$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a45d5e2a-b38d-4e66-86d3-7a039177d46e.roa File: a45d5e2a-b38d-4e66-86d3-7a039177d46e.roa (raw, json) Hash identifier: vhDqpVXB1G2MDMdiZeGFSjaiznex5MOKXCHAuCMF928= Subject key identifier: 4D:55:45:31:82:A6:0C:85:57:5E:F9:AD:95:F2:0F:E0:CD:C2:32:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 404028ACE51C2A425C73E07E10AE2B448739B249 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a45d5e2a-b38d-4e66-86d3-7a039177d46e.roa Signing time: Sat 16 Aug 2025 00:00:38 +0000 ROA not before: Sat 16 Aug 2025 00:00:38 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.130.0.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:40:28:ac:e5:1c:2a:42:5c:73:e0:7e:10:ae:2b:44:87:39:b2:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:00:38 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=86b2a4579c77d0c9f42527dfff978e6b807400ef61381a8c7ca5c7c0320b4b82, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:37:a8:87:03:17:2f:5f:ea:a8:06:42:fa:d0: ab:0f:77:0e:ef:f5:de:c2:0e:01:80:42:1f:18:60: 32:ed:32:c1:fd:4b:6e:42:ee:8d:4f:50:88:d9:a5: cf:f8:cb:2d:e0:d2:f4:9c:85:90:80:b1:c4:ba:21: 6c:0a:80:57:e3:05:6f:f4:8f:e9:58:97:bf:5b:ea: cc:0a:6f:cf:cc:11:c3:a6:9d:9a:03:45:03:bd:b8: 01:09:eb:69:f3:31:57:f0:62:30:08:d1:39:22:b7: 51:43:50:13:cf:9b:84:ac:49:44:7a:f7:d0:d8:90: 89:73:e4:e8:2a:b7:bf:e6:84:98:b5:74:de:bc:6d: 37:1c:72:4c:19:c7:40:26:69:bb:8f:ea:e5:cf:3e: 62:a0:53:4e:c7:70:2a:20:85:25:63:51:53:a4:a1: 62:9c:df:41:4b:36:99:c2:71:00:85:98:f0:51:95: 1f:8d:cf:e8:2b:0e:9d:ae:32:30:c1:e5:76:d1:38: ef:b8:f9:bd:b1:f2:7d:9a:35:fb:27:ed:41:4e:b5: 83:1e:e2:05:e9:92:78:89:fd:20:20:f2:2f:18:e4: b5:a8:c7:b3:87:4c:3c:c3:8e:55:4c:8e:c4:5b:b4: 1c:21:2e:e2:e1:cd:7f:a3:e6:15:b5:3a:3b:1d:0f: 2b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:55:45:31:82:A6:0C:85:57:5E:F9:AD:95:F2:0F:E0:CD:C2:32:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a45d5e2a-b38d-4e66-86d3-7a039177d46e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.130.0.0/21 Signature Algorithm: sha256WithRSAEncryption 4a:35:25:de:b8:e2:b5:92:b7:2f:f7:ba:70:98:7e:d7:72:7f: 2a:8b:2c:88:bd:a2:60:fb:6e:5f:0e:be:97:fe:fe:d9:f0:e9: 56:2b:e2:4d:f4:45:94:81:c4:c0:6c:83:d5:c8:3a:33:af:2b: 58:a9:cf:72:3f:49:a5:81:d9:84:e0:c3:1d:ca:5f:41:be:20: c4:2f:7b:65:80:16:fe:28:c6:59:51:4e:07:80:27:87:f3:55: 82:b4:ae:af:4b:c6:f7:e4:d6:75:ac:43:0a:0c:10:7f:ec:a8: fa:cd:11:d2:1f:ac:82:69:37:9d:fa:1d:72:72:bf:5c:ac:be: 9a:64:4e:6c:81:bb:a2:cf:4c:e6:69:cd:83:14:b2:21:f7:b6: 77:b2:94:15:5b:7d:44:82:79:f8:b3:94:74:b2:37:aa:92:4a: 7e:97:30:70:fa:29:f9:f2:92:35:a3:d1:fb:00:c3:a2:f1:16: 54:61:28:6d:d3:60:87:65:2c:d7:e5:aa:36:3f:e4:6a:c2:d1: 29:4a:e3:42:2f:32:f6:db:76:1b:6f:3e:f8:b2:94:3f:4a:e6: a0:34:36:9b:9a:09:02:c9:3a:ec:55:a4:95:44:54:dc:34:de: c5:21:86:b5:e1:b9:07:24:a5:fa:a4:60:7c:f9:1e:76:15:26: 8d:cd:f8:87 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQEAorOUcKkJcc+B+EK4rRIc5skkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAwMDM4WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NmIyYTQ1NzljNzdkMGM5ZjQyNTI3ZGZmZjk3OGU2Yjgw NzQwMGVmNjEzODFhOGM3Y2E1YzdjMDMyMGI0YjgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWN6iHAxcvX+qoBkL60KsPdw7v9d7CDgGAQh8YYDLtMsH9 S25C7o1PUIjZpc/4yy3g0vSchZCAscS6IWwKgFfjBW/0j+lYl79b6swKb8/MEcOm nZoDRQO9uAEJ62nzMVfwYjAI0Tkit1FDUBPPm4SsSUR699DYkIlz5Ogqt7/mhJi1 dN68bTccckwZx0AmabuP6uXPPmKgU07HcCoghSVjUVOkoWKc30FLNpnCcQCFmPBR lR+Nz+grDp2uMjDB5XbROO+4+b2x8n2aNfsn7UFOtYMe4gXpkniJ/SAg8i8Y5LWo x7OHTDzDjlVMjsRbtBwhLuLhzX+j5hW1OjsdDyvDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTVVFMYKmDIVXXvmtlfIP4M3CMt0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E0NWQ1ZTJhLWIzOGQtNGU2Ni04NmQzLTdhMDM5MTc3ZDQ2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNggAwDQYJKoZIhvcNAQELBQADggEBAEo1Jd644rWSty/3unCYftdyfyqL LIi9omD7bl8Ovpf+/tnw6VYr4k30RZSBxMBsg9XIOjOvK1ipz3I/SaWB2YTgwx3K X0G+IMQve2WAFv4oxllRTgeAJ4fzVYK0rq9Lxvfk1nWsQwoMEH/sqPrNEdIfrIJp N536HXJyv1ysvppkTmyBu6LPTOZpzYMUsiH3tneylBVbfUSCefizlHSyN6qSSn6X MHD6KfnykjWj0fsAw6LxFlRhKG3TYIdlLNflqjY/5GrC0SlK40IvMvbbdhtvPviy lD9K5qA0NpuaCQLJOuxVpJVEVNw03sUhhrXhuQckpfqkYHz5HnYVJo3N+Ic= -----END CERTIFICATE-----Generated at Sat Aug 23 10:21:37 2025 by rpki-client