$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdb64d29-8d64-4450-9e51-563785a35ffb.roa File: fdb64d29-8d64-4450-9e51-563785a35ffb.roa (raw, json) Hash identifier: F0E97Oz/XZyYZPAhe3paDKyrSjJhGptBMbyHQBDfXXQ= Subject key identifier: 43:73:AE:9B:5D:A9:16:FD:93:87:CE:C7:27:F5:E9:A9:E7:FB:06:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4436B3902ACC4FE72C319AA191C37F7CA51DF6D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdb64d29-8d64-4450-9e51-563785a35ffb.roa Signing time: Sat 28 Jun 2025 00:00:26 +0000 ROA not before: Sat 28 Jun 2025 00:00:26 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:36:b3:90:2a:cc:4f:e7:2c:31:9a:a1:91:c3:7f:7c:a5:1d:f6:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:00:26 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=c3c9ee135616c608b1a3e087dce1faf98f1e4806798ce50844ddc1c7f03291e3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:36:35:30:f5:8d:9b:0a:67:0d:fc:7c:94:3f: ac:f4:d5:48:8c:d4:c3:eb:af:31:72:12:47:49:f6: 5e:52:1b:ec:fe:2e:67:e3:7d:f5:3a:10:08:c4:0f: 65:5b:71:9c:d5:66:6d:d7:ab:5b:7a:51:1d:df:54: fe:a1:1c:88:5a:e6:26:f8:fb:be:eb:32:f1:53:42: 09:a1:27:d6:ff:29:2f:43:da:1d:dd:7e:91:89:3d: 6e:17:87:1c:b8:cf:e4:b4:e5:68:5c:a3:6e:dc:fd: 59:87:f1:78:84:5b:f7:53:7b:2b:cb:ca:17:4e:4f: 91:e6:97:0c:9b:d7:35:83:aa:ce:41:c7:ee:ce:2f: ae:9f:05:cb:68:fb:01:77:50:41:06:37:d2:05:16: e4:0f:87:72:a9:6d:9f:e0:90:cb:00:5f:f5:55:cd: 64:91:1e:53:79:8c:f5:f8:eb:aa:bf:d8:44:ad:9a: 38:d2:23:48:a3:88:17:6d:92:91:0d:4e:b7:89:72: 1e:ff:c3:a0:2e:ec:e6:76:c4:c3:e8:f4:4c:82:c4: 3e:b0:26:81:d1:28:a2:a8:7e:84:3a:71:a5:67:a5: 11:15:10:be:6f:99:61:61:57:b8:b2:7a:44:27:5a: c9:3b:c1:69:eb:56:26:b7:f5:61:96:bb:3d:28:36: 4e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:73:AE:9B:5D:A9:16:FD:93:87:CE:C7:27:F5:E9:A9:E7:FB:06:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdb64d29-8d64-4450-9e51-563785a35ffb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.254.0/23 Signature Algorithm: sha256WithRSAEncryption d9:47:9e:9f:0a:ba:4b:b1:7d:4f:8c:09:9e:61:b6:84:c4:44: c4:51:1d:37:d1:b2:92:25:da:c2:0c:46:85:08:95:17:86:fb: b4:4d:3a:de:8f:b1:69:41:73:98:fb:11:c1:36:87:f8:fa:e8: 76:53:09:c2:d8:49:21:a1:95:1f:87:df:6c:c4:34:cd:97:17: 59:2a:4d:3e:ac:34:d2:06:fe:78:65:d8:5b:b5:9e:86:52:ab: 92:da:e5:aa:cc:8e:82:3c:87:2e:80:6c:1c:44:ec:f2:10:6d: ed:0c:39:7c:37:f6:eb:94:bd:00:dd:87:72:8f:2f:76:f2:67: 55:8f:7d:39:28:c5:9f:34:dc:43:65:a1:a6:b6:6a:c1:6e:1b: d6:23:01:5f:ee:a9:b1:8c:42:a9:cc:4b:10:16:25:ea:cd:65: 11:95:6c:fe:18:22:fb:0d:a7:1a:ca:9c:c4:af:d0:05:c7:14: 70:a5:6b:7a:fe:65:07:53:dc:b0:8b:04:8f:ed:a5:34:cd:e4: 75:31:a7:8e:17:30:a4:7d:b8:df:f4:01:61:a9:52:d1:4e:66: c6:1a:d9:77:af:98:bd:90:71:db:28:a6:5b:09:cc:c1:cd:f4: 77:8f:e0:ed:b4:2a:2f:37:3c:08:c2:8e:36:36:2d:9f:ca:06: da:ee:c4:29 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURDazkCrMT+csMZqhkcN/fKUd9tYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAwMDI2WhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjM2M5ZWUxMzU2MTZjNjA4YjFhM2UwODdkY2UxZmFmOThm MWU0ODA2Nzk4Y2U1MDg0NGRkYzFjN2YwMzI5MWUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDENjUw9Y2bCmcN/HyUP6z01UiM1MPrrzFyEkdJ9l5SG+z+ LmfjffU6EAjED2VbcZzVZm3Xq1t6UR3fVP6hHIha5ib4+77rMvFTQgmhJ9b/KS9D 2h3dfpGJPW4Xhxy4z+S05Whco27c/VmH8XiEW/dTeyvLyhdOT5Hmlwyb1zWDqs5B x+7OL66fBcto+wF3UEEGN9IFFuQPh3KpbZ/gkMsAX/VVzWSRHlN5jPX466q/2ESt mjjSI0ijiBdtkpENTreJch7/w6Au7OZ2xMPo9EyCxD6wJoHRKKKofoQ6caVnpREV EL5vmWFhV7iyekQnWsk7wWnrVia39WGWuz0oNk7zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQ3Oum12pFv2Th87HJ/Xpqef7BjowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZkYjY0ZDI5LThkNjQtNDQ1MC05ZTUxLTU2Mzc4NWEzNWZmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGIEv4wDQYJKoZIhvcNAQELBQADggEBANlHnp8KukuxfU+MCZ5htoTERMRR HTfRspIl2sIMRoUIlReG+7RNOt6PsWlBc5j7EcE2h/j66HZTCcLYSSGhlR+H32zE NM2XF1kqTT6sNNIG/nhl2Fu1noZSq5La5arMjoI8hy6AbBxE7PIQbe0MOXw39uuU vQDdh3KPL3byZ1WPfTkoxZ803ENloaa2asFuG9YjAV/uqbGMQqnMSxAWJerNZRGV bP4YIvsNpxrKnMSv0AXHFHCla3r+ZQdT3LCLBI/tpTTN5HUxp44XMKR9uN/0AWGp UtFOZsYa2XevmL2QcdsoplsJzMHN9HeP4O20Ki83PAjCjjY2LZ/KBtruxCk= -----END CERTIFICATE-----Generated at Tue Jul 1 17:18:52 2025 by rpki-client