$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4393951a-48f6-4d5e-a6a1-c5a21955005d.roa File: 4393951a-48f6-4d5e-a6a1-c5a21955005d.roa (raw, json) Hash identifier: DEkowAsH2rR8rZu6Xy9+l+9TAXtxT+maCt/OGTaijVk= Subject key identifier: 40:34:9A:FA:BF:7D:A9:F4:C6:43:81:DF:B9:30:B4:C0:71:46:E1:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 70633C2D850C406D92F539B759E186C05788DCE5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4393951a-48f6-4d5e-a6a1-c5a21955005d.roa Signing time: Wed 18 Jun 2025 00:11:08 +0000 ROA not before: Wed 18 Jun 2025 00:11:08 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.42.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:63:3c:2d:85:0c:40:6d:92:f5:39:b7:59:e1:86:c0:57:88:dc:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:11:08 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=88900c81002cf7e2c8d9befefb7ffb0dfe6fd98e7670f878cd69d3999fb1d494, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:99:f3:3a:e6:0c:4d:89:09:fc:19:ee:65:28: 58:3b:67:26:0b:09:cf:c0:a8:6c:ac:d9:f4:a7:05: 83:de:fe:db:3e:c5:74:14:41:a1:e3:13:78:a8:82: 22:98:aa:b6:46:09:9e:4a:97:65:a7:91:4c:9e:b6: 15:d0:ec:eb:eb:2c:bf:f2:8d:03:65:71:8c:e1:70: 4e:a8:02:2f:12:3a:bd:21:95:27:67:e9:a7:f4:3b: 00:8a:13:7e:2e:00:7f:12:41:4b:ee:d7:2d:3a:24: e2:1c:2c:39:bf:60:7c:53:07:4d:0b:ef:f4:dd:a0: d0:82:8f:f7:3a:e4:39:1c:c4:92:5b:89:2a:08:2f: 2d:de:ed:45:f0:aa:67:35:d3:60:4a:04:4e:66:90: 92:8d:4e:f4:bf:26:f3:76:a4:55:8c:28:8a:be:1b: 79:b3:08:89:8c:aa:ff:8f:cb:c8:c9:74:d3:cb:a8: fe:3d:9d:ec:8a:68:83:1d:ef:3e:9c:3d:1a:02:29: 45:92:26:a3:21:a8:6d:29:54:ac:b2:a4:e8:60:f9: dc:57:06:f6:9a:d2:a1:35:be:be:65:ec:c9:5f:59: 1d:8f:82:21:b4:d3:70:e3:b6:84:a8:10:2e:50:6c: fa:db:a6:ec:5a:b2:f7:aa:00:bb:0d:e7:f2:d8:3a: f4:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:34:9A:FA:BF:7D:A9:F4:C6:43:81:DF:B9:30:B4:C0:71:46:E1:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4393951a-48f6-4d5e-a6a1-c5a21955005d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.42.0.0/16 Signature Algorithm: sha256WithRSAEncryption b5:0b:ee:b7:de:dd:f0:78:5f:c6:82:ff:72:54:67:13:ec:be: c2:e6:fb:db:11:96:ce:fb:01:93:df:5d:d7:60:4b:a1:f9:ad: 5f:2f:0a:d3:90:4d:69:90:84:0e:83:59:13:93:8a:a3:f2:c4: ce:ef:48:69:25:9f:05:a0:65:59:81:01:c6:ed:f5:06:c9:3e: 40:2a:a4:e1:33:9d:59:6a:5e:60:c8:a6:c8:fc:e6:00:ce:8d: 16:cb:f6:63:5e:5e:2a:3b:fc:5a:1c:b3:64:92:de:e9:78:b4: 75:73:80:fe:8a:f9:b4:d0:c2:76:43:6d:38:03:e5:0d:6d:dd: fe:38:20:df:80:18:7f:9e:23:95:bb:53:92:15:df:e8:6d:20: b2:8b:09:1a:dc:e1:af:15:46:8c:ad:4c:64:4d:80:9b:d5:b4: 7d:19:1c:65:02:b9:e0:ce:c4:9f:2a:4d:ca:d2:38:e3:61:d5: 33:dc:2b:cc:eb:c3:46:e2:aa:f4:2c:69:5f:f1:89:e1:bc:40: df:40:1c:cb:33:e2:09:70:4c:6f:18:39:52:50:38:82:c5:b8: 01:00:33:ab:d1:dd:b3:a8:5e:b2:b8:e8:8d:e4:f7:9b:c0:f1: 0b:f3:04:ad:c4:05:aa:6e:8a:74:5b:02:17:22:a2:96:cd:ac: 59:34:4b:17 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcGM8LYUMQG2S9Tm3WeGGwFeI3OUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAxMTA4WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODkwMGM4MTAwMmNmN2UyYzhkOWJlZmVmYjdmZmIwZGZl NmZkOThlNzY3MGY4NzhjZDY5ZDM5OTlmYjFkNDk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBmfM65gxNiQn8Ge5lKFg7ZyYLCc/AqGys2fSnBYPe/ts+ xXQUQaHjE3iogiKYqrZGCZ5Kl2WnkUyethXQ7OvrLL/yjQNlcYzhcE6oAi8SOr0h lSdn6af0OwCKE34uAH8SQUvu1y06JOIcLDm/YHxTB00L7/TdoNCCj/c65DkcxJJb iSoILy3e7UXwqmc102BKBE5mkJKNTvS/JvN2pFWMKIq+G3mzCImMqv+Py8jJdNPL qP49neyKaIMd7z6cPRoCKUWSJqMhqG0pVKyypOhg+dxXBvaa0qE1vr5l7MlfWR2P giG003DjtoSoEC5QbPrbpuxasveqALsN5/LYOvQfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQDSa+r99qfTGQ4HfuTC0wHFG4f0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzOTM5NTFhLTQ4ZjYtNGQ1ZS1hNmExLWM1YTIxOTU1MDA1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjKjANBgkqhkiG9w0BAQsFAAOCAQEAtQvut97d8HhfxoL/clRnE+y+wub7 2xGWzvsBk99d12BLofmtXy8K05BNaZCEDoNZE5OKo/LEzu9IaSWfBaBlWYEBxu31 Bsk+QCqk4TOdWWpeYMimyPzmAM6NFsv2Y15eKjv8WhyzZJLe6Xi0dXOA/or5tNDC dkNtOAPlDW3d/jgg34AYf54jlbtTkhXf6G0gsosJGtzhrxVGjK1MZE2Am9W0fRkc ZQK54M7EnypNytI442HVM9wrzOvDRuKq9CxpX/GJ4bxA30AcyzPiCXBMbxg5UlA4 gsW4AQAzq9Hds6hesrjojeT3m8DxC/MErcQFqm6KdFsCFyKils2sWTRLFw== -----END CERTIFICATE-----Generated at Sun Jun 29 16:47:45 2025 by rpki-client