$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aebec422-5453-4842-a3d0-552a331eb4af.roa File: aebec422-5453-4842-a3d0-552a331eb4af.roa (raw, json) Hash identifier: vzFY1tJLYq4/x8l1AM3acD1IbVCM6cLFK+C63lnEljQ= Subject key identifier: 43:B1:44:DB:53:E8:55:86:EA:D1:71:DD:25:8F:80:6D:3D:D3:8F:C7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CDFA8BF77E411EFB8163316284E3E2805906A37 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aebec422-5453-4842-a3d0-552a331eb4af.roa Signing time: Fri 09 May 2025 00:10:09 +0000 ROA not before: Fri 09 May 2025 00:10:09 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:df:a8:bf:77:e4:11:ef:b8:16:33:16:28:4e:3e:28:05:90:6a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:10:09 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=19b6f30bd019dc7138337459f811b175224808984488ae965a20ea1ca87b8c3b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e3:d8:94:a4:2e:6b:31:89:f5:52:3b:92:36: 94:b6:ae:93:12:ab:7f:5a:bd:53:6a:55:39:c3:44: 0f:7f:23:8e:7f:7f:0d:86:50:1b:42:94:f9:a6:14: 2a:c5:4c:be:e2:5a:46:ee:4e:c2:bc:4d:7b:d7:63: a6:95:cf:dd:ec:93:fd:2f:04:93:57:80:f4:65:5c: 1e:2e:a1:4b:87:a1:a7:9e:5e:8f:49:f0:ea:15:c9: 70:d1:37:04:76:cb:4f:c5:07:38:a4:7d:64:d2:56: 67:57:fe:01:65:17:5d:7b:94:59:ac:38:53:5c:61: 87:a4:e1:3a:17:99:59:9a:7c:0e:a2:85:c8:bd:ae: e4:a7:75:dc:f7:e1:bd:10:60:29:f4:df:0b:cf:ab: 3d:0f:d2:ff:13:74:09:5a:5f:7f:fe:24:07:c7:33: 08:f0:8c:e2:aa:42:64:ab:17:a5:09:eb:05:be:18: 95:97:18:88:35:32:83:16:a4:82:cb:a8:2e:ea:0b: d9:67:9e:02:a6:d4:50:90:98:16:38:c1:73:15:f7: 52:41:28:e4:db:71:db:7c:e5:ea:d6:10:3b:23:3c: 07:9c:08:e6:a9:49:3c:7b:aa:da:68:1d:bd:b0:25: 41:5e:f0:5f:7c:0a:ae:79:69:85:22:d2:d7:5d:cc: 62:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:B1:44:DB:53:E8:55:86:EA:D1:71:DD:25:8F:80:6D:3D:D3:8F:C7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aebec422-5453-4842-a3d0-552a331eb4af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.128.0/17 Signature Algorithm: sha256WithRSAEncryption 4c:dc:a6:3b:0c:f7:c2:66:c4:98:22:66:87:37:c4:67:b0:63: 54:0d:81:d7:9e:34:58:c3:1e:bd:34:e0:58:a8:73:42:8a:94: 41:db:f7:d9:9e:3b:8d:f7:b6:a9:d9:18:4d:25:b1:c0:ff:13: 3b:b4:94:11:2f:c8:f0:a6:7c:d4:77:45:ad:39:f6:64:97:36: 6f:42:8f:5a:b9:ff:89:0a:c8:ab:4c:a2:d9:db:b2:cc:d8:4e: 93:b6:da:ae:ac:68:ef:df:69:5f:db:40:3a:53:ed:21:6c:1d: a8:37:cc:7e:2d:26:af:0f:d5:b5:22:33:27:58:3a:b2:70:67: 19:d3:4e:5e:67:71:02:4c:fc:d3:6e:47:85:2c:b8:80:ef:8a: 60:bc:be:5b:e4:cd:68:8a:78:c1:a0:dc:db:89:3a:e3:fc:e5: 2c:89:6e:ba:58:0c:5d:20:ea:b3:39:a7:ec:43:6b:2d:ea:8e: 56:d9:93:0b:e5:2a:c8:96:d8:ea:1f:14:4c:2f:90:8f:63:49: c3:1c:bd:00:35:b4:56:8e:57:62:14:78:a6:87:99:02:13:45: d4:95:ae:f8:0e:ef:31:76:b2:e2:c8:33:43:10:61:7d:ec:1a: 0e:b1:22:cd:58:59:e3:60:f1:32:11:45:29:a0:9e:f6:a5:f0: 2a:03:fd:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPN+ov3fkEe+4FjMWKE4+KAWQajcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAxMDA5WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOWI2ZjMwYmQwMTlkYzcxMzgzMzc0NTlmODExYjE3NTIy NDgwODk4NDQ4OGFlOTY1YTIwZWExY2E4N2I4YzNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDE49iUpC5rMYn1UjuSNpS2rpMSq39avVNqVTnDRA9/I45/ fw2GUBtClPmmFCrFTL7iWkbuTsK8TXvXY6aVz93sk/0vBJNXgPRlXB4uoUuHoaee Xo9J8OoVyXDRNwR2y0/FBzikfWTSVmdX/gFlF117lFmsOFNcYYek4ToXmVmafA6i hci9ruSnddz34b0QYCn03wvPqz0P0v8TdAlaX3/+JAfHMwjwjOKqQmSrF6UJ6wW+ GJWXGIg1MoMWpILLqC7qC9lnngKm1FCQmBY4wXMV91JBKOTbcdt85erWEDsjPAec COapSTx7qtpoHb2wJUFe8F98Cq55aYUi0tddzGK7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQ7FE21PoVYbq0XHdJY+AbT3Tj8cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlYmVjNDIyLTU0NTMtNDg0Mi1hM2QwLTU1MmEzMzFlYjRhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeIEoAwDQYJKoZIhvcNAQELBQADggEBAEzcpjsM98JmxJgiZoc3xGewY1QN gdeeNFjDHr004Fioc0KKlEHb99meO433tqnZGE0lscD/Ezu0lBEvyPCmfNR3Ra05 9mSXNm9Cj1q5/4kKyKtMotnbsszYTpO22q6saO/faV/bQDpT7SFsHag3zH4tJq8P 1bUiMydYOrJwZxnTTl5ncQJM/NNuR4UsuIDvimC8vlvkzWiKeMGg3NuJOuP85SyJ brpYDF0g6rM5p+xDay3qjlbZkwvlKsiW2OofFEwvkI9jScMcvQA1tFaOV2IUeKaH mQITRdSVrvgO7zF2suLIM0MQYX3sGg6xIs1YWeNg8TIRRSmgnval8CoD/Uc= -----END CERTIFICATE-----Generated at Sun May 11 22:52:32 2025 by rpki-client