$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da27c9bf-316a-4fc6-8246-9d760f3eb66e.roa File: da27c9bf-316a-4fc6-8246-9d760f3eb66e.roa (raw, json) Hash identifier: 06BnGO5BS/kGJvt2lencfiesK9CQkIxFXgrlXNm3uIQ= Subject key identifier: FF:17:F8:75:F9:86:C3:13:02:BA:6D:AD:49:CF:E8:61:8B:92:9E:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 55CE0F4E54B2921CA539F3E255845D4032F916D0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da27c9bf-316a-4fc6-8246-9d760f3eb66e.roa Signing time: Fri 09 May 2025 00:00:56 +0000 ROA not before: Fri 09 May 2025 00:00:56 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 15 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:ce:0f:4e:54:b2:92:1c:a5:39:f3:e2:55:84:5d:40:32:f9:16:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:00:56 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=baad588169beb1a35ef48437e0100220a10990e638416b09080374b933613318, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fd:21:17:d5:86:3b:c2:0f:36:c8:a9:61:1f: 71:4c:ca:d1:f2:7b:7a:6a:ad:b9:8e:cd:3f:81:ed: 77:bc:bd:f7:3c:3d:f4:c9:57:c1:7a:2a:59:32:5a: 7e:9e:cb:3b:e0:0c:af:fd:d1:57:ed:cf:31:3a:fe: 5d:ab:9d:5d:f1:7b:94:eb:d3:e3:b0:c5:d0:95:d1: 46:50:71:7b:61:18:f7:0f:52:d9:d2:01:bd:2b:53: 86:c1:ed:cb:4e:23:fd:f2:76:72:14:cf:9a:41:f2: e7:f1:96:05:55:5c:94:17:6e:38:86:c5:f2:c3:f4: 3b:00:07:ba:1a:22:57:29:c2:13:63:31:cc:6b:0e: b2:08:e8:af:06:ab:35:0c:eb:a1:16:a9:0c:c4:09: b9:08:af:c1:88:62:5b:a3:da:46:c4:1d:98:df:4a: d3:67:47:50:d4:76:65:e0:50:0d:3a:cf:e4:55:ee: 1b:03:ee:cd:8c:61:b1:28:8d:f7:8b:fc:85:f0:c4: 58:51:69:ae:6b:bb:8c:a9:27:ce:15:36:16:e2:47: da:bd:ec:9e:c8:d9:13:b7:fa:3f:9e:90:ef:08:93: 91:ee:5a:81:0f:c3:9a:f5:6c:21:88:6f:ee:3b:cc: 1a:a2:6c:f6:02:8e:2c:41:76:38:4a:d9:cc:a0:68: 0a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:17:F8:75:F9:86:C3:13:02:BA:6D:AD:49:CF:E8:61:8B:92:9E:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da27c9bf-316a-4fc6-8246-9d760f3eb66e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.128.0/24 Signature Algorithm: sha256WithRSAEncryption ac:a5:fc:39:7c:34:1f:77:cb:5f:ea:b7:0e:1e:11:00:a9:81: e8:a0:fd:60:14:00:bd:25:28:60:a8:b5:53:a0:af:f4:f6:02: f0:7d:3e:e9:39:4b:1d:73:6a:6d:ff:37:e7:9d:95:8e:bd:51: 87:a4:73:2e:6a:42:29:fa:31:d1:ee:5d:bf:52:b5:b4:a3:5b: e7:13:48:17:29:db:b1:c2:f4:bd:4e:0b:7b:33:5c:2d:36:82: a1:cd:a5:67:6c:8e:62:e8:ea:7b:92:77:ae:d1:68:18:49:4c: 91:8d:67:99:cf:0b:1c:85:87:4b:b3:03:d8:f6:dc:f6:43:d9: 14:58:3e:8f:be:74:1a:ce:1a:0b:cd:d6:30:06:59:c4:01:6f: 68:25:1c:09:ba:9e:92:1c:5e:cf:a3:85:b0:08:4b:77:69:06: af:eb:c4:a1:45:b6:7a:d0:34:71:0a:6d:70:b0:4e:76:bb:14: bc:0a:ba:9e:bb:72:7f:66:cd:ff:a3:10:c5:6c:75:e9:d9:96: 73:75:3a:f6:7a:b6:8e:ef:d1:23:aa:97:9a:ca:75:ab:87:6f: 3f:e5:3e:5d:8e:29:67:fc:cb:4b:9d:90:83:ec:39:31:19:ec: 30:55:43:ad:9c:14:e6:c7:64:f8:fb:ff:63:0c:3a:97:2f:d6: ea:1d:9c:da -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVc4PTlSykhylOfPiVYRdQDL5FtAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAwMDU2WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWFkNTg4MTY5YmViMWEzNWVmNDg0MzdlMDEwMDIyMGEx MDk5MGU2Mzg0MTZiMDkwODAzNzRiOTMzNjEzMzE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5/SEX1YY7wg82yKlhH3FMytHye3pqrbmOzT+B7Xe8vfc8 PfTJV8F6KlkyWn6eyzvgDK/90VftzzE6/l2rnV3xe5Tr0+OwxdCV0UZQcXthGPcP UtnSAb0rU4bB7ctOI/3ydnIUz5pB8ufxlgVVXJQXbjiGxfLD9DsAB7oaIlcpwhNj McxrDrII6K8GqzUM66EWqQzECbkIr8GIYluj2kbEHZjfStNnR1DUdmXgUA06z+RV 7hsD7s2MYbEojfeL/IXwxFhRaa5ru4ypJ84VNhbiR9q97J7I2RO3+j+ekO8Ik5Hu WoEPw5r1bCGIb+47zBqibPYCjixBdjhK2cygaApjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/xf4dfmGwxMCum2tSc/oYYuSnqkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhMjdjOWJmLTMxNmEtNGZjNi04MjQ2LTlkNzYwZjNlYjY2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEoAwDQYJKoZIhvcNAQELBQADggEBAKyl/Dl8NB93y1/qtw4eEQCpgeig /WAUAL0lKGCotVOgr/T2AvB9Puk5Sx1zam3/N+edlY69UYekcy5qQin6MdHuXb9S tbSjW+cTSBcp27HC9L1OC3szXC02gqHNpWdsjmLo6nuSd67RaBhJTJGNZ5nPCxyF h0uzA9j23PZD2RRYPo++dBrOGgvN1jAGWcQBb2glHAm6npIcXs+jhbAIS3dpBq/r xKFFtnrQNHEKbXCwTna7FLwKup67cn9mzf+jEMVsdenZlnN1OvZ6to7v0SOql5rK dauHbz/lPl2OKWf8y0udkIPsOTEZ7DBVQ62cFObHZPj7/2MMOpcv1uodnNo= -----END CERTIFICATE-----Generated at Wed May 14 11:24:15 2025 by rpki-client