$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c80caa3-8963-47f0-b26c-cfd40665af65.roa File: 5c80caa3-8963-47f0-b26c-cfd40665af65.roa (raw, json) Hash identifier: xtbXszhnTx57uEVarjYvAHN4d0ZHs4aGgyL81tuyQWU= Subject key identifier: CB:C4:8D:DA:3F:32:18:F2:C2:D3:01:D8:A7:50:A6:17:20:31:9B:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42D97326543F9F5D23C4D5588EC1A9046E74F17F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c80caa3-8963-47f0-b26c-cfd40665af65.roa Signing time: Tue 15 Jul 2025 00:00:35 +0000 ROA not before: Tue 15 Jul 2025 00:00:35 +0000 ROA not after: Tue 19 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.236.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:d9:73:26:54:3f:9f:5d:23:c4:d5:58:8e:c1:a9:04:6e:74:f1:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 15 00:00:35 2025 GMT Not After : Aug 19 23:59:59 2025 GMT Subject: serialNumber=e5ff580857ccc7c5856574fd1eb235c2b37b51215b89e05a3850c89ce3ddc755, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8f:4e:38:30:fe:7d:ff:55:15:a6:1a:3f:b8: 47:e1:76:0d:db:a6:ce:a1:8e:0a:f3:bc:61:77:28: dc:b0:0d:eb:31:0d:7e:3f:66:ab:8a:8f:04:f1:54: cc:4b:db:4e:b4:39:b0:da:87:59:6e:05:f5:68:7c: c7:f1:97:e2:7f:90:b6:21:87:6e:5e:fb:ca:2d:9f: 23:01:af:58:0c:84:bf:63:41:ea:62:38:fb:32:88: 36:92:cc:54:d7:06:0b:40:47:0e:aa:77:4d:df:f0: 51:f9:47:ba:24:43:62:4e:ac:62:c1:2a:e2:af:6c: 46:97:14:e5:13:48:f9:63:81:c9:d8:d3:ed:d9:13: 84:ea:f1:ce:30:3e:0d:36:f6:2d:a1:2d:dd:db:17: ab:d4:f0:a8:51:5b:1a:0d:78:65:5e:0b:89:17:d7: eb:fd:bf:51:85:31:78:1d:86:3d:e6:6e:fa:38:a0: a9:92:91:82:fc:d0:d9:de:0e:ef:73:89:a4:29:24: a3:7a:74:bb:80:3f:e6:38:c0:91:c3:b2:a6:c3:e7: 22:e3:59:42:27:2b:63:c8:39:90:21:43:ef:2c:06: 1a:b8:25:ac:f7:65:23:47:29:cc:62:6c:00:78:a5: 24:ba:14:7f:8f:73:36:25:50:f0:b2:39:42:ab:f1: 81:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:C4:8D:DA:3F:32:18:F2:C2:D3:01:D8:A7:50:A6:17:20:31:9B:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c80caa3-8963-47f0-b26c-cfd40665af65.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.236.0.0/16 Signature Algorithm: sha256WithRSAEncryption 82:eb:f0:75:8a:6e:b0:5b:1b:4f:8c:49:f1:1a:41:ac:b2:0e: 07:7e:91:7c:52:67:37:c7:5e:36:6e:45:e9:6c:34:ba:e3:34: d1:bf:1d:f1:b9:51:e8:79:3e:cc:67:10:9b:16:c0:4b:92:6c: d4:2c:11:60:f4:9c:3d:7b:5c:53:0b:16:5e:21:2f:12:0d:f4: b3:8a:95:0f:91:17:93:6b:9b:17:e4:a0:cc:d4:d7:c6:df:13: 76:5f:2d:4e:9c:ab:e3:12:9f:48:5d:66:db:0d:90:32:90:20: 66:4a:25:0d:fc:95:20:d9:db:35:92:cb:8c:c0:3f:a9:6b:1e: e5:fa:ba:08:e4:78:54:cc:d6:86:d2:0c:31:e5:4e:1a:b6:95: ca:f8:f6:42:c6:84:8b:17:1f:71:cc:0b:46:20:7d:25:12:95: f6:28:c4:22:70:8f:bc:ea:8a:03:95:e0:50:c6:ba:fc:b8:93: ef:f6:5d:4a:9d:b6:06:a3:2b:a4:5b:3a:35:b5:98:45:7a:45: 54:ae:9c:54:ba:9a:f7:e7:21:7b:e9:03:00:db:0b:4f:ca:64: ae:81:02:dd:ba:7f:45:eb:e3:d9:f8:32:0a:fb:aa:66:22:f8: 28:72:94:d3:04:06:0c:81:dd:6a:76:43:25:14:cd:7d:fe:6d: 15:0a:21:9b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQtlzJlQ/n10jxNVYjsGpBG508X8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE1MDAwMDM1WhcNMjUwODE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWZmNTgwODU3Y2NjN2M1ODU2NTc0ZmQxZWIyMzVjMmIz N2I1MTIxNWI4OWUwNWEzODUwYzg5Y2UzZGRjNzU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMj044MP59/1UVpho/uEfhdg3bps6hjgrzvGF3KNywDesx DX4/ZquKjwTxVMxL2060ObDah1luBfVofMfxl+J/kLYhh25e+8otnyMBr1gMhL9j QepiOPsyiDaSzFTXBgtARw6qd03f8FH5R7okQ2JOrGLBKuKvbEaXFOUTSPljgcnY 0+3ZE4Tq8c4wPg029i2hLd3bF6vU8KhRWxoNeGVeC4kX1+v9v1GFMXgdhj3mbvo4 oKmSkYL80NneDu9ziaQpJKN6dLuAP+Y4wJHDsqbD5yLjWUInK2PIOZAhQ+8sBhq4 Jaz3ZSNHKcxibAB4pSS6FH+PczYlUPCyOUKr8YFnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUy8SN2j8yGPLC0wHYp1CmFyAxmxkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVjODBjYWEzLTg5NjMtNDdmMC1iMjZjLWNmZDQwNjY1YWY2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCI7DANBgkqhkiG9w0BAQsFAAOCAQEAguvwdYpusFsbT4xJ8RpBrLIOB36R fFJnN8deNm5F6Ww0uuM00b8d8blR6Hk+zGcQmxbAS5Js1CwRYPScPXtcUwsWXiEv Eg30s4qVD5EXk2ubF+SgzNTXxt8Tdl8tTpyr4xKfSF1m2w2QMpAgZkolDfyVINnb NZLLjMA/qWse5fq6COR4VMzWhtIMMeVOGraVyvj2QsaEixcfccwLRiB9JRKV9ijE InCPvOqKA5XgUMa6/LiT7/ZdSp22BqMrpFs6NbWYRXpFVK6cVLqa9+che+kDANsL T8pkroEC3bp/Revj2fgyCvuqZiL4KHKU0wQGDIHdanZDJRTNff5tFQohmw== -----END CERTIFICATE-----Generated at Mon Jul 21 18:12:32 2025 by rpki-client