$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d8a1b36-3855-4b0a-8d07-ec0c2baf4fe8.roa File: 6d8a1b36-3855-4b0a-8d07-ec0c2baf4fe8.roa (raw, json) Hash identifier: 2anueRPOMj6sTaycMFN0u0KZWos/rM5umyU0RYUA4Sg= Subject key identifier: 83:72:54:0D:BD:89:56:99:02:CE:D5:52:61:58:97:A2:F5:6F:A5:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B2B5601091CCA5013F611AA6E8924CB51BE5192 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d8a1b36-3855-4b0a-8d07-ec0c2baf4fe8.roa Signing time: Fri 08 Aug 2025 00:11:31 +0000 ROA not before: Fri 08 Aug 2025 00:11:31 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.28.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:2b:56:01:09:1c:ca:50:13:f6:11:aa:6e:89:24:cb:51:be:51:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:11:31 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=3bb212ff27b00ee04cabeba23fd556b8c30a136a0d157f06f987b83e091a38d3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:78:03:86:3e:97:1e:78:e8:48:43:d2:b5:f5: 35:ed:f3:a6:3f:8c:4b:0a:63:96:4d:32:ff:60:aa: 1e:39:73:da:7d:a2:ba:3c:e8:51:7b:2c:6d:ed:59: 1a:41:68:bd:d0:fa:47:31:f4:d7:9d:7f:43:4b:f8: de:15:e2:a2:35:ff:ca:29:94:db:93:ae:0e:70:ea: d6:cf:5c:03:f2:91:cf:bd:46:c0:ae:ab:56:a2:d8: d5:c9:c1:e1:57:b5:de:71:a4:9c:ed:87:59:8b:9a: 0c:d3:08:04:ca:0c:11:d8:8a:fd:3e:9d:ea:08:16: 2e:41:e8:b4:5d:3c:7a:70:40:fb:57:10:56:59:80: 68:b7:98:5c:68:8c:aa:c6:22:72:65:59:ce:c7:1d: fd:be:35:23:27:db:74:59:da:d5:2f:8c:ce:20:77: 01:85:98:ae:a1:66:9f:0a:e2:a5:89:92:ec:a7:e0: 5b:64:3e:26:9a:4b:f3:d6:d2:17:21:e9:fd:83:9d: 45:21:ae:64:8c:fb:64:97:dd:fa:97:0b:b1:a7:51: 23:bf:93:7b:e6:d9:f0:d0:55:71:af:ab:a0:c2:2b: a7:b5:e1:1a:e5:67:99:72:58:2b:76:bf:1e:75:ba: 12:14:d6:f4:17:10:7a:50:3c:db:d2:17:bc:c8:56: 8c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:72:54:0D:BD:89:56:99:02:CE:D5:52:61:58:97:A2:F5:6F:A5:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d8a1b36-3855-4b0a-8d07-ec0c2baf4fe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.28.0.0/15 Signature Algorithm: sha256WithRSAEncryption 01:86:41:dc:0a:97:df:be:cb:6f:16:a6:ae:e5:83:c4:c7:29: 8d:01:fd:f2:bc:c0:28:53:69:25:80:cc:54:ee:7f:0f:b1:09: a1:bb:fb:dc:24:d6:67:be:20:fe:12:48:96:1c:29:8a:1b:f3: d3:e2:05:f8:aa:ac:1e:4a:88:aa:d3:6e:e8:21:b9:d8:62:56: 39:f9:25:ce:d1:11:cb:45:b1:3e:a9:23:f7:a4:50:22:64:6d: 3c:92:05:b3:26:67:2c:cd:f0:da:4e:86:01:78:17:7a:73:64: e3:e3:52:43:36:2d:f7:68:ba:3d:3c:23:8b:de:34:31:18:b6: e8:9c:e7:5a:dc:ff:51:92:04:39:ee:9c:86:96:7f:51:1f:5b: 62:d9:35:05:32:a2:c0:c1:42:ac:19:90:e6:a3:37:c9:f4:7c: 4d:08:a7:3e:45:08:e6:12:a1:a9:5f:12:4a:ef:cc:b6:41:10: d6:2b:6c:99:7c:57:c1:d9:5c:ff:6c:40:dd:50:ae:de:56:27: bd:21:60:2a:9a:7b:0f:41:f7:a2:32:3e:dd:0a:30:d9:4e:cd: 09:4b:24:7b:11:51:8e:fa:9c:3c:b5:1e:45:8d:c3:19:c6:e8: 3e:89:bb:a4:3d:3a:ae:01:ee:00:ff:15:ce:06:05:ec:d5:26: 4e:3b:54:d5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaytWAQkcylAT9hGqbokky1G+UZIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAxMTMxWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYmIyMTJmZjI3YjAwZWUwNGNhYmViYTIzZmQ1NTZiOGMz MGExMzZhMGQxNTdmMDZmOTg3YjgzZTA5MWEzOGQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8eAOGPpceeOhIQ9K19TXt86Y/jEsKY5ZNMv9gqh45c9p9 oro86FF7LG3tWRpBaL3Q+kcx9Nedf0NL+N4V4qI1/8oplNuTrg5w6tbPXAPykc+9 RsCuq1ai2NXJweFXtd5xpJzth1mLmgzTCATKDBHYiv0+neoIFi5B6LRdPHpwQPtX EFZZgGi3mFxojKrGInJlWc7HHf2+NSMn23RZ2tUvjM4gdwGFmK6hZp8K4qWJkuyn 4FtkPiaaS/PW0hch6f2DnUUhrmSM+2SX3fqXC7GnUSO/k3vm2fDQVXGvq6DCK6e1 4RrlZ5lyWCt2vx51uhIU1vQXEHpQPNvSF7zIVow5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUg3JUDb2JVpkCztVSYViXovVvpeswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkOGExYjM2LTM4NTUtNGIwYS04ZDA3LWVjMGMyYmFmNGZlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjHDANBgkqhkiG9w0BAQsFAAOCAQEAAYZB3AqX377LbxamruWDxMcpjQH9 8rzAKFNpJYDMVO5/D7EJobv73CTWZ74g/hJIlhwpihvz0+IF+KqsHkqIqtNu6CG5 2GJWOfklztERy0WxPqkj96RQImRtPJIFsyZnLM3w2k6GAXgXenNk4+NSQzYt92i6 PTwji940MRi26JznWtz/UZIEOe6chpZ/UR9bYtk1BTKiwMFCrBmQ5qM3yfR8TQin PkUI5hKhqV8SSu/MtkEQ1itsmXxXwdlc/2xA3VCu3lYnvSFgKpp7D0H3ojI+3Qow 2U7NCUskexFRjvqcPLUeRY3DGcboPom7pD06rgHuAP8VzgYF7NUmTjtU1Q== -----END CERTIFICATE-----Generated at Sat Aug 23 12:24:42 2025 by rpki-client