$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/82a71f6b-0548-4e76-b7ed-70367c7fe714.roa File: 82a71f6b-0548-4e76-b7ed-70367c7fe714.roa (raw, json) Hash identifier: il5dcfy9KNNVTnvJDl5Xm3tN/dc+9rdhYLw+508Hzt0= Subject key identifier: F1:C2:54:8A:0E:3B:64:AA:DF:CB:60:DE:BE:D1:13:E0:DC:20:9F:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46E26CCC97CF3BFDDFD5472E652C23DD233213E1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/82a71f6b-0548-4e76-b7ed-70367c7fe714.roa Signing time: Wed 03 Sep 2025 00:01:40 +0000 ROA not before: Wed 03 Sep 2025 00:01:40 +0000 ROA not after: Wed 08 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.60.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:e2:6c:cc:97:cf:3b:fd:df:d5:47:2e:65:2c:23:dd:23:32:13:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 3 00:01:40 2025 GMT Not After : Oct 8 23:59:59 2025 GMT Subject: serialNumber=e71c58496f4da91844c315fbb3c3d020bcb10de56222c4badb5ddfa646a9c145, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b7:93:c2:8b:4c:db:d1:66:2d:4e:ad:6d:48: 93:59:db:89:de:85:fc:2b:00:b0:d5:ba:e0:7a:1d: 0f:19:bf:dc:36:42:21:dd:96:ee:fa:9e:62:57:c0: 97:7a:66:4d:19:be:c9:98:d6:87:ea:d8:cb:79:75: 80:61:14:9c:00:a9:0d:0a:d8:b3:e7:5d:6d:d8:87: f8:64:f6:51:c1:89:89:71:27:c6:ab:be:89:73:04: 65:ba:5b:43:b6:25:dd:af:f6:4d:11:8f:af:7f:46: c8:06:de:0f:62:9c:3e:ad:be:b8:eb:a9:4a:5b:1f: b2:21:4f:23:89:9f:38:87:54:84:bd:55:f2:ab:32: 7a:ed:dd:14:dc:1d:0e:77:56:72:53:cd:24:cb:eb: c8:5f:48:a6:98:c7:65:e8:b3:91:a1:63:b0:df:67: 1f:10:56:49:1f:08:2e:bb:b9:35:7a:26:b1:1a:d0: 61:d7:eb:56:f6:9a:b0:5e:ad:73:8f:78:a9:ec:4e: 0f:a5:e6:14:97:8f:7d:d1:3a:10:e1:14:be:f3:93: 7d:ae:2f:c4:51:c8:15:1e:10:a4:a2:01:4c:5f:e4: bc:67:7c:33:da:bc:9f:81:be:9d:90:33:d4:42:12: 74:ca:12:66:72:fa:23:c5:b2:00:58:04:64:e6:c8: 5d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C2:54:8A:0E:3B:64:AA:DF:CB:60:DE:BE:D1:13:E0:DC:20:9F:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/82a71f6b-0548-4e76-b7ed-70367c7fe714.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.60.0.0/14 Signature Algorithm: sha256WithRSAEncryption 07:8d:19:0d:25:44:e5:f5:56:72:52:8b:38:36:df:93:15:03: 0c:2a:e2:5f:89:8c:a6:d3:70:88:ba:5b:db:1d:75:ea:41:6a: 26:e3:3e:3d:cb:d2:e7:2a:35:99:a2:1c:05:44:16:89:8c:8a: 3f:f9:1a:cc:b1:5b:41:32:0d:30:28:f9:97:0f:f2:ed:f8:d8: 4c:de:60:b0:32:ff:7d:53:69:72:4d:a8:51:9c:cc:85:f3:dd: c1:1a:6b:09:b6:f8:33:7c:e7:e2:9b:6b:8b:f5:ed:1d:87:86: 07:ec:44:87:e6:58:ea:82:3e:40:e2:eb:5a:f3:d8:c6:98:ad: 01:9d:a3:48:89:5b:dd:17:62:65:b3:45:5a:50:d1:1a:a8:67: e0:ff:9f:f0:ec:6c:9b:36:ff:96:c5:a4:e7:c0:da:55:e3:d3: a4:fb:b2:7c:25:1d:33:a4:d0:f3:93:5a:a3:23:f1:a9:4c:c8: d3:69:ae:d5:78:25:fd:e3:8a:36:3d:16:b8:fc:7f:ad:9e:37: a8:d7:38:ff:9e:93:6d:ba:a1:cc:cf:be:fd:98:16:03:69:14: e5:43:2e:75:1c:0b:1a:c8:63:cf:29:fb:ba:fd:b7:d6:29:b8: 6f:56:f1:f8:69:d6:5a:a6:1e:8b:4b:31:b9:f4:71:5c:3b:48: 81:f2:a9:89 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURuJszJfPO/3f1UcuZSwj3SMyE+EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAzMDAwMTQwWhcNMjUxMDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzFjNTg0OTZmNGRhOTE4NDRjMzE1ZmJiM2MzZDAyMGJj YjEwZGU1NjIyMmM0YmFkYjVkZGZhNjQ2YTljMTQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8t5PCi0zb0WYtTq1tSJNZ24nehfwrALDVuuB6HQ8Zv9w2 QiHdlu76nmJXwJd6Zk0ZvsmY1ofq2Mt5dYBhFJwAqQ0K2LPnXW3Yh/hk9lHBiYlx J8arvolzBGW6W0O2Jd2v9k0Rj69/RsgG3g9inD6tvrjrqUpbH7IhTyOJnziHVIS9 VfKrMnrt3RTcHQ53VnJTzSTL68hfSKaYx2Xos5GhY7DfZx8QVkkfCC67uTV6JrEa 0GHX61b2mrBerXOPeKnsTg+l5hSXj33ROhDhFL7zk32uL8RRyBUeEKSiAUxf5Lxn fDPavJ+Bvp2QM9RCEnTKEmZy+iPFsgBYBGTmyF15AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8cJUig47ZKrfy2DevtET4NwgnzcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgyYTcxZjZiLTA1NDgtNGU3Ni1iN2VkLTcwMzY3YzdmZTcxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwINPDANBgkqhkiG9w0BAQsFAAOCAQEAB40ZDSVE5fVWclKLODbfkxUDDCri X4mMptNwiLpb2x116kFqJuM+PcvS5yo1maIcBUQWiYyKP/kazLFbQTINMCj5lw/y 7fjYTN5gsDL/fVNpck2oUZzMhfPdwRprCbb4M3zn4ptri/XtHYeGB+xEh+ZY6oI+ QOLrWvPYxpitAZ2jSIlb3RdiZbNFWlDRGqhn4P+f8Oxsmzb/lsWk58DaVePTpPuy fCUdM6TQ85NaoyPxqUzI02mu1Xgl/eOKNj0WuPx/rZ43qNc4/56TbbqhzM++/ZgW A2kU5UMudRwLGshjzyn7uv231im4b1bx+GnWWqYei0sxufRxXDtIgfKpiQ== -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:48 2025 by rpki-client