$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75f1294d-03e7-415c-8881-5227f1076874.roa File: 75f1294d-03e7-415c-8881-5227f1076874.roa (raw, json) Hash identifier: 1fhesOKa8zMaJolUG/2WtQ+YEE+vSlq0ax8ntQ3a1Qc= Subject key identifier: 99:60:A8:74:4D:A3:89:CB:63:EB:AE:F9:29:73:88:E7:AC:67:B2:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 474888CDD07654D4994A3A79077DFA8B4CF62493 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75f1294d-03e7-415c-8881-5227f1076874.roa Signing time: Mon 18 Aug 2025 15:11:03 +0000 ROA not before: Mon 18 Aug 2025 15:11:03 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:48:88:cd:d0:76:54:d4:99:4a:3a:79:07:7d:fa:8b:4c:f6:24:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:11:03 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=2bd9e0cfacc815a3817d78ff344734e9844b3712b0f692e8e26b53466399064c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5f:37:f5:55:e9:d3:ab:a9:7b:59:b7:3c:ba: 80:f3:e1:28:fa:f9:d9:d3:bb:7f:c1:59:a7:b6:e8: ac:2e:63:e5:64:dc:44:42:5f:7d:af:db:b6:ad:15: 28:f9:34:42:62:70:5b:ad:4a:58:8c:29:a7:29:64: c1:2f:ca:3b:ac:90:4b:b6:49:8e:01:16:41:e2:09: 7a:8f:e3:2a:ab:06:3f:75:69:80:25:ea:05:e5:30: 2c:3e:3a:dc:68:11:a5:40:42:8f:ac:21:5a:83:c6: 28:67:2e:82:fe:ef:37:24:4a:da:93:73:e4:ee:33: 03:4d:51:bd:0b:61:82:b8:de:28:68:9a:e1:48:50: 4c:2e:7c:fa:04:10:7f:b3:de:d0:94:2d:e4:67:47: b5:f6:21:ca:c4:be:79:a4:41:b1:9c:9f:d2:c3:a1: 2b:42:d5:5c:52:1d:fe:bd:95:a5:27:83:dd:0b:87: d9:c2:01:bf:72:36:a8:2d:f6:a4:fc:c9:cf:63:df: 2e:e4:d0:36:da:2a:be:2a:ac:b3:ae:30:40:e0:ea: 63:fa:5b:80:13:6e:da:17:d0:67:e9:98:55:d0:21: 5b:4b:49:22:49:2f:a8:32:9e:92:6d:de:a2:d2:8b: 95:61:ac:6a:7a:a6:8b:79:57:42:41:64:60:91:5b: b1:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:60:A8:74:4D:A3:89:CB:63:EB:AE:F9:29:73:88:E7:AC:67:B2:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75f1294d-03e7-415c-8881-5227f1076874.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.152.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:9b:7c:67:6a:ab:63:0c:ec:98:f5:ee:9d:71:d0:be:3c:dd: 9d:2a:8f:de:c2:2b:eb:c0:f6:67:15:d4:f0:54:3e:e3:5b:f9: 98:dd:0d:dc:fd:f2:93:83:37:09:7c:6e:ee:4f:dd:a5:e2:d5: f9:90:64:1a:48:80:ce:bb:4a:08:f5:54:59:26:76:54:8a:7c: 10:7a:74:20:6b:7f:d8:81:e9:2b:03:35:bf:ae:a0:5e:5d:b3: cf:54:7d:ce:21:46:81:46:33:f0:93:ed:67:c7:4d:32:0d:b1: 01:9a:99:4a:3e:27:3d:d5:cc:cc:19:ec:93:17:e9:3c:23:75: dd:33:e4:87:62:5f:1c:02:59:4e:db:f3:52:ee:01:8e:86:18: 7c:b5:7f:36:1e:1f:28:38:3f:44:c9:25:9a:70:90:12:31:63: 39:4e:6d:f7:b7:1a:54:1f:37:2d:fc:d9:85:0a:67:d5:80:4a: 88:68:7e:39:43:cd:b5:17:9e:69:0b:2e:d4:c1:d7:01:5b:78: c2:0d:47:7d:54:3c:7b:84:d2:61:1e:54:d9:4b:ba:91:21:86: 06:25:8b:d2:f8:5d:3a:85:ee:96:69:8c:13:cd:8d:09:44:6a: aa:8d:48:87:04:ed:e0:43:98:62:81:a6:82:1d:04:af:a4:e7: 76:43:27:bb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR0iIzdB2VNSZSjp5B336i0z2JJMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUxMTAzWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmQ5ZTBjZmFjYzgxNWEzODE3ZDc4ZmYzNDQ3MzRlOTg0 NGIzNzEyYjBmNjkyZThlMjZiNTM0NjYzOTkwNjRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRXzf1VenTq6l7Wbc8uoDz4Sj6+dnTu3/BWae26KwuY+Vk 3ERCX32v27atFSj5NEJicFutSliMKacpZMEvyjuskEu2SY4BFkHiCXqP4yqrBj91 aYAl6gXlMCw+OtxoEaVAQo+sIVqDxihnLoL+7zckStqTc+TuMwNNUb0LYYK43iho muFIUEwufPoEEH+z3tCULeRnR7X2IcrEvnmkQbGcn9LDoStC1VxSHf69laUng90L h9nCAb9yNqgt9qT8yc9j3y7k0DbaKr4qrLOuMEDg6mP6W4ATbtoX0GfpmFXQIVtL SSJJL6gynpJt3qLSi5VhrGp6pot5V0JBZGCRW7EHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmWCodE2jictj6675KXOI56xnsogwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1ZjEyOTRkLTAzZTctNDE1Yy04ODgxLTUyMjdmMTA3Njg3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKIEpgwDQYJKoZIhvcNAQELBQADggEBAF2bfGdqq2MM7Jj17p1x0L483Z0q j97CK+vA9mcV1PBUPuNb+ZjdDdz98pODNwl8bu5P3aXi1fmQZBpIgM67Sgj1VFkm dlSKfBB6dCBrf9iB6SsDNb+uoF5ds89Ufc4hRoFGM/CT7WfHTTINsQGamUo+Jz3V zMwZ7JMX6Twjdd0z5IdiXxwCWU7b81LuAY6GGHy1fzYeHyg4P0TJJZpwkBIxYzlO bfe3GlQfNy382YUKZ9WASohofjlDzbUXnmkLLtTB1wFbeMINR31UPHuE0mEeVNlL upEhhgYli9L4XTqF7pZpjBPNjQlEaqqNSIcE7eBDmGKBpoIdBK+k53ZDJ7s= -----END CERTIFICATE-----Generated at Sat Aug 23 08:25:12 2025 by rpki-client