$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa File: f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa (raw, json) Hash identifier: 849/G82MofS/LXoR3vB3+c45XtGBbu6sC+cPItgnLss= Subject key identifier: 80:54:40:77:4D:F1:66:96:76:BA:87:89:E6:33:FC:79:C6:51:CC:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2BFE66260A1DB1378BCD256B7ED88D339B7C3B18 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa Signing time: Sat 16 Aug 2025 00:01:23 +0000 ROA not before: Sat 16 Aug 2025 00:01:23 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:fe:66:26:0a:1d:b1:37:8b:cd:25:6b:7e:d8:8d:33:9b:7c:3b:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:01:23 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=d4677e17825f0f441a754a3912926cee75c596c1c03323299839d2b17532d0f8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ab:03:8a:4f:c1:aa:58:09:c8:de:f1:23:42: 59:c0:01:00:c9:24:d0:92:69:73:7a:ac:e1:31:50: 90:38:99:9f:df:a1:df:98:07:72:5a:71:3f:3c:73: b4:15:81:17:c7:01:44:11:d7:de:16:e7:9f:6f:af: 0e:4f:08:d9:ec:ba:37:4d:5b:e4:2f:e6:5d:98:71: f4:21:0c:4a:3d:0e:c5:04:09:e3:54:2e:ab:26:ca: f3:2d:4e:55:9d:69:84:b3:20:85:0c:42:3a:02:09: 71:f5:42:b3:22:63:fb:09:51:e3:82:11:8d:0c:32: 0f:2d:f6:1b:d3:2b:b0:1e:44:93:e2:6d:4d:e5:86: 70:37:51:53:69:af:98:21:bf:ea:e2:d8:a5:0b:e8: 5e:73:ea:aa:12:75:54:cb:a6:18:18:c9:b2:8a:84: 01:69:3c:b7:99:1f:4d:2e:82:e2:df:4f:c1:bf:09: e2:b0:ca:8b:4f:1b:4d:56:33:c2:ed:b7:57:7d:77: bf:07:6f:8f:cf:0a:e6:47:bd:f5:c9:3c:fa:1e:a0: e2:a4:d7:fa:42:ca:37:23:2d:16:14:2e:ce:eb:13: 65:c4:e4:02:7e:9a:21:1f:49:ce:41:c0:16:a9:1f: da:b9:84:2a:95:08:6e:9f:ae:65:fa:2b:8b:74:10: 48:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:54:40:77:4D:F1:66:96:76:BA:87:89:E6:33:FC:79:C6:51:CC:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.64.0/20 Signature Algorithm: sha256WithRSAEncryption 25:ba:18:f3:74:b4:a7:d2:34:d9:cc:43:d0:c9:59:f3:88:e0: fe:36:f9:fe:4d:76:6d:aa:5c:24:ed:6e:ef:b7:a5:73:2a:e8: 9c:79:9f:ec:38:f1:43:13:d8:14:e0:0f:84:76:37:d1:5a:04: a2:87:5c:77:94:63:39:9a:df:5d:69:91:38:5c:07:12:07:65: dc:11:4f:02:f1:d4:91:71:64:93:22:5f:48:12:19:9e:a5:22: 2e:82:93:e2:57:08:29:be:87:62:03:ff:e1:3d:9f:84:02:df: d8:77:dc:b4:b5:79:14:66:2c:59:f0:14:36:2d:92:30:b3:94: f9:ed:8f:fa:f4:e8:42:54:35:bf:4c:0e:9d:f3:0f:f1:f4:f0: f3:8d:92:f1:36:82:b0:ba:09:d6:53:e2:6b:68:07:7f:3e:a7: 25:60:98:4c:ab:cd:11:e4:b8:1d:98:6c:df:4f:6e:43:e8:ed: 5f:10:6f:38:45:35:e3:e2:ac:67:a8:1f:9c:ac:f6:31:65:a4: 41:34:55:c8:1b:cb:96:32:5c:11:8a:3a:49:eb:34:b9:fd:be: 2e:7e:46:56:e2:ad:4f:1c:b6:80:9a:4f:96:42:75:eb:cf:27: 24:56:87:44:e0:ea:cc:ba:cc:5d:70:98:a5:dd:76:24:b6:b8: 60:12:82:ba -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK/5mJgodsTeLzSVrftiNM5t8OxgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAwMTIzWhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDY3N2UxNzgyNWYwZjQ0MWE3NTRhMzkxMjkyNmNlZTc1 YzU5NmMxYzAzMzIzMjk5ODM5ZDJiMTc1MzJkMGY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5qwOKT8GqWAnI3vEjQlnAAQDJJNCSaXN6rOExUJA4mZ/f od+YB3JacT88c7QVgRfHAUQR194W559vrw5PCNnsujdNW+Qv5l2YcfQhDEo9DsUE CeNULqsmyvMtTlWdaYSzIIUMQjoCCXH1QrMiY/sJUeOCEY0MMg8t9hvTK7AeRJPi bU3lhnA3UVNpr5ghv+ri2KUL6F5z6qoSdVTLphgYybKKhAFpPLeZH00uguLfT8G/ CeKwyotPG01WM8Ltt1d9d78Hb4/PCuZHvfXJPPoeoOKk1/pCyjcjLRYULs7rE2XE 5AJ+miEfSc5BwBapH9q5hCqVCG6frmX6K4t0EEjBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgFRAd03xZpZ2uoeJ5jP8ecZRzAgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyOTFkNGE1LWQ1OWMtNDM4Ni1hNWM5LTVmZWU0ZTJhNzhlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgEAwDQYJKoZIhvcNAQELBQADggEBACW6GPN0tKfSNNnMQ9DJWfOI4P42 +f5Ndm2qXCTtbu+3pXMq6Jx5n+w48UMT2BTgD4R2N9FaBKKHXHeUYzma311pkThc BxIHZdwRTwLx1JFxZJMiX0gSGZ6lIi6Ck+JXCCm+h2ID/+E9n4QC39h33LS1eRRm LFnwFDYtkjCzlPntj/r06EJUNb9MDp3zD/H08PONkvE2grC6CdZT4mtoB38+pyVg mEyrzRHkuB2YbN9PbkPo7V8QbzhFNePirGeoH5ys9jFlpEE0Vcgby5YyXBGKOknr NLn9vi5+RlbirU8ctoCaT5ZCdevPJyRWh0Tg6sy6zF1wmKXddiS2uGASgro= -----END CERTIFICATE-----Generated at Sat Aug 23 06:46:27 2025 by rpki-client