$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdb64d29-8d64-4450-9e51-563785a35ffb.roa File: fdb64d29-8d64-4450-9e51-563785a35ffb.roa (raw, json) Hash identifier: mB2lop5SgOovH3bl255aJjBboLAyPZ49YxC4MHzHUVQ= Subject key identifier: 2E:6B:F6:6C:DB:42:1B:C9:91:7E:DE:C3:3F:10:9D:A5:D3:8F:F6:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 583DF0692D5B6075377649A9DA0C3ED9C50B220F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdb64d29-8d64-4450-9e51-563785a35ffb.roa Signing time: Mon 18 Aug 2025 15:00:27 +0000 ROA not before: Mon 18 Aug 2025 15:00:27 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:3d:f0:69:2d:5b:60:75:37:76:49:a9:da:0c:3e:d9:c5:0b:22:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:00:27 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=18f6f51320c131b1ba3f44d8b980f8f89e13f6951b5d55b510d569299f7f3ea0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b5:82:77:61:cb:a2:ed:3a:66:98:8f:bf:a2: 75:fe:75:80:6a:35:72:ac:0b:50:7b:f9:56:e0:0f: ae:6f:44:17:1b:a9:89:40:52:f8:26:2c:fb:0f:12: 41:6e:f6:f6:e9:a0:c7:a0:e5:47:a9:9c:f0:fb:4d: 28:46:97:53:53:04:45:6e:a4:e5:cf:50:81:23:90: 53:5a:a9:9f:02:7a:d3:48:b1:8b:eb:13:23:25:0c: 65:02:63:6f:7a:94:15:5e:af:25:65:18:23:d8:49: dd:6a:a3:57:72:2b:e3:ba:ff:56:14:85:82:1c:90: 3f:61:63:5b:bd:ea:fc:f7:01:29:ae:6b:bb:09:7d: e6:c9:e9:37:77:8d:a4:40:c0:a2:f7:f5:95:e1:56: e8:14:cf:cf:7e:82:84:ab:ae:75:a9:47:98:53:c7: 5c:e8:8a:bc:8b:ec:31:d6:83:30:12:f4:3d:45:65: 8d:80:9b:bb:1d:49:4a:ed:eb:ac:cf:96:a7:61:47: 73:f8:59:1e:db:4e:24:03:ee:22:5d:0b:9d:ef:03: 26:25:b5:50:ac:f8:59:21:5a:3b:cc:1a:84:41:9a: 5c:9f:04:1f:a2:70:f6:62:78:90:83:0a:01:29:6f: 5a:9c:84:32:bf:ec:77:21:78:56:c0:fc:e5:37:72: cd:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:6B:F6:6C:DB:42:1B:C9:91:7E:DE:C3:3F:10:9D:A5:D3:8F:F6:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdb64d29-8d64-4450-9e51-563785a35ffb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.254.0/23 Signature Algorithm: sha256WithRSAEncryption ce:98:1e:2f:13:7f:b4:13:76:57:b4:d1:a5:b0:24:54:c8:e6: fb:6f:a2:7f:6b:77:24:d0:7c:46:5f:21:2c:fc:6c:10:d7:05: 11:84:93:89:fc:3d:fb:51:0c:7b:5f:db:91:7e:ed:08:ed:30: b0:cb:fe:14:cc:cd:a2:55:d8:0c:c5:ba:a2:c0:b6:1c:fb:38: a0:92:a2:f2:aa:c4:1e:63:ec:03:0e:e2:d2:c1:38:bb:38:2a: 44:b6:b0:e8:85:5a:b9:fb:f0:e5:63:c9:70:16:ff:56:e1:cb: a2:96:77:9a:98:d0:a0:f7:aa:98:58:0c:f8:10:1c:71:4c:c9: 6d:ef:eb:2f:21:7f:a5:49:70:13:03:78:78:68:b5:9d:18:e6: 45:3d:2a:8d:43:d2:5e:6c:24:d1:86:18:91:8a:fa:96:ad:71: 4d:07:12:6a:cb:13:a4:bd:ba:4f:11:b2:3a:8c:54:12:c6:ef: 18:f3:1d:7e:ad:bf:6b:24:0c:cb:3e:77:51:33:26:3c:ed:ec: 48:2a:f8:86:0f:09:e2:f1:4d:0e:bf:10:97:12:5e:1f:3d:48: 9b:e9:9c:10:50:6e:87:60:80:39:62:52:f6:d9:ba:8d:d1:75: 1b:66:c1:18:f8:28:86:4a:47:ef:f0:95:dd:f1:d2:93:eb:0d: 7f:fc:b5:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWD3waS1bYHU3dkmp2gw+2cULIg8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUwMDI3WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOGY2ZjUxMzIwYzEzMWIxYmEzZjQ0ZDhiOTgwZjhmODll MTNmNjk1MWI1ZDU1YjUxMGQ1NjkyOTlmN2YzZWEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjtYJ3Ycui7TpmmI+/onX+dYBqNXKsC1B7+VbgD65vRBcb qYlAUvgmLPsPEkFu9vbpoMeg5UepnPD7TShGl1NTBEVupOXPUIEjkFNaqZ8CetNI sYvrEyMlDGUCY296lBVeryVlGCPYSd1qo1dyK+O6/1YUhYIckD9hY1u96vz3ASmu a7sJfebJ6Td3jaRAwKL39ZXhVugUz89+goSrrnWpR5hTx1zoiryL7DHWgzAS9D1F ZY2Am7sdSUrt66zPlqdhR3P4WR7bTiQD7iJdC53vAyYltVCs+FkhWjvMGoRBmlyf BB+icPZieJCDCgEpb1qchDK/7HcheFbA/OU3cs3rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULmv2bNtCG8mRft7DPxCdpdOP9lswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZkYjY0ZDI5LThkNjQtNDQ1MC05ZTUxLTU2Mzc4NWEzNWZmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGIEv4wDQYJKoZIhvcNAQELBQADggEBAM6YHi8Tf7QTdle00aWwJFTI5vtv on9rdyTQfEZfISz8bBDXBRGEk4n8PftRDHtf25F+7QjtMLDL/hTMzaJV2AzFuqLA thz7OKCSovKqxB5j7AMO4tLBOLs4KkS2sOiFWrn78OVjyXAW/1bhy6KWd5qY0KD3 qphYDPgQHHFMyW3v6y8hf6VJcBMDeHhotZ0Y5kU9Ko1D0l5sJNGGGJGK+patcU0H EmrLE6S9uk8RsjqMVBLG7xjzHX6tv2skDMs+d1EzJjzt7Egq+IYPCeLxTQ6/EJcS Xh89SJvpnBBQbodggDliUvbZuo3RdRtmwRj4KIZKR+/wld3x0pPrDX/8tRk= -----END CERTIFICATE-----Generated at Sat Aug 23 06:56:18 2025 by rpki-client