$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32a489d5-a860-420d-b8b0-ce06cb8942f4.roa File: 32a489d5-a860-420d-b8b0-ce06cb8942f4.roa (raw, json) Hash identifier: kk4NF5o1OZaA2Obh0fkb9M0KtIhT03chyJmkpDHG+ec= Subject key identifier: 39:E7:5D:18:DE:6C:10:CD:9C:B7:CB:D9:8D:98:48:55:66:35:F0:A3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F1E8EA81B06520CB8F9BEA6F0A7553FDDEFD135 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32a489d5-a860-420d-b8b0-ce06cb8942f4.roa Signing time: Tue 26 Aug 2025 15:10:57 +0000 ROA not before: Tue 26 Aug 2025 15:10:57 +0000 ROA not after: Tue 30 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:1e:8e:a8:1b:06:52:0c:b8:f9:be:a6:f0:a7:55:3f:dd:ef:d1:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 26 15:10:57 2025 GMT Not After : Sep 30 23:59:59 2025 GMT Subject: serialNumber=e53ddba99a14990d1c48e9c34b390622be7b443653793fc6d645b548e72b3290, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:0b:99:e5:38:c3:13:1d:14:b2:58:31:04:32: 71:91:ba:df:19:26:72:40:0a:3e:d6:14:6e:79:23: 5c:69:9e:55:0c:3e:25:f5:13:e0:ae:24:c1:74:87: d4:b0:a1:ab:5e:01:2d:8d:45:81:72:ca:54:6b:05: 85:dd:ea:34:77:1d:30:a3:10:07:1c:a4:f1:89:80: 9b:84:57:57:7f:2b:d5:96:a9:c2:f0:9a:dd:20:25: 2e:99:d3:b9:d8:6d:8f:12:dc:90:88:08:e5:2d:8b: 52:ef:9c:5d:74:89:0b:64:9c:6d:18:81:48:5b:a2: 5b:f4:6c:ba:64:b1:7e:6c:f6:8a:cc:5b:4b:02:0a: 0a:ce:8f:3c:28:f2:7f:3a:d5:10:c8:a6:c6:ae:53: 1e:18:76:38:fb:bd:ed:66:75:70:cf:55:f4:d5:23: 8a:38:26:1f:55:f9:aa:c1:1d:5d:fc:43:a3:87:10: b8:1d:f4:32:0c:4e:c2:b8:33:f4:42:7f:78:17:a6: b2:bd:39:d0:6d:47:29:bf:db:7c:73:73:52:ae:b2: 85:41:84:be:ff:32:cf:d3:40:b4:ab:b6:30:25:20: 82:af:68:e3:59:18:77:a8:7d:67:62:d9:2d:06:ee: a3:3b:58:96:a3:bc:fd:01:84:b8:0c:02:cb:7d:36: b8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E7:5D:18:DE:6C:10:CD:9C:B7:CB:D9:8D:98:48:55:66:35:F0:A3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/32a489d5-a860-420d-b8b0-ce06cb8942f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.3.0/24 Signature Algorithm: sha256WithRSAEncryption 51:2a:6e:ce:85:b4:e9:c5:65:e6:96:54:41:ea:3e:0b:bc:22: c1:87:e1:f2:bd:46:7a:56:cb:53:1e:94:61:48:e0:4f:81:f2: 6b:62:4e:ba:e6:0b:ab:39:9f:de:19:f5:55:6f:52:e7:4b:71: 91:c9:43:48:ea:3c:d3:82:99:9a:1d:dc:69:80:4c:48:97:0a: 15:a8:60:8f:0a:46:8c:39:4a:88:b2:4f:e6:eb:91:ef:90:05: 47:53:79:a2:d4:4d:ca:68:0a:fe:10:af:73:22:33:2e:b1:41: 51:22:a9:2f:18:9e:d9:74:27:a1:91:e0:da:9c:20:b7:46:3d: 7b:20:5f:13:59:5c:39:eb:13:9d:61:57:ac:17:ad:02:21:74: 0d:33:bf:28:a0:aa:90:7b:e4:5b:92:47:82:e7:d5:f6:96:6e: ba:a2:ca:88:df:47:9f:a4:02:ac:af:23:95:86:9a:4f:b3:d7: 38:80:9c:80:bd:45:67:6f:07:77:2c:fa:34:db:58:07:9e:45: 1e:37:bf:54:58:76:e9:5e:67:d9:e4:5b:5b:49:db:12:ea:54: a4:20:ac:54:a1:e0:cc:53:53:22:62:b5:1f:61:8b:40:a1:6c: 41:da:66:71:79:98:38:0e:03:fa:5c:80:ae:11:4e:98:3d:21: 71:e5:d0:82 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXx6OqBsGUgy4+b6m8KdVP93v0TUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI2MTUxMDU3WhcNMjUwOTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTNkZGJhOTlhMTQ5OTBkMWM0OGU5YzM0YjM5MDYyMmJl N2I0NDM2NTM3OTNmYzZkNjQ1YjU0OGU3MmIzMjkwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZC5nlOMMTHRSyWDEEMnGRut8ZJnJACj7WFG55I1xpnlUM PiX1E+CuJMF0h9SwoateAS2NRYFyylRrBYXd6jR3HTCjEAccpPGJgJuEV1d/K9WW qcLwmt0gJS6Z07nYbY8S3JCICOUti1LvnF10iQtknG0YgUhbolv0bLpksX5s9orM W0sCCgrOjzwo8n861RDIpsauUx4Ydjj7ve1mdXDPVfTVI4o4Jh9V+arBHV38Q6OH ELgd9DIMTsK4M/RCf3gXprK9OdBtRym/23xzc1KusoVBhL7/Ms/TQLSrtjAlIIKv aONZGHeofWdi2S0G7qM7WJajvP0BhLgMAst9NriPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOeddGN5sEM2ct8vZjZhIVWY18KMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMyYTQ4OWQ1LWE4NjAtNDIwZC1iOGIwLWNlMDZjYjg5NDJmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEgMwDQYJKoZIhvcNAQELBQADggEBAFEqbs6FtOnFZeaWVEHqPgu8IsGH 4fK9RnpWy1MelGFI4E+B8mtiTrrmC6s5n94Z9VVvUudLcZHJQ0jqPNOCmZod3GmA TEiXChWoYI8KRow5SoiyT+brke+QBUdTeaLUTcpoCv4Qr3MiMy6xQVEiqS8Yntl0 J6GR4NqcILdGPXsgXxNZXDnrE51hV6wXrQIhdA0zvyigqpB75FuSR4Ln1faWbrqi yojfR5+kAqyvI5WGmk+z1ziAnIC9RWdvB3cs+jTbWAeeRR43v1RYduleZ9nkW1tJ 2xLqVKQgrFSh4MxTUyJitR9hi0ChbEHaZnF5mDgOA/pcgK4RTpg9IXHl0II= -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:05 2025 by rpki-client