$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d7f342-6157-48d6-afa9-e8e77d622676.roa File: 05d7f342-6157-48d6-afa9-e8e77d622676.roa (raw, json) Hash identifier: YYbo8v7cnLfl/VFnCRlfb8q60H/mVx6OKhgR1AwoDy8= Subject key identifier: 86:C6:5C:8E:7F:45:6F:67:C7:B2:81:6E:CF:EE:25:9E:5E:6E:5F:73 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 62F0480205858488CED136589E29966E12372A6E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d7f342-6157-48d6-afa9-e8e77d622676.roa Signing time: Sat 09 Aug 2025 00:01:18 +0000 ROA not before: Sat 09 Aug 2025 00:01:18 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:f0:48:02:05:85:84:88:ce:d1:36:58:9e:29:96:6e:12:37:2a:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 9 00:01:18 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=e1d8ba50c10c36e825278595c914fc1212bb72d33a84cfbabe178a41d010896d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:67:74:5c:41:e5:88:f8:79:2d:83:7b:85:84: 37:94:63:68:ff:eb:15:03:a4:bb:ee:f3:6b:51:27: cf:91:02:da:b8:5a:b1:c1:c1:9a:25:39:40:13:bf: 65:f8:b1:04:c5:7e:a9:65:c2:f8:33:3e:9d:6d:85: bd:6e:37:f4:4e:c1:c8:5d:fd:0d:96:24:60:80:02: 03:30:48:01:d9:1e:82:ed:7f:e4:20:36:bf:52:a3: 8a:f9:18:4c:d5:aa:2d:3f:8e:98:6f:34:3b:f6:9c: f6:9d:a5:0a:0d:30:fb:bb:fe:e3:87:4d:29:96:b7: de:9e:76:39:60:bf:d9:9b:62:e4:27:4c:1e:6d:96: 32:6f:dd:90:8e:3d:24:eb:cf:a3:ab:ae:8a:ef:be: 4f:a6:2b:ab:0b:96:4f:86:2f:0e:91:08:c3:f6:77: 0f:4e:3b:40:fb:6b:9f:71:6a:65:a5:1b:26:ab:f1: 76:06:1c:a3:67:90:65:0c:63:09:fb:2e:54:4a:a2: 4f:54:d0:74:14:03:24:3e:28:4f:bd:c9:44:59:d4: ac:29:d1:5a:73:b2:09:79:14:d0:7b:77:4f:41:96: a3:60:55:71:c8:53:04:93:5c:4e:ba:48:94:73:d6: ad:e9:fe:76:81:7b:96:51:25:40:8e:e1:86:ba:b8: d6:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C6:5C:8E:7F:45:6F:67:C7:B2:81:6E:CF:EE:25:9E:5E:6E:5F:73 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d7f342-6157-48d6-afa9-e8e77d622676.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.52.0/22 Signature Algorithm: sha256WithRSAEncryption bf:d7:99:3a:04:f3:54:9e:5f:35:cd:ef:29:49:45:33:2c:1a: c1:f7:27:31:b2:07:03:37:fd:24:af:7c:b3:c5:d4:ec:8e:ad: 68:d5:4e:0d:2a:3f:79:75:7a:3d:a4:64:06:4e:ae:40:91:8a: 6d:3f:86:f3:cc:b2:34:bc:4f:a1:ac:fd:99:c1:65:ab:db:31: 83:7f:f2:0c:b9:70:77:56:d9:d6:5d:16:1b:c7:5f:bb:46:fd: 37:66:14:84:4c:5f:23:e0:ca:28:e3:74:37:0c:94:50:6c:6e: 7c:5c:98:37:76:05:da:af:cb:b8:c7:bb:65:62:1e:10:c4:a6: 5c:ae:46:da:05:e0:9f:ac:fe:5b:0c:04:2d:4a:fd:ec:7d:1a: 83:3d:3b:b4:9e:29:1d:86:51:65:75:7c:15:31:fb:79:e1:62: 5c:06:01:b7:df:2f:a8:5e:8f:86:c7:1d:23:54:a4:c3:fc:56: ef:bb:6c:21:4b:93:78:78:48:63:a1:6b:88:bd:8f:fe:2e:33: b0:a9:e2:47:c2:30:ca:d1:27:1f:8d:bd:88:35:8b:b8:38:4e: 20:37:f8:4c:3b:ca:22:9b:b8:20:26:d7:71:ba:7c:63:21:69: aa:ef:b9:0d:b0:02:72:e3:3a:0d:88:46:25:5d:6f:50:1e:99: b6:3e:8b:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYvBIAgWFhIjO0TZYnimWbhI3Km4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA5MDAwMTE4WhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMWQ4YmE1MGMxMGMzNmU4MjUyNzg1OTVjOTE0ZmMxMjEy YmI3MmQzM2E4NGNmYmFiZTE3OGE0MWQwMTA4OTZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7Z3RcQeWI+Hktg3uFhDeUY2j/6xUDpLvu82tRJ8+RAtq4 WrHBwZolOUATv2X4sQTFfqllwvgzPp1thb1uN/ROwchd/Q2WJGCAAgMwSAHZHoLt f+QgNr9So4r5GEzVqi0/jphvNDv2nPadpQoNMPu7/uOHTSmWt96edjlgv9mbYuQn TB5tljJv3ZCOPSTrz6Orrorvvk+mK6sLlk+GLw6RCMP2dw9OO0D7a59xamWlGyar 8XYGHKNnkGUMYwn7LlRKok9U0HQUAyQ+KE+9yURZ1Kwp0Vpzsgl5FNB7d09BlqNg VXHIUwSTXE66SJRz1q3p/naBe5ZRJUCO4Ya6uNbNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhsZcjn9Fb2fHsoFuz+4lnl5uX3MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1ZDdmMzQyLTYxNTctNDhkNi1hZmE5LWU4ZTc3ZDYyMjY3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKIEjQwDQYJKoZIhvcNAQELBQADggEBAL/XmToE81SeXzXN7ylJRTMsGsH3 JzGyBwM3/SSvfLPF1OyOrWjVTg0qP3l1ej2kZAZOrkCRim0/hvPMsjS8T6Gs/ZnB ZavbMYN/8gy5cHdW2dZdFhvHX7tG/TdmFIRMXyPgyijjdDcMlFBsbnxcmDd2Bdqv y7jHu2ViHhDEplyuRtoF4J+s/lsMBC1K/ex9GoM9O7SeKR2GUWV1fBUx+3nhYlwG AbffL6hej4bHHSNUpMP8Vu+7bCFLk3h4SGOha4i9j/4uM7Cp4kfCMMrRJx+NvYg1 i7g4TiA3+Ew7yiKbuCAm13G6fGMhaarvuQ2wAnLjOg2IRiVdb1AembY+i1E= -----END CERTIFICATE-----Generated at Sat Aug 23 09:03:52 2025 by rpki-client