$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c6c419c-e8ef-461b-8110-169dc4c8bbba.roa File: 5c6c419c-e8ef-461b-8110-169dc4c8bbba.roa (raw, json) Hash identifier: NQjgCZPBwMAN3Jx5KggEu7xIZoCqlx8sMyE3dOBcvtg= Subject key identifier: 67:A7:E3:52:C6:A5:07:C9:BE:B7:01:79:A5:E6:5C:F7:6B:4A:23:46 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D10299E31ADDB1E2301BBC59B846678EBB8F876 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c6c419c-e8ef-461b-8110-169dc4c8bbba.roa Signing time: Tue 22 Jul 2025 00:10:13 +0000 ROA not before: Tue 22 Jul 2025 00:10:13 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.154.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:10:29:9e:31:ad:db:1e:23:01:bb:c5:9b:84:66:78:eb:b8:f8:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:10:13 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=cc0c800597a7e4720847cb0672bcea3e1e7d3a7266050ff545ef65cea6ad49ad, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:97:8f:b4:b7:47:3d:1f:06:d2:19:50:81:71: 15:64:ae:28:5b:1a:34:ba:23:c7:c1:79:74:57:eb: bd:19:f1:e5:8c:31:7c:1b:a7:73:40:e3:08:15:ce: 43:79:5c:c0:aa:b1:1e:07:93:6b:af:53:6d:ed:9e: 44:b2:bd:52:d8:bf:00:12:8d:50:34:18:d0:06:72: 68:c8:97:e3:b8:0a:5c:a9:43:e3:9f:8e:11:0e:01: f3:46:81:88:fc:2d:97:52:6e:c3:81:15:a3:43:5b: b2:b8:83:c8:f2:73:14:8b:db:62:88:8e:05:c8:97: 58:7e:2e:3b:63:73:6d:d1:48:44:e0:5a:65:70:ee: 93:39:9b:26:a3:fa:7d:12:9b:2a:66:5a:42:09:3a: b7:e6:fb:fc:b0:a2:cc:c2:7e:56:63:e7:fa:45:4e: 33:1c:bf:ec:ff:1a:0b:c2:ba:e2:cf:0f:49:f4:15: e1:03:18:19:7e:ec:2b:be:18:af:cc:e2:f5:33:7e: cd:46:20:a3:ce:23:84:1b:3a:38:06:2b:b3:62:4b: 80:bb:67:de:97:96:12:fd:5f:23:df:7c:07:5c:aa: 57:8e:e1:46:ec:f8:36:2e:46:1e:09:e1:2c:1b:85: f5:86:0e:4a:1e:13:9c:19:b5:0e:99:49:73:0f:ad: e6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:A7:E3:52:C6:A5:07:C9:BE:B7:01:79:A5:E6:5C:F7:6B:4A:23:46 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c6c419c-e8ef-461b-8110-169dc4c8bbba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.154.32.0/21 Signature Algorithm: sha256WithRSAEncryption d0:ec:76:5f:39:15:cf:01:15:f4:5d:f0:8c:32:be:e7:9d:ff: f7:33:a1:9c:3e:b5:98:0d:0f:72:52:82:d4:bc:5c:53:b3:15: e1:e6:00:d7:8a:97:f4:92:a0:6e:aa:b9:62:b2:89:21:6a:85: 07:48:bf:2b:64:d9:e4:ff:e1:a9:e1:50:c2:9a:12:24:44:0c: 6f:7c:d9:b4:a7:6e:73:41:a5:52:28:29:dc:9a:35:f3:0c:01: 41:aa:8d:19:d9:42:79:16:6b:aa:81:50:b9:00:ae:24:b0:28: f8:18:79:0f:54:3c:f5:05:b6:10:7f:4c:f0:2e:6c:5d:d9:32: 3a:3d:ce:74:03:d3:e1:a5:49:b7:87:51:de:c1:c3:15:4b:23: d9:7d:f5:1c:09:81:98:ca:d4:94:78:bb:c4:32:85:6c:3f:49: 67:f4:ca:92:66:3f:aa:8e:d2:fa:cf:cf:7f:57:2c:68:f2:59: 29:03:85:a3:b7:61:cf:05:ae:d4:75:0a:2e:7f:f0:85:8b:2a: af:e3:e0:a4:80:f8:dc:f6:1e:c9:9f:56:38:53:9a:a5:f3:12: 94:6a:2e:48:d2:3a:0a:37:58:1c:21:72:55:d2:9c:9e:ab:40: 27:85:5b:0f:3f:05:27:95:7a:e4:72:51:e9:90:3a:84:2b:f0: 7e:3f:7a:8e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXRApnjGt2x4jAbvFm4RmeOu4+HYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDAxMDEzWhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzBjODAwNTk3YTdlNDcyMDg0N2NiMDY3MmJjZWEzZTFl N2QzYTcyNjYwNTBmZjU0NWVmNjVjZWE2YWQ0OWFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWl4+0t0c9HwbSGVCBcRVkrihbGjS6I8fBeXRX670Z8eWM MXwbp3NA4wgVzkN5XMCqsR4Hk2uvU23tnkSyvVLYvwASjVA0GNAGcmjIl+O4Clyp Q+OfjhEOAfNGgYj8LZdSbsOBFaNDW7K4g8jycxSL22KIjgXIl1h+Ljtjc23RSETg WmVw7pM5myaj+n0SmypmWkIJOrfm+/ywoszCflZj5/pFTjMcv+z/GgvCuuLPD0n0 FeEDGBl+7Cu+GK/M4vUzfs1GIKPOI4QbOjgGK7NiS4C7Z96XlhL9XyPffAdcqleO 4Ubs+DYuRh4J4SwbhfWGDkoeE5wZtQ6ZSXMPreYXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZ6fjUsalB8m+twF5peZc92tKI0YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVjNmM0MTljLWU4ZWYtNDYxYi04MTEwLTE2OWRjNGM4YmJiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNmiAwDQYJKoZIhvcNAQELBQADggEBANDsdl85Fc8BFfRd8Iwyvued//cz oZw+tZgND3JSgtS8XFOzFeHmANeKl/SSoG6quWKyiSFqhQdIvytk2eT/4anhUMKa EiREDG982bSnbnNBpVIoKdyaNfMMAUGqjRnZQnkWa6qBULkAriSwKPgYeQ9UPPUF thB/TPAubF3ZMjo9znQD0+GlSbeHUd7BwxVLI9l99RwJgZjK1JR4u8QyhWw/SWf0 ypJmP6qO0vrPz39XLGjyWSkDhaO3Yc8FrtR1Ci5/8IWLKq/j4KSA+Nz2HsmfVjhT mqXzEpRqLkjSOgo3WBwhclXSnJ6rQCeFWw8/BSeVeuRyUemQOoQr8H4/eo4= -----END CERTIFICATE-----Generated at Wed Aug 6 04:01:04 2025 by rpki-client