$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c3395d-0d4e-4291-9ede-37f0981c2dfb.roa File: 27c3395d-0d4e-4291-9ede-37f0981c2dfb.roa (raw, json) Hash identifier: PjlXq+eLwUL3NNqk70esZ8a/Xkq+zAddG/KpyHl7pTw= Subject key identifier: 30:59:8D:A1:C7:86:C2:6D:8D:A0:76:D4:42:11:84:DE:CF:42:9D:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 120BAC8E2A893C32405AE0AEFEF34263585F6700 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c3395d-0d4e-4291-9ede-37f0981c2dfb.roa Signing time: Mon 14 Apr 2025 15:01:09 +0000 ROA not before: Mon 14 Apr 2025 15:01:09 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:0b:ac:8e:2a:89:3c:32:40:5a:e0:ae:fe:f3:42:63:58:5f:67:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 14 15:01:09 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=b8f3d17e2b04c28262227f6b1bfa060db654bf44eca47d5c733f96b28e9d75a9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:63:2e:23:54:cf:d1:8b:ac:06:d4:e1:49:df: 78:6e:fd:90:a1:06:0e:7b:0f:83:6c:0f:77:1c:c6: 88:99:3a:55:99:dd:ae:50:9e:bd:c4:b4:cc:05:77: 82:1f:ec:0a:06:ba:65:54:68:4e:21:a0:98:e9:2f: 66:ce:fd:63:3e:f3:7c:ca:41:1b:cd:7a:cf:df:07: a6:bf:4a:d6:da:81:fe:9e:5e:6b:d7:4c:2c:9c:ed: ff:19:0e:8e:ee:70:ec:57:52:25:d4:a1:2e:8d:51: de:e5:a9:6a:41:81:a0:70:27:e9:0a:4c:7e:a4:29: 9b:7d:eb:7d:b8:37:57:6b:52:0f:8a:4c:f9:9e:ac: 98:67:9c:34:6e:79:20:8f:40:0f:26:28:a4:00:93: b9:76:96:84:ac:f6:5e:80:8f:0a:e4:b3:77:82:13: ff:d0:29:34:e4:79:96:66:16:b3:1d:5d:bd:ee:8c: 70:98:c2:d5:4b:4d:f1:d1:53:42:90:51:b1:45:08: 66:ef:73:be:5e:c6:77:7b:2c:94:3b:27:e1:cb:13: c6:b2:e4:8e:92:53:54:ec:78:f7:76:5f:2c:d5:e4: dc:79:67:60:04:d4:f5:a2:ee:00:17:5d:47:98:16: b6:f9:0a:2d:36:e8:e6:ce:1e:1d:45:bb:73:34:cd: 2e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:59:8D:A1:C7:86:C2:6D:8D:A0:76:D4:42:11:84:DE:CF:42:9D:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c3395d-0d4e-4291-9ede-37f0981c2dfb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.159.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:71:bf:c4:5c:5c:96:c4:c9:9e:1e:fb:20:dc:de:49:bc:e9: 7e:a4:30:b6:24:15:ad:bc:d6:d0:74:7a:d4:c9:05:45:dc:5a: 9b:e1:78:7d:d9:5f:0b:05:03:12:30:5b:e4:a4:f8:32:31:62: 93:33:12:38:39:24:29:c9:59:d2:d1:8f:d7:af:8f:56:03:f9: bb:8b:db:57:bd:ba:3b:89:ae:fe:63:56:ea:70:e9:52:ce:a8: 6d:29:9c:79:c4:c7:17:e8:4b:ef:04:55:0a:ca:f0:31:af:9a: dd:5e:8f:5a:08:72:c5:49:a3:9d:a7:9f:73:86:79:ce:ad:92: b1:ef:5a:a1:d0:35:a9:e8:12:ed:75:70:46:7d:f5:ce:32:c1: 80:b7:86:f3:ef:80:38:d8:c5:10:b3:26:87:36:58:cc:01:23: 3d:f9:1f:53:b4:84:a7:d0:99:ab:5e:68:84:23:0a:66:17:7b: e9:d5:2d:55:f7:97:1e:cb:49:96:6f:4e:1a:a0:ed:f9:28:85: 76:74:76:67:93:dc:b3:52:1a:6c:ac:83:cc:2a:e7:7f:c5:88: 1e:6a:50:c6:1d:ad:62:63:24:63:b5:6a:83:40:5b:00:3c:1b: 00:ca:3b:5f:2b:2d:3b:cc:14:82:50:75:95:cf:81:e6:c5:a0: 37:c3:16:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEgusjiqJPDJAWuCu/vNCY1hfZwAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDE0MTUwMTA5WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOGYzZDE3ZTJiMDRjMjgyNjIyMjdmNmIxYmZhMDYwZGI2 NTRiZjQ0ZWNhNDdkNWM3MzNmOTZiMjhlOWQ3NWE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLYy4jVM/Ri6wG1OFJ33hu/ZChBg57D4NsD3ccxoiZOlWZ 3a5Qnr3EtMwFd4If7AoGumVUaE4hoJjpL2bO/WM+83zKQRvNes/fB6a/Stbagf6e XmvXTCyc7f8ZDo7ucOxXUiXUoS6NUd7lqWpBgaBwJ+kKTH6kKZt96324N1drUg+K TPmerJhnnDRueSCPQA8mKKQAk7l2loSs9l6Ajwrks3eCE//QKTTkeZZmFrMdXb3u jHCYwtVLTfHRU0KQUbFFCGbvc75exnd7LJQ7J+HLE8ay5I6SU1TsePd2XyzV5Nx5 Z2AE1PWi7gAXXUeYFrb5Ci026ObOHh1Fu3M0zS6bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMFmNoceGwm2NoHbUQhGE3s9CnbswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3YzMzOTVkLTBkNGUtNDI5MS05ZWRlLTM3ZjA5ODFjMmRmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEp8wDQYJKoZIhvcNAQELBQADggEBAFpxv8RcXJbEyZ4e+yDc3km86X6k MLYkFa281tB0etTJBUXcWpvheH3ZXwsFAxIwW+Sk+DIxYpMzEjg5JCnJWdLRj9ev j1YD+buL21e9ujuJrv5jVupw6VLOqG0pnHnExxfoS+8EVQrK8DGvmt1ej1oIcsVJ o52nn3OGec6tkrHvWqHQNanoEu11cEZ99c4ywYC3hvPvgDjYxRCzJoc2WMwBIz35 H1O0hKfQmateaIQjCmYXe+nVLVX3lx7LSZZvThqg7fkohXZ0dmeT3LNSGmysg8wq 53/FiB5qUMYdrWJjJGO1aoNAWwA8GwDKO18rLTvMFIJQdZXPgebFoDfDFj8= -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:28 2025 by rpki-client