$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b18b21ad-4915-4e1b-b1b2-4c7435def663.roa File: b18b21ad-4915-4e1b-b1b2-4c7435def663.roa (raw, json) Hash identifier: elkMAWQfTZn0LQelcLRF3oleF/5uSzCb5qcVSFeGISQ= Subject key identifier: E5:9A:6D:95:0C:E6:E7:08:A6:75:B7:1A:88:C1:9A:2C:27:93:1A:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2EFBE8FC6CF3F256EB48DF1F7B0CCDDD0A0EDDDC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b18b21ad-4915-4e1b-b1b2-4c7435def663.roa Signing time: Mon 31 Mar 2025 15:31:04 +0000 ROA not before: Mon 31 Mar 2025 15:31:04 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 32.236.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:fb:e8:fc:6c:f3:f2:56:eb:48:df:1f:7b:0c:cd:dd:0a:0e:dd:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:31:04 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=c004c7370ecc9b839390c0ab55a3075339d1b36bb936ec258c41f0724780a168, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ca:ed:01:db:a4:4b:6a:21:4c:fa:d3:0a:e7: 10:9e:99:97:50:cb:bc:74:ed:84:2d:d9:93:ae:c6: b7:4d:59:83:80:23:fb:60:67:8c:4a:1e:e6:0b:65: c8:29:2c:12:3c:b1:d8:7a:d1:0d:fa:64:6c:a4:e0: 61:ea:47:ab:bd:b0:e8:e6:51:5c:e8:8b:ed:d7:a8: e7:6c:71:c2:ae:a1:0a:be:8a:3c:16:08:93:16:29: 92:98:00:38:8b:b1:4d:51:07:ef:ad:a0:c2:41:1a: 60:ee:a3:a5:d1:e9:c2:de:2f:f4:95:f3:05:cd:3e: a4:06:af:92:9f:a5:15:c6:26:ef:be:93:ff:8e:62: e9:ae:c7:47:62:48:2d:0c:21:ee:4f:36:0e:f3:95: 40:ae:06:a5:ca:f7:f4:de:2e:d3:5b:9d:a7:dc:b5: 22:32:59:56:91:18:13:31:a8:a7:5b:50:dc:01:a2: 81:24:5e:94:a2:11:0e:57:e4:60:f7:5a:b1:4f:1b: 96:36:da:5d:0e:98:e3:da:0d:36:63:ae:ec:dd:de: 42:50:3a:36:c1:f1:d5:76:5a:3f:a1:d6:09:8f:78: d1:a1:23:80:12:25:cb:16:be:d8:98:4c:87:54:a5: 4a:51:ea:83:2b:ee:db:be:52:08:1c:44:d9:2b:1f: 35:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:9A:6D:95:0C:E6:E7:08:A6:75:B7:1A:88:C1:9A:2C:27:93:1A:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b18b21ad-4915-4e1b-b1b2-4c7435def663.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.236.0.0/15 Signature Algorithm: sha256WithRSAEncryption 72:53:59:d8:7f:c5:47:98:f1:03:2f:70:81:83:a8:0f:61:f4: 1a:0a:3a:4d:cf:c3:46:e9:c3:83:f8:23:18:f8:29:d2:0d:d9: bc:7b:76:f9:62:ee:f6:55:6e:32:d3:41:2c:47:7d:a2:43:a7: 5e:a2:ef:58:3e:c9:9f:37:4b:93:24:68:e7:45:87:cb:bd:0e: 4f:69:3e:d1:77:d8:ca:32:3b:73:e4:8a:2a:b0:93:e4:65:3e: b5:f6:04:bf:58:36:5d:fc:dc:cb:77:c7:4c:87:a5:e4:dd:29: 98:14:41:0d:13:15:26:b2:d3:97:61:fa:fa:1b:6c:14:4b:44: 52:f4:b0:0a:37:93:57:92:52:e0:0c:b0:61:55:ef:e4:5c:fa: 87:ae:0b:59:ad:48:2e:54:5b:79:cd:ce:3a:72:a7:38:58:17: a6:39:c1:2b:7d:e7:67:09:9a:8f:93:5c:bc:f6:de:a1:e9:7e: b8:4d:28:b2:11:1d:f5:8a:b6:34:c5:36:73:33:0b:79:68:95: b2:37:d4:8e:d5:83:7c:59:a6:12:9c:75:cd:2e:55:fb:42:1a: ca:4e:c0:96:20:4d:03:4f:12:33:a7:b1:ad:17:42:22:47:03: f7:a5:6f:0b:1d:19:3d:8e:4e:fd:73:85:d0:c7:ae:25:3f:ed: a8:37:5c:92 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULvvo/Gzz8lbrSN8fewzN3QoO3dwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUzMTA0WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMDA0YzczNzBlY2M5YjgzOTM5MGMwYWI1NWEzMDc1MzM5 ZDFiMzZiYjkzNmVjMjU4YzQxZjA3MjQ3ODBhMTY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXyu0B26RLaiFM+tMK5xCemZdQy7x07YQt2ZOuxrdNWYOA I/tgZ4xKHuYLZcgpLBI8sdh60Q36ZGyk4GHqR6u9sOjmUVzoi+3XqOdsccKuoQq+ ijwWCJMWKZKYADiLsU1RB++toMJBGmDuo6XR6cLeL/SV8wXNPqQGr5KfpRXGJu++ k/+OYumux0diSC0MIe5PNg7zlUCuBqXK9/TeLtNbnafctSIyWVaRGBMxqKdbUNwB ooEkXpSiEQ5X5GD3WrFPG5Y22l0OmOPaDTZjruzd3kJQOjbB8dV2Wj+h1gmPeNGh I4ASJcsWvtiYTIdUpUpR6oMr7tu+UggcRNkrHzVjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5ZptlQzm5wimdbcaiMGaLCeTGp8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxOGIyMWFkLTQ5MTUtNGUxYi1iMWIyLTRjNzQzNWRlZjY2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEg7DANBgkqhkiG9w0BAQsFAAOCAQEAclNZ2H/FR5jxAy9wgYOoD2H0Ggo6 Tc/DRunDg/gjGPgp0g3ZvHt2+WLu9lVuMtNBLEd9okOnXqLvWD7JnzdLkyRo50WH y70OT2k+0XfYyjI7c+SKKrCT5GU+tfYEv1g2Xfzcy3fHTIel5N0pmBRBDRMVJrLT l2H6+htsFEtEUvSwCjeTV5JS4AywYVXv5Fz6h64LWa1ILlRbec3OOnKnOFgXpjnB K33nZwmaj5NcvPbeoel+uE0oshEd9Yq2NMU2czMLeWiVsjfUjtWDfFmmEpx1zS5V +0Iayk7AliBNA08SM6exrRdCIkcD96VvCx0ZPY5O/XOF0MeuJT/tqDdckg== -----END CERTIFICATE-----Generated at Wed Apr 16 17:13:34 2025 by rpki-client