$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa File: c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa (raw, json) Hash identifier: +yff/cnDIUWgj766Y8gul2gdCfpEe6VQaCMTwihai9o= Subject key identifier: D2:C7:CC:01:12:7E:51:F4:35:D9:CF:2E:BC:67:4B:75:A3:7D:52:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5707EF3C284D0427EB9C8CCC4700C65249C896A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa Signing time: Mon 08 Sep 2025 15:01:49 +0000 ROA not before: Mon 08 Sep 2025 15:01:49 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:07:ef:3c:28:4d:04:27:eb:9c:8c:cc:47:00:c6:52:49:c8:96:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 8 15:01:49 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=f55d75b8ef9df4030e37bffe65140a14a3de85a198e2ea788344b2d069cb7449, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:31:f4:19:b5:f5:88:6c:31:f0:e2:35:10:ce: ef:74:71:d9:04:ca:92:84:84:ff:7d:77:a9:b0:11: a6:3d:d7:47:a5:e9:8e:b2:e4:58:73:6d:d9:cc:10: 1c:d8:98:0d:78:19:cc:26:69:93:d7:22:3f:ae:94: e1:25:41:e0:ea:cd:c8:e9:09:a4:0e:fd:6f:0e:88: 23:90:fb:7c:61:36:91:73:77:6b:8e:98:b0:16:54: 95:57:6f:9c:bc:38:08:01:76:66:62:6c:09:d8:8f: 59:bf:b6:4a:6c:aa:11:35:f1:09:43:1e:49:9b:83: 61:65:13:af:9b:f0:9d:d2:d2:5e:3c:20:f0:16:c4: c6:3c:4e:ef:3b:c9:cb:8f:5f:c1:8d:4f:35:27:6c: 65:5b:86:ca:1f:3a:7d:fd:09:f0:02:ae:bc:b2:64: c0:c1:5e:69:39:69:f0:ba:22:13:ea:0f:77:52:b2: 76:f7:03:72:25:58:7d:2c:be:cc:14:16:f9:95:52: b5:48:48:48:c5:18:bf:22:bd:58:88:8a:32:5d:7e: ee:37:3d:c3:aa:ce:56:af:d0:25:24:e9:30:74:2c: 5e:bc:74:54:f5:9a:0f:5f:21:0e:14:0a:8e:76:23: 06:80:b9:5e:d6:66:f7:51:8e:ff:8f:53:c3:1d:36: ba:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:C7:CC:01:12:7E:51:F4:35:D9:CF:2E:BC:67:4B:75:A3:7D:52:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977a0d3-92fd-44ae-90a6-a6ccf49130b8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.20.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:b7:b7:28:f0:29:63:2d:15:cf:22:f7:3d:c6:9a:7d:e3:ae: fe:4f:0a:c0:34:85:d9:51:26:19:0a:7d:2e:26:a8:05:43:f5: 89:4c:ff:99:c8:1e:e3:23:05:52:d1:b5:36:36:ac:14:78:59: 9d:d5:34:cb:01:32:df:02:ad:8d:60:2d:6f:db:71:f7:92:b2: 61:2b:bc:20:78:42:5c:ed:cd:05:12:ca:97:35:f0:95:25:6b: 0a:5d:95:d1:6f:47:d4:18:fc:e2:05:20:98:3b:be:00:e5:4d: 85:34:45:74:a4:68:8a:1d:ff:05:0c:36:34:ba:f6:ba:7a:e0: fd:5d:df:c7:56:6f:10:44:20:95:13:99:fa:ab:7a:8e:9d:b5: 4a:77:99:df:57:57:89:3b:d9:53:8f:47:e2:08:77:37:93:d4: 69:fa:ca:dd:dd:72:8f:5d:5e:5a:58:ea:24:23:70:ab:f4:48: 2b:6d:36:01:24:64:26:da:8a:26:63:59:7b:36:c6:ac:a3:c0: 01:de:e7:28:76:bc:e1:9f:30:d0:8d:7c:c5:cd:e1:56:4d:14: 1d:be:18:1f:7c:1c:86:b7:2e:6a:1d:9b:fc:8a:f2:1e:ee:81: 63:a2:41:df:a8:94:15:0a:30:35:80:9f:e2:65:04:6b:f8:3d: 95:bf:c3:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVwfvPChNBCfrnIzMRwDGUknIlqEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA4MTUwMTQ5WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTVkNzViOGVmOWRmNDAzMGUzN2JmZmU2NTE0MGExNGEz ZGU4NWExOThlMmVhNzg4MzQ0YjJkMDY5Y2I3NDQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnMfQZtfWIbDHw4jUQzu90cdkEypKEhP99d6mwEaY910el 6Y6y5FhzbdnMEBzYmA14GcwmaZPXIj+ulOElQeDqzcjpCaQO/W8OiCOQ+3xhNpFz d2uOmLAWVJVXb5y8OAgBdmZibAnYj1m/tkpsqhE18QlDHkmbg2FlE6+b8J3S0l48 IPAWxMY8Tu87ycuPX8GNTzUnbGVbhsofOn39CfACrryyZMDBXmk5afC6IhPqD3dS snb3A3IlWH0svswUFvmVUrVISEjFGL8ivViIijJdfu43PcOqzlav0CUk6TB0LF68 dFT1mg9fIQ4UCo52IwaAuV7WZvdRjv+PU8MdNro3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0sfMARJ+UfQ12c8uvGdLdaN9UvYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NzdhMGQzLTkyZmQtNDRhZS05MGE2LWE2Y2NmNDkxMzBiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKIEhQwDQYJKoZIhvcNAQELBQADggEBAJq3tyjwKWMtFc8i9z3Gmn3jrv5P CsA0hdlRJhkKfS4mqAVD9YlM/5nIHuMjBVLRtTY2rBR4WZ3VNMsBMt8CrY1gLW/b cfeSsmErvCB4QlztzQUSypc18JUlawpdldFvR9QY/OIFIJg7vgDlTYU0RXSkaIod /wUMNjS69rp64P1d38dWbxBEIJUTmfqreo6dtUp3md9XV4k72VOPR+IIdzeT1Gn6 yt3dco9dXlpY6iQjcKv0SCttNgEkZCbaiiZjWXs2xqyjwAHe5yh2vOGfMNCNfMXN 4VZNFB2+GB98HIa3Lmodm/yK8h7ugWOiQd+olBUKMDWAn+JlBGv4PZW/w8k= -----END CERTIFICATE-----Generated at Tue Sep 16 08:51:55 2025 by rpki-client