$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6886b238-5980-463b-b119-e9a682f0a65f.roa File: 6886b238-5980-463b-b119-e9a682f0a65f.roa (raw, json) Hash identifier: sWO44R/tw3vmbMJuWFys9+9z3a1n5RzH6dQjpiQZfig= Subject key identifier: 0D:77:D1:AB:6B:D7:7A:7A:8F:B0:4D:89:80:C0:35:1D:15:C2:EA:C9 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1D1BD32CC385E21447BF1F4D9A66A3FF8B6EF587 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6886b238-5980-463b-b119-e9a682f0a65f.roa Signing time: Tue 19 Aug 2025 00:51:45 +0000 ROA not before: Tue 19 Aug 2025 00:51:45 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.89.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:1b:d3:2c:c3:85:e2:14:47:bf:1f:4d:9a:66:a3:ff:8b:6e:f5:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 19 00:51:45 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=7d300ff2676274bcbcd71ce52f10638de80da91d044778c1741e0d0cff3554cb, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:94:02:ef:44:14:fd:e0:0f:a1:af:6a:42:57: e2:98:c9:25:0e:d5:e6:ed:14:89:61:cd:8f:3e:10: 1b:3b:e1:f9:13:2d:11:7a:ff:34:80:09:e7:2c:bf: 9a:7f:21:c7:35:ba:63:03:e8:16:83:e2:58:bb:ff: 90:5b:d9:a4:44:94:3d:4a:a6:64:83:93:22:24:1b: 1d:c7:65:14:62:07:85:0f:64:99:ac:3a:77:e3:76: 60:be:78:75:e0:e8:3a:ed:d8:22:ad:04:97:92:ec: 79:0c:e2:0d:d7:3e:ee:95:c5:c5:5e:43:1c:9a:6f: fa:99:27:7f:ef:ff:f2:ae:94:33:63:61:66:35:b0: 41:2f:ff:7e:a4:45:80:19:c5:9b:33:2c:c6:21:c3: 4b:54:63:f2:fa:a0:d8:ec:2f:f5:9b:1e:57:65:42: f1:a0:30:5b:9d:2c:f4:1b:c4:af:96:51:37:24:84: cf:27:a6:2f:8b:52:de:e7:08:24:0a:e2:e6:1e:00: c4:ee:83:d5:f9:fe:dd:af:12:66:f5:c3:39:03:16: a2:60:e8:85:f7:2b:e7:d8:b9:f6:e0:b5:f0:a1:07: 73:52:37:35:d7:f8:f0:c6:d1:84:af:60:82:51:4a: 78:73:96:e5:0e:14:2b:a5:cf:d9:84:bf:48:51:02: 35:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:77:D1:AB:6B:D7:7A:7A:8F:B0:4D:89:80:C0:35:1D:15:C2:EA:C9 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6886b238-5980-463b-b119-e9a682f0a65f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.89.128.0/18 Signature Algorithm: sha256WithRSAEncryption 88:9e:4c:85:2f:ba:11:8a:95:3e:fb:c2:39:18:dc:2d:14:f1: 0c:1f:db:22:24:bb:86:09:97:9f:43:d4:6b:1a:f3:8f:82:cb: c3:b0:bf:44:d3:3d:65:78:f2:89:cd:ae:70:bc:3a:82:e1:87: 62:8c:21:2b:76:bc:ee:f2:c5:a1:be:20:91:c9:f3:fc:e3:54: 76:97:c7:7f:04:c3:15:8a:8e:08:5a:bc:bf:0a:98:2a:5b:2d: 1c:4d:66:c4:33:a4:8d:4c:a6:6b:a0:be:21:d5:1b:12:ce:af: ad:8f:92:6e:96:e7:b1:aa:73:91:40:56:1d:32:20:8f:1a:aa: ec:ea:59:9f:e2:43:f7:be:06:13:8c:51:7d:7a:99:9c:22:ed: 97:06:34:f6:92:96:55:4d:54:79:64:54:09:ba:6e:47:62:f2: e9:87:a5:f1:d7:e8:e5:94:df:00:08:f6:0f:af:8d:ab:50:51: db:44:8c:09:89:52:9c:8e:15:a9:bd:1d:7a:a7:4a:e7:ff:28: d0:9b:26:91:76:f4:18:2a:78:47:a3:d5:5b:99:33:99:2f:9a: 4d:84:fe:a1:68:56:c7:f2:71:3e:f1:47:09:a2:18:7b:41:4e: 74:cd:da:2e:63:18:91:6e:24:01:69:96:65:3d:40:ea:28:84: d5:cc:b7:10 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHRvTLMOF4hRHvx9Nmmaj/4tu9YcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODE5MDA1MTQ1WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDMwMGZmMjY3NjI3NGJjYmNkNzFjZTUyZjEwNjM4ZGU4 MGRhOTFkMDQ0Nzc4YzE3NDFlMGQwY2ZmMzU1NGNiMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0lALvRBT94A+hr2pCV+KYySUO1ebtFIlhzY8+EBs74fkT LRF6/zSACecsv5p/Icc1umMD6BaD4li7/5Bb2aRElD1KpmSDkyIkGx3HZRRiB4UP ZJmsOnfjdmC+eHXg6Drt2CKtBJeS7HkM4g3XPu6VxcVeQxyab/qZJ3/v//KulDNj YWY1sEEv/36kRYAZxZszLMYhw0tUY/L6oNjsL/WbHldlQvGgMFudLPQbxK+WUTck hM8npi+LUt7nCCQK4uYeAMTug9X5/t2vEmb1wzkDFqJg6IX3K+fYufbgtfChB3NS NzXX+PDG0YSvYIJRSnhzluUOFCulz9mEv0hRAjXvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDXfRq2vXenqPsE2JgMA1HRXC6skwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY4ODZiMjM4LTU5ODAtNDYzYi1iMTE5LWU5YTY4MmYwYTY1Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYSWYAwDQYJKoZIhvcNAQELBQADggEBAIieTIUvuhGKlT77wjkY3C0U8Qwf 2yIku4YJl59D1Gsa84+Cy8Owv0TTPWV48onNrnC8OoLhh2KMISt2vO7yxaG+IJHJ 8/zjVHaXx38EwxWKjghavL8KmCpbLRxNZsQzpI1MpmugviHVGxLOr62Pkm6W57Gq c5FAVh0yII8aquzqWZ/iQ/e+BhOMUX16mZwi7ZcGNPaSllVNVHlkVAm6bkdi8umH pfHX6OWU3wAI9g+vjatQUdtEjAmJUpyOFam9HXqnSuf/KNCbJpF29BgqeEej1VuZ M5kvmk2E/qFoVsfycT7xRwmiGHtBTnTN2i5jGJFuJAFplmU9QOoohNXMtxA= -----END CERTIFICATE-----Generated at Wed Aug 20 10:43:33 2025 by rpki-client