$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/52d854b0-9bc6-4e7f-ac64-b57c283eae70.roa File: 52d854b0-9bc6-4e7f-ac64-b57c283eae70.roa (raw, json) Hash identifier: 7giBoSTTowqU2mx0RXO64Wbvjv+FwCXh8XgwcX4MV28= Subject key identifier: 70:A5:8D:81:78:91:E2:84:F3:20:BF:2F:66:41:EF:12:81:DB:5C:F1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 764C5B6E616BA88949613909176F593F0674D88B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/52d854b0-9bc6-4e7f-ac64-b57c283eae70.roa Signing time: Sat 09 Aug 2025 00:10:32 +0000 ROA not before: Sat 09 Aug 2025 00:10:32 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.220.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:4c:5b:6e:61:6b:a8:89:49:61:39:09:17:6f:59:3f:06:74:d8:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Aug 9 00:10:32 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=21337ef593433c7e904be075e4a1d21ef349f4fbef26657f91a9c9d57b7503c7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:18:91:7e:2f:53:c6:24:5c:ab:71:26:d4:61: 20:7f:e1:2e:29:06:c9:6c:a5:62:d6:26:84:2d:78: 41:59:1b:e8:01:22:c6:fc:fb:7a:92:05:b0:ab:ea: 19:37:46:4c:3a:b9:8e:eb:be:3a:54:dc:51:59:af: d0:04:47:3f:49:79:62:81:ff:55:1a:6f:38:3b:2b: 14:2c:31:e2:da:2b:6a:ce:00:32:a4:4b:eb:56:8c: 7f:55:8e:14:91:89:a3:10:26:f1:f7:96:7f:97:58: fe:d3:85:e7:27:a7:31:2e:e2:65:59:70:22:71:1d: 01:38:79:e6:7a:95:6b:6b:1d:1c:9d:05:7e:81:fe: 80:22:48:e7:af:8a:f4:07:5c:b8:65:03:b5:8d:4b: 07:16:54:e3:b8:b0:a0:11:bb:e4:1d:e4:90:51:14: 37:0e:0f:16:2e:ba:ee:76:2c:b9:78:a1:ab:ad:cd: 20:be:33:7e:15:9f:f3:98:6e:ef:0a:06:13:b0:b6: 98:c2:da:22:de:90:e7:0d:76:f4:5f:75:df:7e:5e: 05:2d:cc:71:b4:fd:21:06:a8:ce:a8:a3:84:71:f6: a9:eb:22:d8:11:f4:1f:84:c0:14:48:aa:7e:33:75: 04:ad:d6:ae:06:24:82:3f:e4:14:0a:5e:9a:4a:bd: 7e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A5:8D:81:78:91:E2:84:F3:20:BF:2F:66:41:EF:12:81:DB:5C:F1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/52d854b0-9bc6-4e7f-ac64-b57c283eae70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.220.36.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:03:de:08:df:43:b0:8b:e0:dd:cb:f5:33:48:5e:2f:b7:f2: 7d:3e:f5:9b:c8:96:13:36:e9:ec:79:95:16:e2:fc:d5:51:91: 06:05:49:f6:67:cb:bb:80:40:9e:77:f0:0c:2f:03:26:9e:ae: df:09:0d:4b:34:9e:58:86:82:74:6b:6c:19:18:25:df:ff:fc: 26:1a:d8:ce:26:1f:5f:29:a3:ab:90:ea:30:af:42:12:b0:c6: 8a:eb:9d:8c:02:0e:94:d7:99:e5:b5:dc:05:ad:31:6e:16:86: 5b:bf:31:0e:e0:da:43:4e:f6:06:43:84:f7:af:ab:89:c8:b1: 11:7c:c7:52:13:7d:7c:0d:ad:0b:67:a2:db:a8:33:fc:c6:29: a5:ec:2d:73:e8:e7:3c:2f:47:52:d7:bd:d8:d1:30:be:1f:2f: 37:c3:20:76:50:7e:49:f9:33:46:b4:33:f1:c2:bf:58:0d:57: 70:0a:8c:f3:e6:25:c0:cf:4e:2a:ed:a5:2d:72:9e:63:2e:d6: 27:6f:d3:10:67:99:77:28:8c:03:ec:01:87:75:40:73:92:3b: 83:f0:a0:f7:ff:f0:a3:35:41:23:f3:61:e5:f5:18:e1:62:1d: 12:6f:db:3a:5a:e7:7a:74:4c:94:40:f3:c9:fb:e0:1c:1f:8f: 05:4a:0c:fc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdkxbbmFrqIlJYTkJF29ZPwZ02IswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwODA5MDAxMDMyWhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTMzN2VmNTkzNDMzYzdlOTA0YmUwNzVlNGExZDIxZWYz NDlmNGZiZWYyNjY1N2Y5MWE5YzlkNTdiNzUwM2M3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChGJF+L1PGJFyrcSbUYSB/4S4pBslspWLWJoQteEFZG+gB Isb8+3qSBbCr6hk3Rkw6uY7rvjpU3FFZr9AERz9JeWKB/1Uabzg7KxQsMeLaK2rO ADKkS+tWjH9VjhSRiaMQJvH3ln+XWP7ThecnpzEu4mVZcCJxHQE4eeZ6lWtrHRyd BX6B/oAiSOevivQHXLhlA7WNSwcWVOO4sKARu+Qd5JBRFDcODxYuuu52LLl4oaut zSC+M34Vn/OYbu8KBhOwtpjC2iLekOcNdvRfdd9+XgUtzHG0/SEGqM6oo4Rx9qnr ItgR9B+EwBRIqn4zdQSt1q4GJII/5BQKXppKvX7TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcKWNgXiR4oTzIL8vZkHvEoHbXPEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzUyZDg1NGIwLTliYzYtNGU3Zi1hYzY0LWI1N2MyODNlYWU3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEN3CQwDQYJKoZIhvcNAQELBQADggEBAIsD3gjfQ7CL4N3L9TNIXi+38n0+ 9ZvIlhM26ex5lRbi/NVRkQYFSfZny7uAQJ538AwvAyaert8JDUs0nliGgnRrbBkY Jd///CYa2M4mH18po6uQ6jCvQhKwxorrnYwCDpTXmeW13AWtMW4Whlu/MQ7g2kNO 9gZDhPevq4nIsRF8x1ITfXwNrQtnotuoM/zGKaXsLXPo5zwvR1LXvdjRML4fLzfD IHZQfkn5M0a0M/HCv1gNV3AKjPPmJcDPTirtpS1ynmMu1idv0xBnmXcojAPsAYd1 QHOSO4PwoPf/8KM1QSPzYeX1GOFiHRJv2zpa53p0TJRA88n74BwfjwVKDPw= -----END CERTIFICATE-----Generated at Wed Aug 20 10:39:24 2025 by rpki-client