$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e166912b-dd9f-4b3d-a824-0883fcf4dc9c.roa File: e166912b-dd9f-4b3d-a824-0883fcf4dc9c.roa (raw, json) Hash identifier: gS88qLWj7VcKoGSeKu1Sbz5fKAdTGsjbr+T2XMDby9A= Subject key identifier: C4:0B:7B:F4:10:77:34:E2:63:27:5A:82:B0:4B:F7:60:12:FA:0E:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 343D3DD2CF3746317F17DC7E6BF9E003974FF620 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e166912b-dd9f-4b3d-a824-0883fcf4dc9c.roa Signing time: Mon 07 Jul 2025 16:10:18 +0000 ROA not before: Mon 07 Jul 2025 16:10:18 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:3d:3d:d2:cf:37:46:31:7f:17:dc:7e:6b:f9:e0:03:97:4f:f6:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:10:18 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=bb7eb3a071c1dd2ca7df7c3d1a995d14d8ebef38b772813490b5155d98ca04ce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8f:15:30:7a:6e:61:ad:22:a6:b1:6b:3a:2e: d7:4d:aa:38:21:a8:0f:ba:db:fa:12:6a:81:2b:26: 20:43:40:40:3c:2a:d5:fb:51:7a:8f:da:0b:99:d2: bd:9d:99:3e:c2:8a:76:b1:10:a0:ae:88:8c:07:41: a2:9d:40:13:6b:e9:31:6c:32:33:df:0b:7d:80:ab: ae:e2:ce:50:9d:b3:29:8e:7e:d2:19:5d:5a:91:e4: 75:42:30:4d:39:7a:2e:82:ac:34:d4:e5:d6:8f:0a: fa:b7:e8:1e:61:e2:69:6f:fc:9c:a4:a4:b7:e8:ca: 68:f1:30:f7:96:2c:7e:5b:46:53:f8:bc:20:2c:ed: 2e:5c:24:1c:2a:e6:87:21:6e:1a:a7:df:43:be:70: f4:b0:d0:f7:2c:54:b1:c3:ef:fd:2c:71:f8:af:d5: 0d:88:73:86:2e:9b:47:c7:6f:84:65:99:14:8d:ff: 1f:37:4f:c9:1c:39:44:ca:fc:85:a5:5f:0e:a1:c4: 95:08:0f:8b:e6:2f:ad:b6:b1:e7:e2:15:cf:7a:8e: c6:24:ca:03:af:76:68:47:59:6d:7a:a9:e6:0e:04: df:fc:c9:32:94:84:c1:f6:18:6f:c5:97:ea:9e:3c: 5a:f7:11:8d:c0:d1:61:11:3b:76:bb:71:a5:5c:f5: 45:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:0B:7B:F4:10:77:34:E2:63:27:5A:82:B0:4B:F7:60:12:FA:0E:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e166912b-dd9f-4b3d-a824-0883fcf4dc9c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.0.0/24 Signature Algorithm: sha256WithRSAEncryption 55:24:5d:e7:81:31:ef:7f:90:ea:c5:b6:30:44:9b:42:8e:cc: 20:aa:9e:90:56:d2:f4:de:a6:99:55:58:1b:65:28:4a:35:bd: 66:67:34:64:92:7c:4e:2c:f9:b8:5e:97:6d:bf:e7:30:0e:49: c2:a3:d3:e4:9b:a5:a5:38:f2:6f:d8:d0:43:42:5f:8e:0e:23: 7a:d8:c9:37:db:67:c5:0d:97:a6:08:7a:77:cf:6c:17:bd:69: ba:07:5a:9c:a6:8d:a6:05:50:5a:af:23:d2:57:c7:21:09:68: e2:47:44:b6:1e:16:3f:68:f5:78:8f:84:b6:cd:70:82:7b:17: a3:32:5c:6e:a5:f2:85:87:32:a7:d2:05:69:b7:c1:85:e4:f3: d2:e5:b6:f7:f9:e6:7e:eb:87:27:9e:eb:02:6b:20:74:6f:e8: 0d:a1:9c:3c:1a:bb:e6:fa:85:1a:95:df:25:b5:5c:e6:50:3f: 47:80:eb:cc:4c:0d:c5:d0:87:f7:17:4f:70:f2:78:28:6e:05: c4:c3:36:91:bd:90:f0:3f:9e:6f:4e:8f:45:13:86:7e:ac:4a: 97:a5:ad:c9:20:58:c6:7e:ff:a3:dc:0a:cf:34:12:70:25:17: 1d:5b:5f:11:10:66:81:cc:e7:90:43:23:3d:c8:c6:06:60:a9: 20:28:a2:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUND090s83RjF/F9x+a/ngA5dP9iAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYxMDE4WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjdlYjNhMDcxYzFkZDJjYTdkZjdjM2QxYTk5NWQxNGQ4 ZWJlZjM4Yjc3MjgxMzQ5MGI1MTU1ZDk4Y2EwNGNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdjxUwem5hrSKmsWs6LtdNqjghqA+62/oSaoErJiBDQEA8 KtX7UXqP2guZ0r2dmT7CinaxEKCuiIwHQaKdQBNr6TFsMjPfC32Aq67izlCdsymO ftIZXVqR5HVCME05ei6CrDTU5daPCvq36B5h4mlv/JykpLfoymjxMPeWLH5bRlP4 vCAs7S5cJBwq5ochbhqn30O+cPSw0PcsVLHD7/0scfiv1Q2Ic4Yum0fHb4RlmRSN /x83T8kcOUTK/IWlXw6hxJUID4vmL622sefiFc96jsYkygOvdmhHWW16qeYOBN/8 yTKUhMH2GG/Fl+qePFr3EY3A0WERO3a7caVc9UXfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxAt79BB3NOJjJ1qCsEv3YBL6DrYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UxNjY5MTJiLWRkOWYtNGIzZC1hODI0LTA4ODNmY2Y0ZGM5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEgAwDQYJKoZIhvcNAQELBQADggEBAFUkXeeBMe9/kOrFtjBEm0KOzCCq npBW0vTepplVWBtlKEo1vWZnNGSSfE4s+bhel22/5zAOScKj0+SbpaU48m/Y0ENC X44OI3rYyTfbZ8UNl6YIenfPbBe9aboHWpymjaYFUFqvI9JXxyEJaOJHRLYeFj9o 9XiPhLbNcIJ7F6MyXG6l8oWHMqfSBWm3wYXk89Lltvf55n7rhyee6wJrIHRv6A2h nDwau+b6hRqV3yW1XOZQP0eA68xMDcXQh/cXT3DyeChuBcTDNpG9kPA/nm9Oj0UT hn6sSpelrckgWMZ+/6PcCs80EnAlFx1bXxEQZoHM55BDIz3IxgZgqSAooi0= -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:00 2025 by rpki-client