$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13a7aaf3-b41d-469c-8464-1f7399d7ccf8.roa File: 13a7aaf3-b41d-469c-8464-1f7399d7ccf8.roa (raw, json) Hash identifier: Nlhsl1YDJIgvBgmYDNmmNZsVWaCTwbAApsTh86JbR4A= Subject key identifier: 2F:05:78:80:D5:74:08:BC:D8:20:32:AD:1A:FB:6B:9F:08:25:E8:AF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0EF6B46C4AA5F0D018B4E03C4C665AD41A0F8C29 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13a7aaf3-b41d-469c-8464-1f7399d7ccf8.roa Signing time: Wed 13 Aug 2025 00:31:45 +0000 ROA not before: Wed 13 Aug 2025 00:31:45 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:f6:b4:6c:4a:a5:f0:d0:18:b4:e0:3c:4c:66:5a:d4:1a:0f:8c:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:31:45 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=54b8d89a67568189b67092989521cc7dfff86c97772b6141449bcea8df6c416d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a3:4f:a3:a9:a3:5a:34:59:36:29:f2:d5:d9: b6:55:81:af:55:d4:42:fb:ed:20:f8:7f:74:6e:4b: f9:2f:a6:3d:93:a1:b1:3a:2d:b2:5e:a4:ad:1d:c3: dc:77:d3:78:e1:00:e3:61:dc:a7:d0:0e:b3:06:eb: 1d:18:a1:3f:e8:2c:0e:8a:cb:d3:b1:82:9c:17:2e: a8:ea:3e:b4:be:1f:94:98:e3:e0:d6:96:a4:ee:3e: 06:53:2d:94:af:84:f7:c7:45:f3:80:a2:3f:fc:9a: 33:3a:f5:9d:75:d9:62:64:ad:80:c6:f0:14:19:c0: b0:9c:ae:bb:2d:e9:2b:a7:11:91:01:38:c0:1b:6b: d7:44:9c:65:6c:c3:a8:64:8b:f7:c5:d2:25:5e:43: 11:72:96:8a:e2:c4:b1:b5:c2:b0:7d:ea:45:70:1b: 66:9f:74:fb:71:dc:2d:a7:7a:61:a9:db:32:84:d5: ba:57:70:2a:1b:f5:cf:93:f8:03:1b:05:ab:77:2a: 25:ed:c0:bc:53:70:a6:39:e8:2c:b1:94:e2:1e:fc: da:02:21:ea:9f:c5:7f:7a:cb:41:5d:d0:46:ff:23: 9c:f5:78:7b:ea:5f:4a:4e:e0:b6:13:64:f0:2e:bd: 21:61:d0:75:de:eb:f7:74:5d:11:09:d0:4a:0d:89: 92:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:05:78:80:D5:74:08:BC:D8:20:32:AD:1A:FB:6B:9F:08:25:E8:AF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13a7aaf3-b41d-469c-8464-1f7399d7ccf8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.67.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:04:c9:c7:23:6a:56:5c:bf:e7:65:56:9e:e8:ec:e1:2b:8b: b4:85:24:c6:e0:45:cd:fd:62:9a:d1:ee:48:bc:a9:63:fd:45: 04:7a:aa:51:33:17:73:ee:50:e8:bc:78:45:f6:d6:98:03:12: 4a:00:f8:f0:ab:50:48:bd:c8:86:55:68:77:50:bb:50:9e:d6: 4b:6d:e8:0f:4b:a6:a1:e7:28:65:83:bf:08:d0:e0:5d:9f:cf: db:1e:5f:2e:e7:ea:f3:38:22:15:71:6a:4b:9e:16:d1:db:4b: 24:c5:e0:2f:27:71:f1:2e:1d:8a:60:ce:bf:d7:d0:40:55:7c: 0f:60:14:64:55:8d:f1:74:5a:c8:2c:55:88:45:f2:34:c8:0b: b0:e7:ec:3d:a5:c2:8e:42:6f:11:eb:fd:0e:cb:6d:d4:fe:19: 28:d6:b3:5e:99:f4:75:af:81:e0:27:04:7a:36:74:4f:69:03: 52:c8:19:75:55:b6:6e:96:93:f9:1f:82:d3:71:99:15:49:22: c9:7d:19:86:47:12:02:8f:d5:3a:36:d3:02:41:17:c8:27:a7: 32:1f:57:e9:87:0d:ff:06:76:9c:c7:01:e3:7a:6f:b3:d3:09: 4b:89:bc:f4:6f:8d:43:e6:e1:fb:81:77:6a:1a:d7:1c:89:92: dd:36:79:df -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDva0bEql8NAYtOA8TGZa1BoPjCkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAzMTQ1WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGI4ZDg5YTY3NTY4MTg5YjY3MDkyOTg5NTIxY2M3ZGZm Zjg2Yzk3NzcyYjYxNDE0NDliY2VhOGRmNmM0MTZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzo0+jqaNaNFk2KfLV2bZVga9V1EL77SD4f3RuS/kvpj2T obE6LbJepK0dw9x303jhAONh3KfQDrMG6x0YoT/oLA6Ky9OxgpwXLqjqPrS+H5SY 4+DWlqTuPgZTLZSvhPfHRfOAoj/8mjM69Z112WJkrYDG8BQZwLCcrrst6SunEZEB OMAba9dEnGVsw6hki/fF0iVeQxFylorixLG1wrB96kVwG2afdPtx3C2nemGp2zKE 1bpXcCob9c+T+AMbBat3KiXtwLxTcKY56CyxlOIe/NoCIeqfxX96y0Fd0Eb/I5z1 eHvqX0pO4LYTZPAuvSFh0HXe6/d0XREJ0EoNiZKBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULwV4gNV0CLzYIDKtGvtrnwgl6K8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEzYTdhYWYzLWI0MWQtNDY5Yy04NDY0LTFmNzM5OWQ3Y2NmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/EMwDQYJKoZIhvcNAQELBQADggEBAE4EyccjalZcv+dlVp7o7OEri7SF JMbgRc39YprR7ki8qWP9RQR6qlEzF3PuUOi8eEX21pgDEkoA+PCrUEi9yIZVaHdQ u1Ce1ktt6A9LpqHnKGWDvwjQ4F2fz9seXy7n6vM4IhVxakueFtHbSyTF4C8ncfEu HYpgzr/X0EBVfA9gFGRVjfF0WsgsVYhF8jTIC7Dn7D2lwo5CbxHr/Q7LbdT+GSjW s16Z9HWvgeAnBHo2dE9pA1LIGXVVtm6Wk/kfgtNxmRVJIsl9GYZHEgKP1To20wJB F8gnpzIfV+mHDf8GdpzHAeN6b7PTCUuJvPRvjUPm4fuBd2oa1xyJkt02ed8= -----END CERTIFICATE-----Generated at Sat Aug 23 08:17:00 2025 by rpki-client