$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa File: c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa (raw, json) Hash identifier: HsLgXAWNOH6yfLEZ+oA+cEElF3J0er0djAOZqDl6vAM= Subject key identifier: 6E:A4:12:5C:F1:94:96:AB:E2:1E:15:B0:08:F7:57:67:F1:43:AF:9E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A66E8E3EA9BF9AE9D4DC7B0C5EB54176F591301 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa Signing time: Fri 30 May 2025 00:00:32 +0000 ROA not before: Fri 30 May 2025 00:00:32 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:66:e8:e3:ea:9b:f9:ae:9d:4d:c7:b0:c5:eb:54:17:6f:59:13:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:00:32 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=d3e326d94b79d59359afbc561b9496765e937be648a1e158ae9f74a90f02b675, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d8:3d:ed:fe:d6:30:fd:05:35:4b:ea:2a:24: 91:5b:55:9b:cc:15:b9:6d:b3:d9:24:3a:dc:d7:39: 14:67:26:a1:08:8f:c0:3c:75:dc:c3:70:8d:25:dd: f2:8f:76:3e:3b:e4:31:16:e3:df:3f:07:6a:eb:1b: 38:53:91:10:78:76:1b:93:07:4d:eb:79:f4:6d:3e: b1:43:9a:45:18:8d:2d:71:c9:fa:a9:d6:17:89:b9: 8c:95:81:c4:d8:07:c7:82:44:1c:49:ed:2d:24:fc: 3c:fd:71:e6:13:c2:4a:e3:0d:83:6d:77:a1:30:e8: b6:ce:c0:41:b9:9e:6f:d6:4a:26:b5:51:79:d6:1a: 79:76:49:6e:83:b9:ca:ae:4c:11:a9:f2:40:05:f8: 5a:4a:db:98:29:9e:31:0d:01:46:83:72:f8:1d:b8: 4b:f2:d2:93:93:d4:7a:3f:a0:06:cf:69:c2:83:2b: b6:f4:bc:59:53:c8:dc:ff:f4:78:e1:c4:b9:84:4f: 37:89:3c:a4:c2:9a:04:9b:a9:2e:50:75:f9:b4:7d: 9b:7e:36:bc:c4:81:c8:9f:de:eb:08:b6:06:9e:69: 76:fb:10:9c:d6:91:85:92:9f:ea:79:e5:65:00:8f: 94:32:40:1c:bf:c1:f7:82:4f:62:18:31:23:99:f7: 00:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:A4:12:5C:F1:94:96:AB:E2:1E:15:B0:08:F7:57:67:F1:43:AF:9E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.20.0/22 Signature Algorithm: sha256WithRSAEncryption 35:bd:0d:f6:e9:fe:a3:f0:ff:4c:38:43:57:b1:f6:8d:73:05: 5d:61:96:60:a1:e2:74:0f:d4:55:7b:53:ac:0c:9c:ab:e8:90: 21:2e:52:0c:1e:71:c3:1d:e5:bc:07:86:46:60:2f:97:0f:16: 21:f5:be:b4:aa:21:39:5b:92:a7:89:1d:a4:7c:c0:4c:da:76: 4a:eb:a1:cc:f7:82:5e:80:7b:ca:f8:b8:97:7d:67:b1:3a:fb: 52:38:43:d8:0f:41:50:3d:58:0d:3c:1c:ce:3f:c3:af:f4:a6: 28:30:9f:b3:8f:f9:aa:d4:f1:e1:8c:0a:88:83:df:19:8c:3c: 13:a4:e0:72:1a:d4:59:88:5b:88:b4:da:1d:39:95:7c:99:14: 88:dd:e6:fc:a6:98:f1:49:22:a6:82:84:3c:22:e4:c4:9d:99: f4:8b:c7:e4:3f:5e:be:f4:cd:87:01:21:f5:2f:3d:87:07:21: 8e:7a:0b:4b:01:6f:ac:3e:62:e7:01:73:ee:e0:f7:f3:a8:41: 8f:07:28:bc:6e:1b:ad:8d:94:87:b6:42:5b:3f:df:77:cd:2e: 09:79:98:bf:55:34:16:9c:f4:c2:e9:61:9b:3f:f1:bc:ef:d6: 0a:f2:5f:c9:54:1b:a9:47:68:09:50:3d:bb:7e:71:31:fa:d9: 54:80:77:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOmbo4+qb+a6dTcewxetUF29ZEwEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAwMDMyWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkM2UzMjZkOTRiNzlkNTkzNTlhZmJjNTYxYjk0OTY3NjVl OTM3YmU2NDhhMWUxNThhZTlmNzRhOTBmMDJiNjc1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz2D3t/tYw/QU1S+oqJJFbVZvMFblts9kkOtzXORRnJqEI j8A8ddzDcI0l3fKPdj475DEW498/B2rrGzhTkRB4dhuTB03refRtPrFDmkUYjS1x yfqp1heJuYyVgcTYB8eCRBxJ7S0k/Dz9ceYTwkrjDYNtd6Ew6LbOwEG5nm/WSia1 UXnWGnl2SW6DucquTBGp8kAF+FpK25gpnjENAUaDcvgduEvy0pOT1Ho/oAbPacKD K7b0vFlTyNz/9HjhxLmETzeJPKTCmgSbqS5Qdfm0fZt+NrzEgcif3usItgaeaXb7 EJzWkYWSn+p55WUAj5QyQBy/wfeCT2IYMSOZ9wCPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbqQSXPGUlqviHhWwCPdXZ/FDr54wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NzdhMGQzLTkyZmQtNDRhZS05MGE2LWE2Y2NmNDkxMzBiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKIEhQwDQYJKoZIhvcNAQELBQADggEBADW9Dfbp/qPw/0w4Q1ex9o1zBV1h lmCh4nQP1FV7U6wMnKvokCEuUgweccMd5bwHhkZgL5cPFiH1vrSqITlbkqeJHaR8 wEzadkrrocz3gl6Ae8r4uJd9Z7E6+1I4Q9gPQVA9WA08HM4/w6/0pigwn7OP+arU 8eGMCoiD3xmMPBOk4HIa1FmIW4i02h05lXyZFIjd5vymmPFJIqaChDwi5MSdmfSL x+Q/Xr70zYcBIfUvPYcHIY56C0sBb6w+YucBc+7g9/OoQY8HKLxuG62NlIe2Qls/ 33fNLgl5mL9VNBac9MLpYZs/8bzv1gryX8lUG6lHaAlQPbt+cTH62VSAdw0= -----END CERTIFICATE-----Generated at Sun Jun 1 04:47:03 2025 by rpki-client