$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da27c9bf-316a-4fc6-8246-9d760f3eb66e.roa File: da27c9bf-316a-4fc6-8246-9d760f3eb66e.roa (raw, json) Hash identifier: c1TQWL70kFlxNwJ+d8d2XyokmbLJHgUklAHitBHyUKo= Subject key identifier: 38:C6:BB:11:BE:7D:0E:02:B8:15:1C:E7:34:80:3E:C4:50:B6:F7:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FFA3273D57FB2579B660F1DBDF7A70E575586DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da27c9bf-316a-4fc6-8246-9d760f3eb66e.roa Signing time: Mon 18 Aug 2025 15:10:49 +0000 ROA not before: Mon 18 Aug 2025 15:10:49 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:fa:32:73:d5:7f:b2:57:9b:66:0f:1d:bd:f7:a7:0e:57:55:86:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:10:49 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=4720baf0c563a459a4be4e838a7fd0b93e6aa4325b2d34906a1a571c46e790f0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b3:04:bf:ec:bb:2a:63:12:3d:05:9f:e0:70: ed:96:31:1b:b6:ba:33:38:a1:30:b2:5a:67:3b:f5: 92:8a:58:bd:39:07:d6:65:6c:a7:25:27:a7:52:56: e3:7c:9f:a1:f5:63:aa:12:1f:3d:25:c1:27:44:39: 5c:c0:c7:84:b9:ad:0f:d1:6b:3e:e3:d5:d5:ff:b6: 10:66:2e:5b:81:27:c4:2d:1d:37:7e:80:ac:a8:c4: fb:61:12:ac:0a:48:ff:b3:dd:2c:73:47:86:c3:ed: da:7c:0d:39:ad:2d:70:9b:cb:f7:8b:0a:63:3b:b0: 2f:b0:3a:69:04:7b:0a:f9:bb:c9:20:7b:ff:8d:91: 54:a1:9e:61:30:63:8e:bf:89:f6:76:92:a3:e6:6c: cd:81:08:45:20:49:2d:10:8a:f8:85:f4:45:d0:ef: 91:04:6f:0c:22:9b:84:d9:d9:a2:0a:28:8c:6a:a4: 4b:12:86:f7:60:ff:25:f4:bf:86:bf:4b:6e:5c:a3: 9f:87:9f:d2:55:bd:d1:13:18:a4:95:40:4f:16:0b: b1:d2:d6:28:c6:90:06:5f:f8:39:d8:35:90:6b:e9: 34:e6:d9:2a:85:b7:ae:9c:9a:d6:df:97:47:02:b8: f9:71:39:cd:39:ac:fd:5e:48:10:3d:03:fc:a5:2c: 8e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C6:BB:11:BE:7D:0E:02:B8:15:1C:E7:34:80:3E:C4:50:B6:F7:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da27c9bf-316a-4fc6-8246-9d760f3eb66e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.128.0/24 Signature Algorithm: sha256WithRSAEncryption 04:39:2f:03:af:69:64:71:20:3c:7a:18:dc:f7:4d:d7:1e:bf: 82:ca:94:37:34:5f:4c:4a:15:fa:b7:f3:b0:36:38:7a:f6:d9: 54:f9:17:c5:b0:0b:8a:ef:92:64:c7:8e:0b:94:4c:7d:78:7e: eb:f2:94:1e:95:fe:48:0f:25:17:16:1d:f3:71:f1:c8:d6:96: 16:79:22:9d:47:d6:a6:e2:57:ba:2d:ca:5d:0c:35:b2:c3:c4: 26:20:5f:f5:42:5f:5f:f0:f0:ce:99:fa:c6:2c:0f:fd:af:44: 65:d5:fa:ca:a1:b4:e9:8d:60:53:69:39:76:b0:7a:9d:48:41: be:ab:00:fb:88:33:db:35:e2:74:86:dc:46:fb:68:10:9a:4c: 60:2a:75:a1:53:da:98:9d:5a:25:79:9a:9d:28:2d:e5:99:e7: 11:45:28:5d:2f:53:53:e1:24:a5:c5:c5:47:1f:1b:7c:49:47: 21:b1:a8:da:20:56:f3:7a:66:b1:d8:9d:84:2f:52:3b:06:44: 66:c4:49:da:9b:8b:9d:b2:7f:d2:e9:1e:9e:4d:ee:59:4f:02: 50:7c:4d:d8:22:cf:d8:bf:80:c0:a9:ad:89:4b:d8:12:3c:28: 50:5a:43:1d:9d:4f:6a:35:04:93:7e:72:b6:f3:45:9b:90:7a: ff:7b:b4:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD/oyc9V/slebZg8dvfenDldVht8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUxMDQ5WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzIwYmFmMGM1NjNhNDU5YTRiZTRlODM4YTdmZDBiOTNl NmFhNDMyNWIyZDM0OTA2YTFhNTcxYzQ2ZTc5MGYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTswS/7LsqYxI9BZ/gcO2WMRu2ujM4oTCyWmc79ZKKWL05 B9ZlbKclJ6dSVuN8n6H1Y6oSHz0lwSdEOVzAx4S5rQ/Raz7j1dX/thBmLluBJ8Qt HTd+gKyoxPthEqwKSP+z3SxzR4bD7dp8DTmtLXCby/eLCmM7sC+wOmkEewr5u8kg e/+NkVShnmEwY46/ifZ2kqPmbM2BCEUgSS0QiviF9EXQ75EEbwwim4TZ2aIKKIxq pEsShvdg/yX0v4a/S25co5+Hn9JVvdETGKSVQE8WC7HS1ijGkAZf+DnYNZBr6TTm 2SqFt66cmtbfl0cCuPlxOc05rP1eSBA9A/ylLI5BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOMa7Eb59DgK4FRznNIA+xFC292EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhMjdjOWJmLTMxNmEtNGZjNi04MjQ2LTlkNzYwZjNlYjY2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEoAwDQYJKoZIhvcNAQELBQADggEBAAQ5LwOvaWRxIDx6GNz3Tdcev4LK lDc0X0xKFfq387A2OHr22VT5F8WwC4rvkmTHjguUTH14fuvylB6V/kgPJRcWHfNx 8cjWlhZ5Ip1H1qbiV7otyl0MNbLDxCYgX/VCX1/w8M6Z+sYsD/2vRGXV+sqhtOmN YFNpOXawep1IQb6rAPuIM9s14nSG3Eb7aBCaTGAqdaFT2pidWiV5mp0oLeWZ5xFF KF0vU1PhJKXFxUcfG3xJRyGxqNogVvN6ZrHYnYQvUjsGRGbESdqbi52yf9LpHp5N 7llPAlB8Tdgiz9i/gMCprYlL2BI8KFBaQx2dT2o1BJN+crbzRZuQev97tKM= -----END CERTIFICATE-----Generated at Sat Aug 23 07:03:50 2025 by rpki-client