$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18a602e8-2bc6-42f9-be5d-6d763a3ca04e.roa File: 18a602e8-2bc6-42f9-be5d-6d763a3ca04e.roa (raw, json) Hash identifier: HhyE2BBgxm0dFZNLwHzk/y21+oyCOtPjrz8guX9OEl4= Subject key identifier: 67:94:D5:2B:7F:EA:36:11:2C:1F:7C:B2:01:40:53:31:5C:94:33:FA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A1778FE0F8E35880B08F7324340D9B77A1AB174 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18a602e8-2bc6-42f9-be5d-6d763a3ca04e.roa Signing time: Sat 28 Jun 2025 00:00:23 +0000 ROA not before: Sat 28 Jun 2025 00:00:23 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:17:78:fe:0f:8e:35:88:0b:08:f7:32:43:40:d9:b7:7a:1a:b1:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:00:23 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=2017f8430af2500ef158429b3719ff98d123ae117aef6068a1d7ee1095c0daa5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a0:3d:3a:d8:f3:8b:c3:03:5a:67:d2:ba:4f: ad:eb:a4:1e:62:f6:1d:ba:c3:f9:65:5f:0d:b5:11: 1e:77:45:9b:1f:2c:89:be:d6:a1:5b:fb:b2:79:dd: 9c:93:b3:13:44:bc:c3:0f:f1:a2:b7:44:d4:81:48: 9e:ff:ed:b9:a0:b0:8e:56:10:cb:42:36:21:41:29: 12:2f:8b:db:ce:1f:a5:16:9c:ff:83:51:88:ff:cd: 4a:2c:f6:3e:f2:15:4b:f5:5a:2c:93:a3:3d:5f:5a: 58:ff:92:57:cb:74:37:fd:f5:74:e7:66:7e:d9:99: 84:4b:b6:db:7f:dc:98:6b:3e:d6:f4:12:da:5a:80: 52:d8:ef:70:b8:ef:28:38:a5:53:8b:b9:b9:e1:53: ca:88:0e:6e:77:f3:a1:9f:6b:bb:e0:a8:24:e5:f9: ec:53:72:96:64:20:55:67:44:64:90:26:9d:31:b7: 24:e3:94:02:dc:4b:a0:2b:0f:d0:c3:f3:dd:40:b3: b0:28:88:04:ac:70:bf:30:ec:56:3b:89:a1:42:8c: 2b:94:9c:fd:15:77:30:e3:5c:4e:38:5b:8c:89:fc: 5f:c6:51:30:60:3b:e7:a2:2d:05:0c:c7:87:62:a5: 51:e1:d3:06:78:65:07:50:60:4c:71:c9:5b:ea:f7: 20:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:94:D5:2B:7F:EA:36:11:2C:1F:7C:B2:01:40:53:31:5C:94:33:FA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18a602e8-2bc6-42f9-be5d-6d763a3ca04e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.254.0/24 Signature Algorithm: sha256WithRSAEncryption 49:d7:e7:63:68:5a:6d:cb:5c:00:39:68:a1:93:36:95:b7:b5: b4:56:5c:d2:a5:11:b9:29:ad:70:df:c6:36:1f:7b:1d:e8:12: 12:d2:7b:89:dc:ad:c7:3d:01:a3:6b:97:10:5c:ab:4f:d5:05: 02:15:e0:90:7c:d6:bb:83:f5:1c:b0:5d:81:1a:97:c1:2d:e8: ed:57:70:f1:81:51:28:cb:d0:d5:8a:6f:ac:6f:39:92:d0:97: 78:8b:18:8c:55:df:ee:e5:90:b2:c0:a7:27:61:d4:e9:b1:aa: af:8f:b7:c1:ca:c7:d8:7e:74:70:da:f4:93:33:6d:61:f7:62: 71:3d:f1:08:57:4d:d8:d8:5e:16:6a:6b:09:5a:20:47:cc:d8: 13:4c:6e:36:86:2c:68:dc:5d:68:27:b1:63:f4:51:f0:1d:51: 44:d0:81:e8:aa:3b:5b:d9:40:f2:8e:e2:b2:e3:6e:17:58:8f: 24:35:2e:71:d9:28:b9:a3:7b:fb:24:7b:58:cd:fa:8e:36:1b: 47:5e:fe:c3:f7:c4:cd:3d:56:e1:7e:ff:b5:bd:25:c0:07:3c: 79:9a:e4:af:79:81:d1:b3:06:29:ba:31:ed:42:e4:33:40:31: bd:90:e4:2f:d0:18:ce:d4:d6:9d:fa:9c:e3:64:fe:e9:78:bf: ac:d7:53:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOhd4/g+ONYgLCPcyQ0DZt3oasXQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAwMDIzWhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDE3Zjg0MzBhZjI1MDBlZjE1ODQyOWIzNzE5ZmY5OGQx MjNhZTExN2FlZjYwNjhhMWQ3ZWUxMDk1YzBkYWE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkoD062POLwwNaZ9K6T63rpB5i9h26w/llXw21ER53RZsf LIm+1qFb+7J53ZyTsxNEvMMP8aK3RNSBSJ7/7bmgsI5WEMtCNiFBKRIvi9vOH6UW nP+DUYj/zUos9j7yFUv1WiyToz1fWlj/klfLdDf99XTnZn7ZmYRLttt/3JhrPtb0 EtpagFLY73C47yg4pVOLubnhU8qIDm5386Gfa7vgqCTl+exTcpZkIFVnRGSQJp0x tyTjlALcS6ArD9DD891As7AoiASscL8w7FY7iaFCjCuUnP0VdzDjXE44W4yJ/F/G UTBgO+eiLQUMx4dipVHh0wZ4ZQdQYExxyVvq9yDNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZ5TVK3/qNhEsH3yyAUBTMVyUM/owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4YTYwMmU4LTJiYzYtNDJmOS1iZTVkLTZkNzYzYTNjYTA0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEv4wDQYJKoZIhvcNAQELBQADggEBAEnX52NoWm3LXAA5aKGTNpW3tbRW XNKlEbkprXDfxjYfex3oEhLSe4ncrcc9AaNrlxBcq0/VBQIV4JB81ruD9RywXYEa l8Et6O1XcPGBUSjL0NWKb6xvOZLQl3iLGIxV3+7lkLLApydh1Omxqq+Pt8HKx9h+ dHDa9JMzbWH3YnE98QhXTdjYXhZqawlaIEfM2BNMbjaGLGjcXWgnsWP0UfAdUUTQ geiqO1vZQPKO4rLjbhdYjyQ1LnHZKLmje/ske1jN+o42G0de/sP3xM09VuF+/7W9 JcAHPHma5K95gdGzBim6Me1C5DNAMb2Q5C/QGM7U1p36nONk/ul4v6zXU4E= -----END CERTIFICATE-----Generated at Sun Jun 29 00:44:34 2025 by rpki-client