$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11aab549-ced0-4ada-9748-9d58cb0c1eb7.roa File: 11aab549-ced0-4ada-9748-9d58cb0c1eb7.roa (raw, json) Hash identifier: AlSyKIFmjzX5fZ7cYXy7ZFjxJXWMkKo3x15varbWVpk= Subject key identifier: C3:77:7F:EE:4C:72:FF:C8:19:54:FC:02:90:58:24:8D:71:78:92:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 74B68E5DBA34DC7640F600671FAFCABD40517575 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11aab549-ced0-4ada-9748-9d58cb0c1eb7.roa Signing time: Sat 16 Aug 2025 00:10:26 +0000 ROA not before: Sat 16 Aug 2025 00:10:26 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.146.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:b6:8e:5d:ba:34:dc:76:40:f6:00:67:1f:af:ca:bd:40:51:75:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:10:26 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=0800dc3611f08983f543dbfe4d9013fc6686e9acc1556667e6ca4d55e8344c10, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f3:83:36:2c:50:4b:dd:aa:be:90:f8:d4:0a: a1:57:f4:b0:b8:8a:49:49:63:eb:cb:48:e9:f3:e7: ce:a6:1c:82:e2:c3:5c:d5:34:b3:05:a7:52:5f:f6: f5:c2:be:5d:56:40:56:5a:c3:59:5e:84:09:d0:08: 4d:65:32:46:a1:2b:f3:05:fb:a0:5a:8c:77:bc:38: 57:f1:13:90:47:c4:8c:05:12:27:25:09:4b:60:11: 0f:74:0a:35:4c:a2:ac:05:b3:4b:fb:f0:61:aa:b2: 1e:7f:c8:41:94:67:d9:b4:17:ea:25:91:bf:1c:b8: 18:98:e5:97:da:0f:62:44:89:80:5c:d9:a5:23:d5: b7:e6:eb:ee:f6:04:7f:a9:6e:9e:d1:2f:24:98:a4: db:2d:8d:b8:f3:78:30:05:08:0d:8d:b0:ec:f5:2c: 1b:3b:23:c8:d1:2d:55:10:61:7e:ca:21:fe:da:70: 28:7e:ce:4c:66:8e:d6:e5:f6:2d:4d:bb:e0:55:f8: e6:c7:f7:b0:e7:a1:b9:c4:7e:2c:15:40:e5:1e:ff: e9:f2:72:95:13:ab:52:97:07:c8:b8:02:09:62:ad: 12:16:df:60:85:a5:9a:e4:4d:8d:ec:09:3b:96:48: e2:8e:b2:ca:ac:c0:30:0c:f7:f2:88:ee:57:96:9a: b8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:77:7F:EE:4C:72:FF:C8:19:54:FC:02:90:58:24:8D:71:78:92:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11aab549-ced0-4ada-9748-9d58cb0c1eb7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.146.0.0/16 Signature Algorithm: sha256WithRSAEncryption a3:0a:83:2e:19:76:95:38:13:a6:1e:5d:c5:33:5f:27:54:03: 5d:8b:50:eb:1a:1b:2a:ee:e3:48:bc:30:8f:d2:0a:e0:78:d3: 7b:06:86:1b:dd:b7:42:82:96:28:57:2a:6b:79:6f:0f:53:26: e0:94:3a:d4:8c:f2:c7:68:46:f8:f8:bd:fd:8d:9e:a2:06:9a: a3:82:77:0b:b7:90:40:30:e4:b2:8b:14:c8:fa:38:09:c3:d5: 25:d8:b5:bb:87:26:c1:88:56:29:32:ef:19:c1:06:e8:de:e4: 6d:d0:de:a2:31:de:d6:a6:e4:fb:88:dc:99:70:46:dd:e4:23: 36:b7:89:04:88:99:cc:79:23:82:55:ee:dd:21:7a:a5:77:3d: dd:d8:a9:61:c6:23:93:9f:7d:6a:b3:ec:bd:d6:c6:39:71:a0: a9:f7:77:aa:ca:3b:69:22:a0:bf:39:92:24:12:56:6e:f8:0d: d5:7b:61:04:f8:07:d8:fe:72:ea:22:7a:31:ec:9e:74:32:ff: bc:66:fa:3f:7c:02:28:8d:7d:d1:e3:20:a9:67:8f:45:d9:9f: e8:0b:b4:34:5d:51:a1:27:80:3c:f5:89:a3:07:a5:80:6b:a1: f9:f1:da:09:76:74:e9:0f:61:b9:b0:70:fa:d6:a3:7f:fe:bd: 60:4a:49:06 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdLaOXbo03HZA9gBnH6/KvUBRdXUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAxMDI2WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwODAwZGMzNjExZjA4OTgzZjU0M2RiZmU0ZDkwMTNmYzY2 ODZlOWFjYzE1NTY2NjdlNmNhNGQ1NWU4MzQ0YzEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/84M2LFBL3aq+kPjUCqFX9LC4iklJY+vLSOnz586mHILi w1zVNLMFp1Jf9vXCvl1WQFZaw1lehAnQCE1lMkahK/MF+6BajHe8OFfxE5BHxIwF EiclCUtgEQ90CjVMoqwFs0v78GGqsh5/yEGUZ9m0F+olkb8cuBiY5ZfaD2JEiYBc 2aUj1bfm6+72BH+pbp7RLySYpNstjbjzeDAFCA2NsOz1LBs7I8jRLVUQYX7KIf7a cCh+zkxmjtbl9i1Nu+BV+ObH97DnobnEfiwVQOUe/+nycpUTq1KXB8i4AglirRIW 32CFpZrkTY3sCTuWSOKOssqswDAM9/KI7leWmrhHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUw3d/7kxy/8gZVPwCkFgkjXF4kjYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExYWFiNTQ5LWNlZDAtNGFkYS05NzQ4LTlkNThjYjBjMWViNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwANkjANBgkqhkiG9w0BAQsFAAOCAQEAowqDLhl2lTgTph5dxTNfJ1QDXYtQ 6xobKu7jSLwwj9IK4HjTewaGG923QoKWKFcqa3lvD1Mm4JQ61Izyx2hG+Pi9/Y2e ogaao4J3C7eQQDDksosUyPo4CcPVJdi1u4cmwYhWKTLvGcEG6N7kbdDeojHe1qbk +4jcmXBG3eQjNreJBIiZzHkjglXu3SF6pXc93dipYcYjk599arPsvdbGOXGgqfd3 qso7aSKgvzmSJBJWbvgN1XthBPgH2P5y6iJ6MeyedDL/vGb6P3wCKI190eMgqWeP Rdmf6Au0NF1RoSeAPPWJowelgGuh+fHaCXZ06Q9hubBw+tajf/69YEpJBg== -----END CERTIFICATE-----Generated at Sat Aug 23 08:24:55 2025 by rpki-client