$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8facaf36-7501-4b4b-a105-729e59d96856.roa File: 8facaf36-7501-4b4b-a105-729e59d96856.roa (raw, json) Hash identifier: uVWevTKKG1PvGmc0lx2Jy2c7lCYnGgEUfEWqm0KLGE0= Subject key identifier: 8A:59:48:64:21:70:23:72:4D:B4:29:BA:73:EB:E0:64:95:58:12:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 47FCDB2623DA0269669D8977416899CF175A7190 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8facaf36-7501-4b4b-a105-729e59d96856.roa Signing time: Tue 22 Jul 2025 00:11:07 +0000 ROA not before: Tue 22 Jul 2025 00:11:07 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.146.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:fc:db:26:23:da:02:69:66:9d:89:77:41:68:99:cf:17:5a:71:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:11:07 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=d7a4f9fba2692577019cd911ca0c37e8a4fe3ac6e1f320af5b71fc492ef31506, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d2:4e:78:b0:a0:4b:12:4d:b5:66:a6:a1:01: 56:ed:ce:34:47:e0:ea:c5:26:b4:a2:20:1f:bd:d6: bc:e4:f0:e3:8c:f0:49:bc:b2:ae:7a:2a:9f:c2:85: e1:49:28:71:99:ab:1f:21:b1:21:ce:31:b3:10:a1: 47:10:ca:54:c0:ea:b5:40:0b:89:df:e1:68:6b:a5: 9b:b3:b7:aa:c6:22:8f:b1:19:0d:14:6f:26:b2:fd: 61:c8:05:19:c5:d8:79:8c:a5:f5:9a:a4:36:c5:68: 0e:14:79:a6:03:80:cd:37:f5:95:18:8d:b9:68:77: ca:69:5a:78:39:c5:af:2c:3b:96:57:69:f3:db:8f: b7:e2:dc:93:1b:e3:33:a3:75:34:e3:c9:da:6c:54: 0c:5e:ca:2a:fe:fc:5c:df:ce:84:0d:72:01:2b:bb: 6e:19:7a:91:70:eb:ba:ac:c0:0b:52:4c:58:41:b7: a9:4c:90:05:62:91:6d:13:4e:36:25:e2:c5:f3:44: 39:3f:9b:d7:3a:97:b2:28:94:2e:8e:01:3c:1c:ca: af:b5:7e:97:98:e1:df:50:a4:db:ac:90:e8:4b:26: 88:db:be:c6:5b:d8:00:05:87:ea:24:b8:35:e7:f9: 0f:c9:57:43:fe:cd:4e:0f:98:43:24:b2:28:42:f6: ca:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:59:48:64:21:70:23:72:4D:B4:29:BA:73:EB:E0:64:95:58:12:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8facaf36-7501-4b4b-a105-729e59d96856.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.146.0.0/20 Signature Algorithm: sha256WithRSAEncryption 4f:7a:05:e8:9f:41:ab:fd:83:8c:2c:f7:18:92:76:30:f8:64: 76:9f:1b:af:4c:b5:ba:0a:78:2b:98:d7:ad:89:f5:57:60:7e: 81:48:20:2b:78:67:c3:3d:55:82:5e:17:e2:a6:7a:1e:af:8a: 24:43:04:c0:fd:06:e8:e9:d9:01:0a:5f:08:e7:6c:e2:b8:05: b8:3f:7a:8b:73:bf:86:ba:11:13:8e:e5:0b:6f:29:29:b0:b9: 75:39:90:77:c8:ea:7a:12:2b:b6:24:1d:6a:bb:ba:42:87:d5: 1e:81:84:b0:26:4d:24:69:97:a1:b5:df:4f:fc:8b:dc:6b:4e: d7:ba:32:bd:97:4b:a4:ab:ec:10:c4:53:97:c0:46:33:b6:45: 4e:8a:72:c3:19:1f:d8:9e:75:21:e0:37:b1:94:82:5b:a8:f8: 9b:78:fa:a5:43:bc:50:e1:e1:66:e1:e0:68:6e:61:92:28:54: cb:ee:f4:60:39:af:7c:eb:ea:21:c7:ea:6b:fd:e1:cb:94:ff: ef:9f:80:27:88:06:a4:de:9a:81:2b:1f:59:ac:9c:cb:02:e9: f5:b5:ed:db:5c:d5:18:9d:cc:7a:53:24:b6:be:e6:ac:6e:a5: 2d:d7:e8:bf:cb:22:86:bf:8f:f9:1c:47:7e:a7:91:4f:f1:83: 66:03:16:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR/zbJiPaAmlmnYl3QWiZzxdacZAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDAxMTA3WhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkN2E0ZjlmYmEyNjkyNTc3MDE5Y2Q5MTFjYTBjMzdlOGE0 ZmUzYWM2ZTFmMzIwYWY1YjcxZmM0OTJlZjMxNTA2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC40k54sKBLEk21ZqahAVbtzjRH4OrFJrSiIB+91rzk8OOM 8Em8sq56Kp/CheFJKHGZqx8hsSHOMbMQoUcQylTA6rVAC4nf4WhrpZuzt6rGIo+x GQ0Ubyay/WHIBRnF2HmMpfWapDbFaA4UeaYDgM039ZUYjblod8ppWng5xa8sO5ZX afPbj7fi3JMb4zOjdTTjydpsVAxeyir+/FzfzoQNcgEru24ZepFw67qswAtSTFhB t6lMkAVikW0TTjYl4sXzRDk/m9c6l7IolC6OATwcyq+1fpeY4d9QpNuskOhLJojb vsZb2AAFh+okuDXn+Q/JV0P+zU4PmEMksihC9srPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUillIZCFwI3JNtCm6c+vgZJVYEpQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmYWNhZjM2LTc1MDEtNGI0Yi1hMTA1LTcyOWU1OWQ5Njg1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNkgAwDQYJKoZIhvcNAQELBQADggEBAE96BeifQav9g4ws9xiSdjD4ZHaf G69MtboKeCuY162J9VdgfoFIICt4Z8M9VYJeF+Kmeh6viiRDBMD9Bujp2QEKXwjn bOK4Bbg/eotzv4a6EROO5QtvKSmwuXU5kHfI6noSK7YkHWq7ukKH1R6BhLAmTSRp l6G130/8i9xrTte6Mr2XS6Sr7BDEU5fARjO2RU6KcsMZH9iedSHgN7GUgluo+Jt4 +qVDvFDh4Wbh4GhuYZIoVMvu9GA5r3zr6iHH6mv94cuU/++fgCeIBqTemoErH1ms nMsC6fW17dtc1RidzHpTJLa+5qxupS3X6L/LIoa/j/kcR36nkU/xg2YDFmg= -----END CERTIFICATE-----Generated at Tue Jul 22 04:57:53 2025 by rpki-client