$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c6ab720-bcf1-4213-aee9-832ddfc3cf45.roa File: 9c6ab720-bcf1-4213-aee9-832ddfc3cf45.roa (raw, json) Hash identifier: MnQJhDKASMg7DVYFDM8pBkE1TiFdbsZicfkA5teevcM= Subject key identifier: D6:4F:CA:44:18:4B:74:36:16:A2:0D:29:20:97:13:8D:F8:B2:A5:4B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 035569085330AEB9DDECEC48FA5B87399D32AE0E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c6ab720-bcf1-4213-aee9-832ddfc3cf45.roa Signing time: Tue 22 Jul 2025 00:10:21 +0000 ROA not before: Tue 22 Jul 2025 00:10:21 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.160.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:55:69:08:53:30:ae:b9:dd:ec:ec:48:fa:5b:87:39:9d:32:ae:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:10:21 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=ee42a1210162fb73c4ec8041c8f15ff45aaa71aa9177df8dbd1d432174528c66, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ea:12:ea:ad:c5:63:a4:b5:a2:32:47:13:38: 96:98:07:f0:30:f9:d2:c0:56:69:09:b0:fc:0b:1c: 3c:5d:38:91:cc:4b:6c:6c:4d:83:b9:7a:6a:45:7b: 0e:7e:f4:99:27:e1:fc:45:04:be:e6:bd:b9:f2:86: c6:b9:9d:b1:e2:7f:ca:a1:7d:8c:75:0a:60:f6:af: c1:08:03:61:bb:cb:76:2f:ee:bf:51:48:9a:20:50: c2:18:f0:9c:d5:e1:26:ab:27:b6:2a:82:da:93:01: 59:ad:71:97:59:eb:65:15:52:1e:17:bf:06:e3:66: 64:0f:cf:d6:cb:a1:d7:7a:61:2a:55:59:fa:f8:70: ff:d6:45:a9:e1:a1:bf:8c:de:e2:9a:c5:84:b1:d7: d8:b7:64:31:12:e7:e6:f2:42:42:7d:af:cd:4b:87: 01:ae:26:ba:4d:bc:be:a5:fa:0d:46:9a:22:fe:77: 8d:33:94:e7:be:88:1e:16:fb:60:a7:82:9c:39:ea: 03:92:29:da:00:56:12:5f:e8:3a:46:af:36:0d:58: 61:5e:03:69:87:8b:1c:b0:5d:18:dc:8b:27:a3:f1: b9:89:19:a3:c8:68:7e:06:e8:e2:75:7d:37:f7:e7: 10:dc:44:a5:b0:38:a8:95:13:fb:2f:72:30:ed:b7: cb:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:4F:CA:44:18:4B:74:36:16:A2:0D:29:20:97:13:8D:F8:B2:A5:4B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c6ab720-bcf1-4213-aee9-832ddfc3cf45.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.160.0.0/20 Signature Algorithm: sha256WithRSAEncryption 5c:9b:ce:a8:32:a5:ef:e9:f4:0e:fa:83:ca:96:1a:1c:8e:2e: 9d:90:a6:0f:c7:fb:20:cc:b0:5d:73:09:db:9c:4f:b7:cc:ee: 93:fc:c7:ab:58:f8:7f:26:d6:dd:bc:98:36:97:9b:2e:29:eb: 9a:a3:b7:73:63:a9:eb:36:47:89:46:26:83:58:ae:b1:46:94: 6b:5a:c7:17:c9:38:fa:d9:2c:fe:44:b5:f6:74:00:ea:11:38: 7a:91:cd:06:4b:8f:33:71:26:04:69:62:a6:38:db:4c:3e:8e: 81:ed:dc:c8:31:01:74:0a:75:57:38:27:be:65:a7:3f:e1:53: 3a:68:e0:a1:6e:e4:b8:e0:5b:b4:e7:92:82:e2:16:bc:e7:a5: eb:9f:2e:48:a9:66:e0:7f:5a:56:e0:bc:a2:fd:c3:b1:46:76: 22:f5:da:32:96:86:0d:23:d3:79:7a:47:8c:d3:9f:db:f8:7f: 16:f4:75:de:f9:b5:a4:1d:c2:d4:b6:5a:16:9c:37:47:f1:d4: 25:f3:72:07:5f:4c:e7:b2:4a:a5:0a:82:56:f7:f8:bb:de:35: 39:ca:50:96:6f:3e:fa:87:53:3a:c1:a0:67:15:07:ef:ee:1c: ba:81:e5:98:76:e6:f5:c5:a1:bc:cf:db:64:cd:72:61:04:bc: 75:e4:00:61 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA1VpCFMwrrnd7OxI+luHOZ0yrg4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDAxMDIxWhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTQyYTEyMTAxNjJmYjczYzRlYzgwNDFjOGYxNWZmNDVh YWE3MWFhOTE3N2RmOGRiZDFkNDMyMTc0NTI4YzY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd6hLqrcVjpLWiMkcTOJaYB/Aw+dLAVmkJsPwLHDxdOJHM S2xsTYO5empFew5+9Jkn4fxFBL7mvbnyhsa5nbHif8qhfYx1CmD2r8EIA2G7y3Yv 7r9RSJogUMIY8JzV4SarJ7YqgtqTAVmtcZdZ62UVUh4XvwbjZmQPz9bLodd6YSpV Wfr4cP/WRanhob+M3uKaxYSx19i3ZDES5+byQkJ9r81LhwGuJrpNvL6l+g1GmiL+ d40zlOe+iB4W+2Cngpw56gOSKdoAVhJf6DpGrzYNWGFeA2mHixywXRjciyej8bmJ GaPIaH4G6OJ1fTf35xDcRKWwOKiVE/svcjDtt8t5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1k/KRBhLdDYWog0pIJcTjfiypUswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzljNmFiNzIwLWJjZjEtNDIxMy1hZWU5LTgzMmRkZmMzY2Y0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNoAAwDQYJKoZIhvcNAQELBQADggEBAFybzqgype/p9A76g8qWGhyOLp2Q pg/H+yDMsF1zCducT7fM7pP8x6tY+H8m1t28mDaXmy4p65qjt3Njqes2R4lGJoNY rrFGlGtaxxfJOPrZLP5EtfZ0AOoROHqRzQZLjzNxJgRpYqY420w+joHt3MgxAXQK dVc4J75lpz/hUzpo4KFu5LjgW7TnkoLiFrznpeufLkipZuB/WlbgvKL9w7FGdiL1 2jKWhg0j03l6R4zTn9v4fxb0dd75taQdwtS2WhacN0fx1CXzcgdfTOeySqUKglb3 +LveNTnKUJZvPvqHUzrBoGcVB+/uHLqB5Zh25vXFobzP22TNcmEEvHXkAGE= -----END CERTIFICATE-----Generated at Thu Aug 7 05:07:55 2025 by rpki-client