$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13fff5ce-e24c-47b0-8733-aa45784ee06b.roa File: 13fff5ce-e24c-47b0-8733-aa45784ee06b.roa (raw, json) Hash identifier: G8t81lA1qoOZzkrGIEhmA+ri1xPws9SL68GbhK2zSUI= Subject key identifier: 90:AD:2A:25:CC:A7:9C:31:EE:D9:66:B3:56:23:17:5B:DB:DC:DA:3C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F299D6087783213F8982748D4E5E8DEEB5E709C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13fff5ce-e24c-47b0-8733-aa45784ee06b.roa Signing time: Fri 11 Jul 2025 00:31:08 +0000 ROA not before: Fri 11 Jul 2025 00:31:08 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.195.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:29:9d:60:87:78:32:13:f8:98:27:48:d4:e5:e8:de:eb:5e:70:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:31:08 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=9a8406dc58f2a1b0cbf3a8b543c80d7c260c23c6ab52abd9dc2a67e52dda9a5f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ae:ef:54:3b:9f:61:88:d7:81:88:07:a7:89: de:4e:b2:a1:2e:85:f6:47:d4:4f:01:39:8c:f2:1d: cd:ac:49:d7:84:99:93:d1:dd:f7:51:94:c1:12:94: 8a:6a:5d:04:83:cf:ed:8c:4d:84:fc:5f:0c:45:11: ca:81:15:0e:b8:b1:14:ca:32:73:b1:be:ad:b9:32: 9d:50:e6:ad:58:bd:72:a7:ed:ee:f6:37:b9:f4:85: 46:4a:f5:35:04:3a:3a:d0:04:80:ac:ef:20:61:95: 67:22:58:e1:78:ce:74:ef:73:ba:4f:75:10:82:c5: 40:2e:91:4b:d5:1d:81:88:83:69:c8:ed:40:de:70: 32:5d:ff:56:24:1d:8c:16:06:ce:81:bc:61:d3:0c: d8:ec:c0:d1:25:70:04:b7:a7:99:5c:db:13:ea:44: 3e:81:9a:12:1f:2e:95:69:70:86:64:f4:11:cf:6c: 06:dc:4d:1b:16:f8:4a:a7:f9:99:88:4a:c1:0c:ad: 39:91:99:d8:e1:11:df:85:ef:eb:4d:36:7d:71:cb: e7:81:93:cf:84:e1:57:24:21:31:ff:6c:ec:ea:bc: 50:a1:5f:3e:37:e8:eb:ba:42:d3:24:6c:2d:b6:13: d9:b6:2f:ee:bb:9c:58:09:9d:e0:cb:ab:6e:08:56: ab:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:AD:2A:25:CC:A7:9C:31:EE:D9:66:B3:56:23:17:5B:DB:DC:DA:3C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13fff5ce-e24c-47b0-8733-aa45784ee06b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.195.0.0/16 Signature Algorithm: sha256WithRSAEncryption 21:60:bb:40:57:62:b1:91:96:4a:2d:c7:d9:79:e8:78:04:7c: bf:15:2b:23:f4:6d:bf:9f:b5:18:c6:b0:4b:29:39:3e:da:f9: 07:58:a6:7d:f4:88:85:2d:fe:25:bf:a2:90:0b:f8:cc:1c:e9: 9a:23:56:1c:ef:0a:bb:2d:6a:f2:53:5c:c1:c2:11:e3:ca:11: 24:92:45:bd:cc:0f:13:37:29:a5:d8:9d:81:bb:3f:53:59:0e: 05:5c:e8:0a:f2:09:64:c7:65:75:03:75:1d:22:54:85:d4:0e: b6:b4:b4:af:74:f3:f3:e5:f1:dd:9c:42:cf:94:63:db:96:0c: c0:a0:44:60:e4:d0:7e:53:86:b0:ac:fc:31:92:d1:2c:a2:b2: cf:84:f3:44:6a:4e:6d:1a:87:cb:67:9b:f9:f8:de:3b:e2:97: 31:ae:1e:67:4a:37:1e:45:ea:7f:7c:93:a2:85:2a:b4:3f:b6: cc:ca:1b:ea:7b:da:42:11:e5:e1:bd:14:05:18:78:ad:d9:3d: 49:f3:f2:66:4a:95:6b:bb:cd:15:36:c1:35:e1:1c:6b:7f:93: 67:06:95:50:94:a8:9b:b0:9e:70:fb:af:12:52:97:82:58:0c: c2:f0:ff:7e:ff:3c:59:5e:ba:09:b0:d6:f1:a1:3d:d7:80:52: e1:e0:dc:d9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfymdYId4MhP4mCdI1OXo3utecJwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDAzMTA4WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTg0MDZkYzU4ZjJhMWIwY2JmM2E4YjU0M2M4MGQ3YzI2 MGMyM2M2YWI1MmFiZDlkYzJhNjdlNTJkZGE5YTVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+ru9UO59hiNeBiAenid5OsqEuhfZH1E8BOYzyHc2sSdeE mZPR3fdRlMESlIpqXQSDz+2MTYT8XwxFEcqBFQ64sRTKMnOxvq25Mp1Q5q1YvXKn 7e72N7n0hUZK9TUEOjrQBICs7yBhlWciWOF4znTvc7pPdRCCxUAukUvVHYGIg2nI 7UDecDJd/1YkHYwWBs6BvGHTDNjswNElcAS3p5lc2xPqRD6BmhIfLpVpcIZk9BHP bAbcTRsW+Eqn+ZmISsEMrTmRmdjhEd+F7+tNNn1xy+eBk8+E4VckITH/bOzqvFCh Xz436Ou6QtMkbC22E9m2L+67nFgJneDLq24IVqsTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkK0qJcynnDHu2WazViMXW9vc2jwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEzZmZmNWNlLWUyNGMtNDdiMC04NzMzLWFhNDU3ODRlZTA2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4wzANBgkqhkiG9w0BAQsFAAOCAQEAIWC7QFdisZGWSi3H2XnoeAR8vxUr I/Rtv5+1GMawSyk5Ptr5B1imffSIhS3+Jb+ikAv4zBzpmiNWHO8Kuy1q8lNcwcIR 48oRJJJFvcwPEzcppdidgbs/U1kOBVzoCvIJZMdldQN1HSJUhdQOtrS0r3Tz8+Xx 3ZxCz5Rj25YMwKBEYOTQflOGsKz8MZLRLKKyz4TzRGpObRqHy2eb+fjeO+KXMa4e Z0o3HkXqf3yTooUqtD+2zMob6nvaQhHl4b0UBRh4rdk9SfPyZkqVa7vNFTbBNeEc a3+TZwaVUJSom7CecPuvElKXglgMwvD/fv88WV66CbDW8aE914BS4eDc2Q== -----END CERTIFICATE-----Generated at Mon Jul 21 18:12:09 2025 by rpki-client