$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d6c20c8-51a8-4a01-982f-1879ea5a55cb.roa File: 3d6c20c8-51a8-4a01-982f-1879ea5a55cb.roa (raw, json) Hash identifier: rTSmVX3FL1JNxaXdyQoWN4Q/Y4M8JSHiSly/SIpgRcY= Subject key identifier: 67:05:34:E6:2E:FA:58:EE:E3:C3:EB:0A:AF:3D:7D:A9:82:05:97:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D6903F08AAFAB5E40F8B7AE50B8A2DFBDEBE9EA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d6c20c8-51a8-4a01-982f-1879ea5a55cb.roa Signing time: Sat 28 Jun 2025 00:10:58 +0000 ROA not before: Sat 28 Jun 2025 00:10:58 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:69:03:f0:8a:af:ab:5e:40:f8:b7:ae:50:b8:a2:df:bd:eb:e9:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:10:58 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=923dbd785ca64b2e934a3c9b0dc4196d39a68ab8e15ee67239751107c64ec066, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:36:7a:97:cc:99:ae:b1:21:5a:2a:d0:a0:0d: 0d:d8:0d:af:4f:34:37:16:ab:9b:f9:ea:77:a9:f5: f5:5d:29:74:f5:55:f3:ec:06:fd:58:e0:98:5c:be: aa:b8:36:0a:ef:1a:09:44:46:48:d0:7f:80:45:4e: af:6c:f1:a9:58:c4:0d:9d:3b:7c:8f:47:0e:bc:80: 03:69:00:ba:e0:b6:1b:6e:b9:0a:1e:c5:4e:7a:53: 37:00:32:15:37:d4:93:c4:e5:5b:ab:51:9d:31:78: dd:6a:48:08:5e:87:d7:95:09:6d:a3:d6:16:9c:bf: b8:20:f9:34:d0:63:53:4e:de:74:27:25:d0:2b:ed: 89:50:4e:32:2d:12:57:42:20:e8:e5:8f:a0:ca:7b: 83:39:a3:17:85:57:06:20:56:be:a1:8e:62:8d:ff: c2:d0:c2:e2:20:78:df:18:9c:ab:3d:d4:99:1c:19: 38:03:a6:c5:30:c0:36:a7:14:84:44:6a:0a:e8:f3: fe:a4:65:0b:6a:44:db:58:78:41:f7:30:b2:6d:0f: 44:e4:49:cc:4a:b6:11:cd:cd:3b:5a:9b:77:b5:8a: 9a:b4:04:bc:a4:14:76:6d:d6:90:11:0b:12:95:5f: e5:9a:52:58:e4:04:8f:94:87:81:de:6d:2b:13:7a: 7a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:05:34:E6:2E:FA:58:EE:E3:C3:EB:0A:AF:3D:7D:A9:82:05:97:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d6c20c8-51a8-4a01-982f-1879ea5a55cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.140.0/24 Signature Algorithm: sha256WithRSAEncryption c1:11:4d:f1:c4:bc:4d:60:1a:91:19:2f:68:f8:d8:19:7c:8f: e0:fd:39:73:9d:61:1e:98:8e:67:c6:ba:48:97:b1:d4:a1:6c: 00:f5:37:98:61:ed:5e:e3:10:2e:77:f4:df:67:e9:e8:0d:db: 6b:4f:7f:68:54:14:48:b5:a1:29:fe:e4:08:b9:c3:2e:a0:a2: 84:c9:b9:e7:a4:9b:cc:c9:a8:5e:5b:93:44:e2:bc:35:0f:47: f9:0a:60:d0:88:65:8d:1e:11:7e:a1:9f:ca:ac:e1:90:96:b1: ad:f1:d5:1d:b6:14:ff:ea:c9:67:26:d5:b7:f8:ed:9d:d8:ba: ed:e7:95:e6:c7:1e:64:d6:26:f7:03:bd:15:eb:6c:b2:5c:da: 9d:50:8d:16:01:3f:47:1e:f7:db:77:63:fc:0b:eb:0e:c8:8d: 2c:bf:4a:50:8d:16:4d:e6:00:39:fc:87:68:ab:fc:23:ff:9d: 98:79:96:4f:ed:93:7f:4c:6c:36:75:f1:1c:d4:50:05:18:b7: 47:0d:ac:53:db:58:e1:8d:53:fe:09:1e:2a:d6:98:3c:42:08: 6e:a5:f7:f8:26:fd:cd:4e:49:08:57:bf:70:66:bc:46:1d:bf: 2d:3b:82:71:f8:3e:85:02:76:75:ac:7c:22:22:67:d2:02:d7: 6a:ff:7d:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDWkD8Iqvq15A+LeuULii373r6eowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAxMDU4WhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjNkYmQ3ODVjYTY0YjJlOTM0YTNjOWIwZGM0MTk2ZDM5 YTY4YWI4ZTE1ZWU2NzIzOTc1MTEwN2M2NGVjMDY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFNnqXzJmusSFaKtCgDQ3YDa9PNDcWq5v56nep9fVdKXT1 VfPsBv1Y4Jhcvqq4NgrvGglERkjQf4BFTq9s8alYxA2dO3yPRw68gANpALrgthtu uQoexU56UzcAMhU31JPE5VurUZ0xeN1qSAheh9eVCW2j1hacv7gg+TTQY1NO3nQn JdAr7YlQTjItEldCIOjlj6DKe4M5oxeFVwYgVr6hjmKN/8LQwuIgeN8YnKs91Jkc GTgDpsUwwDanFIREagro8/6kZQtqRNtYeEH3MLJtD0TkScxKthHNzTtam3e1ipq0 BLykFHZt1pARCxKVX+WaUljkBI+Uh4HebSsTenptAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZwU05i76WO7jw+sKrz19qYIFl64wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkNmMyMGM4LTUxYTgtNGEwMS05ODJmLTE4NzllYTVhNTVjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEowwDQYJKoZIhvcNAQELBQADggEBAMERTfHEvE1gGpEZL2j42Bl8j+D9 OXOdYR6YjmfGukiXsdShbAD1N5hh7V7jEC539N9n6egN22tPf2hUFEi1oSn+5Ai5 wy6gooTJueekm8zJqF5bk0TivDUPR/kKYNCIZY0eEX6hn8qs4ZCWsa3x1R22FP/q yWcm1bf47Z3Yuu3nlebHHmTWJvcDvRXrbLJc2p1QjRYBP0ce99t3Y/wL6w7IjSy/ SlCNFk3mADn8h2ir/CP/nZh5lk/tk39MbDZ18RzUUAUYt0cNrFPbWOGNU/4JHirW mDxCCG6l9/gm/c1OSQhXv3BmvEYdvy07gnH4PoUCdnWsfCIiZ9IC12r/fW0= -----END CERTIFICATE-----Generated at Sun Jun 29 03:04:18 2025 by rpki-client