$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e0a1eb-3034-410b-90e3-e19ffb48fc1f.roa File: 38e0a1eb-3034-410b-90e3-e19ffb48fc1f.roa (raw, json) Hash identifier: 8PpsQlfZwBKfl/YEnyoxhPsRi/a4Svtq+yY03qKJUE8= Subject key identifier: 6A:36:93:5A:30:C7:88:E0:A8:47:17:47:78:9F:09:D3:8A:86:08:CB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 55E99053E12ADC5206C31088C79B3B0CD2346160 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e0a1eb-3034-410b-90e3-e19ffb48fc1f.roa Signing time: Sat 19 Jul 2025 00:21:58 +0000 ROA not before: Sat 19 Jul 2025 00:21:58 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.35.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:e9:90:53:e1:2a:dc:52:06:c3:10:88:c7:9b:3b:0c:d2:34:61:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 19 00:21:58 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=72a2582c64165a6e057a74cacff146dc03f82761af4ed6218072bafe618f1704, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0e:74:86:c7:54:b6:f1:16:e3:f7:86:02:47: 43:e5:22:8c:05:f8:80:f5:6c:5d:69:0c:e7:c9:5d: 77:6a:e4:96:c9:0f:08:38:97:91:c6:ec:cd:ce:0a: 41:f8:0d:02:4e:8d:d8:99:02:c9:1c:be:36:53:79: 19:ad:d8:09:d3:65:39:5a:01:ce:e8:08:53:ec:b7: ea:89:71:83:35:cd:bd:70:65:bd:04:3e:ee:d4:83: ed:b5:3b:92:7b:6f:2d:35:1e:69:f9:c6:d5:4a:80: 5a:5a:62:e0:3a:19:35:55:95:b6:e1:4f:80:44:92: 83:37:8c:a0:a5:0f:fb:2f:e7:33:6c:d5:cb:2b:a0: e7:2f:f8:d1:9c:4e:6e:1c:76:ac:f5:0a:9e:9f:13: 8e:d1:8a:0d:7f:4d:2b:46:94:80:a1:62:ab:9a:49: 24:cf:da:70:54:5f:33:db:94:ff:36:8f:42:93:e9: 52:44:8b:69:3b:b4:1a:69:55:7c:b7:1f:c2:34:ea: 53:3c:72:cf:1d:e3:21:63:80:da:2d:71:c6:53:0e: 9c:de:86:52:63:81:a6:c6:90:30:f2:0b:a0:74:cf: 60:79:69:3c:88:68:db:90:68:80:74:f8:12:3a:89: 77:9c:81:8c:01:15:e9:c2:8e:f8:52:21:d5:3e:bf: e3:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:36:93:5A:30:C7:88:E0:A8:47:17:47:78:9F:09:D3:8A:86:08:CB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38e0a1eb-3034-410b-90e3-e19ffb48fc1f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.35.0.0/16 Signature Algorithm: sha256WithRSAEncryption ca:8d:ca:91:3a:32:a5:84:d4:d6:3c:9d:99:fd:f0:74:2e:b1: 40:55:b2:dd:c6:ad:64:eb:fa:88:99:e7:75:a4:ff:c3:24:e7: f1:69:60:a1:ae:52:79:54:8d:25:ec:4c:ef:40:11:ab:e4:0a: af:c8:15:3a:4c:38:5b:88:49:ac:0f:05:52:7b:c0:82:12:ac: f7:27:ca:42:77:09:3d:0a:93:fe:87:dd:1a:23:88:d8:08:3b: cb:24:7b:fd:b2:61:ad:ef:2d:3a:94:f1:7f:e0:3f:bb:10:a4: 5b:ef:7e:14:00:a3:3c:38:b4:17:ff:03:50:f4:ee:eb:14:a3: 60:f2:6c:88:66:07:d7:a7:9d:b8:f7:0e:66:96:c9:36:8a:d6: b2:bb:dc:e5:56:b0:f8:2a:f7:ae:3e:e9:0b:6e:25:15:7a:7c: d2:20:48:22:59:00:ef:1c:fa:18:11:18:43:30:76:ff:93:d4: fc:4b:11:98:7f:40:e8:6f:8c:a4:16:91:e6:ff:3c:22:8a:38: df:05:92:eb:ee:76:dd:33:cb:53:08:7e:01:3d:7b:22:fd:8e: cc:60:ed:ca:c2:90:4b:19:a6:f6:bf:57:8b:17:95:08:e5:38: f3:74:86:68:66:7f:32:a8:ad:08:b5:e9:2c:7a:30:22:06:16: 2a:70:55:4c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVemQU+Eq3FIGwxCIx5s7DNI0YWAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE5MDAyMTU4WhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MmEyNTgyYzY0MTY1YTZlMDU3YTc0Y2FjZmYxNDZkYzAz ZjgyNzYxYWY0ZWQ2MjE4MDcyYmFmZTYxOGYxNzA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtDnSGx1S28Rbj94YCR0PlIowF+ID1bF1pDOfJXXdq5JbJ Dwg4l5HG7M3OCkH4DQJOjdiZAskcvjZTeRmt2AnTZTlaAc7oCFPst+qJcYM1zb1w Zb0EPu7Ug+21O5J7by01Hmn5xtVKgFpaYuA6GTVVlbbhT4BEkoM3jKClD/sv5zNs 1csroOcv+NGcTm4cdqz1Cp6fE47Rig1/TStGlIChYquaSSTP2nBUXzPblP82j0KT 6VJEi2k7tBppVXy3H8I06lM8cs8d4yFjgNotccZTDpzehlJjgabGkDDyC6B0z2B5 aTyIaNuQaIB0+BI6iXecgYwBFenCjvhSIdU+v+PBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUajaTWjDHiOCoRxdHeJ8J04qGCMswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4ZTBhMWViLTMwMzQtNDEwYi05MGUzLWUxOWZmYjQ4ZmMxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4IzANBgkqhkiG9w0BAQsFAAOCAQEAyo3KkToypYTU1jydmf3wdC6xQFWy 3catZOv6iJnndaT/wyTn8Wlgoa5SeVSNJexM70ARq+QKr8gVOkw4W4hJrA8FUnvA ghKs9yfKQncJPQqT/ofdGiOI2Ag7yyR7/bJhre8tOpTxf+A/uxCkW+9+FACjPDi0 F/8DUPTu6xSjYPJsiGYH16eduPcOZpbJNorWsrvc5Vaw+Cr3rj7pC24lFXp80iBI IlkA7xz6GBEYQzB2/5PU/EsRmH9A6G+MpBaR5v88Ioo43wWS6+523TPLUwh+AT17 Iv2OzGDtysKQSxmm9r9XixeVCOU483SGaGZ/MqitCLXpLHowIgYWKnBVTA== -----END CERTIFICATE-----Generated at Wed Aug 6 14:21:14 2025 by rpki-client