$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a4b8157-155f-49b1-815b-a783006f50ed.roa File: 8a4b8157-155f-49b1-815b-a783006f50ed.roa (raw, json) Hash identifier: qrt4osD+qgSH6pNgsmBpLEg4rNlsPdHWgakoX+WovIE= Subject key identifier: 8B:2F:6C:8B:4A:64:0F:28:F9:65:91:46:9C:D7:E4:B2:B4:CC:48:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 70FE52C3B1347B354CE05476DFA55F05584E23CD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a4b8157-155f-49b1-815b-a783006f50ed.roa Signing time: Fri 09 May 2025 00:00:55 +0000 ROA not before: Fri 09 May 2025 00:00:55 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:fe:52:c3:b1:34:7b:35:4c:e0:54:76:df:a5:5f:05:58:4e:23:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:00:55 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=13c6384aaf9c5b833c7a089dd0fc19791ab3833e372180e5aa99520f5cb03eb6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e5:66:67:39:02:18:0e:56:33:12:1c:5d:04: b2:29:84:c7:25:2f:f7:2e:a5:3b:84:fe:75:f6:63: 34:70:0a:55:89:aa:62:81:4c:13:05:4b:4f:43:de: a5:c5:65:e9:29:72:86:e1:47:34:92:e6:d4:ae:dc: 0b:49:80:af:97:e6:3b:00:fe:ae:0b:32:ec:91:36: 42:e1:fb:7a:1a:4e:10:ea:66:ca:12:8c:f1:8b:5c: 38:09:ba:ff:e8:42:7a:43:49:df:21:f2:f4:1b:9d: f8:29:a0:71:24:8b:86:12:73:97:a9:b7:c1:5c:4b: 60:8d:81:16:b9:95:90:68:7c:e9:06:25:a8:fe:24: 6e:dd:c2:4c:48:b0:3e:cd:c1:dd:eb:2a:08:bb:08: 55:77:38:25:7a:6e:f7:c1:50:b8:d8:ac:b4:c9:05: d7:e2:61:4e:44:cb:76:61:35:9a:1a:ef:58:0b:04: c6:4a:a3:bd:a4:a8:73:fc:f7:a5:25:7c:bd:d0:f3: dc:3c:84:71:31:ee:19:1b:f7:0b:e1:6b:61:35:d9: f7:e9:e8:33:0a:ba:89:36:a2:2d:e1:64:86:b3:44: d5:77:83:74:94:aa:6f:fd:80:79:0d:b6:f7:71:16: 2c:61:68:3d:46:ce:97:45:77:e2:31:66:a9:70:1c: 42:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:2F:6C:8B:4A:64:0F:28:F9:65:91:46:9C:D7:E4:B2:B4:CC:48:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a4b8157-155f-49b1-815b-a783006f50ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.128.0/24 Signature Algorithm: sha256WithRSAEncryption c2:ab:73:1d:09:77:f9:2e:88:fd:c7:43:70:36:72:3b:96:85: 9d:e1:87:ae:4f:6f:76:61:d0:6d:5c:1b:06:8a:6a:e1:ef:91: 7d:4a:1e:85:58:68:6c:9f:b5:25:08:1f:40:b7:ba:6b:fd:95: a5:ee:57:d4:74:a3:90:a6:f9:fb:07:58:44:05:68:2a:35:2b: 46:63:1f:a8:7d:60:8b:9b:b2:27:a3:76:0c:f8:6e:c3:a5:24: 31:2a:4a:5e:3f:0b:cd:c2:8c:04:85:32:69:56:41:d1:89:60: 58:a3:9c:ab:84:c7:78:21:1c:cc:08:31:00:b0:1c:4c:ad:d1: fb:81:b5:87:98:8a:2f:a0:f8:85:3b:96:1d:cd:6d:fe:e6:94: e6:0a:23:48:13:dd:24:c3:5c:dc:d8:11:50:1b:ee:59:c5:da: 8a:8c:01:cb:83:67:e5:1b:6b:c2:c9:c0:d8:27:08:e1:19:71: e6:c8:f3:68:0f:6a:1f:fa:ec:84:21:18:f0:2c:a0:ae:70:05: eb:c9:c5:7f:71:64:3d:5b:b8:a7:73:85:c4:0b:d0:cf:19:90: 0a:1e:df:c7:26:5e:93:45:f9:ad:b7:ca:8a:32:2f:b4:4a:72: cf:9a:fe:7f:3b:da:22:ff:38:f4:2c:bb:e5:06:ea:d2:76:05: 8d:e2:f5:04 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcP5Sw7E0ezVM4FR236VfBVhOI80wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAwMDU1WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2M2Mzg0YWFmOWM1YjgzM2M3YTA4OWRkMGZjMTk3OTFh YjM4MzNlMzcyMTgwZTVhYTk5NTIwZjVjYjAzZWI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC85WZnOQIYDlYzEhxdBLIphMclL/cupTuE/nX2YzRwClWJ qmKBTBMFS09D3qXFZekpcobhRzSS5tSu3AtJgK+X5jsA/q4LMuyRNkLh+3oaThDq ZsoSjPGLXDgJuv/oQnpDSd8h8vQbnfgpoHEki4YSc5ept8FcS2CNgRa5lZBofOkG Jaj+JG7dwkxIsD7Nwd3rKgi7CFV3OCV6bvfBULjYrLTJBdfiYU5Ey3ZhNZoa71gL BMZKo72kqHP896UlfL3Q89w8hHEx7hkb9wvha2E12ffp6DMKuok2oi3hZIazRNV3 g3SUqm/9gHkNtvdxFixhaD1GzpdFd+IxZqlwHELDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiy9si0pkDyj5ZZFGnNfksrTMSKIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhNGI4MTU3LTE1NWYtNDliMS04MTViLWE3ODMwMDZmNTBlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEoAwDQYJKoZIhvcNAQELBQADggEBAMKrcx0Jd/kuiP3HQ3A2cjuWhZ3h h65Pb3Zh0G1cGwaKauHvkX1KHoVYaGyftSUIH0C3umv9laXuV9R0o5Cm+fsHWEQF aCo1K0ZjH6h9YIubsiejdgz4bsOlJDEqSl4/C83CjASFMmlWQdGJYFijnKuEx3gh HMwIMQCwHEyt0fuBtYeYii+g+IU7lh3Nbf7mlOYKI0gT3STDXNzYEVAb7lnF2oqM AcuDZ+Uba8LJwNgnCOEZcebI82gPah/67IQhGPAsoK5wBevJxX9xZD1buKdzhcQL 0M8ZkAoe38cmXpNF+a23yooyL7RKcs+a/n872iL/OPQsu+UG6tJ2BY3i9QQ= -----END CERTIFICATE-----Generated at Sat May 10 16:46:11 2025 by rpki-client