$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8d8c762-dbfd-4268-bc1b-e7fb289da015.roa File: f8d8c762-dbfd-4268-bc1b-e7fb289da015.roa (raw, json) Hash identifier: shTNLrDxQjKsv+c+ErXwUJSkmVeDpTDp60GjLlYG6As= Subject key identifier: D7:53:F9:CD:FB:17:13:37:6D:49:47:DF:E2:F2:17:D6:20:44:51:F3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1CC196B6603439A15AAFF03A3DB0E618F1B7B9DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8d8c762-dbfd-4268-bc1b-e7fb289da015.roa Signing time: Mon 02 Jun 2025 15:00:53 +0000 ROA not before: Mon 02 Jun 2025 15:00:53 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:c1:96:b6:60:34:39:a1:5a:af:f0:3a:3d:b0:e6:18:f1:b7:b9:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 15:00:53 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=9f64ec00b3da12d752debea9d220c33889dc1eccd113b4630dbfec6486efe5ef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:65:2c:00:ca:5e:95:be:4a:9b:bd:fc:27:48: a3:6a:c8:13:a8:9a:42:a2:fa:93:7b:37:ae:95:71: ea:19:56:3d:c7:c2:1c:0e:ca:f7:62:49:e8:cd:9a: e1:96:20:13:13:8e:c3:06:fc:f4:78:85:72:2f:3a: 24:62:b1:a4:7a:43:14:42:b4:76:11:09:3c:3d:a1: db:c1:8d:f1:fd:2b:07:07:db:9d:80:24:23:f5:16: 9a:ee:a8:36:78:6a:88:2a:20:78:dc:fa:7e:9f:b2: 63:f7:3e:65:93:f2:cb:54:64:01:d9:d8:fd:2a:16: 9e:6a:13:af:9c:fb:d9:cf:36:f9:58:54:11:26:cf: 8a:1a:85:32:4c:5c:0d:fe:44:79:de:56:6d:5a:57: bb:af:9e:c6:76:d8:81:05:ec:37:4b:ce:64:ae:74: 77:21:75:37:ab:37:49:4b:de:9a:d3:bb:67:58:dd: 23:2a:59:89:0c:ff:41:30:0e:2f:4f:a0:2f:93:ac: 3e:d2:84:69:ff:37:9c:de:9a:72:f6:79:cd:25:db: 81:7f:53:4f:b4:87:a8:99:06:8f:dc:ff:c9:e1:8b: c9:34:41:7e:b9:13:e7:7d:05:68:a5:fe:f5:3e:09: 60:f0:84:2f:ec:9f:77:9d:43:6b:c4:36:c0:d1:5b: 61:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:53:F9:CD:FB:17:13:37:6D:49:47:DF:E2:F2:17:D6:20:44:51:F3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8d8c762-dbfd-4268-bc1b-e7fb289da015.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.240.0/21 Signature Algorithm: sha256WithRSAEncryption 72:32:02:20:9b:41:3f:be:e3:cc:c1:ef:ec:cc:99:93:a4:e3: 49:74:23:5b:84:38:e8:fa:af:db:63:d1:6e:ab:cf:f4:58:49: 25:98:69:a6:93:8f:01:08:f0:03:2e:ab:d8:44:94:48:ed:7a: 1d:99:29:a6:e1:08:0a:e8:a9:e5:f6:a8:5f:25:50:aa:b8:4a: 5d:09:94:5a:2c:06:fd:a9:dd:89:ce:14:6c:5e:65:55:6b:d1: b9:7d:c2:fc:d1:f3:41:10:41:2a:3e:7f:99:c6:2f:46:3a:9f: b7:d8:e6:d3:98:fd:5d:0a:11:c0:f6:1c:8e:8d:69:7d:82:10: 4a:12:f4:5b:45:2c:cf:d0:f1:39:e2:55:6c:a7:70:ae:b4:4c: b5:c1:4d:24:68:7c:e0:18:a1:0a:de:f8:d4:66:15:79:0c:f3: 89:64:82:68:3e:45:57:5a:84:41:b3:38:b3:b2:4b:15:be:d2: db:53:71:8a:c1:72:7f:fe:db:0e:48:68:5c:8c:13:3e:82:c8: e0:8f:d9:cf:bb:05:e1:20:f8:95:89:ad:30:bc:1e:0f:02:c9: 92:c9:df:99:80:15:b9:8d:db:2f:f7:8e:b3:7a:a9:c5:f1:46: ef:1c:2c:40:81:55:90:26:7e:9c:0c:07:9e:7b:6c:df:45:99: f9:41:f0:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHMGWtmA0OaFar/A6PbDmGPG3ud8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTUwMDUzWhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjY0ZWMwMGIzZGExMmQ3NTJkZWJlYTlkMjIwYzMzODg5 ZGMxZWNjZDExM2I0NjMwZGJmZWM2NDg2ZWZlNWVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQZSwAyl6VvkqbvfwnSKNqyBOomkKi+pN7N66VceoZVj3H whwOyvdiSejNmuGWIBMTjsMG/PR4hXIvOiRisaR6QxRCtHYRCTw9odvBjfH9KwcH 252AJCP1FpruqDZ4aogqIHjc+n6fsmP3PmWT8stUZAHZ2P0qFp5qE6+c+9nPNvlY VBEmz4oahTJMXA3+RHneVm1aV7uvnsZ22IEF7DdLzmSudHchdTerN0lL3prTu2dY 3SMqWYkM/0EwDi9PoC+TrD7ShGn/N5zemnL2ec0l24F/U0+0h6iZBo/c/8nhi8k0 QX65E+d9BWil/vU+CWDwhC/sn3edQ2vENsDRW2EzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU11P5zfsXEzdtSUff4vIX1iBEUfMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y4ZDhjNzYyLWRiZmQtNDI2OC1iYzFiLWU3ZmIyODlkYTAxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNgPAwDQYJKoZIhvcNAQELBQADggEBAHIyAiCbQT++48zB7+zMmZOk40l0 I1uEOOj6r9tj0W6rz/RYSSWYaaaTjwEI8AMuq9hElEjteh2ZKabhCAroqeX2qF8l UKq4Sl0JlFosBv2p3YnOFGxeZVVr0bl9wvzR80EQQSo+f5nGL0Y6n7fY5tOY/V0K EcD2HI6NaX2CEEoS9FtFLM/Q8TniVWyncK60TLXBTSRofOAYoQre+NRmFXkM84lk gmg+RVdahEGzOLOySxW+0ttTcYrBcn/+2w5IaFyMEz6CyOCP2c+7BeEg+JWJrTC8 Hg8CyZLJ35mAFbmN2y/3jrN6qcXxRu8cLECBVZAmfpwMB557bN9FmflB8Mc= -----END CERTIFICATE-----Generated at Sun Jun 15 09:05:14 2025 by rpki-client