$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0a6e2e2-64ef-45e6-b6a8-9a5830ee2ade.roa File: f0a6e2e2-64ef-45e6-b6a8-9a5830ee2ade.roa (raw, json) Hash identifier: Tf3YbTyMzf86QS7wluFwzRR/gifrwGT7N2CDDmTkWbk= Subject key identifier: 59:9C:C3:47:39:96:02:8D:46:2F:0F:AE:26:1A:89:CE:3D:24:FB:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25EA50A470DD51F4FE3FBB3AF05164AE648DCD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0a6e2e2-64ef-45e6-b6a8-9a5830ee2ade.roa Signing time: Tue 05 Aug 2025 00:20:21 +0000 ROA not before: Tue 05 Aug 2025 00:20:21 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.36.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ea:50:a4:70:dd:51:f4:fe:3f:bb:3a:f0:51:64:ae:64:8d:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:20:21 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=e237f5fa0a33b53513a34f83a8b88dd3742280cb0f29edb7053b0548f76a3d87, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8b:8d:27:67:94:20:28:79:21:71:fd:03:50: cb:8c:5c:64:cd:80:70:76:72:40:96:f0:23:94:5d: 88:5b:0b:b5:ed:c5:5d:a6:11:d3:f9:aa:0a:b6:ce: ff:af:13:71:ae:2b:9f:6e:c0:1f:01:f5:07:bd:01: fb:61:94:31:ae:7b:14:9f:f3:0f:6d:8a:7a:cb:43: 1d:92:cb:2d:18:eb:60:25:9a:24:8f:3d:33:b5:be: fc:fc:3e:b6:1f:4d:29:12:88:0c:2d:db:bc:6b:f1: e9:4c:cf:61:a8:f9:ee:12:21:81:bc:8e:65:bc:d7: 23:21:ab:eb:20:31:0f:52:d8:59:53:77:c9:c1:5d: 41:c7:aa:d8:22:92:73:f7:1d:bd:ed:d5:f4:dc:aa: 85:74:09:53:03:08:ad:fe:75:12:af:4d:c3:0d:af: d3:66:15:c4:2f:8f:57:32:c8:37:4b:9a:d8:ed:32: 5f:dd:14:b7:4e:0d:79:40:cc:0b:dc:54:81:3b:27: 7c:6b:42:21:f1:49:e9:b6:cf:35:e2:bb:cf:6f:d9: 01:0b:2a:f1:65:4e:dd:a7:3b:16:7d:84:ea:0c:97: 63:5c:03:6c:63:96:83:cd:ec:ad:3c:cf:cd:24:d6: 4d:a4:00:a7:89:be:f2:b7:4c:46:6f:31:84:b7:4a: 28:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:9C:C3:47:39:96:02:8D:46:2F:0F:AE:26:1A:89:CE:3D:24:FB:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0a6e2e2-64ef-45e6-b6a8-9a5830ee2ade.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.36.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9a:df:41:3a:9a:7c:8c:4d:7a:b9:35:d5:2b:67:36:ca:0f:58: 02:6b:a9:23:66:7e:90:34:55:01:ed:60:bb:9f:e6:ab:d0:05: 87:fc:92:cd:fd:f8:10:e2:bc:b1:ff:7e:1e:1b:13:51:e6:5f: df:20:15:b0:13:3e:98:b4:6c:88:e8:13:d9:93:01:0f:3c:8b: 5b:b9:cf:21:38:24:7f:f9:e0:1c:f0:97:5e:07:65:78:cc:08: 20:7e:03:fe:22:b7:a4:24:6f:f0:00:c6:5c:a9:b0:b0:f1:75: 62:69:80:59:04:34:f1:31:85:28:c2:4f:34:33:b5:41:b2:e7: ad:a1:fb:81:3c:80:0c:5b:23:42:96:ed:4d:0b:63:92:68:01: 63:46:c1:c3:d8:30:85:4e:8c:3c:10:c0:5d:4a:c3:6c:0e:74: f2:e7:bf:a9:df:fd:85:8b:7e:89:05:4c:66:2a:3a:bb:bf:ec: 41:bd:b8:7f:cf:e8:33:eb:85:08:b9:16:76:6c:be:fb:c2:94: 4b:e3:54:ed:90:76:9c:dc:8c:4f:c2:83:58:90:9f:2b:29:d7: fd:8f:e3:b3:65:6b:0f:c9:b6:0e:c5:03:3a:1c:e9:da:a0:18: 9b:c3:cf:fc:d9:f0:3b:3a:8b:bb:31:29:13:d9:ab:8c:b2:26: 73:73:77:3c -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITJepQpHDdUfT+P7s68FFkrmSNzTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA4MDUwMDIwMjFaFw0yNTA5MDkyMzU5NTla MHoxSTBHBgNVBAUTQGUyMzdmNWZhMGEzM2I1MzUxM2EzNGY4M2E4Yjg4ZGQzNzQy MjgwY2IwZjI5ZWRiNzA1M2IwNTQ4Zjc2YTNkODcxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAM2LjSdnlCAoeSFx/QNQy4xcZM2AcHZyQJbwI5RdiFsLte3F XaYR0/mqCrbO/68Tca4rn27AHwH1B70B+2GUMa57FJ/zD22KestDHZLLLRjrYCWa JI89M7W+/Pw+th9NKRKIDC3bvGvx6UzPYaj57hIhgbyOZbzXIyGr6yAxD1LYWVN3 ycFdQceq2CKSc/cdve3V9NyqhXQJUwMIrf51Eq9Nww2v02YVxC+PVzLIN0ua2O0y X90Ut04NeUDMC9xUgTsnfGtCIfFJ6bbPNeK7z2/ZAQsq8WVO3ac7Fn2E6gyXY1wD bGOWg83srTzPzSTWTaQAp4m+8rdMRm8xhLdKKF8CAwEAAaOCArAwggKsMB0GA1Ud DgQWBBRZnMNHOZYCjUYvD64mGonOPST7LjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvZjBhNmUyZTItNjRlZi00NWU2LWI2YTgtOWE1ODMwZWUyYWRlLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDACMkMA0GCSqGSIb3DQEBCwUAA4IBAQCa30E6mnyMTXq5NdUrZzbKD1gCa6kj Zn6QNFUB7WC7n+ar0AWH/JLN/fgQ4ryx/34eGxNR5l/fIBWwEz6YtGyI6BPZkwEP PItbuc8hOCR/+eAc8JdeB2V4zAggfgP+IrekJG/wAMZcqbCw8XViaYBZBDTxMYUo wk80M7VBsuetofuBPIAMWyNClu1NC2OSaAFjRsHD2DCFTow8EMBdSsNsDnTy57+p 3/2Fi36JBUxmKjq7v+xBvbh/z+gz64UIuRZ2bL77wpRL41TtkHac3IxPwoNYkJ8r Kdf9j+OzZWsPybYOxQM6HOnaoBibw8/82fA7Oou7MSkT2auMsiZzc3c8 -----END CERTIFICATE-----Generated at Wed Aug 6 07:53:46 2025 by rpki-client