$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67bb38f6-58ef-440d-88e7-0fda4e4c3e00.roa File: 67bb38f6-58ef-440d-88e7-0fda4e4c3e00.roa (raw, json) Hash identifier: SHSked1L0kTddVDL53hEz/Zdzp0e/3rKuSV14yqX4vQ= Subject key identifier: A5:15:72:61:D2:6D:7A:95:CF:C0:3A:74:78:22:21:08:76:79:D3:86 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68335C4CB34550AB52F82D1961F14ED51E7623B8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67bb38f6-58ef-440d-88e7-0fda4e4c3e00.roa Signing time: Fri 08 Aug 2025 00:12:22 +0000 ROA not before: Fri 08 Aug 2025 00:12:22 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.52.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:33:5c:4c:b3:45:50:ab:52:f8:2d:19:61:f1:4e:d5:1e:76:23:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:12:22 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=b3d566e56bb530edc6ef330fc43dca5f9dde594866d2b9485d532ce77a7aa75d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:cc:6d:8e:f6:72:b6:2f:40:d8:cf:3f:bc:d9: 5c:a1:d1:8c:68:1c:95:2e:6d:48:c9:56:7b:0d:4a: ae:86:aa:9c:e5:67:78:b4:9c:d2:3f:d5:af:59:91: 97:6a:7d:23:61:76:70:01:1b:e0:33:29:de:9f:42: 2f:d5:70:ba:a8:09:00:7e:10:7e:c7:85:b5:19:5b: fc:23:31:f6:4b:99:eb:fc:b5:0d:d4:47:55:ad:5f: cf:99:30:7a:3c:b1:33:e4:79:45:2b:ad:32:ea:7c: 61:59:38:cf:33:6a:55:f4:60:44:4e:f3:85:52:c0: ef:6f:8c:e4:e4:e4:27:fb:b5:04:4d:17:2e:a3:7a: f5:13:cc:93:af:cc:6d:08:55:b6:9f:32:41:cb:a9: 5d:a8:ad:3b:47:a7:e9:d0:3d:90:39:e2:be:a5:0b: 02:e7:6c:51:af:3a:19:44:3a:75:d3:68:81:3e:1f: ff:8a:1d:11:c9:2c:0c:62:3c:82:60:b2:80:72:48: ed:36:30:fd:5d:95:12:c9:70:7f:5b:98:f4:bc:7c: 35:f3:ba:d3:69:b3:f4:ae:ae:b6:1c:25:21:ef:03: f7:e7:0c:31:96:55:ff:af:ac:75:ea:b9:8b:ce:1e: 7c:43:74:98:5b:32:76:16:24:cb:5f:05:19:74:62: 45:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:15:72:61:D2:6D:7A:95:CF:C0:3A:74:78:22:21:08:76:79:D3:86 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67bb38f6-58ef-440d-88e7-0fda4e4c3e00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.52.0.0/15 Signature Algorithm: sha256WithRSAEncryption 8a:e8:13:d3:15:c9:05:3c:c2:9e:68:05:3e:cc:74:32:c2:b4: 75:d8:1c:2f:c3:13:42:e0:13:1e:8f:d0:a6:95:0a:a4:aa:2d: 12:9a:c1:c5:12:90:a5:be:bb:13:a9:8c:ca:b0:42:ea:7c:2b: 9d:ba:5e:a3:08:2e:8b:cc:c5:dc:56:46:d3:31:96:3a:45:35: 6e:0b:eb:b2:40:a5:da:fb:c1:31:71:d0:a1:a5:6c:00:84:b8: 1f:ff:8e:2b:63:60:b4:15:8a:2b:e4:1d:5f:6f:49:2e:22:c9: b8:da:ae:1c:3f:81:db:db:30:c4:55:dc:61:00:44:ad:f0:81: 29:1b:25:f7:5f:7a:4d:3b:b6:c7:67:5f:94:a7:f7:5f:46:24: af:4f:e3:9f:f7:ed:dd:92:aa:5d:07:14:c5:ac:5d:7d:88:59: b2:22:8e:30:fe:9f:a5:1e:67:e5:9c:90:26:64:b7:20:91:d5: e6:2d:c0:02:6a:83:e6:1f:6f:11:36:d8:f8:4d:71:4b:c1:af: bd:78:52:8f:fb:71:93:39:5e:ac:2a:6a:2c:81:b2:f5:4f:1e: a4:37:20:ea:9d:0c:d7:34:e0:bc:6c:71:12:55:ae:08:da:5a: ef:b0:ef:4f:6b:07:c5:f8:cc:40:74:17:a9:38:9f:ba:a2:9c: 53:ff:11:82 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaDNcTLNFUKtS+C0ZYfFO1R52I7gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAxMjIyWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2Q1NjZlNTZiYjUzMGVkYzZlZjMzMGZjNDNkY2E1Zjlk ZGU1OTQ4NjZkMmI5NDg1ZDUzMmNlNzdhN2FhNzVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpzG2O9nK2L0DYzz+82Vyh0YxoHJUubUjJVnsNSq6Gqpzl Z3i0nNI/1a9ZkZdqfSNhdnABG+AzKd6fQi/VcLqoCQB+EH7HhbUZW/wjMfZLmev8 tQ3UR1WtX8+ZMHo8sTPkeUUrrTLqfGFZOM8zalX0YERO84VSwO9vjOTk5Cf7tQRN Fy6jevUTzJOvzG0IVbafMkHLqV2orTtHp+nQPZA54r6lCwLnbFGvOhlEOnXTaIE+ H/+KHRHJLAxiPIJgsoBySO02MP1dlRLJcH9bmPS8fDXzutNps/SurrYcJSHvA/fn DDGWVf+vrHXquYvOHnxDdJhbMnYWJMtfBRl0YkVfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUpRVyYdJtepXPwDp0eCIhCHZ504YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3YmIzOGY2LTU4ZWYtNDQwZC04OGU3LTBmZGE0ZTRjM2UwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjNDANBgkqhkiG9w0BAQsFAAOCAQEAiugT0xXJBTzCnmgFPsx0MsK0ddgc L8MTQuATHo/QppUKpKotEprBxRKQpb67E6mMyrBC6nwrnbpeowgui8zF3FZG0zGW OkU1bgvrskCl2vvBMXHQoaVsAIS4H/+OK2NgtBWKK+QdX29JLiLJuNquHD+B29sw xFXcYQBErfCBKRsl9196TTu2x2dflKf3X0Ykr0/jn/ft3ZKqXQcUxaxdfYhZsiKO MP6fpR5n5ZyQJmS3IJHV5i3AAmqD5h9vETbY+E1xS8GvvXhSj/txkzlerCpqLIGy 9U8epDcg6p0M1zTgvGxxElWuCNpa77DvT2sHxfjMQHQXqTifuqKcU/8Rgg== -----END CERTIFICATE-----Generated at Sat Aug 9 01:01:10 2025 by rpki-client