$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14304631-f2a2-48f3-b55d-c59bd6099990.roa File: 14304631-f2a2-48f3-b55d-c59bd6099990.roa (raw, json) Hash identifier: C2wyPjN0B7srNMAzTatfEnka1s9xx1LljjzO8+uCRF0= Subject key identifier: 25:AA:F1:97:AC:A1:B0:B6:38:9D:22:D6:8E:C6:64:6D:55:BE:03:CF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1AC33D90CC4662F8C3CF77675D9D23F18438AAA2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14304631-f2a2-48f3-b55d-c59bd6099990.roa Signing time: Sat 16 Aug 2025 00:00:21 +0000 ROA not before: Sat 16 Aug 2025 00:00:21 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:c3:3d:90:cc:46:62:f8:c3:cf:77:67:5d:9d:23:f1:84:38:aa:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:00:21 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=a861992ea0eadd6585fb63a9df57b5703c63de2925e9e9687a9bb3ddb0a1d33f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4d:fa:6c:ab:e6:a3:da:9e:45:a4:a0:c8:4a: e9:cb:fe:e6:55:2c:9a:0c:12:41:86:1f:2a:5d:c5: 31:d7:7b:1e:f6:af:5a:85:71:11:71:e9:f7:d9:50: 2e:0b:03:ad:70:be:5f:7e:30:95:03:92:40:fb:60: 60:08:45:f5:0a:82:26:0c:5e:77:11:bf:80:c4:74: 6a:13:e1:e8:2b:d1:b6:63:5d:22:d9:e7:05:77:4e: e4:c5:20:0c:7f:36:ab:00:30:06:de:c3:7a:80:b5: 4c:47:2f:fc:dd:0f:dd:e5:8e:b5:ad:cd:25:1e:be: 67:9d:e5:1d:65:77:a1:92:a8:c9:83:81:ae:f8:d7: f9:b6:cc:9f:b8:1a:37:17:3b:d0:8d:23:7c:df:52: 87:f6:c9:a3:f4:a9:f0:1c:76:a5:d1:da:c5:a8:f4: 07:1f:c0:00:93:86:86:9a:78:77:6e:43:84:1c:f4: 40:90:9f:b1:55:3d:84:d7:d9:f5:3d:c3:aa:82:c5: df:51:21:a4:d3:ba:59:dd:9e:31:db:63:0c:55:94: 07:5a:83:be:19:e7:e9:c8:a4:a0:e7:b0:1a:62:bd: fc:83:ea:0e:c1:0a:a7:f4:33:e6:69:c5:76:57:be: 0b:6a:d2:57:71:7b:fd:8d:05:32:a9:8e:40:4d:ae: 92:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:AA:F1:97:AC:A1:B0:B6:38:9D:22:D6:8E:C6:64:6D:55:BE:03:CF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14304631-f2a2-48f3-b55d-c59bd6099990.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.112.0/20 Signature Algorithm: sha256WithRSAEncryption 61:12:6b:ba:03:07:01:f3:90:c5:bd:d4:ba:7a:26:ab:e6:b5: 18:25:0c:52:67:20:83:d3:90:39:df:6b:95:29:79:c7:cc:96: f6:5b:a7:47:48:fa:14:4a:dc:e2:d6:20:48:0a:d4:00:42:da: e3:6c:50:d8:19:b4:ad:16:35:9e:4c:e8:7c:2f:f4:6b:c3:04: e5:68:80:2b:cc:ff:66:cd:e7:e4:53:90:1c:5d:59:23:84:d9: 46:3c:c8:be:66:07:ed:cc:ea:4f:36:e9:46:7e:fa:98:0c:66: 6d:13:75:fe:0d:71:da:7d:91:2e:52:88:f2:99:63:21:c0:79: 4e:62:f8:af:58:46:c5:d6:dd:d5:04:84:94:0c:5a:50:07:93: 03:05:ed:05:38:b3:1f:94:b4:d8:47:37:fd:ce:98:1a:d4:91: ec:cd:6b:4a:04:29:42:d8:42:52:d3:09:b5:56:ef:bb:eb:ff: d4:a3:8a:01:b1:0d:e9:e1:14:13:b7:ad:3a:ee:a6:a4:0c:18: c0:7c:61:ea:20:79:d0:b2:b7:7c:7b:c6:7d:e2:84:c7:e5:7a: 6b:f6:b7:33:94:39:c1:b2:23:d8:3b:67:71:3a:80:23:5e:9e: 0b:ed:bd:33:00:1a:57:c4:d4:c4:a9:ed:67:53:7a:5c:b8:6e: 27:5d:5a:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGsM9kMxGYvjDz3dnXZ0j8YQ4qqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAwMDIxWhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhODYxOTkyZWEwZWFkZDY1ODVmYjYzYTlkZjU3YjU3MDNj NjNkZTI5MjVlOWU5Njg3YTliYjNkZGIwYTFkMzNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkTfpsq+aj2p5FpKDISunL/uZVLJoMEkGGHypdxTHXex72 r1qFcRFx6ffZUC4LA61wvl9+MJUDkkD7YGAIRfUKgiYMXncRv4DEdGoT4egr0bZj XSLZ5wV3TuTFIAx/NqsAMAbew3qAtUxHL/zdD93ljrWtzSUevmed5R1ld6GSqMmD ga741/m2zJ+4GjcXO9CNI3zfUof2yaP0qfAcdqXR2sWo9AcfwACThoaaeHduQ4Qc 9ECQn7FVPYTX2fU9w6qCxd9RIaTTulndnjHbYwxVlAdag74Z5+nIpKDnsBpivfyD 6g7BCqf0M+ZpxXZXvgtq0ldxe/2NBTKpjkBNrpI1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJarxl6yhsLY4nSLWjsZkbVW+A88wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE0MzA0NjMxLWYyYTItNDhmMy1iNTVkLWM1OWJkNjA5OTk5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgHAwDQYJKoZIhvcNAQELBQADggEBAGESa7oDBwHzkMW91Lp6JqvmtRgl DFJnIIPTkDnfa5UpecfMlvZbp0dI+hRK3OLWIEgK1ABC2uNsUNgZtK0WNZ5M6Hwv 9GvDBOVogCvM/2bN5+RTkBxdWSOE2UY8yL5mB+3M6k826UZ++pgMZm0Tdf4Ncdp9 kS5SiPKZYyHAeU5i+K9YRsXW3dUEhJQMWlAHkwMF7QU4sx+UtNhHN/3OmBrUkezN a0oEKULYQlLTCbVW77vr/9SjigGxDenhFBO3rTrupqQMGMB8YeogedCyt3x7xn3i hMflemv2tzOUOcGyI9g7Z3E6gCNengvtvTMAGlfE1MSp7WdTely4biddWnI= -----END CERTIFICATE-----Generated at Sat Aug 23 08:28:39 2025 by rpki-client