$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62834460-bfe6-41c2-bb6f-f601a88d56ca.roa File: 62834460-bfe6-41c2-bb6f-f601a88d56ca.roa (raw, json) Hash identifier: 8nVmuTJLcQzzNPcUEjcVcH2z9D3wRLw3AVlzHgjEsCY= Subject key identifier: 62:E2:06:68:00:CF:80:13:DD:FB:C2:D9:B2:BB:37:9C:E2:A4:09:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 080DBF3F75ECEF65EC400BDC2B4D8FBD9026E295 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62834460-bfe6-41c2-bb6f-f601a88d56ca.roa Signing time: Tue 22 Jul 2025 00:00:25 +0000 ROA not before: Tue 22 Jul 2025 00:00:25 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:0d:bf:3f:75:ec:ef:65:ec:40:0b:dc:2b:4d:8f:bd:90:26:e2:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:00:25 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=ea44b0d27caf120a363e16ea5a85c3eee5d93b1eac2c97978880a82884eae827, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a8:f4:7e:79:c7:c1:de:11:8f:5f:d0:b2:2c: cb:6f:30:0b:8f:37:11:7b:7e:2c:e0:27:d9:a8:ee: 0f:84:6d:88:14:8e:8a:d3:e6:6d:8c:da:f0:54:62: b1:80:e2:c0:f2:d0:3b:96:f1:90:aa:32:5c:10:bb: a9:f4:68:53:41:80:51:ae:ae:9e:b5:64:a4:7c:b0: a8:43:00:58:b2:6c:39:95:5d:38:21:54:46:b0:dc: cf:92:d8:46:ba:2d:b1:67:17:5f:43:fa:61:bd:63: 0b:dc:60:d3:fc:1b:d5:9c:de:fb:21:e5:ea:2f:15: cf:89:e5:e1:59:3b:70:18:89:02:78:c4:6f:98:93: 19:89:4d:bd:11:41:e3:2c:3f:a9:e9:97:e0:be:52: 25:46:58:3f:c9:0d:eb:67:b7:9f:4b:85:4e:20:d7: ab:be:26:09:a6:4d:cc:83:14:8a:d9:39:d5:9a:d7: 02:ba:21:e3:61:c2:ba:35:25:61:e3:5b:61:e7:c2: 5e:f7:b3:91:64:2a:99:f0:74:52:39:d3:c0:73:4f: 1d:b8:85:30:bb:b8:4d:66:2f:7b:1a:62:8d:c7:37: 08:43:8d:03:5b:9d:b4:c3:9c:dc:21:32:08:a9:47: 91:b1:2c:b2:9b:9c:c0:61:ba:bc:6d:ee:5c:20:3c: 8c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E2:06:68:00:CF:80:13:DD:FB:C2:D9:B2:BB:37:9C:E2:A4:09:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62834460-bfe6-41c2-bb6f-f601a88d56ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.224.0/20 Signature Algorithm: sha256WithRSAEncryption b8:40:e0:25:81:7e:26:8c:bd:ca:7f:33:a7:3b:87:b3:55:10: 6b:cb:7e:f8:d6:4c:43:7b:a3:7a:b5:a5:85:18:d7:38:d4:57: 92:a5:bb:4c:dc:0f:38:68:58:3a:7b:37:cc:2b:2a:b1:07:ab: 3b:f9:41:36:90:bd:6d:e2:41:58:72:91:98:fc:41:d8:ad:77: f2:df:2f:1b:2e:5d:c2:b3:52:53:ab:2d:22:3e:f0:f7:2b:9f: 8c:6e:cb:3f:39:70:cb:fd:a6:e4:ea:0b:3d:3c:c3:80:24:4d: 27:91:93:37:6b:b7:b1:5a:c1:52:c7:1b:a2:d8:ac:ee:9b:c8: 0a:23:f7:8c:1b:51:fd:89:3c:de:9d:03:a2:1f:85:37:fb:85: 8b:5e:ae:83:c9:cf:e9:45:b0:f2:36:e5:3d:7c:f5:0b:76:2d: 80:f0:83:df:ac:bf:25:53:01:86:b1:97:6c:71:4a:b1:a2:29: b9:7c:3d:aa:4a:71:99:f6:36:24:ee:1e:ce:8c:48:1b:7a:f1: db:b1:0c:a8:fa:bf:7e:28:22:20:22:21:62:52:f3:73:3e:72: d5:57:7f:1b:12:b2:4c:37:d1:d5:df:25:5a:7c:32:9b:30:64: 57:8b:f5:15:4a:7c:ac:92:8d:1f:1a:dd:bc:c0:3e:2b:f6:d1: d2:28:1a:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCA2/P3Xs72XsQAvcK02PvZAm4pUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDAwMDI1WhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTQ0YjBkMjdjYWYxMjBhMzYzZTE2ZWE1YTg1YzNlZWU1 ZDkzYjFlYWMyYzk3OTc4ODgwYTgyODg0ZWFlODI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4qPR+ecfB3hGPX9CyLMtvMAuPNxF7fizgJ9mo7g+EbYgU jorT5m2M2vBUYrGA4sDy0DuW8ZCqMlwQu6n0aFNBgFGurp61ZKR8sKhDAFiybDmV XTghVEaw3M+S2Ea6LbFnF19D+mG9YwvcYNP8G9Wc3vsh5eovFc+J5eFZO3AYiQJ4 xG+YkxmJTb0RQeMsP6npl+C+UiVGWD/JDetnt59LhU4g16u+JgmmTcyDFIrZOdWa 1wK6IeNhwro1JWHjW2Hnwl73s5FkKpnwdFI508BzTx24hTC7uE1mL3saYo3HNwhD jQNbnbTDnNwhMgipR5GxLLKbnMBhurxt7lwgPIyHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYuIGaADPgBPd+8LZsrs3nOKkCc0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyODM0NDYwLWJmZTYtNDFjMi1iYjZmLWY2MDFhODhkNTZjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgOAwDQYJKoZIhvcNAQELBQADggEBALhA4CWBfiaMvcp/M6c7h7NVEGvL fvjWTEN7o3q1pYUY1zjUV5Klu0zcDzhoWDp7N8wrKrEHqzv5QTaQvW3iQVhykZj8 Qditd/LfLxsuXcKzUlOrLSI+8Pcrn4xuyz85cMv9puTqCz08w4AkTSeRkzdrt7Fa wVLHG6LYrO6byAoj94wbUf2JPN6dA6IfhTf7hYteroPJz+lFsPI25T189Qt2LYDw g9+svyVTAYaxl2xxSrGiKbl8PapKcZn2NiTuHs6MSBt68duxDKj6v34oIiAiIWJS 83M+ctVXfxsSskw30dXfJVp8MpswZFeL9RVKfKySjR8a3bzAPiv20dIoGj8= -----END CERTIFICATE-----Generated at Wed Jul 23 02:28:29 2025 by rpki-client