$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7e48273-d97f-45e2-9820-48c08d0db4f5.roa File: c7e48273-d97f-45e2-9820-48c08d0db4f5.roa (raw, json) Hash identifier: nDCeP3NvLWsUb+7QKh3XqHJBxC+opuo8llrNxjoW0UY= Subject key identifier: F4:F8:A9:FE:00:5E:39:7E:B3:F7:25:1F:B8:34:2D:A6:24:99:4C:C1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 369120F6011AC576F7558EEC7225A075AAF3E454 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7e48273-d97f-45e2-9820-48c08d0db4f5.roa Signing time: Sat 28 Jun 2025 00:00:23 +0000 ROA not before: Sat 28 Jun 2025 00:00:23 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:91:20:f6:01:1a:c5:76:f7:55:8e:ec:72:25:a0:75:aa:f3:e4:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:00:23 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=a0258e57def9303314ab83532b14214372e29b9f9d84454444323a139b3420ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c2:4c:94:1c:34:49:49:7b:1e:ce:87:16:82: 4a:c9:e4:d6:8b:be:c6:c7:be:77:40:8d:3c:88:0b: 07:45:aa:1e:f6:e9:7a:6d:d3:4c:e5:77:8f:c2:1f: 48:4d:5b:b5:a8:8c:f2:a2:bb:47:74:34:d1:a3:cc: fd:c1:24:c4:b2:70:ab:ed:75:d8:c3:a0:ab:37:14: 8c:4c:1c:96:bb:e4:34:fa:ed:4f:32:48:df:bd:85: a0:9f:cd:9d:22:4a:04:a4:28:4e:fe:11:0a:31:71: a5:5e:62:11:b6:69:aa:a8:0e:0f:3a:5f:32:b1:74: f0:b9:f2:97:e3:e1:07:b8:d1:41:cd:09:dd:62:c4: 93:35:b3:5b:21:81:99:31:0f:0c:e3:82:25:3e:12: d6:2d:61:94:53:94:ae:81:c5:36:ce:29:13:7b:1f: 0e:9a:00:32:e8:f6:a5:91:3d:9f:40:60:1d:ff:8a: 7b:c4:82:03:56:df:a8:1a:7e:1f:a0:b1:75:63:8a: 5b:b4:17:b3:d2:5f:05:af:26:d1:77:09:41:3c:3d: 7f:64:79:8d:ca:fe:1b:ab:a1:94:a0:06:23:77:d5: 00:a2:f6:5d:5a:a3:3d:82:11:36:39:c8:cb:97:57: 49:78:b8:3f:14:0d:a8:2a:07:e0:9f:93:c4:4b:f4: 2c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F8:A9:FE:00:5E:39:7E:B3:F7:25:1F:B8:34:2D:A6:24:99:4C:C1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7e48273-d97f-45e2-9820-48c08d0db4f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.254.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:61:e5:f7:b1:8f:39:48:b0:1b:c4:15:18:b5:94:96:bd:05: 4b:9a:cb:0e:6a:cd:34:e6:e8:a9:b4:39:b9:60:77:7f:3e:bc: 90:89:cb:ae:1d:d3:96:30:11:3b:62:fe:e0:4e:fe:db:27:60: 25:4b:4c:6b:19:ac:fe:72:5f:22:e9:d2:ba:ab:a0:0a:39:e1: 63:1e:b5:64:7a:1d:68:29:ab:2b:75:42:2f:7e:6a:d7:bf:4a: af:b0:08:d5:17:5f:0b:84:9a:0c:06:a8:c5:e2:7d:63:62:68: 66:51:0d:21:1a:24:01:81:3d:9f:6c:75:32:7d:6e:34:fe:0d: a6:22:da:87:80:dc:e0:43:98:f2:eb:17:3c:03:79:f1:d9:46: 03:bc:c5:59:c9:72:a6:41:0c:ca:97:99:dc:01:4d:30:90:70: e6:50:68:21:84:0d:ba:be:5d:aa:02:9d:e2:1a:05:5b:1d:13: 64:25:b6:65:03:3a:7a:b7:c3:69:c2:d6:05:44:bf:57:85:90: 5a:8a:61:78:f8:4f:0e:87:82:58:c1:99:00:42:a1:e9:d1:a7: 3f:7b:ef:cc:41:5b:95:1a:b1:d9:3f:36:7f:41:6c:7a:fd:6c: 97:34:a5:c6:2e:64:24:15:75:38:fa:3f:e1:ce:7f:19:4b:4b: 49:2f:5c:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNpEg9gEaxXb3VY7sciWgdarz5FQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAwMDIzWhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDI1OGU1N2RlZjkzMDMzMTRhYjgzNTMyYjE0MjE0Mzcy ZTI5YjlmOWQ4NDQ1NDQ0NDMyM2ExMzliMzQyMGNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1wkyUHDRJSXsezocWgkrJ5NaLvsbHvndAjTyICwdFqh72 6Xpt00zld4/CH0hNW7WojPKiu0d0NNGjzP3BJMSycKvtddjDoKs3FIxMHJa75DT6 7U8ySN+9haCfzZ0iSgSkKE7+EQoxcaVeYhG2aaqoDg86XzKxdPC58pfj4Qe40UHN Cd1ixJM1s1shgZkxDwzjgiU+EtYtYZRTlK6BxTbOKRN7Hw6aADLo9qWRPZ9AYB3/ invEggNW36gafh+gsXVjilu0F7PSXwWvJtF3CUE8PX9keY3K/huroZSgBiN31QCi 9l1aoz2CETY5yMuXV0l4uD8UDagqB+Cfk8RL9CwhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9Pip/gBeOX6z9yUfuDQtpiSZTMEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M3ZTQ4MjczLWQ5N2YtNDVlMi05ODIwLTQ4YzA4ZDBkYjRmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEv4wDQYJKoZIhvcNAQELBQADggEBACxh5fexjzlIsBvEFRi1lJa9BUua yw5qzTTm6Km0Oblgd38+vJCJy64d05YwETti/uBO/tsnYCVLTGsZrP5yXyLp0rqr oAo54WMetWR6HWgpqyt1Qi9+ate/Sq+wCNUXXwuEmgwGqMXifWNiaGZRDSEaJAGB PZ9sdTJ9bjT+DaYi2oeA3OBDmPLrFzwDefHZRgO8xVnJcqZBDMqXmdwBTTCQcOZQ aCGEDbq+XaoCneIaBVsdE2QltmUDOnq3w2nC1gVEv1eFkFqKYXj4Tw6HgljBmQBC oenRpz9778xBW5Uasdk/Nn9BbHr9bJc0pcYuZCQVdTj6P+HOfxlLS0kvXGA= -----END CERTIFICATE-----Generated at Sun Jun 29 11:04:56 2025 by rpki-client