$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4a1a32f0-9ecf-4942-9f92-e1b88fad02bd.roa File: 4a1a32f0-9ecf-4942-9f92-e1b88fad02bd.roa (raw, json) Hash identifier: aE7NSnerRB/x0LgAt7QGh+p0ioGNjFHWePm0pp0uF8M= Subject key identifier: F1:D5:3C:D9:F5:96:19:3B:6D:D0:9F:43:F1:A7:20:7B:7D:24:97:54 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 11B6C392BBCF46AEE3E8DBB5C38CD58C4E261C6A Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4a1a32f0-9ecf-4942-9f92-e1b88fad02bd.roa Signing time: Tue 22 Jul 2025 15:10:14 +0000 ROA not before: Tue 22 Jul 2025 15:10:14 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.55.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:b6:c3:92:bb:cf:46:ae:e3:e8:db:b5:c3:8c:d5:8c:4e:26:1c:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 22 15:10:14 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=351ce461238a825bd6bc19571d15bf8367bd2c8fe13715cf470cf327981b53b0, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d9:0e:ad:3c:d1:31:3a:fb:43:9b:33:fe:14: 79:45:7a:84:5c:6d:8c:22:57:e6:20:14:ee:23:b5: 22:99:54:32:93:52:9b:e0:e8:26:cd:58:d4:58:88: 5e:f1:b7:e0:8d:a9:66:1c:15:0b:ef:5e:01:cd:ae: a8:73:d7:03:88:02:8c:1c:33:d8:4a:14:c2:de:94: c7:b2:c2:a3:81:58:08:c0:de:99:aa:4a:48:93:9d: 27:39:28:61:60:ce:ea:e8:60:fc:81:47:93:d3:b5: ff:5d:9a:52:77:fd:3a:ae:15:c7:54:f0:dc:91:16: e8:8a:e2:f3:c4:5f:b5:6b:f4:ce:9e:c6:de:c3:ad: c6:8c:84:b2:5a:91:5e:57:d2:e4:a3:03:6b:8a:a1: 17:5a:00:60:87:2a:01:da:cb:03:1f:ec:f4:db:d2: 3c:67:23:78:4c:2b:d1:76:08:9e:16:df:16:76:e5: 45:98:7a:9b:30:1b:9c:1e:25:36:d7:fd:d6:e4:7e: 2b:e0:1c:98:7b:5f:45:0c:55:92:db:de:f5:b1:c8: 7b:d0:a4:c7:6c:a9:34:4d:27:b9:f6:10:e8:14:71: de:53:c0:dc:e6:0d:17:b4:e8:2b:2e:6b:21:14:f2: d3:c7:af:b0:f7:d1:29:5d:2e:4e:b7:fb:da:f3:58: e7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D5:3C:D9:F5:96:19:3B:6D:D0:9F:43:F1:A7:20:7B:7D:24:97:54 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4a1a32f0-9ecf-4942-9f92-e1b88fad02bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.55.128.0/18 Signature Algorithm: sha256WithRSAEncryption 81:d0:b5:e9:b7:29:e8:92:41:33:95:c4:34:18:5b:d8:21:5c: 99:04:bd:31:cf:ac:84:e7:de:45:b9:e0:62:0c:c9:4d:66:82: 3d:38:67:90:1d:65:a1:ce:c1:35:1a:d8:9b:39:7e:a9:21:a0: 70:f9:e8:c4:b9:5b:f5:ac:59:af:4e:36:dc:db:2c:7b:40:01: 46:59:a5:fe:2d:59:1d:9c:2f:69:14:fe:c6:50:48:cb:cd:fa: d5:d7:c9:44:8a:c8:d7:01:62:31:9f:f2:ed:1c:5b:b1:00:9f: 97:75:42:fc:d5:cc:6f:66:01:df:8a:d6:b6:ef:4d:fe:20:fd: 6f:a1:04:e7:1c:62:81:78:b6:8e:cb:e0:65:f9:7c:00:0d:f8: 93:09:ff:47:6e:92:fd:5d:e6:55:e9:9b:f7:88:8e:28:a3:08: 9f:f7:23:06:a7:d3:73:40:a4:b4:36:b9:d7:f8:9f:6e:aa:4a: 21:57:e4:b7:6a:27:e9:58:9f:5e:48:32:ba:5b:ac:eb:8d:1e: dc:80:fa:e2:7c:0a:d7:7a:17:00:b2:1e:67:5a:87:33:18:ba: ed:c9:dd:a2:a4:3f:a4:8a:59:05:c3:47:40:ed:e4:1d:d0:e3: 0f:5c:91:e3:e4:78:74:72:f0:d2:9b:15:e6:13:fc:05:cd:69: 33:d0:cc:3c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEbbDkrvPRq7j6Nu1w4zVjE4mHGowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzIyMTUxMDE0WhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTFjZTQ2MTIzOGE4MjViZDZiYzE5NTcxZDE1YmY4MzY3 YmQyYzhmZTEzNzE1Y2Y0NzBjZjMyNzk4MWI1M2IwMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/2Q6tPNExOvtDmzP+FHlFeoRcbYwiV+YgFO4jtSKZVDKT Upvg6CbNWNRYiF7xt+CNqWYcFQvvXgHNrqhz1wOIAowcM9hKFMLelMeywqOBWAjA 3pmqSkiTnSc5KGFgzuroYPyBR5PTtf9dmlJ3/TquFcdU8NyRFuiK4vPEX7Vr9M6e xt7DrcaMhLJakV5X0uSjA2uKoRdaAGCHKgHaywMf7PTb0jxnI3hMK9F2CJ4W3xZ2 5UWYepswG5weJTbX/dbkfivgHJh7X0UMVZLb3vWxyHvQpMdsqTRNJ7n2EOgUcd5T wNzmDRe06CsuayEU8tPHr7D30SldLk63+9rzWOehAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8dU82fWWGTtt0J9D8acge30kl1QwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRhMWEzMmYwLTllY2YtNDk0Mi05ZjkyLWUxYjg4ZmFkMDJiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYNN4AwDQYJKoZIhvcNAQELBQADggEBAIHQtem3KeiSQTOVxDQYW9ghXJkE vTHPrITn3kW54GIMyU1mgj04Z5AdZaHOwTUa2Js5fqkhoHD56MS5W/WsWa9ONtzb LHtAAUZZpf4tWR2cL2kU/sZQSMvN+tXXyUSKyNcBYjGf8u0cW7EAn5d1QvzVzG9m Ad+K1rbvTf4g/W+hBOccYoF4to7L4GX5fAAN+JMJ/0dukv1d5lXpm/eIjiijCJ/3 Iwan03NApLQ2udf4n26qSiFX5LdqJ+lYn15IMrpbrOuNHtyA+uJ8Ctd6FwCyHmda hzMYuu3J3aKkP6SKWQXDR0Dt5B3Q4w9ckePkeHRy8NKbFeYT/AXNaTPQzDw= -----END CERTIFICATE-----Generated at Mon Aug 4 21:48:24 2025 by rpki-client