$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fb13753-cdf2-4e81-bc92-fc32aac769a1.roa File: 1fb13753-cdf2-4e81-bc92-fc32aac769a1.roa (raw, json) Hash identifier: PZfLOD0vpl30WE5uptjn6QAmubdPYm0PXQvoW/kcCcc= Subject key identifier: EE:E0:19:38:F9:3E:EC:A6:94:DD:A9:F5:AF:91:2A:15:16:89:11:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 420B49801A0BC8C4F6A335493262604400223FE9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fb13753-cdf2-4e81-bc92-fc32aac769a1.roa Signing time: Tue 05 Aug 2025 18:52:10 +0000 ROA not before: Tue 05 Aug 2025 18:52:10 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.194.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:0b:49:80:1a:0b:c8:c4:f6:a3:35:49:32:62:60:44:00:22:3f:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 18:52:10 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=a20273a20e1a560ed7b0ace1b58c5258013b217e4ad30ee3892398e5bae1f5bf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e2:17:a7:2c:c6:7f:cf:36:a4:c4:2a:53:f0: e1:51:a8:5f:0f:fa:a0:1e:20:2f:bc:6c:60:87:0f: a4:a1:bc:2c:50:32:d7:7c:5c:4a:f6:c3:f9:90:78: 83:66:6b:9b:83:d1:88:7a:68:48:75:01:ba:20:32: 22:4a:cb:f0:43:30:ba:bf:53:43:9a:a7:37:60:d2: 06:f3:44:34:15:26:ba:2f:9b:e5:9a:eb:72:da:f6: 15:64:c2:1c:a5:f9:b1:26:d6:30:8f:5e:68:f4:dd: dd:95:31:4a:dc:9d:b8:a0:b4:8e:45:b1:e4:17:bb: a8:e3:54:72:16:d8:b6:66:34:0e:d5:fa:57:6e:a1: 67:3c:3b:09:d9:d0:f3:19:d9:5a:fd:0c:9f:e5:47: 6f:ea:fc:c6:3c:f5:2e:09:e2:fe:ad:38:b2:69:c9: e4:cb:2d:61:7c:50:60:e7:3c:85:bc:8b:62:3f:da: 84:f8:e9:8e:7c:a8:5a:72:b3:46:d7:4a:c7:3a:5b: c5:2c:7e:0e:9e:42:47:0e:9a:0f:8f:44:4d:6b:7e: 81:53:b8:ec:cb:39:7a:a2:cd:e2:41:b1:fc:05:4f: 93:8b:c9:87:5d:99:de:00:c3:33:25:a9:fb:61:4f: dd:74:24:c2:1e:3b:72:07:be:52:a3:85:66:7b:fe: c6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:E0:19:38:F9:3E:EC:A6:94:DD:A9:F5:AF:91:2A:15:16:89:11:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fb13753-cdf2-4e81-bc92-fc32aac769a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.194.0.0/15 Signature Algorithm: sha256WithRSAEncryption 85:c7:17:27:8c:f6:99:d7:25:f3:99:af:fd:c4:5c:df:42:53: f4:9b:d7:a2:b4:4c:99:ec:f1:e4:08:62:af:f4:4a:d7:05:55: 10:c3:f3:37:e2:32:c1:2c:99:65:b8:f5:ed:26:86:e7:68:9a: cc:e4:44:3f:92:15:fb:88:d8:61:1b:16:2b:86:f6:54:47:3a: 5f:99:5e:73:9a:1e:72:67:2d:49:80:7e:4e:24:80:f4:6c:f7: 9b:07:47:68:0b:ff:f0:4e:e3:c5:d3:66:2f:71:f9:7d:e2:76: dc:02:fe:b3:a3:7a:d5:75:52:5b:27:53:ad:01:2b:64:ce:f3: a3:98:2d:1f:ea:1b:33:e0:db:9c:6e:2e:1c:e6:2b:10:3a:c9: 0f:82:f8:56:5f:17:03:f7:10:ba:53:56:4f:e7:93:48:f5:56: f7:05:73:1e:6d:10:86:cc:6c:d3:9a:65:82:b5:0d:91:35:49: 8c:f8:81:5b:5f:20:75:60:a1:65:d5:cc:e8:a6:b2:dc:47:ff: a9:3f:ff:49:44:f6:19:e7:81:13:76:93:43:e3:9f:a7:08:0e: 9c:69:ab:8b:28:e6:c2:6c:97:79:0d:92:d1:9c:2f:11:1e:44: 96:fa:94:05:6c:85:f4:66:4c:5f:4c:8d:e3:1b:41:56:aa:51: 81:6f:c0:e0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQgtJgBoLyMT2ozVJMmJgRAAiP+kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MTg1MjEwWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjAyNzNhMjBlMWE1NjBlZDdiMGFjZTFiNThjNTI1ODAx M2IyMTdlNGFkMzBlZTM4OTIzOThlNWJhZTFmNWJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm4henLMZ/zzakxCpT8OFRqF8P+qAeIC+8bGCHD6ShvCxQ Mtd8XEr2w/mQeINma5uD0Yh6aEh1AbogMiJKy/BDMLq/U0Oapzdg0gbzRDQVJrov m+Wa63La9hVkwhyl+bEm1jCPXmj03d2VMUrcnbigtI5FseQXu6jjVHIW2LZmNA7V +lduoWc8OwnZ0PMZ2Vr9DJ/lR2/q/MY89S4J4v6tOLJpyeTLLWF8UGDnPIW8i2I/ 2oT46Y58qFpys0bXSsc6W8Usfg6eQkcOmg+PRE1rfoFTuOzLOXqizeJBsfwFT5OL yYddmd4AwzMlqfthT910JMIeO3IHvlKjhWZ7/sY1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU7uAZOPk+7KaU3an1r5EqFRaJETQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmYjEzNzUzLWNkZjItNGU4MS1iYzkyLWZjMzJhYWM3NjlhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwENwjANBgkqhkiG9w0BAQsFAAOCAQEAhccXJ4z2mdcl85mv/cRc30JT9JvX orRMmezx5Ahir/RK1wVVEMPzN+IywSyZZbj17SaG52iazOREP5IV+4jYYRsWK4b2 VEc6X5lec5oecmctSYB+TiSA9Gz3mwdHaAv/8E7jxdNmL3H5feJ23AL+s6N61XVS WydTrQErZM7zo5gtH+obM+DbnG4uHOYrEDrJD4L4Vl8XA/cQulNWT+eTSPVW9wVz Hm0Qhsxs05plgrUNkTVJjPiBW18gdWChZdXM6Kay3Ef/qT//SUT2GeeBE3aTQ+Of pwgOnGmriyjmwmyXeQ2S0ZwvER5ElvqUBWyF9GZMX0yN4xtBVqpRgW/A4A== -----END CERTIFICATE-----Generated at Sat Aug 9 00:59:37 2025 by rpki-client