$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9711e05-33c5-4865-8eb9-c77ec18ee15b.roa File: b9711e05-33c5-4865-8eb9-c77ec18ee15b.roa (raw, json) Hash identifier: w8fagrE1SY5lVALxOW0oyNrPZw05u1xnYCGdGECMScw= Subject key identifier: 3D:E1:C7:10:78:8C:4C:87:A0:5E:CD:A2:96:5D:FB:5A:F5:AB:00:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27162A184CFD7986CA4818F145DD0E8079E9ED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9711e05-33c5-4865-8eb9-c77ec18ee15b.roa Signing time: Fri 27 Jun 2025 00:01:02 +0000 ROA not before: Fri 27 Jun 2025 00:01:02 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.130.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:16:2a:18:4c:fd:79:86:ca:48:18:f1:45:dd:0e:80:79:e9:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:01:02 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=e00eb2b470920d3bae61e578015c601d5f4e83568314e24ec6cc2a188ce04698, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:19:fd:bc:18:7f:80:93:26:0e:6d:a3:4c:e3: 58:35:d5:dc:db:2f:5d:de:1a:ba:80:22:4e:9a:76: ab:bb:46:12:4f:70:21:60:06:95:a7:f2:cd:93:b3: a8:7a:9e:e9:b0:1c:50:09:6e:e5:b9:7c:a4:54:61: c0:27:48:fe:37:c5:d9:f5:ad:0f:c1:91:a9:a9:aa: 16:64:f4:7d:3d:9d:17:60:64:fd:5d:34:58:c1:63: 77:e4:6d:cd:51:21:9d:50:dd:89:b9:ca:36:93:58: a4:0e:da:ea:5c:7e:e1:e5:9d:18:00:bc:06:8a:8d: 93:94:dc:bf:bb:4e:83:45:90:49:82:e9:4d:4b:cf: 2a:b1:60:91:27:96:8c:f9:db:94:60:dd:06:3f:3e: a3:18:37:d3:ad:9f:92:2f:54:ae:71:cf:1f:33:9b: 00:71:9d:31:e8:3f:2f:5a:7e:8d:50:c2:66:d6:5d: 4b:01:9f:39:97:75:63:18:15:0b:64:30:f0:ad:42: 6c:ec:94:20:de:4d:0d:4d:60:37:90:2f:ff:67:c7: d2:fe:1f:0e:5c:e2:95:f7:10:be:08:ef:94:31:1a: 96:4b:1f:27:97:6c:32:3a:5d:6f:b5:ec:1e:ac:84: ed:2e:85:d0:3b:a9:6a:b0:d3:e6:74:0c:a9:d2:4b: 89:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E1:C7:10:78:8C:4C:87:A0:5E:CD:A2:96:5D:FB:5A:F5:AB:00:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9711e05-33c5-4865-8eb9-c77ec18ee15b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.130.8.0/21 Signature Algorithm: sha256WithRSAEncryption 60:ec:02:2a:76:e7:4d:f7:da:42:3c:e7:b7:5d:8a:9d:58:de: 04:7d:85:20:0d:36:f1:e5:9a:d3:c6:a0:c7:db:37:5c:76:0e: 19:90:3b:ab:20:7b:8b:f4:69:70:18:e1:c8:e7:41:cb:ab:29: ae:24:43:26:06:88:b7:b2:88:7a:c7:7e:fb:1a:99:be:21:14: 70:b0:90:b3:6c:81:a5:3a:cf:cf:b2:85:d0:e9:7d:34:92:48: d3:7e:89:cd:b4:df:59:7a:13:36:f8:bd:34:2b:e0:de:00:b7: ea:56:05:57:93:47:db:29:0a:7a:11:cc:9a:52:0e:15:80:99: 0f:d2:d1:50:20:5c:1d:e4:e9:9f:fc:8f:75:f9:f9:a1:0c:06: cb:2e:29:15:a8:3d:5c:e6:d8:89:fe:a5:70:4e:de:03:6c:09: 6b:c5:d0:7f:4e:67:b2:d7:12:26:55:3c:d6:a7:d0:54:63:1f: 3a:26:41:85:e8:0c:37:2d:ca:ae:f1:63:08:f6:e1:a0:dc:e3: c4:f5:16:c0:7c:9b:5f:c8:c6:13:c4:14:a3:8f:88:38:08:03: f2:ab:78:91:bc:c4:f9:c4:66:b0:8f:66:0d:8f:0c:a7:48:ab: db:00:fa:4b:76:a4:00:90:0b:5b:5a:c8:d0:81:3f:a7:be:37: 59:4b:07:9e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITJxYqGEz9eYbKSBjxRd0OgHnp7TANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MjcwMDAxMDJaFw0yNTA4MDEyMzU5NTla MHoxSTBHBgNVBAUTQGUwMGViMmI0NzA5MjBkM2JhZTYxZTU3ODAxNWM2MDFkNWY0 ZTgzNTY4MzE0ZTI0ZWM2Y2MyYTE4OGNlMDQ2OTgxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAL8Z/bwYf4CTJg5to0zjWDXV3NsvXd4auoAiTpp2q7tGEk9w IWAGlafyzZOzqHqe6bAcUAlu5bl8pFRhwCdI/jfF2fWtD8GRqamqFmT0fT2dF2Bk /V00WMFjd+RtzVEhnVDdibnKNpNYpA7a6lx+4eWdGAC8BoqNk5Tcv7tOg0WQSYLp TUvPKrFgkSeWjPnblGDdBj8+oxg3062fki9UrnHPHzObAHGdMeg/L1p+jVDCZtZd SwGfOZd1YxgVC2Qw8K1CbOyUIN5NDU1gN5Av/2fH0v4fDlzilfcQvgjvlDEalksf J5dsMjpdb7XsHqyE7S6F0DuparDT5nQMqdJLiacCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQ94ccQeIxMh6BezaKWXfta9asAdjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvYjk3MTFlMDUtMzNjNS00ODY1LThlYjktYzc3ZWMxOGVlMTViLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAw2CCDANBgkqhkiG9w0BAQsFAAOCAQEAYOwCKnbnTffaQjznt12KnVjeBH2F IA028eWa08agx9s3XHYOGZA7qyB7i/RpcBjhyOdBy6spriRDJgaIt7KIesd++xqZ viEUcLCQs2yBpTrPz7KF0Ol9NJJI036JzbTfWXoTNvi9NCvg3gC36lYFV5NH2ykK ehHMmlIOFYCZD9LRUCBcHeTpn/yPdfn5oQwGyy4pFag9XObYif6lcE7eA2wJa8XQ f05nstcSJlU81qfQVGMfOiZBhegMNy3KrvFjCPbhoNzjxPUWwHybX8jGE8QUo4+I OAgD8qt4kbzE+cRmsI9mDY8Mp0ir2wD6S3akAJALW1rI0IE/p743WUsHng== -----END CERTIFICATE-----Generated at Sun Jun 29 16:54:39 2025 by rpki-client