$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da27c9bf-316a-4fc6-8246-9d760f3eb66e.roa File: da27c9bf-316a-4fc6-8246-9d760f3eb66e.roa (raw, json) Hash identifier: uKj3Qs/wc3i9H7AIGQ+XVtirc8NFPV3Q9UHyNfRiw44= Subject key identifier: 1B:07:7C:64:82:89:9A:59:17:AC:0A:B3:50:78:58:0F:77:BA:D4:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7DD807A3A54B025C15151E72703903C93E7E5591 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da27c9bf-316a-4fc6-8246-9d760f3eb66e.roa Signing time: Sat 28 Jun 2025 00:10:15 +0000 ROA not before: Sat 28 Jun 2025 00:10:15 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:d8:07:a3:a5:4b:02:5c:15:15:1e:72:70:39:03:c9:3e:7e:55:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:10:15 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=1106b7b04b0786de859511ab821d20bdcdaf652e81bdc2562718ca408e255048, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0f:d6:13:b6:eb:5d:f4:6f:99:26:79:cb:dd: f9:79:83:51:f5:dc:0a:96:fe:08:18:0b:82:a4:42: f7:dd:6b:eb:ed:28:ee:4f:58:c0:6b:9a:70:c6:ca: 27:ee:b8:73:50:a4:7b:44:5d:15:1e:26:ad:9a:29: ff:b9:a8:a9:ad:b9:76:19:a6:0d:c8:8c:0d:1c:8a: ed:18:df:70:96:ed:ef:05:b4:76:da:4b:d9:11:9d: 88:1a:e1:a4:c4:94:10:4a:2e:8c:30:13:37:53:36: 38:b0:18:a1:ab:92:82:8c:2d:98:cb:16:09:52:5b: 84:f7:e4:e0:10:22:9c:8d:a2:04:51:59:0b:67:7b: 2d:09:b1:cd:49:90:d3:b3:06:03:6a:6e:d7:cb:e3: d3:8c:c5:ae:15:90:89:b7:a2:0f:c5:d5:33:e4:a3: 69:df:c5:6c:a9:36:6d:fc:e1:1d:06:2c:b3:ef:3a: 99:4b:5f:c6:20:50:af:62:57:cc:a3:27:a9:ea:88: 06:59:a4:d1:ba:34:3e:f2:fe:e3:94:43:2f:b5:0a: 79:60:4e:69:4d:2c:e0:94:fa:77:33:ab:d8:1f:b0: 30:38:ea:66:9e:27:cf:91:74:f8:10:d9:d6:74:66: fd:b5:3b:08:0c:e6:fa:3d:99:e6:0b:04:1c:00:bd: 5d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:07:7C:64:82:89:9A:59:17:AC:0A:B3:50:78:58:0F:77:BA:D4:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da27c9bf-316a-4fc6-8246-9d760f3eb66e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.128.0/24 Signature Algorithm: sha256WithRSAEncryption 68:30:ca:69:58:7a:e4:5d:ba:0c:fa:c5:fa:64:b6:c6:b4:60: 14:24:ca:c4:21:ba:28:5a:73:04:72:73:49:a3:49:fb:b5:2a: eb:41:68:a0:d7:5f:30:18:8e:3c:77:92:98:40:ee:98:2a:be: 62:78:37:11:3a:44:f8:87:f0:e1:77:a3:dc:aa:45:db:4c:6a: b6:12:a4:26:52:bf:8c:4a:ff:ab:0b:12:55:fd:8b:8d:ec:14: ad:9d:ab:8b:ad:0c:c6:02:17:45:f2:2b:fb:9e:89:2d:e7:6d: 07:40:7d:ce:d2:1d:12:dd:4f:70:92:6b:a7:35:29:4f:71:2a: 4b:4b:10:e5:55:eb:9f:27:22:e0:51:69:f3:4b:09:6f:b2:11: 5d:37:6e:6a:35:34:c0:9f:dc:dc:c4:1f:43:f9:c7:a0:2c:32: b7:ad:3d:0b:d8:00:67:b5:b9:cc:61:2f:32:f4:a9:f0:88:03: 8c:4f:3b:b0:0e:a7:77:5f:46:7c:42:54:22:97:5c:64:da:d9: 23:45:d3:27:38:3f:fd:4c:31:14:c0:10:08:16:d4:00:1e:14: da:0d:65:b2:71:d5:e5:dd:1b:61:5f:43:dd:be:6d:0e:df:f0: b7:cd:c8:53:05:db:f6:27:8e:79:a3:29:ef:36:f7:8a:a5:af: 64:93:69:ae -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfdgHo6VLAlwVFR5ycDkDyT5+VZEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAxMDE1WhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTA2YjdiMDRiMDc4NmRlODU5NTExYWI4MjFkMjBiZGNk YWY2NTJlODFiZGMyNTYyNzE4Y2E0MDhlMjU1MDQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfD9YTtutd9G+ZJnnL3fl5g1H13AqW/ggYC4KkQvfda+vt KO5PWMBrmnDGyifuuHNQpHtEXRUeJq2aKf+5qKmtuXYZpg3IjA0ciu0Y33CW7e8F tHbaS9kRnYga4aTElBBKLowwEzdTNjiwGKGrkoKMLZjLFglSW4T35OAQIpyNogRR WQtney0Jsc1JkNOzBgNqbtfL49OMxa4VkIm3og/F1TPko2nfxWypNm384R0GLLPv OplLX8YgUK9iV8yjJ6nqiAZZpNG6ND7y/uOUQy+1CnlgTmlNLOCU+nczq9gfsDA4 6maeJ8+RdPgQ2dZ0Zv21OwgM5vo9meYLBBwAvV3jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGwd8ZIKJmlkXrAqzUHhYD3e61MMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhMjdjOWJmLTMxNmEtNGZjNi04MjQ2LTlkNzYwZjNlYjY2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEoAwDQYJKoZIhvcNAQELBQADggEBAGgwymlYeuRdugz6xfpktsa0YBQk ysQhuihacwRyc0mjSfu1KutBaKDXXzAYjjx3kphA7pgqvmJ4NxE6RPiH8OF3o9yq RdtMarYSpCZSv4xK/6sLElX9i43sFK2dq4utDMYCF0XyK/ueiS3nbQdAfc7SHRLd T3CSa6c1KU9xKktLEOVV658nIuBRafNLCW+yEV03bmo1NMCf3NzEH0P5x6AsMret PQvYAGe1ucxhLzL0qfCIA4xPO7AOp3dfRnxCVCKXXGTa2SNF0yc4P/1MMRTAEAgW 1AAeFNoNZbJx1eXdG2FfQ92+bQ7f8LfNyFMF2/YnjnmjKe8294qlr2STaa4= -----END CERTIFICATE-----Generated at Thu Jul 3 00:14:36 2025 by rpki-client