$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78fa3972-5318-47b7-a9d6-d6ceecbc554e.roa File: 78fa3972-5318-47b7-a9d6-d6ceecbc554e.roa (raw, json) Hash identifier: 6LOk1u1L7eFTtXq4l3nVzWwz+o1Vtzf2qS3QzvZ/lLY= Subject key identifier: BB:FC:F3:FE:E1:08:E3:DC:18:CA:51:60:65:47:B0:81:1A:4B:20:86 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A18379E574FBDC8F24674616160E2E59F2F2B0B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78fa3972-5318-47b7-a9d6-d6ceecbc554e.roa Signing time: Sat 23 Aug 2025 00:50:17 +0000 ROA not before: Sat 23 Aug 2025 00:50:17 +0000 ROA not after: Sat 27 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.55.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:18:37:9e:57:4f:bd:c8:f2:46:74:61:61:60:e2:e5:9f:2f:2b:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 23 00:50:17 2025 GMT Not After : Sep 27 23:59:59 2025 GMT Subject: serialNumber=fcd507b3cf73f63b2fb45c4ebb9dd22fef36e0c0c31d0da84cf1fdce5f2eac93, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a5:50:2d:fd:6c:3c:1a:56:01:5e:1c:fa:83: 3e:b0:a6:d2:eb:dc:e6:87:3b:6d:72:54:0e:f6:00: b8:d6:4d:a3:9e:ea:30:ed:92:44:30:b9:47:7b:28: e2:85:b0:3c:57:90:e3:c8:9d:fb:ed:19:b6:72:93: 57:e4:f4:bc:25:f6:9c:8e:6f:7b:98:43:1d:85:e6: c1:02:ba:0a:01:03:39:d2:72:a2:49:3c:ca:f5:4b: 2d:ec:68:f0:a6:33:95:93:ed:76:1c:f5:d2:cf:2e: 58:c5:3a:0d:64:df:1e:a0:1c:91:b9:c9:df:6b:14: 64:2c:5b:95:98:5f:6f:bc:10:64:4d:3a:27:04:eb: 73:ea:1a:d6:d7:5c:46:33:07:10:65:5e:16:3e:63: ea:a0:d5:2d:83:81:8b:47:84:6c:52:f5:61:a6:93: 49:84:3c:53:69:c2:ff:9b:94:0f:f2:e6:d9:d5:3f: b2:22:61:41:4f:3f:41:34:82:43:5e:83:59:9f:2e: d8:fa:97:8d:98:20:41:30:70:ba:4b:8c:35:73:8d: f4:c0:3f:4a:7e:cf:14:03:d9:17:8a:f7:e2:64:c9: a3:cc:94:e5:b3:23:d4:05:a9:af:76:db:91:27:d4: 8d:aa:17:b9:d9:82:ce:a4:21:9c:45:5b:e7:7c:11: 64:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:FC:F3:FE:E1:08:E3:DC:18:CA:51:60:65:47:B0:81:1A:4B:20:86 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78fa3972-5318-47b7-a9d6-d6ceecbc554e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.55.0.0/16 Signature Algorithm: sha256WithRSAEncryption 57:14:d9:18:e8:61:ba:2f:9c:ab:47:54:e0:19:47:48:af:7a: 8b:63:2e:4a:17:b9:0b:25:e2:b7:03:7b:21:35:de:a5:4e:c4: ec:f3:a1:1b:d1:55:03:05:34:f8:16:4f:a0:fc:6c:0b:e5:31: b9:7a:bb:3b:ed:c2:99:99:7a:8b:36:a4:65:9f:a1:ef:db:44: 1f:df:be:1f:8b:a2:ee:69:87:ef:98:dc:58:69:9d:49:83:ff: 8e:d4:6e:71:56:9f:6c:05:70:21:7d:68:b0:b2:e8:39:45:6d: fd:05:ba:11:03:97:10:2b:b7:2b:33:03:c2:bf:39:cf:2a:5b: 4c:16:a4:37:8f:c2:eb:f9:da:43:ed:f4:57:7d:62:5e:d8:44: 4f:dd:89:60:12:f4:07:77:75:df:be:a7:3f:6e:5b:79:44:8d: f4:1b:3b:cc:b4:9a:25:a9:d7:8b:77:56:e5:55:fa:78:0e:fb: 2d:ec:d1:d6:2b:89:a0:73:ab:73:b8:43:f1:dd:b7:f1:91:db: b5:d5:0e:4c:1d:d8:04:b3:7c:c6:4c:e8:db:9f:dd:4a:df:a2: 36:f9:66:1e:74:82:78:8d:1a:d6:e3:43:c2:0b:af:d2:3a:0b: 3e:21:5f:ef:33:a9:9f:09:bd:a2:5a:2c:38:e0:4f:63:d4:ae: e4:b3:6e:6a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOhg3nldPvcjyRnRhYWDi5Z8vKwswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIzMDA1MDE3WhcNMjUwOTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmY2Q1MDdiM2NmNzNmNjNiMmZiNDVjNGViYjlkZDIyZmVm MzZlMGMwYzMxZDBkYTg0Y2YxZmRjZTVmMmVhYzkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfpVAt/Ww8GlYBXhz6gz6wptLr3OaHO21yVA72ALjWTaOe 6jDtkkQwuUd7KOKFsDxXkOPInfvtGbZyk1fk9Lwl9pyOb3uYQx2F5sECugoBAznS cqJJPMr1Sy3saPCmM5WT7XYc9dLPLljFOg1k3x6gHJG5yd9rFGQsW5WYX2+8EGRN OicE63PqGtbXXEYzBxBlXhY+Y+qg1S2DgYtHhGxS9WGmk0mEPFNpwv+blA/y5tnV P7IiYUFPP0E0gkNeg1mfLtj6l42YIEEwcLpLjDVzjfTAP0p+zxQD2ReK9+JkyaPM lOWzI9QFqa9225En1I2qF7nZgs6kIZxFW+d8EWQNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUu/zz/uEI49wYylFgZUewgRpLIIYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4ZmEzOTcyLTUzMTgtNDdiNy1hOWQ2LWQ2Y2VlY2JjNTU0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjNzANBgkqhkiG9w0BAQsFAAOCAQEAVxTZGOhhui+cq0dU4BlHSK96i2Mu She5CyXitwN7ITXepU7E7POhG9FVAwU0+BZPoPxsC+UxuXq7O+3CmZl6izakZZ+h 79tEH9++H4ui7mmH75jcWGmdSYP/jtRucVafbAVwIX1osLLoOUVt/QW6EQOXECu3 KzMDwr85zypbTBakN4/C6/naQ+30V31iXthET92JYBL0B3d1376nP25beUSN9Bs7 zLSaJanXi3dW5VX6eA77LezR1iuJoHOrc7hD8d238ZHbtdUOTB3YBLN8xkzo25/d St+iNvlmHnSCeI0a1uNDwguv0joLPiFf7zOpnwm9olosOOBPY9Su5LNuag== -----END CERTIFICATE-----Generated at Sat Aug 23 06:43:47 2025 by rpki-client