$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aff5f6ba-f0fc-4111-b2db-2eb6d2591660.roa File: aff5f6ba-f0fc-4111-b2db-2eb6d2591660.roa (raw, json) Hash identifier: T7yxkxMaOUFNghdxaVR4K/cAUJj9+fqDGuOZVVUzamE= Subject key identifier: 54:D1:81:04:E7:1E:CC:CB:24:AB:83:43:9E:F9:A6:60:24:B3:81:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05E2ED607430DEDE7D1F0F38A737B5445F0F28CC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aff5f6ba-f0fc-4111-b2db-2eb6d2591660.roa Signing time: Tue 22 Jul 2025 00:01:01 +0000 ROA not before: Tue 22 Jul 2025 00:01:01 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.128.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:e2:ed:60:74:30:de:de:7d:1f:0f:38:a7:37:b5:44:5f:0f:28:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:01:01 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=cb2cbf11e1495b123c148004a0b63d4ef40520e7b7e42a2e019f91275bc5757f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ea:c9:79:94:aa:93:60:3a:46:cb:0e:8b:44: 72:4b:97:d2:df:ee:1b:5e:15:ed:98:63:3c:a8:82: 29:07:4c:91:a8:1f:12:78:90:77:ab:83:3b:1e:2e: 02:d0:4d:13:91:12:4f:0a:ea:b1:07:16:be:10:14: b5:9f:bc:73:11:86:88:3f:8b:b8:70:41:33:c3:90: f5:2f:ac:a1:40:4c:ac:01:88:4a:63:5f:fb:20:f2: f1:4d:be:c4:22:b5:9a:78:93:0f:41:88:0b:8c:97: 40:32:83:0c:9c:4b:8f:2e:d6:f5:ce:b7:ce:52:7c: 98:ee:bb:72:03:a9:99:69:b5:88:66:6b:ab:88:2c: 3b:e3:63:d3:cf:ee:02:2f:cd:9c:cd:cd:15:ec:0a: 81:1a:22:dd:5b:f2:59:54:82:88:2e:bb:f1:4e:a3: a4:80:6b:e5:af:4a:da:8e:2e:ae:23:95:65:5f:c4: 1e:0f:f1:5f:47:c8:60:d5:93:70:c0:20:4c:d9:3f: 09:ab:cd:6b:66:24:af:2a:d2:62:dd:b0:54:b7:a4: c5:e7:78:eb:ec:5d:66:a6:e4:9c:4d:f1:b3:54:2a: 94:1a:a5:c7:d1:7e:f2:41:3f:49:d8:03:65:26:dd: 98:05:d2:04:ff:9f:37:11:4c:44:43:b1:da:c7:a8: d4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D1:81:04:E7:1E:CC:CB:24:AB:83:43:9E:F9:A6:60:24:B3:81:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aff5f6ba-f0fc-4111-b2db-2eb6d2591660.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.128.0/20 Signature Algorithm: sha256WithRSAEncryption d5:f4:77:f9:3f:32:4b:87:59:55:30:4c:7b:b2:72:f9:e0:86: 83:b1:85:ad:aa:b5:fc:5a:cf:e5:a6:1c:c8:fc:b8:91:b2:81: 7e:26:b2:33:8b:62:31:31:51:10:85:8c:94:99:9a:84:93:25: 85:9a:ec:c6:e3:77:27:b1:fc:94:d7:65:89:5d:43:03:1a:13: df:34:15:fa:01:98:6b:3f:c3:40:e6:d9:65:05:17:2b:46:a4: 1b:19:83:7b:4a:4f:f3:ad:42:91:2d:ed:ea:6d:9e:7f:74:3d: 96:36:10:f7:4d:5d:a2:51:7b:0a:38:3c:51:be:07:42:44:06: 0f:c5:6a:77:54:cc:5e:36:fb:bd:57:7c:73:27:bb:b0:92:c9: 58:8b:6a:e5:c4:92:f1:86:89:55:a5:b6:6c:bb:10:96:d5:76: 4e:d5:30:54:cf:8a:e6:02:71:4d:88:7c:df:83:a3:85:87:70: ba:98:bc:88:51:6b:ac:7f:c9:d2:11:1e:a3:50:f5:2a:8e:7d: 80:6d:89:7d:51:9b:6c:b7:29:21:8c:67:3b:ac:fe:1e:75:e5: 03:53:b0:80:f4:56:b7:ca:9c:fa:dc:99:db:a0:f9:da:51:94: 36:b7:12:15:5d:a5:e3:78:e0:f9:08:3d:60:f4:d6:7b:84:76: b7:f0:c0:99 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBeLtYHQw3t59Hw84pze1RF8PKMwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDAwMTAxWhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYjJjYmYxMWUxNDk1YjEyM2MxNDgwMDRhMGI2M2Q0ZWY0 MDUyMGU3YjdlNDJhMmUwMTlmOTEyNzViYzU3NTdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA6sl5lKqTYDpGyw6LRHJLl9Lf7hteFe2YYzyogikHTJGo HxJ4kHergzseLgLQTROREk8K6rEHFr4QFLWfvHMRhog/i7hwQTPDkPUvrKFATKwB iEpjX/sg8vFNvsQitZp4kw9BiAuMl0AygwycS48u1vXOt85SfJjuu3IDqZlptYhm a6uILDvjY9PP7gIvzZzNzRXsCoEaIt1b8llUgoguu/FOo6SAa+WvStqOLq4jlWVf xB4P8V9HyGDVk3DAIEzZPwmrzWtmJK8q0mLdsFS3pMXneOvsXWam5JxN8bNUKpQa pcfRfvJBP0nYA2Um3ZgF0gT/nzcRTERDsdrHqNSpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVNGBBOcezMskq4NDnvmmYCSzgVYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmZjVmNmJhLWYwZmMtNDExMS1iMmRiLTJlYjZkMjU5MTY2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgIAwDQYJKoZIhvcNAQELBQADggEBANX0d/k/MkuHWVUwTHuycvnghoOx ha2qtfxaz+WmHMj8uJGygX4msjOLYjExURCFjJSZmoSTJYWa7Mbjdyex/JTXZYld QwMaE980FfoBmGs/w0Dm2WUFFytGpBsZg3tKT/OtQpEt7eptnn90PZY2EPdNXaJR ewo4PFG+B0JEBg/FandUzF42+71XfHMnu7CSyViLauXEkvGGiVWltmy7EJbVdk7V MFTPiuYCcU2IfN+Do4WHcLqYvIhRa6x/ydIRHqNQ9SqOfYBtiX1Rm2y3KSGMZzus /h515QNTsID0VrfKnPrcmdug+dpRlDa3EhVdpeN44PkIPWD01nuEdrfwwJk= -----END CERTIFICATE-----Generated at Wed Aug 6 13:14:55 2025 by rpki-client