$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9f6b130-b872-44a5-81fd-7378d400647c.roa File: f9f6b130-b872-44a5-81fd-7378d400647c.roa (raw, json) Hash identifier: HaOqIAkFriw5H0eWBNeTlhNFDQsbZamhRUSk1B/k68M= Subject key identifier: C8:50:37:33:53:D7:49:8B:97:E9:F8:34:FC:54:FA:0B:F6:E7:8C:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AA4EBF35CA77109AA63DF7F92FD8EDA2665FFA8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9f6b130-b872-44a5-81fd-7378d400647c.roa Signing time: Fri 02 May 2025 00:01:31 +0000 ROA not before: Fri 02 May 2025 00:01:31 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.2.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:a4:eb:f3:5c:a7:71:09:aa:63:df:7f:92:fd:8e:da:26:65:ff:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:01:31 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=619b445757324585bfefe23260d66a4182c3de524166e49925cc16ea2e0e86b9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e8:1b:2e:10:48:5c:4d:2a:fb:a3:d6:bd:d0: 45:41:a3:8d:ec:47:d6:f6:9f:87:35:7b:17:3d:c9: 5f:4d:59:2c:90:ab:c3:8f:d8:1f:20:72:05:d0:d0: 1f:78:4c:ed:c3:76:df:47:b4:7a:72:35:86:0e:b0: 81:4e:8f:66:2a:a2:9d:ee:8d:bd:96:d8:a8:b3:70: fb:e3:0d:d3:60:7a:20:b8:e8:f1:06:32:55:f8:71: 21:9f:b1:15:bb:d0:88:d5:d4:86:89:52:d9:6b:3d: 09:4d:46:b4:14:10:08:f1:9e:96:78:b0:25:f1:75: 61:1e:17:5f:7d:32:56:b9:85:62:bf:28:61:4a:4d: 61:fe:65:91:42:eb:50:a3:85:0a:ce:f2:8a:5b:52: 12:f1:00:14:53:b1:d9:4b:67:21:73:73:c4:f4:2e: a9:14:60:0e:62:26:35:c5:71:ec:44:5c:42:8a:1c: 63:b5:b1:15:58:3e:f3:06:d7:01:d0:c3:52:70:07: 9c:3e:ad:a1:a9:93:d5:ce:23:72:01:be:07:f1:de: 45:66:b4:e0:40:70:df:6c:78:be:72:5a:17:49:2c: 66:4c:5c:50:f3:dc:32:a1:27:f0:90:75:d9:e2:53: 59:98:9f:b4:b4:d0:e5:67:c2:65:8b:b8:22:34:5b: 9e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:50:37:33:53:D7:49:8B:97:E9:F8:34:FC:54:FA:0B:F6:E7:8C:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9f6b130-b872-44a5-81fd-7378d400647c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.2.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9c:7a:f3:d9:5f:00:a2:1a:42:e6:db:76:c1:27:76:c1:34:4d: c9:1a:bc:66:4c:32:67:d3:e1:89:13:f8:66:f4:24:87:eb:b0: 1d:ed:ed:82:91:74:0a:53:c8:27:ae:ef:2b:e8:72:c4:de:ae: 7f:e9:67:29:12:bd:fc:b5:e6:d8:39:53:f3:f1:9f:60:71:67: bd:55:22:da:fd:f0:f4:cc:6b:48:bc:1f:0f:cf:a4:b9:8d:9e: 59:26:35:75:40:3a:f4:58:3b:8a:87:89:c5:aa:30:46:c8:12: f0:73:22:c9:6c:18:5e:b5:39:df:9f:dd:db:dc:0e:57:e9:74: 47:f9:74:6c:e8:6b:03:6a:ce:ca:41:95:38:7a:76:92:b6:03: 26:51:0f:c4:0b:c7:61:22:ba:d6:e6:68:54:d5:1d:b9:13:91: 43:06:26:bd:a9:32:a7:cc:5e:e9:41:4b:07:a7:8a:92:d2:fa: cc:50:90:4e:a8:fa:0f:78:a1:47:16:c2:e0:51:d2:12:e7:13: 04:ab:5c:c9:20:34:6b:4c:68:40:29:f4:62:82:6b:12:0c:ad: 65:c2:d9:c1:4e:3f:27:db:7f:58:8d:f7:12:e4:1f:59:fd:8f: 41:46:cf:b5:d5:e4:89:ca:11:ea:c6:66:9e:ce:6f:0d:a5:22: fd:e4:ef:ea -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKqTr81yncQmqY99/kv2O2iZl/6gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAyMDAwMTMxWhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MTliNDQ1NzU3MzI0NTg1YmZlZmUyMzI2MGQ2NmE0MTgy YzNkZTUyNDE2NmU0OTkyNWNjMTZlYTJlMGU4NmI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF6BsuEEhcTSr7o9a90EVBo43sR9b2n4c1exc9yV9NWSyQ q8OP2B8gcgXQ0B94TO3Ddt9HtHpyNYYOsIFOj2Yqop3ujb2W2KizcPvjDdNgeiC4 6PEGMlX4cSGfsRW70IjV1IaJUtlrPQlNRrQUEAjxnpZ4sCXxdWEeF199Mla5hWK/ KGFKTWH+ZZFC61CjhQrO8opbUhLxABRTsdlLZyFzc8T0LqkUYA5iJjXFcexEXEKK HGO1sRVYPvMG1wHQw1JwB5w+raGpk9XOI3IBvgfx3kVmtOBAcN9seL5yWhdJLGZM XFDz3DKhJ/CQddniU1mYn7S00OVnwmWLuCI0W54xAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyFA3M1PXSYuX6fg0/FT6C/bnjMAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5ZjZiMTMwLWI4NzItNDRhNS04MWZkLTczNzhkNDAwNjQ3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCIAjANBgkqhkiG9w0BAQsFAAOCAQEAnHrz2V8AohpC5tt2wSd2wTRNyRq8 ZkwyZ9PhiRP4ZvQkh+uwHe3tgpF0ClPIJ67vK+hyxN6uf+lnKRK9/LXm2DlT8/Gf YHFnvVUi2v3w9MxrSLwfD8+kuY2eWSY1dUA69Fg7ioeJxaowRsgS8HMiyWwYXrU5 35/d29wOV+l0R/l0bOhrA2rOykGVOHp2krYDJlEPxAvHYSK61uZoVNUduRORQwYm vakyp8xe6UFLB6eKktL6zFCQTqj6D3ihRxbC4FHSEucTBKtcySA0a0xoQCn0YoJr EgytZcLZwU4/J9t/WI33EuQfWf2PQUbPtdXkicoR6sZmns5vDaUi/eTv6g== -----END CERTIFICATE-----Generated at Sun May 11 12:46:49 2025 by rpki-client