$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa File: 0f893b02-709b-4a20-ab74-f859a710b1be.roa (raw, json) Hash identifier: tOYJp4myh9pen9MnM3OcC8PIpTge+RxufYfYCtKLpkI= Subject key identifier: 02:AC:4A:0B:AD:22:09:A4:46:74:41:82:08:D6:D6:F8:6C:5B:2A:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6839FF65DCF27CF84A0C6F5766CC74DECD864A48 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa Signing time: Wed 18 Jun 2025 00:11:01 +0000 ROA not before: Wed 18 Jun 2025 00:11:01 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.128.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:39:ff:65:dc:f2:7c:f8:4a:0c:6f:57:66:cc:74:de:cd:86:4a:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:11:01 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=3c4f0e99a8d465285f6e9b46610f83eef8d14f38d97d1fe0c71f2751d4a3be68, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:02:30:76:1d:b9:60:39:52:42:bd:a8:d4:59: 2b:bd:67:bc:d5:66:e8:95:f8:90:a7:86:b1:0b:7d: 73:e7:f7:e5:f3:be:00:ae:79:9b:3f:eb:53:91:6a: d6:c2:a0:11:f5:fa:e1:ff:ed:41:e7:ca:c6:62:48: 57:52:1b:19:2b:3c:f7:53:d5:bb:22:30:c8:bc:6e: f4:7e:42:24:59:85:0f:e2:87:bb:7e:94:49:88:b5: 9c:e3:bc:1f:8c:70:8e:d1:27:68:07:5e:a0:c6:65: 09:22:24:54:82:31:44:32:80:90:29:a5:8f:39:11: b0:80:89:26:e2:88:10:18:da:2d:98:d5:e5:bd:dd: 2d:e9:c2:d7:80:d0:c1:bb:4a:8e:a5:28:b8:f7:d2: 06:6c:4e:ae:16:41:4a:d9:9c:f9:a2:78:aa:1f:34: 01:70:e1:f4:0e:b7:e4:7a:8f:20:dc:c4:36:5c:fc: f7:94:cd:f2:53:76:2d:d6:58:9e:e5:be:5e:1c:b2: 1a:16:b1:90:46:0b:5f:49:a3:0c:40:f1:2a:28:fe: 2d:b5:1f:44:31:2c:ec:95:84:92:1c:0f:01:f6:0f: 82:49:b4:bd:d3:bb:06:99:ee:b4:9c:3b:4a:a0:4a: 1c:4e:3b:4b:69:89:cd:50:6e:09:eb:cc:b7:5b:f8: 88:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:AC:4A:0B:AD:22:09:A4:46:74:41:82:08:D6:D6:F8:6C:5B:2A:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f893b02-709b-4a20-ab74-f859a710b1be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.128.64.0/18 Signature Algorithm: sha256WithRSAEncryption 86:02:8d:d5:cc:e8:59:b5:d1:0a:0a:d2:e5:c5:63:f3:4a:47: db:31:4f:0e:97:a4:d0:12:ad:ef:80:c7:bd:c6:c0:17:51:e8: bf:bf:70:35:58:d2:d5:be:8b:2a:b3:44:6d:b9:4a:db:28:63: 3d:ad:c9:b4:ae:cf:83:45:df:72:77:2e:92:e3:4f:2b:8b:1f: 84:09:d0:6f:e9:30:6a:53:cf:69:29:37:88:94:b2:eb:88:43: ef:40:36:c6:38:f4:73:04:2c:fa:54:93:b3:c3:88:43:28:f6: 4b:4b:bd:23:59:09:f8:a4:e7:19:8d:ba:9a:af:ea:22:1c:ed: 95:ee:35:66:7a:29:15:4e:f9:a2:d4:6c:5e:73:13:1c:f8:06: f7:d6:fe:a4:dd:ed:44:ac:81:91:97:96:02:06:43:15:95:24: d7:ca:f4:82:22:c9:4e:cc:a4:1a:91:f6:b4:7d:e8:95:c8:d9: f4:00:e5:15:42:3d:af:d9:43:6e:dc:5a:91:74:f5:d3:47:e6: 64:5f:9d:35:94:1e:06:f5:b8:7e:be:a9:f1:e7:00:f2:a6:6c: 55:1d:e5:d3:0e:12:d2:13:09:e1:ec:f0:64:32:d7:ce:ee:cf: e9:8a:b6:3c:60:9b:fd:5d:8b:33:26:3c:a8:3e:52:bd:48:bc: cf:6a:d8:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaDn/ZdzyfPhKDG9XZsx03s2GSkgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAxMTAxWhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzRmMGU5OWE4ZDQ2NTI4NWY2ZTliNDY2MTBmODNlZWY4 ZDE0ZjM4ZDk3ZDFmZTBjNzFmMjc1MWQ0YTNiZTY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD2AjB2HblgOVJCvajUWSu9Z7zVZuiV+JCnhrELfXPn9+Xz vgCueZs/61ORatbCoBH1+uH/7UHnysZiSFdSGxkrPPdT1bsiMMi8bvR+QiRZhQ/i h7t+lEmItZzjvB+McI7RJ2gHXqDGZQkiJFSCMUQygJAppY85EbCAiSbiiBAY2i2Y 1eW93S3pwteA0MG7So6lKLj30gZsTq4WQUrZnPmieKofNAFw4fQOt+R6jyDcxDZc /PeUzfJTdi3WWJ7lvl4cshoWsZBGC19JowxA8Soo/i21H0QxLOyVhJIcDwH2D4JJ tL3TuwaZ7rScO0qgShxOO0tpic1QbgnrzLdb+IgTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAqxKC60iCaRGdEGCCNbW+GxbKswwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmODkzYjAyLTcwOWItNGEyMC1hYjc0LWY4NTlhNzEwYjFiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYjgEAwDQYJKoZIhvcNAQELBQADggEBAIYCjdXM6Fm10QoK0uXFY/NKR9sx Tw6XpNASre+Ax73GwBdR6L+/cDVY0tW+iyqzRG25StsoYz2tybSuz4NF33J3LpLj TyuLH4QJ0G/pMGpTz2kpN4iUsuuIQ+9ANsY49HMELPpUk7PDiEMo9ktLvSNZCfik 5xmNupqv6iIc7ZXuNWZ6KRVO+aLUbF5zExz4BvfW/qTd7USsgZGXlgIGQxWVJNfK 9IIiyU7MpBqR9rR96JXI2fQA5RVCPa/ZQ27cWpF09dNH5mRfnTWUHgb1uH6+qfHn APKmbFUd5dMOEtITCeHs8GQy187uz+mKtjxgm/1dizMmPKg+Ur1IvM9q2HE= -----END CERTIFICATE-----Generated at Tue Jul 1 17:15:05 2025 by rpki-client