$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b58e920-b899-4ae0-a5b8-7194d06aaeb5.roa File: 9b58e920-b899-4ae0-a5b8-7194d06aaeb5.roa (raw, json) Hash identifier: vRII3/VwJB1ktjKiAyaTLzNl83Jnh+8kiVvod3PjYmw= Subject key identifier: B6:05:78:38:1C:91:07:22:77:9C:B2:D8:35:D2:A0:78:4F:AD:EE:72 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3DFB45595CC173C93934E2AAF0BAB1B6FF9970A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b58e920-b899-4ae0-a5b8-7194d06aaeb5.roa Signing time: Fri 08 Aug 2025 00:11:26 +0000 ROA not before: Fri 08 Aug 2025 00:11:26 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.26.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:fb:45:59:5c:c1:73:c9:39:34:e2:aa:f0:ba:b1:b6:ff:99:70:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:11:26 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=2bbd6053574c52d99851ee8eb99853690e78e56a1c5f6af3edc228054e7ae478, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:34:5f:79:73:de:4d:e5:e4:ea:61:bd:58:a0: 7a:6e:ca:3c:46:09:44:f3:02:16:77:5e:9b:44:3c: ad:e0:ea:24:2b:75:40:64:80:b4:22:6b:c8:d0:d7: 18:11:7d:ec:f6:e2:30:9d:c4:55:bc:d0:5f:82:3c: 7b:d6:ea:4b:4c:64:5c:65:12:95:e1:3e:fd:28:15: 88:6d:d1:22:cc:a9:a1:76:38:42:91:0b:dc:e8:80: 59:5a:93:33:36:b6:de:19:f2:db:9d:1d:80:ae:0f: d8:a5:11:37:cc:9a:56:43:00:cd:67:38:5f:12:99: 88:04:8f:0f:67:7f:18:ad:e2:aa:13:e1:7e:97:36: d9:29:8f:f4:29:30:e6:fc:81:5c:8d:3c:6b:03:79: 89:e4:68:99:59:e9:7c:8f:86:08:a2:60:f5:95:22: 8a:ed:11:30:b9:b6:a3:17:bc:16:45:ce:3f:1e:02: 35:9b:0f:fb:d9:f9:67:10:cd:1a:6e:cb:62:a5:50: 07:1d:67:b8:bb:03:58:ec:c3:9d:7a:95:00:a1:ca: 1c:e4:fa:7e:71:3b:26:7f:ce:6b:34:6e:89:98:da: d8:83:17:90:f2:98:79:66:df:03:71:fe:4b:ab:b4: 15:20:9e:a7:d8:25:d9:52:4b:a4:e2:cf:98:21:67: 32:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:05:78:38:1C:91:07:22:77:9C:B2:D8:35:D2:A0:78:4F:AD:EE:72 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b58e920-b899-4ae0-a5b8-7194d06aaeb5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.26.0.0/15 Signature Algorithm: sha256WithRSAEncryption 43:4e:cf:4f:bb:0d:4a:24:e5:68:e5:80:7b:ca:07:1d:f9:0a: 1d:4b:4f:f7:43:9d:b1:6e:f7:70:61:1e:4c:b4:f2:ed:3e:1e: 81:7a:dc:7f:38:d6:2f:68:96:e2:5f:7b:5e:73:fa:92:31:95: 82:ad:3d:96:60:08:8e:a2:39:11:6e:1a:73:79:b6:e5:93:dc: 2c:b4:e4:43:f8:f7:b1:84:79:76:a1:50:75:31:44:22:56:b7: b3:9f:2b:6b:85:84:f1:aa:8b:dd:60:35:f9:aa:95:fb:c4:1c: b6:e9:42:6a:d3:a6:bb:d0:eb:dc:9a:7b:da:26:2c:84:af:1f: fa:0d:ac:99:c1:b1:04:8e:da:e8:4b:99:49:bd:14:b4:57:6f: 7d:2a:63:8f:1a:d7:ae:22:4c:cf:88:d3:00:31:11:23:8f:00: c1:07:82:aa:73:56:a0:61:92:39:a2:99:17:bf:9e:39:35:48: eb:78:a3:0c:99:79:2a:86:fc:b5:cc:34:59:a1:c6:4d:29:14: fe:ac:c5:b8:a0:cd:29:84:aa:d2:87:d4:e7:39:0c:eb:0e:a5: b0:a1:0a:d7:47:12:5c:2a:9d:09:2d:84:b5:fd:1d:ae:9c:ae: f0:65:5e:37:c2:ea:a7:ba:dd:a4:b2:05:7a:d0:c0:cd:1a:e8: 61:09:3e:c1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPftFWVzBc8k5NOKq8Lqxtv+ZcKAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAxMTI2WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmJkNjA1MzU3NGM1MmQ5OTg1MWVlOGViOTk4NTM2OTBl NzhlNTZhMWM1ZjZhZjNlZGMyMjgwNTRlN2FlNDc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8NF95c95N5eTqYb1YoHpuyjxGCUTzAhZ3XptEPK3g6iQr dUBkgLQia8jQ1xgRfez24jCdxFW80F+CPHvW6ktMZFxlEpXhPv0oFYht0SLMqaF2 OEKRC9zogFlakzM2tt4Z8tudHYCuD9ilETfMmlZDAM1nOF8SmYgEjw9nfxit4qoT 4X6XNtkpj/QpMOb8gVyNPGsDeYnkaJlZ6XyPhgiiYPWVIortETC5tqMXvBZFzj8e AjWbD/vZ+WcQzRpuy2KlUAcdZ7i7A1jsw516lQChyhzk+n5xOyZ/zms0bomY2tiD F5DymHlm3wNx/kurtBUgnqfYJdlSS6Tiz5ghZzLbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtgV4OByRByJ3nLLYNdKgeE+t7nIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzliNThlOTIwLWI4OTktNGFlMC1hNWI4LTcxOTRkMDZhYWViNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjGjANBgkqhkiG9w0BAQsFAAOCAQEAQ07PT7sNSiTlaOWAe8oHHfkKHUtP 90OdsW73cGEeTLTy7T4egXrcfzjWL2iW4l97XnP6kjGVgq09lmAIjqI5EW4ac3m2 5ZPcLLTkQ/j3sYR5dqFQdTFEIla3s58ra4WE8aqL3WA1+aqV+8QctulCatOmu9Dr 3Jp72iYshK8f+g2smcGxBI7a6EuZSb0UtFdvfSpjjxrXriJMz4jTADERI48AwQeC qnNWoGGSOaKZF7+eOTVI63ijDJl5Kob8tcw0WaHGTSkU/qzFuKDNKYSq0ofU5zkM 6w6lsKEK10cSXCqdCS2Etf0drpyu8GVeN8Lqp7rdpLIFetDAzRroYQk+wQ== -----END CERTIFICATE-----Generated at Sat Aug 9 01:00:03 2025 by rpki-client