$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/85990add-2190-4b72-b762-5667ee04b800.roa File: 85990add-2190-4b72-b762-5667ee04b800.roa (raw, json) Hash identifier: kk6lbQam+WGOvNm6j1wmRoMwUiVh4GildB/Dy5bPPu0= Subject key identifier: FD:42:CF:C2:C4:0C:F7:E5:98:F6:17:16:D1:31:6D:EC:31:23:76:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67C5057A9564E49D5493C470271700540C5D0A33 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/85990add-2190-4b72-b762-5667ee04b800.roa Signing time: Tue 22 Jul 2025 00:01:06 +0000 ROA not before: Tue 22 Jul 2025 00:01:06 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.130.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c5:05:7a:95:64:e4:9d:54:93:c4:70:27:17:00:54:0c:5d:0a:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:01:06 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=a9b142d839b8900c47ab5fa27acebbb5d6e866772224577544bca428c433ebcc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:81:21:fc:eb:18:52:ba:fc:c8:d8:65:a2:d1: 49:da:11:31:1c:a6:8c:e8:52:95:33:ca:c5:8c:b4: 8d:4f:72:83:d7:53:ad:6f:f7:fc:ec:2a:b9:ab:37: 07:42:3a:17:10:93:d7:93:fe:49:62:a5:2b:92:20: a2:41:b8:6c:d5:46:0d:30:c5:e1:93:37:db:21:10: b6:bb:bd:82:99:ba:bd:c8:9d:7a:8f:33:08:35:31: 3c:aa:1e:ea:88:61:7a:03:d5:18:3b:26:39:60:2e: 24:ae:e7:dc:a3:a4:59:79:d0:55:d2:8a:95:3e:17: d3:0c:39:f9:38:ec:15:41:7e:21:8a:3e:36:00:76: c8:a3:49:a7:f5:34:48:10:8c:82:b7:08:a4:b1:33: cc:88:03:2f:75:fe:97:2a:fa:45:2e:30:0e:22:59: 83:8e:c9:f0:7e:7f:ff:0c:9d:34:df:02:2c:b2:10: f5:33:ac:cb:c0:09:d6:df:39:05:1e:d5:02:1a:d7: 74:f2:11:d8:23:75:2f:3c:7c:7e:72:d6:f3:c7:29: fa:50:66:94:d9:b0:99:96:d2:ff:22:d5:b1:ca:f6: 69:82:f6:14:56:c3:f3:21:39:0d:13:01:25:60:2a: 7a:f3:e3:d7:93:fe:fb:03:86:38:e9:6e:e6:0b:f9: 7e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:42:CF:C2:C4:0C:F7:E5:98:F6:17:16:D1:31:6D:EC:31:23:76:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/85990add-2190-4b72-b762-5667ee04b800.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.130.8.0/21 Signature Algorithm: sha256WithRSAEncryption 13:e0:01:eb:13:42:72:78:81:9f:f7:6a:09:ab:47:00:fc:b1: ae:9f:c1:4c:4c:63:24:a9:60:f3:cb:eb:ba:34:7f:01:9f:e1: 0c:78:3a:03:01:4c:cf:11:42:51:25:db:dd:3b:b6:55:44:97: 6a:29:1e:2d:02:57:03:b7:5d:3e:b7:d6:5b:cb:e9:40:b8:16: 14:d2:02:31:17:51:35:d8:f6:b2:fd:25:28:3f:5f:32:7a:58: 70:9b:56:bc:c2:8f:2e:50:07:69:59:8a:e1:e8:cc:c5:21:98: 39:36:2f:62:c8:f4:db:74:8c:43:12:68:56:10:a3:a2:21:54: a3:71:fe:f6:58:fe:51:4d:b9:f5:fd:fb:9c:00:92:4b:eb:c1: 66:ee:38:ad:46:20:6d:da:25:2e:24:86:9d:68:cc:c8:f1:3f: 24:a2:0f:51:0a:05:e7:f7:19:2f:a3:ee:ce:e1:b3:87:60:e4: 6c:be:f7:a3:72:57:bb:77:4d:33:68:c3:49:be:fb:4d:e5:1c: 58:6f:68:6d:e1:02:58:04:f7:63:39:ae:8e:85:aa:dc:e0:b7: 49:01:3d:7b:2d:3f:86:88:72:05:3d:6e:c4:2e:ec:8a:f0:57: 62:66:0b:fc:99:67:9a:1e:ab:be:8e:28:d3:c1:34:63:21:34: 3e:70:c5:ac -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ8UFepVk5J1Uk8RwJxcAVAxdCjMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDAwMTA2WhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOWIxNDJkODM5Yjg5MDBjNDdhYjVmYTI3YWNlYmJiNWQ2 ZTg2Njc3MjIyNDU3NzU0NGJjYTQyOGM0MzNlYmNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCggSH86xhSuvzI2GWi0UnaETEcpozoUpUzysWMtI1PcoPX U61v9/zsKrmrNwdCOhcQk9eT/klipSuSIKJBuGzVRg0wxeGTN9shELa7vYKZur3I nXqPMwg1MTyqHuqIYXoD1Rg7JjlgLiSu59yjpFl50FXSipU+F9MMOfk47BVBfiGK PjYAdsijSaf1NEgQjIK3CKSxM8yIAy91/pcq+kUuMA4iWYOOyfB+f/8MnTTfAiyy EPUzrMvACdbfOQUe1QIa13TyEdgjdS88fH5y1vPHKfpQZpTZsJmW0v8i1bHK9mmC 9hRWw/MhOQ0TASVgKnrz49eT/vsDhjjpbuYL+X7NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/ULPwsQM9+WY9hcW0TFt7DEjdvAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg1OTkwYWRkLTIxOTAtNGI3Mi1iNzYyLTU2NjdlZTA0YjgwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNgggwDQYJKoZIhvcNAQELBQADggEBABPgAesTQnJ4gZ/3agmrRwD8sa6f wUxMYySpYPPL67o0fwGf4Qx4OgMBTM8RQlEl2907tlVEl2opHi0CVwO3XT631lvL 6UC4FhTSAjEXUTXY9rL9JSg/XzJ6WHCbVrzCjy5QB2lZiuHozMUhmDk2L2LI9Nt0 jEMSaFYQo6IhVKNx/vZY/lFNufX9+5wAkkvrwWbuOK1GIG3aJS4khp1ozMjxPySi D1EKBef3GS+j7s7hs4dg5Gy+96NyV7t3TTNow0m++03lHFhvaG3hAlgE92M5ro6F qtzgt0kBPXstP4aIcgU9bsQu7IrwV2JmC/yZZ5oeq76OKNPBNGMhND5wxaw= -----END CERTIFICATE-----Generated at Sun Aug 10 10:39:39 2025 by rpki-client