$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e062113-782f-4541-bd8d-8197eec8aae6.roa File: 3e062113-782f-4541-bd8d-8197eec8aae6.roa (raw, json) Hash identifier: 16embr/INkvMzBmRtuPsvakSuo7eLBx7aY9VrpRYLSk= Subject key identifier: E0:F4:C1:2B:BE:4E:8C:23:D1:AF:1B:81:5D:62:F1:16:56:C8:2F:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CAEB597D2B0B57A16965293BC47ACB31E38C756 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e062113-782f-4541-bd8d-8197eec8aae6.roa Signing time: Fri 27 Jun 2025 00:10:21 +0000 ROA not before: Fri 27 Jun 2025 00:10:21 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.144.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:ae:b5:97:d2:b0:b5:7a:16:96:52:93:bc:47:ac:b3:1e:38:c7:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:10:21 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=d1a3c78d6f8709152f1248351b88555e07d353501833e9196f93d68b90a6aef6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:75:a1:3f:fa:99:24:f8:50:e0:d2:60:1f:9c: 42:99:01:bb:7d:85:ce:3e:1a:4a:6f:75:60:df:4f: fb:6d:76:1f:57:77:5a:94:a8:f8:0f:42:3a:b8:98: 24:ee:48:55:a8:39:8b:78:96:0e:5b:e3:87:c4:fe: eb:37:c0:e9:4d:da:4a:1a:6b:33:ab:69:22:7c:51: 57:45:92:ef:f6:8b:a3:9f:36:2a:dc:e3:0a:44:2c: 57:de:c2:cb:08:a3:58:ee:b8:9d:11:eb:ed:38:50: ec:5f:68:7b:82:57:1c:cb:48:72:96:a0:46:2d:57: 5f:64:55:18:0f:2e:95:a1:f3:86:09:e4:e2:f0:39: 6c:a5:d8:2e:b5:f5:2c:69:1d:02:4f:6d:57:7e:9b: e3:9b:4a:62:1e:43:e9:1e:86:a3:3e:44:c2:39:a4: f8:8f:86:f6:13:73:6e:de:4e:e8:ca:20:ec:7c:9c: 7a:61:a3:1c:c5:81:c2:f8:17:db:ea:15:6d:49:d8: dc:0d:b3:2f:f2:d3:c4:e0:06:c8:65:e7:32:7c:1f: 11:f9:6f:be:1f:8e:f1:73:a1:4a:3c:a8:ff:0d:87: ae:d6:79:c6:0d:d3:80:47:b5:c4:96:3c:77:e5:0d: 00:48:e8:d9:52:8a:c2:ae:58:b3:3c:9a:2c:fc:f0: b2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:F4:C1:2B:BE:4E:8C:23:D1:AF:1B:81:5D:62:F1:16:56:C8:2F:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e062113-782f-4541-bd8d-8197eec8aae6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.144.0.0/20 Signature Algorithm: sha256WithRSAEncryption a9:9f:75:a2:47:b6:c0:1c:2a:e7:24:d4:6f:5a:d0:e7:96:9a: 08:94:12:97:6e:68:97:a3:5a:e0:6f:40:37:a7:b9:cd:4b:9c: 9c:df:b3:89:c2:81:63:7e:b4:30:cf:a1:f5:d6:75:9c:65:e8: 06:c4:91:8e:a6:2c:3c:91:22:79:e9:9b:1a:45:a6:15:6d:aa: 79:e8:30:95:2f:f9:de:8a:ea:4a:5c:c3:fa:bf:62:c4:ef:20: c9:7b:2d:97:92:d3:a9:d6:96:89:0e:d4:49:2d:b7:7b:7f:c0: 23:fb:da:09:c1:d7:3c:4c:6a:7c:a5:64:57:89:57:e2:7a:f6: 15:ab:2c:db:d9:9e:06:16:52:47:e4:fd:71:ac:55:4d:ea:da: 81:d0:51:c8:ed:26:cb:fa:ee:30:70:97:30:a9:8b:fe:1f:1e: e9:dc:42:dc:24:b9:0e:5f:13:d1:93:3a:bf:23:c1:2a:9a:7c: 74:3e:2c:dd:44:a0:09:59:6f:61:7c:e3:66:31:be:44:ce:c1: fa:21:26:94:91:1c:7a:5b:99:44:34:09:0c:a1:3e:fa:1c:ee: 9c:60:db:95:46:63:ac:ab:06:9d:7e:5f:f8:c0:69:6b:2d:02: 55:ce:d4:99:57:b2:65:f4:25:36:92:4b:9b:7c:17:1f:3c:99: dc:d7:e7:54 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfK61l9KwtXoWllKTvEessx44x1YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDAxMDIxWhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWEzYzc4ZDZmODcwOTE1MmYxMjQ4MzUxYjg4NTU1ZTA3 ZDM1MzUwMTgzM2U5MTk2ZjkzZDY4YjkwYTZhZWY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZdaE/+pkk+FDg0mAfnEKZAbt9hc4+GkpvdWDfT/ttdh9X d1qUqPgPQjq4mCTuSFWoOYt4lg5b44fE/us3wOlN2koaazOraSJ8UVdFku/2i6Of Nirc4wpELFfewssIo1juuJ0R6+04UOxfaHuCVxzLSHKWoEYtV19kVRgPLpWh84YJ 5OLwOWyl2C619SxpHQJPbVd+m+ObSmIeQ+kehqM+RMI5pPiPhvYTc27eTujKIOx8 nHphoxzFgcL4F9vqFW1J2NwNsy/y08TgBshl5zJ8HxH5b74fjvFzoUo8qP8Nh67W ecYN04BHtcSWPHflDQBI6NlSisKuWLM8miz88LIXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4PTBK75OjCPRrxuBXWLxFlbILwMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNlMDYyMTEzLTc4MmYtNDU0MS1iZDhkLTgxOTdlZWM4YWFlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNkAAwDQYJKoZIhvcNAQELBQADggEBAKmfdaJHtsAcKuck1G9a0OeWmgiU EpduaJejWuBvQDenuc1LnJzfs4nCgWN+tDDPofXWdZxl6AbEkY6mLDyRInnpmxpF phVtqnnoMJUv+d6K6kpcw/q/YsTvIMl7LZeS06nWlokO1Ektt3t/wCP72gnB1zxM anylZFeJV+J69hWrLNvZngYWUkfk/XGsVU3q2oHQUcjtJsv67jBwlzCpi/4fHunc QtwkuQ5fE9GTOr8jwSqafHQ+LN1EoAlZb2F842YxvkTOwfohJpSRHHpbmUQ0CQyh Pvoc7pxg25VGY6yrBp1+X/jAaWstAlXO1JlXsmX0JTaSS5t8Fx88mdzX51Q= -----END CERTIFICATE-----Generated at Wed Jul 2 19:56:57 2025 by rpki-client