22:28:30:9e:81:64:36:f3:e3:08:2d:7d:4a:4c:be:79: ee:44:d9:6d:c5:97:b2:68:85:95:85:68:2d:2c:b7:c8:cf:85: fd:c4:18:63:ca:6e:54:66:60:c3:38:54:14:35:81:44:41:de: 67:dc:d2:cf -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUM0DLI7wtzuc8wx0c3q5d5Ly+F7kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMjA3MDAwMDAwWhcNMjUwMzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTFjZmU1ZDEyZGIzM2M1MDY0NjhiMzdiMjBkY2Y0OWQw YzAxNGZjZmNkNWRiZmU0ZDJiNjRiY2ZkNzU4YmJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+cDH/hAum6AyhjYDGaU/ggmXw6zbtnMbQzz8jxV/sZJG2 ntqLoyIjVV29cfAV7oSvu7URva8yGwYdraEzjQeXm5ZRqpGBEc+g23DCwla8wz6c LquUhr9eqH/crnHNBvsRrCXFCarzV+26HcksFboWgCDCOlDadXX3MlI9Le13yrGn Pxi6vSwQ3NlayIRtjVXcsXwR0JyGK22hRftEaxLSRdwcLJ0JGeQoy3ISuLa67NA+ gZ4mG5o5mBjv4LCxhhvf2S61oSolvW+gRLDCJmKJs4jr5DuoMJx/j1ssmoI01At+ rInTdP5FSyKVTCdxw+lhUEk/PPSW0IKSwFKHd2EzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUP4afblD5jOxsLZC26DhxnE4zmfcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxOGIyMWFkLTQ5MTUtNGUxYi1iMWIyLTRjNzQzNWRlZjY2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEg7DANBgkqhkiG9w0BAQsFAAOCAQEAPbBWzdKsQu599NM1AhbMw1OAwnQb flCMcVIfeCvm6pba9rPmI0rZNFOGY88gjnqxoHKVthlL79Rua3KZCTxYSOrpth8U p1U4HIBMg6us0h9FtZ0rCVK+qt2gW4NMNOXJaugRICmjQ7B3SjU89ggDMAHh0Bfa ourV71IW8uT6/oKumpg0JJUMO6b/jX5tW39BlTffY9/3c65PnWR3B0975aY1vLGv 2iTcMDp/C+Mln/nehdWAV2dF1bWwabalFvRufCYZZM5t1YsiKDCegWQ28+MILX1K TL557kTZbcWXsmiFlYVoLSy3yM+F/cQYY8puVGZgwzhUFDWBREHeZ9zSzw== -----END CERTIFICATE-----Generated at Sun Feb 16 15:14:21 2025 by rpki-client