$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2d642133-fe34-48fa-b5c3-4640b88222fe.roa File: 2d642133-fe34-48fa-b5c3-4640b88222fe.roa (raw, json) Hash identifier: aA0Q6jjQvH5HT8ko1Yjpb2PUcjb9c5iBP8lWkMpQOAc= Subject key identifier: 7F:0D:DF:B9:6B:91:90:D7:C1:8D:73:19:21:84:6C:16:B6:E5:9A:DA Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 30130FC8D66CB5AA1249614F70B268E0A6347AEA Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2d642133-fe34-48fa-b5c3-4640b88222fe.roa Signing time: Sat 26 Jul 2025 00:21:02 +0000 ROA not before: Sat 26 Jul 2025 00:21:02 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.248.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:13:0f:c8:d6:6c:b5:aa:12:49:61:4f:70:b2:68:e0:a6:34:7a:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 26 00:21:02 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=42b0202e6cb8dc120110555f0e77174f3332da39fc2a5d118172b985402279d0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e1:4c:f3:db:bb:54:3f:b5:00:eb:f0:22:5c: 77:c4:a9:d5:5a:65:b5:82:2d:8a:bc:a2:7d:cd:70: 75:5d:75:f7:44:ab:da:5f:7c:37:57:4e:4f:5b:ee: 9b:b9:db:05:9c:68:b0:d5:ae:fe:5a:15:97:6a:b1: 89:36:f7:32:7e:e2:79:55:07:8c:55:c0:72:97:2c: 1a:49:78:47:5a:28:25:19:75:60:ef:43:5a:a8:91: 1d:82:d7:36:35:f4:a2:ba:0d:3f:0a:ad:40:d0:cc: db:d3:df:df:93:1d:9f:14:c6:c2:6f:e4:96:e4:71: 3e:70:d3:4e:fd:98:2b:be:38:55:cc:1a:1c:06:18: 84:e5:3a:49:da:ec:65:1e:1a:9a:ed:9f:3c:ae:50: 36:5b:84:ce:49:ed:be:1e:58:d8:fb:7c:d4:47:0e: 35:fb:2d:4e:f1:f6:67:c0:5a:c3:81:04:ef:b8:3f: e0:c6:15:e9:ed:2f:a5:ba:bb:27:02:0e:f7:3e:68: 00:ad:ed:47:64:a4:12:6e:41:ea:44:4a:80:c9:ba: 95:0d:87:a1:6d:36:fb:00:f5:06:2c:84:6d:d9:e2: ee:ef:55:42:3e:c9:94:ec:43:48:a1:1f:ef:7f:a9: 83:34:9d:e2:b6:ce:d5:cd:c2:94:f5:a5:11:25:3a: 8b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:0D:DF:B9:6B:91:90:D7:C1:8D:73:19:21:84:6C:16:B6:E5:9A:DA X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/2d642133-fe34-48fa-b5c3-4640b88222fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.248.112.0/20 Signature Algorithm: sha256WithRSAEncryption 99:d6:2a:4f:d6:2d:7a:31:96:01:20:b1:4e:f1:3f:28:2c:b1: 06:7b:23:c3:13:22:e2:0e:49:22:04:ce:46:d3:74:5b:0b:40: a2:fe:93:c5:2b:58:27:14:18:d7:5e:19:ec:12:5e:c5:04:b7: d7:b3:ac:d7:d7:e4:56:0d:06:ca:3e:71:07:db:2f:27:07:8a: c9:5e:c1:9b:70:25:c2:69:7e:bd:3b:b4:58:20:c6:4c:44:21: 04:ac:ec:e9:8c:af:23:2b:7e:19:49:05:a4:de:96:28:fc:39: 3d:4d:96:a9:dd:e4:86:5e:42:85:49:f7:1f:76:80:e0:60:8a: 3a:47:07:de:e6:8d:60:2f:a4:10:88:4d:61:00:32:d7:cf:5f: 5e:d2:26:35:64:35:1e:d5:e7:4f:93:b8:e7:e5:00:63:2d:7b: e6:94:6e:d9:28:4f:17:9f:10:31:48:16:30:0b:18:36:01:79: 3c:f6:74:6e:ba:88:29:66:2c:57:c6:a5:ca:91:be:de:50:42: 2d:10:a7:bf:88:80:05:54:71:80:6f:c5:d5:64:5b:48:3c:77: 59:17:9a:94:11:2b:cf:fd:a0:11:de:92:a2:b4:7e:1a:63:81: 23:61:81:17:e5:f0:ab:07:7e:ac:a7:dc:f8:e3:16:a4:ec:82: 00:8b:81:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMBMPyNZstaoSSWFPcLJo4KY0euowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI2MDAyMTAyWhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MmIwMjAyZTZjYjhkYzEyMDExMDU1NWYwZTc3MTc0ZjMz MzJkYTM5ZmMyYTVkMTE4MTcyYjk4NTQwMjI3OWQwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK4Uzz27tUP7UA6/AiXHfEqdVaZbWCLYq8on3NcHVddfdE q9pffDdXTk9b7pu52wWcaLDVrv5aFZdqsYk29zJ+4nlVB4xVwHKXLBpJeEdaKCUZ dWDvQ1qokR2C1zY19KK6DT8KrUDQzNvT39+THZ8UxsJv5JbkcT5w0079mCu+OFXM GhwGGITlOkna7GUeGprtnzyuUDZbhM5J7b4eWNj7fNRHDjX7LU7x9mfAWsOBBO+4 P+DGFentL6W6uycCDvc+aACt7UdkpBJuQepESoDJupUNh6FtNvsA9QYshG3Z4u7v VUI+yZTsQ0ihH+9/qYM0neK2ztXNwpT1pRElOou5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfw3fuWuRkNfBjXMZIYRsFrblmtowHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzJkNjQyMTMzLWZlMzQtNDhmYS1iNWMzLTQ2NDBiODgyMjJmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQN+HAwDQYJKoZIhvcNAQELBQADggEBAJnWKk/WLXoxlgEgsU7xPygssQZ7 I8MTIuIOSSIEzkbTdFsLQKL+k8UrWCcUGNdeGewSXsUEt9ezrNfX5FYNBso+cQfb LycHislewZtwJcJpfr07tFggxkxEIQSs7OmMryMrfhlJBaTelij8OT1Nlqnd5IZe QoVJ9x92gOBgijpHB97mjWAvpBCITWEAMtfPX17SJjVkNR7V50+TuOflAGMte+aU btkoTxefEDFIFjALGDYBeTz2dG66iClmLFfGpcqRvt5QQi0Qp7+IgAVUcYBvxdVk W0g8d1kXmpQRK8/9oBHekqK0fhpjgSNhgRfl8KsHfqyn3PjjFqTsggCLgXQ= -----END CERTIFICATE-----Generated at Mon Aug 4 22:14:47 2025 by rpki-client