$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba15b0da-3dcf-4a78-bae0-49536265a0a0.roa File: ba15b0da-3dcf-4a78-bae0-49536265a0a0.roa (raw, json) Hash identifier: GVbwnKUdvzMUnVCR4tkCHXrPUcEVKeF/IbBw04BCcfQ= Subject key identifier: FF:42:2A:57:38:0A:85:30:A8:F8:32:06:5A:3F:0C:22:CB:1C:89:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 741CF86CF0C8012A55CC8B224FD04505C1AB43E7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba15b0da-3dcf-4a78-bae0-49536265a0a0.roa Signing time: Wed 23 Jul 2025 00:00:25 +0000 ROA not before: Wed 23 Jul 2025 00:00:25 +0000 ROA not after: Wed 27 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:1c:f8:6c:f0:c8:01:2a:55:cc:8b:22:4f:d0:45:05:c1:ab:43:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 23 00:00:25 2025 GMT Not After : Aug 27 23:59:59 2025 GMT Subject: serialNumber=8bb0ade5814815a52367556534efe43a1243b3b9530c7c2291593fdcc266e11c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:90:69:56:a1:57:47:bd:d1:3d:e2:23:28:41: 2d:8f:8b:4b:68:23:91:1a:7f:e8:29:eb:c6:e8:62: 4a:5e:a5:e0:c5:c0:8a:62:18:33:c9:88:22:77:2b: 2d:be:a2:fe:cc:19:c7:9a:4f:f7:d6:47:73:88:19: dd:fb:eb:a0:8d:fa:0c:bd:f5:8b:4d:99:ee:71:18: 17:f4:30:21:96:02:12:93:2a:e3:59:dc:1b:b0:b3: e9:f8:e5:fb:75:3e:b4:d7:1c:01:a4:fe:50:9e:e8: 78:6f:ae:ce:ef:ba:c3:68:e5:25:13:2e:5b:d5:17: e3:38:fa:6a:ff:1a:cb:c1:1f:56:7f:5a:3b:09:da: 0c:06:e0:b4:6e:f1:aa:fe:17:01:08:5b:7a:00:fb: 82:29:8b:87:d5:11:af:ff:2e:22:af:d5:8b:97:9d: 7e:5b:28:17:31:c0:78:36:7a:fc:9e:85:9d:ae:0d: d5:7a:89:94:07:61:4a:f7:57:5b:e1:6c:6c:01:c9: 57:9f:b4:2b:ab:bd:7a:7f:ad:24:6f:01:4e:27:2f: 6c:4f:d1:19:12:11:bf:4b:22:9b:e4:91:c8:b8:ea: 18:7b:84:bc:5d:1a:fa:90:02:d7:76:de:94:15:ab: ae:57:3d:41:28:31:1b:d4:55:9f:31:16:5d:b0:e2: 6c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:42:2A:57:38:0A:85:30:A8:F8:32:06:5A:3F:0C:22:CB:1C:89:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba15b0da-3dcf-4a78-bae0-49536265a0a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.138.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:da:a3:c8:2d:ba:d3:a6:47:37:3b:6f:04:e2:c4:ea:5f:b1: ec:ac:c0:39:4f:f6:9e:ee:09:2b:4e:82:bf:01:c8:85:f1:16: e1:7c:23:bf:c6:7e:f1:2f:9b:99:08:87:5a:18:a3:f7:d1:4b: 04:43:07:5b:10:08:95:9b:60:ec:35:2a:d4:dc:dc:53:e3:93: 3c:19:a0:90:a3:1e:a9:ba:44:fb:5b:94:6d:4e:b4:2f:c9:1a: a1:fd:7d:fc:ff:51:d5:21:5f:98:ce:6a:e1:25:e6:ff:42:f1: de:d1:f9:1e:89:40:68:be:f6:81:94:1c:09:12:a9:a3:92:1e: cf:35:3e:0a:be:ec:05:e6:53:16:77:3a:34:5f:5a:9e:61:20: 7d:95:90:b4:3c:05:56:54:59:21:1e:7e:99:ef:f4:cf:86:51: bc:e7:82:f7:e2:73:1b:f9:69:32:78:9e:fa:f1:79:a3:fa:f9: 27:33:fc:f0:01:69:50:f1:df:7e:f9:70:87:6f:d4:90:07:4b: 56:91:71:62:23:cc:85:49:14:ae:36:e5:2f:60:b8:5a:94:0c: a8:bd:6a:92:f7:86:b6:b5:5d:0c:a4:04:30:01:17:ad:e2:b2: b8:b2:3e:e3:ff:68:4d:60:cf:f1:51:39:3d:1a:d5:e7:b6:26: c3:ec:61:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdBz4bPDIASpVzIsiT9BFBcGrQ+cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIzMDAwMDI1WhcNMjUwODI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YmIwYWRlNTgxNDgxNWE1MjM2NzU1NjUzNGVmZTQzYTEy NDNiM2I5NTMwYzdjMjI5MTU5M2ZkY2MyNjZlMTFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDkGlWoVdHvdE94iMoQS2Pi0toI5Eaf+gp68boYkpepeDF wIpiGDPJiCJ3Ky2+ov7MGceaT/fWR3OIGd3766CN+gy99YtNme5xGBf0MCGWAhKT KuNZ3Buws+n45ft1PrTXHAGk/lCe6Hhvrs7vusNo5SUTLlvVF+M4+mr/GsvBH1Z/ WjsJ2gwG4LRu8ar+FwEIW3oA+4Ipi4fVEa//LiKv1YuXnX5bKBcxwHg2evyehZ2u DdV6iZQHYUr3V1vhbGwByVeftCurvXp/rSRvAU4nL2xP0RkSEb9LIpvkkci46hh7 hLxdGvqQAtd23pQVq65XPUEoMRvUVZ8xFl2w4mztAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/0IqVzgKhTCo+DIGWj8MIssciQYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhMTViMGRhLTNkY2YtNGE3OC1iYWUwLTQ5NTM2MjY1YTBhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEoowDQYJKoZIhvcNAQELBQADggEBAJ/ao8gtutOmRzc7bwTixOpfseys wDlP9p7uCStOgr8ByIXxFuF8I7/GfvEvm5kIh1oYo/fRSwRDB1sQCJWbYOw1KtTc 3FPjkzwZoJCjHqm6RPtblG1OtC/JGqH9ffz/UdUhX5jOauEl5v9C8d7R+R6JQGi+ 9oGUHAkSqaOSHs81Pgq+7AXmUxZ3OjRfWp5hIH2VkLQ8BVZUWSEefpnv9M+GUbzn gvficxv5aTJ4nvrxeaP6+Scz/PABaVDx3375cIdv1JAHS1aRcWIjzIVJFK425S9g uFqUDKi9apL3hra1XQykBDABF63isriyPuP/aE1gz/FROT0a1ee2JsPsYck= -----END CERTIFICATE-----Generated at Wed Aug 6 13:11:24 2025 by rpki-client