$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b18b21ad-4915-4e1b-b1b2-4c7435def663.roa File: b18b21ad-4915-4e1b-b1b2-4c7435def663.roa (raw, json) Hash identifier: b1H3dTUv68s2awotV4/GjmhKojEhWCSRFlnqgc8o4DE= Subject key identifier: 39:F6:22:D7:07:66:06:A2:35:2E:A5:7A:0F:59:9F:0E:17:8B:77:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 290A136E72E07337EA535AF4D5B108BD5DC2AB39 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b18b21ad-4915-4e1b-b1b2-4c7435def663.roa Signing time: Tue 20 May 2025 00:41:31 +0000 ROA not before: Tue 20 May 2025 00:41:31 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 32.236.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:0a:13:6e:72:e0:73:37:ea:53:5a:f4:d5:b1:08:bd:5d:c2:ab:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:41:31 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=1ee17b77af63b898d7ecb27d307afe469012336a7e98541b4dc12089bd934329, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a5:f1:dc:26:3c:32:22:12:66:8b:63:d5:a5: 73:4b:06:68:22:ec:e3:d2:50:59:c5:69:f6:cc:be: cc:ca:40:f7:b6:40:91:da:02:6e:c7:67:98:72:74: 4d:e5:ac:91:60:cb:71:b7:b8:2e:e9:e9:0b:73:ed: 9e:e7:d0:32:65:0b:2d:ef:e5:1e:78:25:06:31:db: d0:df:1f:b8:5d:0f:da:5e:7c:2d:53:a3:c6:54:68: 85:a7:5b:14:91:16:e6:5b:21:bc:25:5a:99:4a:7a: 82:2c:35:f6:d2:fc:50:dd:31:e9:94:89:c8:c8:d0: 76:2a:a9:d6:96:f6:67:b2:93:d2:6d:24:04:2f:b8: 14:ef:9a:aa:27:3c:fc:ec:b7:0b:be:da:39:e8:43: cf:86:2c:3a:2d:46:fb:eb:5a:db:d8:c5:d6:4e:96: 84:6f:e5:fb:5f:de:1c:30:8b:b1:5e:00:cf:99:d9: 30:98:43:84:bc:79:4b:87:19:47:38:9e:94:ef:83: 8a:a6:05:7b:85:e3:33:94:f7:a0:12:06:d3:a4:d5: 8b:85:10:2f:91:0b:a0:0e:ce:ff:fb:24:58:56:17: a7:3c:fa:8c:03:35:7f:7b:49:9f:5d:b7:ee:0d:1a: 89:51:54:eb:17:cd:b7:b9:fc:ef:c8:a1:b7:cb:4e: ba:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F6:22:D7:07:66:06:A2:35:2E:A5:7A:0F:59:9F:0E:17:8B:77:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b18b21ad-4915-4e1b-b1b2-4c7435def663.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.236.0.0/15 Signature Algorithm: sha256WithRSAEncryption 8e:a7:74:f2:3c:84:28:be:b5:d1:fe:5d:87:7d:ec:6a:14:52: a1:b0:b0:6b:ee:ad:42:d1:dc:af:03:90:5e:09:ab:47:e8:43: fc:c3:26:ba:95:85:09:c1:fe:c9:5f:62:8f:72:61:a0:ee:fd: 8b:5b:df:bb:25:ed:db:fd:39:3e:a2:32:77:bb:01:61:65:51: fc:87:ef:49:49:a8:04:5a:3b:ca:4c:ee:37:a8:e0:db:49:eb: 69:ee:af:7b:41:85:69:0e:60:68:87:eb:dd:2a:eb:ef:11:8f: af:58:ef:67:81:6c:a1:b8:c7:e5:73:2c:2d:a7:4e:33:30:b1: ca:a6:60:23:28:59:5c:de:3b:13:7c:de:23:95:b5:f3:d7:5a: a6:42:1b:41:e4:34:88:54:6f:12:56:41:2f:f8:bb:fb:0e:ad: 6f:ec:ba:33:e6:72:be:6a:48:6d:b4:b4:2a:a2:3d:90:6e:fa: 62:a2:63:14:fb:97:e4:93:3a:4e:e8:b9:e0:04:2a:9a:8d:a6: 4b:9f:3f:f3:dc:c1:f5:0e:65:3d:ed:4d:d7:1d:06:21:c5:eb: 4a:7b:b6:37:09:d0:cb:bc:63:90:ed:be:46:ed:74:01:c2:c3: b3:49:8d:5e:51:52:c9:e1:34:19:16:a7:7c:64:60:28:a1:d6: 13:fe:30:15 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKQoTbnLgczfqU1r01bEIvV3CqzkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDA0MTMxWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZWUxN2I3N2FmNjNiODk4ZDdlY2IyN2QzMDdhZmU0Njkw MTIzMzZhN2U5ODU0MWI0ZGMxMjA4OWJkOTM0MzI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0pfHcJjwyIhJmi2PVpXNLBmgi7OPSUFnFafbMvszKQPe2 QJHaAm7HZ5hydE3lrJFgy3G3uC7p6Qtz7Z7n0DJlCy3v5R54JQYx29DfH7hdD9pe fC1To8ZUaIWnWxSRFuZbIbwlWplKeoIsNfbS/FDdMemUicjI0HYqqdaW9meyk9Jt JAQvuBTvmqonPPzstwu+2jnoQ8+GLDotRvvrWtvYxdZOloRv5ftf3hwwi7FeAM+Z 2TCYQ4S8eUuHGUc4npTvg4qmBXuF4zOU96ASBtOk1YuFEC+RC6AOzv/7JFhWF6c8 +owDNX97SZ9dt+4NGolRVOsXzbe5/O/IobfLTrqlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOfYi1wdmBqI1LqV6D1mfDheLd5wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxOGIyMWFkLTQ5MTUtNGUxYi1iMWIyLTRjNzQzNWRlZjY2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEg7DANBgkqhkiG9w0BAQsFAAOCAQEAjqd08jyEKL610f5dh33sahRSobCw a+6tQtHcrwOQXgmrR+hD/MMmupWFCcH+yV9ij3JhoO79i1vfuyXt2/05PqIyd7sB YWVR/IfvSUmoBFo7ykzuN6jg20nrae6ve0GFaQ5gaIfr3Srr7xGPr1jvZ4FsobjH 5XMsLadOMzCxyqZgIyhZXN47E3zeI5W189dapkIbQeQ0iFRvElZBL/i7+w6tb+y6 M+ZyvmpIbbS0KqI9kG76YqJjFPuX5JM6Tui54AQqmo2mS58/89zB9Q5lPe1N1x0G IcXrSnu2NwnQy7xjkO2+Ru10AcLDs0mNXlFSyeE0GRanfGRgKKHWE/4wFQ== -----END CERTIFICATE-----Generated at Sun Jun 1 05:14:50 2025 by rpki-client