$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96095cfe-3a98-4d43-95f3-5c868c886bae.roa File: 96095cfe-3a98-4d43-95f3-5c868c886bae.roa (raw, json) Hash identifier: E+eku3Jbo1aSjC6ABG5jlEHJ3Q4p+WCf0/YtuU2Ypho= Subject key identifier: 56:36:B6:09:F9:18:7D:72:37:A0:52:9A:31:EF:63:16:AA:9C:4B:B1 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0E25A1E393EC2F808FA5AD799926EE60BF0949D3 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96095cfe-3a98-4d43-95f3-5c868c886bae.roa Signing time: Tue 22 Jul 2025 15:00:36 +0000 ROA not before: Tue 22 Jul 2025 15:00:36 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.228.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:25:a1:e3:93:ec:2f:80:8f:a5:ad:79:99:26:ee:60:bf:09:49:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 22 15:00:36 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=4f56d69e460a24d5a578a263de9e3ef3e8700c4de4c5f8e37545e46530a3a735, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:b2:75:39:69:92:5d:37:44:32:6d:9e:75:1c: 66:3b:c0:12:17:50:21:ef:bc:06:3b:d8:47:61:0f: 3b:dc:91:d7:db:85:7d:59:9c:de:a9:66:e3:46:20: 5f:10:af:e7:13:55:b3:46:44:60:58:18:ae:83:6a: 0b:bf:e6:8e:d1:34:0c:82:01:19:11:1e:2b:42:d3: 9f:e7:ef:63:56:9c:d5:2b:33:fc:77:d7:6f:35:d0: 92:5d:fa:0c:70:69:9f:b7:17:8f:85:f8:67:a8:1f: 0a:34:bf:86:bc:7a:77:38:8c:33:6a:eb:3c:28:94: 30:14:1d:59:5c:ef:24:b2:80:eb:e5:d6:83:1a:65: 1c:52:1f:75:66:08:fe:96:1f:02:f9:79:b7:a8:11: f8:7e:a5:09:d2:74:25:98:9e:8e:f2:e1:ce:3a:f2: 44:fd:c6:63:0f:b6:64:8c:a5:32:be:0f:48:da:bb: 88:ea:ed:5a:48:81:18:87:1f:2f:2b:ad:58:39:47: d2:37:5a:dd:39:36:f5:c6:ec:7c:44:bc:ce:ff:05: ff:6a:35:30:23:34:e5:b6:8d:03:61:f4:9b:65:9f: 39:03:e1:af:0b:bc:6c:78:3d:5e:ab:ce:d4:e6:02: 85:4d:9e:f2:1a:1e:4e:58:57:d7:69:2a:5a:c4:10: b9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:36:B6:09:F9:18:7D:72:37:A0:52:9A:31:EF:63:16:AA:9C:4B:B1 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/96095cfe-3a98-4d43-95f3-5c868c886bae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.228.0.0/15 Signature Algorithm: sha256WithRSAEncryption 1f:ca:4c:55:6c:0d:ca:29:56:40:8a:85:cb:20:60:b7:ff:6a: 68:09:3e:bd:2f:3c:0f:90:79:f6:98:de:d8:12:9d:c4:da:cc: 47:45:65:66:32:8b:9d:2a:c7:c9:61:7d:25:2f:0f:e9:51:26: e2:eb:b3:4c:4c:9c:a4:39:7d:89:24:f0:4f:b0:26:78:5b:93: e0:6d:ed:58:fd:db:1b:8b:26:6a:05:27:f0:c1:ab:1b:5c:01: 1f:c7:a7:4c:79:d5:73:3c:ff:f7:92:fa:41:de:08:2c:11:94: f0:0a:52:e7:7a:6b:72:55:93:88:74:60:3d:4b:86:a0:b2:51: 75:01:21:8d:c2:7c:10:07:e7:55:6f:77:fc:92:5a:d9:92:99: 97:50:e4:3e:a7:ab:9f:47:b3:86:7c:59:e0:f4:20:1f:98:55: be:1d:0d:47:b6:c8:4b:1f:fa:7d:d2:a4:a7:d8:1d:24:1d:d9: 97:a2:48:d3:94:cc:dd:8f:b4:40:6f:20:8b:4f:84:e7:c9:51: d1:0d:c2:dc:36:64:ef:46:1d:de:af:43:fe:e2:75:63:38:8e: 65:46:7e:af:33:1e:4b:38:ce:7a:ad:65:ea:4b:96:ee:18:45: c8:0a:72:da:74:e6:61:dd:6f:a1:d1:fd:37:39:69:e1:af:d6: 50:ed:f6:c2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDiWh45PsL4CPpa15mSbuYL8JSdMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzIyMTUwMDM2WhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjU2ZDY5ZTQ2MGEyNGQ1YTU3OGEyNjNkZTllM2VmM2U4 NzAwYzRkZTRjNWY4ZTM3NTQ1ZTQ2NTMwYTNhNzM1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRsnU5aZJdN0QybZ51HGY7wBIXUCHvvAY72EdhDzvckdfb hX1ZnN6pZuNGIF8Qr+cTVbNGRGBYGK6Dagu/5o7RNAyCARkRHitC05/n72NWnNUr M/x312810JJd+gxwaZ+3F4+F+GeoHwo0v4a8enc4jDNq6zwolDAUHVlc7ySygOvl 1oMaZRxSH3VmCP6WHwL5ebeoEfh+pQnSdCWYno7y4c468kT9xmMPtmSMpTK+D0ja u4jq7VpIgRiHHy8rrVg5R9I3Wt05NvXG7HxEvM7/Bf9qNTAjNOW2jQNh9JtlnzkD 4a8LvGx4PV6rztTmAoVNnvIaHk5YV9dpKlrEELlHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVja2CfkYfXI3oFKaMe9jFqqcS7EwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzk2MDk1Y2ZlLTNhOTgtNGQ0My05NWYzLTVjODY4Yzg4NmJhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEN5DANBgkqhkiG9w0BAQsFAAOCAQEAH8pMVWwNyilWQIqFyyBgt/9qaAk+ vS88D5B59pje2BKdxNrMR0VlZjKLnSrHyWF9JS8P6VEm4uuzTEycpDl9iSTwT7Am eFuT4G3tWP3bG4smagUn8MGrG1wBH8enTHnVczz/95L6Qd4ILBGU8ApS53prclWT iHRgPUuGoLJRdQEhjcJ8EAfnVW93/JJa2ZKZl1DkPqern0ezhnxZ4PQgH5hVvh0N R7bISx/6fdKkp9gdJB3Zl6JI05TM3Y+0QG8gi0+E58lR0Q3C3DZk70Yd3q9D/uJ1 YziOZUZ+rzMeSzjOeq1l6kuW7hhFyApy2nTmYd1vodH9Nzlp4a/WUO32wg== -----END CERTIFICATE-----Generated at Mon Aug 4 21:54:24 2025 by rpki-client