$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c569629-a4ef-463e-a6a6-70022ce4aea3.roa File: 3c569629-a4ef-463e-a6a6-70022ce4aea3.roa (raw, json) Hash identifier: zZ/h1jBMV9iDfKVZ0Hkd4qVzZbGzwlGI+9HzA3KtgAo= Subject key identifier: 50:30:68:6D:42:26:BF:FE:82:7E:62:37:19:57:D0:69:49:4C:80:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B1A824011EF352D8AC44CD89C1ADC9274BA1B6A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c569629-a4ef-463e-a6a6-70022ce4aea3.roa Signing time: Wed 06 Aug 2025 00:30:23 +0000 ROA not before: Wed 06 Aug 2025 00:30:23 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:1a:82:40:11:ef:35:2d:8a:c4:4c:d8:9c:1a:dc:92:74:ba:1b:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 00:30:23 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=0e99c8575a10f142e6c9783e67cda2e64cf6cf9f011cd90231565448b219f18a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b0:fb:7a:af:9a:7d:01:91:2c:c5:50:c4:e6: aa:6f:d4:ff:65:b8:8d:30:e7:8b:9a:2b:1d:03:9a: fa:7d:cf:3b:d0:96:23:a2:a3:79:f9:3e:bf:8b:93: 5a:41:9b:34:f2:1d:c0:85:ac:84:ed:81:c5:f1:9b: c7:5f:1d:8d:06:a4:1d:da:3e:aa:3f:87:fc:05:c7: 5d:ff:ab:90:1a:68:da:5a:0b:0c:f2:bd:83:86:5f: db:69:66:aa:8f:4f:43:13:76:f4:9d:dc:53:1e:09: 65:6f:82:60:73:37:f2:05:a3:b8:68:3a:47:f1:c1: fa:79:d2:76:3a:4f:f8:78:b9:f7:38:bb:47:c3:14: 0d:c0:97:91:0e:46:41:11:2b:72:58:60:b3:93:15: 2c:c6:a8:7d:fc:20:00:01:3a:65:2f:de:75:37:e2: 64:02:ce:f6:50:48:26:7a:55:cf:80:66:25:2f:67: 32:da:91:68:e3:ff:5e:d3:99:5f:8a:06:ac:90:d7: d1:4d:a3:50:77:2f:56:99:ce:d1:94:40:e9:60:52: 9a:9d:50:73:c7:42:df:d4:44:25:3e:ce:cb:5b:c5: 66:31:ec:0a:76:42:16:cd:03:06:29:ad:d0:0a:a6: 56:59:70:6c:bb:da:8e:e3:30:d1:ff:48:a0:27:8b: 6a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:30:68:6D:42:26:BF:FE:82:7E:62:37:19:57:D0:69:49:4C:80:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c569629-a4ef-463e-a6a6-70022ce4aea3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.64.0/18 Signature Algorithm: sha256WithRSAEncryption 5d:ea:c0:3e:7f:ff:3d:3e:85:17:eb:6c:5b:8a:45:87:f4:9a: 0d:1f:3c:a4:a3:45:cd:e9:e9:58:4c:c3:85:7d:63:c2:3c:44: 8a:b4:43:11:76:d7:9f:34:4a:a7:e3:52:87:a5:a3:22:88:17: 80:22:a3:19:13:7b:a0:d6:50:a2:89:3b:25:83:9d:79:a0:10: 15:19:84:3d:3c:a4:09:d9:7c:15:54:f3:c8:eb:2a:f3:48:e4: ac:88:7a:48:9d:50:20:d7:e6:12:41:7a:6a:f4:e3:6d:f1:e4: 9b:44:95:15:56:2d:96:7f:c5:af:a6:50:81:46:7a:49:fc:cc: c1:72:dd:70:34:9c:ff:e9:3d:c5:22:53:08:c7:d2:78:a1:5e: 7d:8d:cf:dd:ba:1e:93:52:26:2c:9b:8f:22:34:b6:5b:3d:9b: f3:a8:88:a9:89:5b:13:5d:29:fd:16:60:8d:39:4a:3a:af:12: 3e:86:e1:1f:a8:1f:c3:6e:61:92:cf:83:62:d5:a4:e8:74:52: a4:ed:18:2b:ff:bc:ee:68:3d:bb:68:56:78:25:ed:32:64:2b: 64:3d:e8:ce:8d:91:74:8c:05:5d:98:34:7c:c5:f0:1c:0e:a9: 61:0a:89:1b:47:12:8e:2c:05:55:fe:4e:57:66:25:59:2f:e0: c9:6b:46:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKxqCQBHvNS2KxEzYnBrcknS6G2owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDAzMDIzWhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZTk5Yzg1NzVhMTBmMTQyZTZjOTc4M2U2N2NkYTJlNjRj ZjZjZjlmMDExY2Q5MDIzMTU2NTQ0OGIyMTlmMThhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbsPt6r5p9AZEsxVDE5qpv1P9luI0w54uaKx0Dmvp9zzvQ liOio3n5Pr+Lk1pBmzTyHcCFrITtgcXxm8dfHY0GpB3aPqo/h/wFx13/q5AaaNpa CwzyvYOGX9tpZqqPT0MTdvSd3FMeCWVvgmBzN/IFo7hoOkfxwfp50nY6T/h4ufc4 u0fDFA3Al5EORkERK3JYYLOTFSzGqH38IAABOmUv3nU34mQCzvZQSCZ6Vc+AZiUv ZzLakWjj/17TmV+KBqyQ19FNo1B3L1aZztGUQOlgUpqdUHPHQt/URCU+zstbxWYx 7Ap2QhbNAwYprdAKplZZcGy72o7jMNH/SKAni2r7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUDBobUImv/6CfmI3GVfQaUlMgEIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjNTY5NjI5LWE0ZWYtNDYzZS1hNmE2LTcwMDIyY2U0YWVhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYjNkAwDQYJKoZIhvcNAQELBQADggEBAF3qwD5//z0+hRfrbFuKRYf0mg0f PKSjRc3p6VhMw4V9Y8I8RIq0QxF21580SqfjUoeloyKIF4AioxkTe6DWUKKJOyWD nXmgEBUZhD08pAnZfBVU88jrKvNI5KyIekidUCDX5hJBemr0423x5JtElRVWLZZ/ xa+mUIFGekn8zMFy3XA0nP/pPcUiUwjH0nihXn2Nz926HpNSJiybjyI0tls9m/Oo iKmJWxNdKf0WYI05SjqvEj6G4R+oH8NuYZLPg2LVpOh0UqTtGCv/vO5oPbtoVngl 7TJkK2Q96M6NkXSMBV2YNHzF8BwOqWEKiRtHEo4sBVX+TldmJVkv4MlrRr4= -----END CERTIFICATE-----Generated at Sat Aug 23 08:22:20 2025 by rpki-client