$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3ccc978-80fb-4808-bf55-a2d534ddc69a.roa File: a3ccc978-80fb-4808-bf55-a2d534ddc69a.roa (raw, json) Hash identifier: W7TnPZzrktHsuffB5eLW44bbyJbHMEi8had2h1zCLls= Subject key identifier: 38:91:63:8F:BA:69:1D:DE:CB:4B:74:68:97:01:33:0F:12:EB:DB:2D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 39937B276B3FE6CAEA9C65F38C913D3647952F71 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3ccc978-80fb-4808-bf55-a2d534ddc69a.roa Signing time: Fri 01 Aug 2025 15:01:07 +0000 ROA not before: Fri 01 Aug 2025 15:01:07 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.192.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:93:7b:27:6b:3f:e6:ca:ea:9c:65:f3:8c:91:3d:36:47:95:2f:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:01:07 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=a4df1e40484b6b92d969482be0affc70fb3e9c88f9719b7e474ecf937ee0c791, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1e:82:71:90:6b:58:71:7a:bb:a6:4d:1d:c7: c9:79:c2:e6:5b:34:49:03:64:c9:85:7a:99:ea:f4: c1:31:10:34:b7:30:6e:a5:e8:b8:48:02:79:82:ce: 03:38:5e:48:64:6a:4a:c3:32:13:ae:3d:e9:52:f5: e4:11:79:16:1a:7d:09:45:ab:cc:ac:23:55:3d:10: 0c:17:09:f3:94:81:4f:70:fd:b2:93:0e:70:e8:5f: 8b:43:a6:f4:0f:0b:89:d5:c1:c1:ae:0f:0f:11:85: c3:e2:e6:47:9a:e6:8b:f9:ec:5c:e0:ec:08:77:0c: 5f:f1:e7:85:17:2a:4d:fe:e6:3e:29:97:2b:72:2f: 67:0d:44:f7:92:61:a3:65:46:d0:47:45:b1:1f:dd: 63:ae:3f:ac:af:33:49:f4:5a:0a:62:e0:3f:6c:3e: 9d:28:71:ac:ea:2f:7d:4a:1c:83:57:68:83:51:90: 87:a2:11:39:04:0b:ad:11:17:8d:57:ed:df:67:1d: 0d:1a:42:99:11:75:0d:4a:6e:4d:21:aa:a3:99:fc: bd:95:b2:2a:20:7f:eb:a7:b4:b8:0d:2e:d6:1e:60: 84:4d:d9:4b:f9:c1:78:5a:67:ad:8c:bc:af:03:83: 1b:da:ec:18:92:5c:99:38:54:40:c3:a4:ae:8c:c8: 18:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:91:63:8F:BA:69:1D:DE:CB:4B:74:68:97:01:33:0F:12:EB:DB:2D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3ccc978-80fb-4808-bf55-a2d534ddc69a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.192.0.0/13 Signature Algorithm: sha256WithRSAEncryption 02:6c:39:61:8e:24:39:36:39:be:10:c9:5f:36:11:eb:85:e6: 26:05:7d:fd:24:df:d3:40:32:68:68:7d:de:6d:2b:5c:dd:04: 8d:02:ca:ba:bf:e8:80:a7:c3:f9:d2:42:c4:ca:bc:ae:18:43: c3:6d:62:fb:64:0f:18:4a:d7:17:91:94:8f:54:8b:2f:10:cf: 96:e9:8f:03:29:66:e0:ac:50:4a:e2:bb:6c:e8:e6:31:58:24: 7b:9d:b3:1e:cc:10:b8:12:b8:4c:86:da:ad:80:b4:e2:8b:9b: ad:9c:54:8c:97:6b:8d:27:69:d4:b2:02:16:b8:78:dd:ab:16: 26:68:91:1d:01:e9:1d:0f:91:f0:38:5b:ca:ee:c6:60:28:eb: d2:53:8b:fe:73:57:0d:db:d9:80:b8:53:db:37:40:ff:3d:cf: a3:38:d9:f3:2b:73:43:b0:8c:6d:59:f6:fa:90:42:68:f3:f2: b7:05:30:82:6b:1d:48:0e:b7:64:a0:9f:eb:43:8f:e3:5e:89: 46:eb:35:0b:01:14:df:63:e5:bb:d0:34:79:7e:c1:b1:1e:e2: a6:41:7d:a7:50:cf:fc:9a:6f:36:4d:e2:35:bb:80:93:a0:d3: 1d:fd:73:5f:ce:26:48:ac:8f:5d:19:82:ce:7c:a5:fa:0a:82: 8b:d4:d6:04 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOZN7J2s/5srqnGXzjJE9NkeVL3EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUwMTA3WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGRmMWU0MDQ4NGI2YjkyZDk2OTQ4MmJlMGFmZmM3MGZi M2U5Yzg4Zjk3MTliN2U0NzRlY2Y5MzdlZTBjNzkxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkHoJxkGtYcXq7pk0dx8l5wuZbNEkDZMmFepnq9MExEDS3 MG6l6LhIAnmCzgM4XkhkakrDMhOuPelS9eQReRYafQlFq8ysI1U9EAwXCfOUgU9w /bKTDnDoX4tDpvQPC4nVwcGuDw8RhcPi5kea5ov57Fzg7Ah3DF/x54UXKk3+5j4p lytyL2cNRPeSYaNlRtBHRbEf3WOuP6yvM0n0Wgpi4D9sPp0ocazqL31KHINXaINR kIeiETkEC60RF41X7d9nHQ0aQpkRdQ1Kbk0hqqOZ/L2Vsiogf+untLgNLtYeYIRN 2Uv5wXhaZ62MvK8Dgxva7BiSXJk4VEDDpK6MyBidAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOJFjj7ppHd7LS3RolwEzDxLr2y0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzY2NjOTc4LTgwZmItNDgwOC1iZjU1LWEyZDUzNGRkYzY5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwMNwDANBgkqhkiG9w0BAQsFAAOCAQEAAmw5YY4kOTY5vhDJXzYR64XmJgV9 /STf00AyaGh93m0rXN0EjQLKur/ogKfD+dJCxMq8rhhDw21i+2QPGErXF5GUj1SL LxDPlumPAylm4KxQSuK7bOjmMVgke52zHswQuBK4TIbarYC04oubrZxUjJdrjSdp 1LICFrh43asWJmiRHQHpHQ+R8Dhbyu7GYCjr0lOL/nNXDdvZgLhT2zdA/z3PozjZ 8ytzQ7CMbVn2+pBCaPPytwUwgmsdSA63ZKCf60OP416JRus1CwEU32Plu9A0eX7B sR7ipkF9p1DP/JpvNk3iNbuAk6DTHf1zX84mSKyPXRmCznyl+gqCi9TWBA== -----END CERTIFICATE-----Generated at Mon Aug 4 21:49:11 2025 by rpki-client