$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb7f1187-36a4-49c8-a940-b8a58490830b.roa File: cb7f1187-36a4-49c8-a940-b8a58490830b.roa (raw, json) Hash identifier: FyeCc3oukgv43+GXmU4rH0C82Z2pB4fQXWJFN74Ous0= Subject key identifier: 43:12:A6:7B:27:AA:66:64:2A:89:29:FC:05:0A:A7:09:D7:25:52:3D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7403CBA77FDB2CD2770C208C3A9A5CC61BEEEDC7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb7f1187-36a4-49c8-a940-b8a58490830b.roa Signing time: Sat 16 Aug 2025 00:11:06 +0000 ROA not before: Sat 16 Aug 2025 00:11:06 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.162.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:03:cb:a7:7f:db:2c:d2:77:0c:20:8c:3a:9a:5c:c6:1b:ee:ed:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:11:06 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=2b1a6726301cac19dbf832122858271652a360b888b2b7558620276d4aa86c84, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:e1:dd:2c:d6:72:9c:16:66:b6:90:f0:5d:c3: d7:63:95:b7:f5:24:91:4f:1f:00:e9:e4:0d:14:43: 2f:82:73:04:8a:fa:fa:6f:2e:ec:c0:15:31:ac:bc: 8d:3c:f7:41:e0:53:5b:9a:da:06:48:46:08:e6:f3: 48:6e:c1:e4:9f:a0:2a:20:e3:03:3f:07:89:a0:e3: b5:3a:d1:19:69:ba:57:9f:a2:2c:c9:03:c9:da:2e: be:9b:f0:a3:78:5d:c4:26:47:5c:1e:37:0e:17:f4: 8b:a9:1e:f6:ce:f0:a9:23:23:5c:8e:f5:64:54:f0: 06:ae:7d:fe:7f:4b:7c:50:94:ee:0d:0a:60:2e:01: 6b:83:8e:77:68:82:9f:4d:ad:93:2f:ca:2c:53:6c: 11:4f:6f:ca:01:91:91:de:65:a0:b7:3f:b0:c1:d0: 8c:2b:df:ed:02:03:dc:b2:25:b5:2c:32:02:ae:c0: a6:e7:36:48:82:90:3e:b3:b2:d1:d4:42:4b:42:38: 27:8b:19:b4:14:98:df:bc:b5:3f:2d:ba:11:86:17: ec:53:19:68:24:c4:cc:66:49:68:9e:d5:74:ac:8d: 5e:44:19:04:1c:52:b8:26:f2:97:b0:5a:66:1e:61: 81:67:e6:5d:a2:c4:dd:0f:1f:20:2e:e5:1e:7e:66: 3e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:12:A6:7B:27:AA:66:64:2A:89:29:FC:05:0A:A7:09:D7:25:52:3D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb7f1187-36a4-49c8-a940-b8a58490830b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.162.0.0/20 Signature Algorithm: sha256WithRSAEncryption 92:cf:2d:cf:ef:f4:78:b8:d9:64:aa:36:d5:4a:32:b4:b1:60: b0:ca:56:0b:75:5e:fb:09:2f:6b:67:07:56:e9:a6:44:21:4c: ff:c5:c8:ef:1d:a5:20:26:ae:58:df:2f:8f:e9:dd:8d:f0:22: ff:a6:2a:9d:dc:a5:1b:d7:4d:47:50:65:a6:2f:93:2c:1c:0a: 5c:fd:57:3d:bb:8d:43:4a:50:fe:7c:94:30:31:51:46:a6:61: 1d:ea:0f:66:22:d6:3e:53:3c:b2:45:9f:c8:8a:d0:db:a4:5e: bd:7c:51:3c:25:d0:95:71:d7:f7:4b:f2:b3:39:e6:04:db:e5: 79:29:74:8d:e6:77:7f:7e:a8:2b:a4:46:71:b7:67:a0:83:ea: f6:f3:53:3e:23:02:f8:fd:dd:ea:77:de:2b:40:65:2c:39:35: 38:f8:bd:0f:5d:1c:09:aa:32:11:0e:77:cd:f0:bf:98:97:95: b8:5b:7a:72:01:0d:ca:da:cf:35:5d:ad:d0:db:0d:be:ae:3c: e3:ae:fa:29:bf:f3:8b:f4:37:f4:f9:da:25:6e:85:58:fd:1a: 4a:51:ef:cb:a9:2d:c1:e2:39:a6:c4:31:f9:81:e2:82:c1:aa: 71:d7:c1:54:54:87:8c:6f:44:b7:1a:ac:9d:a5:f2:82:1b:be: c9:23:bb:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdAPLp3/bLNJ3DCCMOppcxhvu7ccwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAxMTA2WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjFhNjcyNjMwMWNhYzE5ZGJmODMyMTIyODU4MjcxNjUy YTM2MGI4ODhiMmI3NTU4NjIwMjc2ZDRhYTg2Yzg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCS4d0s1nKcFma2kPBdw9djlbf1JJFPHwDp5A0UQy+CcwSK +vpvLuzAFTGsvI0890HgU1ua2gZIRgjm80huweSfoCog4wM/B4mg47U60Rlpulef oizJA8naLr6b8KN4XcQmR1weNw4X9IupHvbO8KkjI1yO9WRU8Aauff5/S3xQlO4N CmAuAWuDjndogp9NrZMvyixTbBFPb8oBkZHeZaC3P7DB0Iwr3+0CA9yyJbUsMgKu wKbnNkiCkD6zstHUQktCOCeLGbQUmN+8tT8tuhGGF+xTGWgkxMxmSWie1XSsjV5E GQQcUrgm8pewWmYeYYFn5l2ixN0PHyAu5R5+Zj7zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQxKmeyeqZmQqiSn8BQqnCdclUj0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiN2YxMTg3LTM2YTQtNDljOC1hOTQwLWI4YTU4NDkwODMwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNogAwDQYJKoZIhvcNAQELBQADggEBAJLPLc/v9Hi42WSqNtVKMrSxYLDK Vgt1XvsJL2tnB1bppkQhTP/FyO8dpSAmrljfL4/p3Y3wIv+mKp3cpRvXTUdQZaYv kywcClz9Vz27jUNKUP58lDAxUUamYR3qD2Yi1j5TPLJFn8iK0NukXr18UTwl0JVx 1/dL8rM55gTb5XkpdI3md39+qCukRnG3Z6CD6vbzUz4jAvj93ep33itAZSw5NTj4 vQ9dHAmqMhEOd83wv5iXlbhbenIBDcrazzVdrdDbDb6uPOOu+im/84v0N/T52iVu hVj9GkpR78upLcHiOabEMfmB4oLBqnHXwVRUh4xvRLcarJ2l8oIbvskju7g= -----END CERTIFICATE-----Generated at Sat Aug 23 06:48:02 2025 by rpki-client