$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa File: f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa (raw, json) Hash identifier: aHcObD8OAgc3qec/dzcpuoBW2cDMMYuFTfNSp1DrkMA= Subject key identifier: 3C:F6:61:68:44:0D:30:EC:46:A8:5F:B4:F3:66:52:8A:7D:CB:6D:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 73FAE485E96F28201AF946D86F73E83DFFA445AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa Signing time: Fri 27 Jun 2025 00:00:22 +0000 ROA not before: Fri 27 Jun 2025 00:00:22 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:fa:e4:85:e9:6f:28:20:1a:f9:46:d8:6f:73:e8:3d:ff:a4:45:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:00:22 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=83f9d0c55fc0f1a9fd8e0690d16a7ec812a81b2f9a59f68370bede67ff871e7a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f9:76:0a:f5:c0:6a:49:a8:b2:06:e5:86:1b: 45:ff:3f:dc:73:71:a9:55:b1:77:7e:81:a4:37:ca: 35:f5:12:b3:e5:6e:91:f9:dc:98:b6:09:88:cd:81: c9:95:c4:26:20:f4:16:41:04:93:20:20:59:99:57: 85:a0:d6:67:67:93:c6:76:bc:fa:cf:a0:fb:4d:76: 1a:68:9f:e7:c7:c1:ed:a6:4a:24:c0:aa:55:58:ba: f7:62:5a:83:84:9c:5b:9c:9b:1d:33:64:48:60:8a: 04:3c:ce:c5:d7:76:43:ee:d2:30:dd:99:d1:ec:ba: 20:6c:94:cb:68:36:cf:2c:e6:cc:e0:75:96:3a:70: ed:7a:2f:93:bb:bb:19:ed:a5:b6:27:55:21:51:e1: 94:a6:cc:9a:89:55:01:99:ef:3e:1e:f9:af:1d:18: 10:64:0b:4f:42:5f:54:41:46:f5:32:e1:71:a8:e0: 6b:f8:3d:f2:54:a5:a4:38:d4:80:7d:12:00:af:28: c4:c7:09:5c:92:64:75:08:c9:eb:93:d5:07:88:36: 6a:64:36:2d:37:7d:8a:c3:ec:18:28:48:0c:f6:7e: 76:98:5d:3f:d4:5e:f4:f0:c0:6a:e6:b9:8e:40:92: e3:b4:b3:b0:d6:5b:ed:44:7c:73:17:17:18:2c:86: a1:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F6:61:68:44:0D:30:EC:46:A8:5F:B4:F3:66:52:8A:7D:CB:6D:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f291d4a5-d59c-4386-a5c9-5fee4e2a78ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.64.0/20 Signature Algorithm: sha256WithRSAEncryption 57:31:bc:31:0f:4e:27:54:5b:01:2d:69:7b:a3:bc:f1:ec:e9: 06:2e:0d:d3:87:bd:00:01:25:18:bc:7e:99:96:1c:45:f5:c4: db:07:aa:69:af:83:05:e4:68:73:18:5a:66:24:d8:04:15:ab: ae:30:d6:6a:83:f4:31:31:c5:40:f2:34:ff:91:da:de:8b:b1: 3c:05:a1:cb:de:31:1c:44:87:c7:8b:6d:65:be:98:26:51:d2: 8e:19:e1:09:80:21:66:e5:94:1f:2d:b2:19:5c:81:37:dd:77: 5b:7a:06:bc:46:61:f0:31:0a:cd:de:2e:ec:aa:31:f4:4a:36: 1b:e1:60:2d:1f:db:9b:78:52:d6:a3:2c:0e:08:4c:57:c1:bd: b1:8f:ef:52:fe:77:65:9f:38:3b:9e:3e:83:ea:47:b5:44:5e: 28:15:8d:2c:62:3f:c3:4f:32:dc:72:32:2b:4a:1f:80:c9:c5: 8c:92:ba:d5:d0:2e:75:15:31:cf:85:23:0c:57:63:89:b7:70: 97:7f:24:b0:13:86:8f:a9:fe:e8:e6:69:e1:d7:06:07:9b:7c: 4c:e9:e0:db:db:38:04:db:8d:52:46:fd:f1:58:3a:59:91:72: 08:d6:c1:37:29:c1:f2:47:45:95:7c:1c:e7:f4:3d:3c:ec:06: d3:f5:4b:1d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc/rkhelvKCAa+UbYb3PoPf+kRawwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDAwMDIyWhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4M2Y5ZDBjNTVmYzBmMWE5ZmQ4ZTA2OTBkMTZhN2VjODEy YTgxYjJmOWE1OWY2ODM3MGJlZGU2N2ZmODcxZTdhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu+XYK9cBqSaiyBuWGG0X/P9xzcalVsXd+gaQ3yjX1ErPl bpH53Ji2CYjNgcmVxCYg9BZBBJMgIFmZV4Wg1mdnk8Z2vPrPoPtNdhpon+fHwe2m SiTAqlVYuvdiWoOEnFucmx0zZEhgigQ8zsXXdkPu0jDdmdHsuiBslMtoNs8s5szg dZY6cO16L5O7uxntpbYnVSFR4ZSmzJqJVQGZ7z4e+a8dGBBkC09CX1RBRvUy4XGo 4Gv4PfJUpaQ41IB9EgCvKMTHCVySZHUIyeuT1QeINmpkNi03fYrD7BgoSAz2fnaY XT/UXvTwwGrmuY5AkuO0s7DWW+1EfHMXFxgshqFDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPPZhaEQNMOxGqF+082ZSin3LbYQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyOTFkNGE1LWQ1OWMtNDM4Ni1hNWM5LTVmZWU0ZTJhNzhlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgEAwDQYJKoZIhvcNAQELBQADggEBAFcxvDEPTidUWwEtaXujvPHs6QYu DdOHvQABJRi8fpmWHEX1xNsHqmmvgwXkaHMYWmYk2AQVq64w1mqD9DExxUDyNP+R 2t6LsTwFocveMRxEh8eLbWW+mCZR0o4Z4QmAIWbllB8tshlcgTfdd1t6BrxGYfAx Cs3eLuyqMfRKNhvhYC0f25t4UtajLA4ITFfBvbGP71L+d2WfODuePoPqR7VEXigV jSxiP8NPMtxyMitKH4DJxYySutXQLnUVMc+FIwxXY4m3cJd/JLATho+p/ujmaeHX BgebfEzp4NvbOATbjVJG/fFYOlmRcgjWwTcpwfJHRZV8HOf0PTzsBtP1Sx0= -----END CERTIFICATE-----Generated at Sun Jun 29 14:49:00 2025 by rpki-client