$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6886b238-5980-463b-b119-e9a682f0a65f.roa File: 6886b238-5980-463b-b119-e9a682f0a65f.roa (raw, json) Hash identifier: Nl82rh8Vqbb3wiIZr28fRSLZ/NX+9ojBy9SID8UMcUE= Subject key identifier: C0:76:A9:A7:20:C2:C1:22:D1:74:6E:6A:D2:2F:14:88:C3:46:CA:1B Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 411AF89F4027E05B43DC12FF2DD1A984C52780CC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6886b238-5980-463b-b119-e9a682f0a65f.roa Signing time: Mon 30 Jun 2025 15:51:00 +0000 ROA not before: Mon 30 Jun 2025 15:51:00 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 18.89.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:1a:f8:9f:40:27:e0:5b:43:dc:12:ff:2d:d1:a9:84:c5:27:80:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 30 15:51:00 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=649d2cf7cd1e7c488cb807adb2bad1ddcefc8ad6e0e48afecf1aeb13d2d2b451, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ed:c8:51:2a:4b:36:3a:e5:7d:c5:87:73:a0: a1:7e:61:06:d7:ab:bf:cb:69:2a:c5:b7:23:c4:9f: 24:83:c6:9b:d7:6c:e1:17:1a:80:dc:45:72:3e:b9: f6:50:28:be:9e:d7:26:a9:6b:1f:31:dd:af:23:15: da:6a:74:6e:ff:e4:82:2f:43:93:e3:78:c8:f1:08: a2:96:2e:57:92:87:f0:6f:c1:76:4d:35:0b:eb:31: ed:c4:41:0f:60:61:18:1e:8e:11:c1:26:a9:b8:b1: f8:3e:75:52:2e:ba:0f:8b:57:d9:4a:f3:a1:9f:1a: 3c:c1:0a:0d:b3:ad:76:9a:55:a7:6d:da:f3:c4:a6: 89:f8:8f:8b:ca:7e:2a:c7:6b:8d:b1:85:77:04:ca: 56:24:ec:de:0f:62:34:9e:8c:c9:6f:6b:a2:4a:2e: 93:42:d9:ed:05:8f:74:65:44:dc:3b:16:7d:2a:bb: 41:cb:75:b9:f2:61:bd:44:17:62:2c:28:d1:b2:56: 52:a1:e4:ab:99:cc:0b:96:23:79:be:ba:19:1a:5d: 1d:1b:ed:ac:67:15:78:7e:da:08:e0:7d:5c:ef:44: 01:4f:73:8c:c3:01:ce:5f:b6:c7:32:5c:20:db:3e: 2c:04:72:8b:6b:2f:32:20:65:15:68:a5:7e:da:d2: 7e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:76:A9:A7:20:C2:C1:22:D1:74:6E:6A:D2:2F:14:88:C3:46:CA:1B X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/6886b238-5980-463b-b119-e9a682f0a65f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.89.128.0/18 Signature Algorithm: sha256WithRSAEncryption 40:c1:78:68:89:da:7d:83:f9:24:a6:df:50:ec:6c:2c:a3:74: a0:8d:0f:4a:91:67:26:28:a9:64:f6:70:97:c1:88:e8:5b:43: 30:bc:f3:27:62:ef:ea:75:7c:66:ae:6e:3a:0d:f4:91:68:09: 4b:37:b5:83:1b:ce:df:b8:4a:1c:7c:75:4e:9c:ff:ed:85:dc: 86:f7:08:03:fe:c9:46:ad:27:55:a1:73:fb:a5:e3:c8:dd:8d: dd:d7:4d:72:2b:08:7f:b9:44:b0:79:1c:99:51:91:0d:a2:fa: bb:07:71:c3:66:7d:df:44:ac:59:95:75:cc:d3:88:02:65:7c: 7c:51:d3:92:5e:ed:85:e4:f4:a1:0c:20:29:f1:90:9a:c9:36: b9:4a:a7:92:a2:90:0b:57:7b:48:2b:d2:3b:14:0b:a4:c6:7a: cc:1f:85:53:20:f8:ec:27:cc:4f:9a:3d:6e:d2:19:98:91:27: 9e:f3:15:b4:a3:7a:a2:dd:69:87:eb:08:26:37:ec:27:fa:9b: 1b:56:b9:75:95:e7:f6:81:ea:09:50:60:ed:29:e0:2d:0a:dc: d1:f7:52:dc:29:74:7e:ed:e8:a8:cb:f8:bf:63:bb:75:aa:ba: 8f:5f:68:48:1e:30:8e:80:05:4c:75:5d:5f:37:8f:87:08:8c: 64:60:4f:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQRr4n0An4FtD3BL/LdGphMUngMwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjMwMTU1MTAwWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDlkMmNmN2NkMWU3YzQ4OGNiODA3YWRiMmJhZDFkZGNl ZmM4YWQ2ZTBlNDhhZmVjZjFhZWIxM2QyZDJiNDUxMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs7chRKks2OuV9xYdzoKF+YQbXq7/LaSrFtyPEnySDxpvX bOEXGoDcRXI+ufZQKL6e1yapax8x3a8jFdpqdG7/5IIvQ5PjeMjxCKKWLleSh/Bv wXZNNQvrMe3EQQ9gYRgejhHBJqm4sfg+dVIuug+LV9lK86GfGjzBCg2zrXaaVadt 2vPEpon4j4vKfirHa42xhXcEylYk7N4PYjSejMlva6JKLpNC2e0Fj3RlRNw7Fn0q u0HLdbnyYb1EF2IsKNGyVlKh5KuZzAuWI3m+uhkaXR0b7axnFXh+2gjgfVzvRAFP c4zDAc5ftscyXCDbPiwEcotrLzIgZRVopX7a0n4jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwHappyDCwSLRdG5q0i8UiMNGyhswHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzY4ODZiMjM4LTU5ODAtNDYzYi1iMTE5LWU5YTY4MmYwYTY1Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYSWYAwDQYJKoZIhvcNAQELBQADggEBAEDBeGiJ2n2D+SSm31DsbCyjdKCN D0qRZyYoqWT2cJfBiOhbQzC88ydi7+p1fGaubjoN9JFoCUs3tYMbzt+4Shx8dU6c /+2F3Ib3CAP+yUatJ1Whc/ul48jdjd3XTXIrCH+5RLB5HJlRkQ2i+rsHccNmfd9E rFmVdczTiAJlfHxR05Je7YXk9KEMICnxkJrJNrlKp5KikAtXe0gr0jsUC6TGeswf hVMg+OwnzE+aPW7SGZiRJ57zFbSjeqLdaYfrCCY37Cf6mxtWuXWV5/aB6glQYO0p 4C0K3NH3UtwpdH7t6KjL+L9ju3Wquo9faEgeMI6ABUx1XV83j4cIjGRgT/k= -----END CERTIFICATE-----Generated at Tue Jul 1 04:58:41 2025 by rpki-client