$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1a12bd5-5987-4ee6-9dd7-c745c18ce4a2.roa File: f1a12bd5-5987-4ee6-9dd7-c745c18ce4a2.roa (raw, json) Hash identifier: TxYEkh3xPLNXmvUIXJODXHvgL9YsBlqs7WkF1eEKsas= Subject key identifier: 31:CA:41:7B:DE:50:E6:AC:4C:EF:C5:ED:56:66:29:7D:08:6F:2E:C1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3700A6BFDEB5F7FB9B556D4614237BB6D16B58D3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1a12bd5-5987-4ee6-9dd7-c745c18ce4a2.roa Signing time: Fri 08 Aug 2025 00:11:24 +0000 ROA not before: Fri 08 Aug 2025 00:11:24 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.18.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:00:a6:bf:de:b5:f7:fb:9b:55:6d:46:14:23:7b:b6:d1:6b:58:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:11:24 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=23dbac45e6135dbd4532b64df09412202d0728bd469fd552028fd99a84a0bcce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1d:0e:e7:0d:6a:a1:61:2f:6d:20:9a:73:30: 92:a1:cf:f3:cd:01:9c:19:d7:ac:9b:13:7d:36:bc: d2:c0:56:a8:34:57:04:7d:7f:78:2d:4b:3c:a8:96: 9a:58:aa:11:e5:2e:59:4a:af:db:a5:f0:8a:48:85: 76:e8:c4:00:29:55:dd:0a:8e:df:f3:62:05:11:83: c9:e1:02:95:e8:ce:98:9e:b4:31:c9:07:a5:79:7f: 7f:7e:23:5f:1d:5b:7e:3d:23:8b:39:05:12:80:12: 05:5e:50:d6:95:1d:6e:50:28:b5:45:21:a9:26:4c: b9:4d:c1:e9:e9:09:65:da:4e:6b:3f:55:f7:bc:4c: 14:67:dc:e2:21:d6:c2:c9:be:20:4e:07:ec:a1:4b: 5d:6d:bc:a0:3d:94:50:7e:a2:cf:e5:c7:5e:4c:50: a4:ec:48:a0:58:c5:99:4b:10:56:af:1f:c5:19:91: ff:7a:55:e3:1d:8c:27:98:4e:63:08:df:36:7c:96: d1:9b:e8:a3:31:d9:28:1d:5f:35:fa:ea:d5:83:12: 9f:de:79:42:df:04:0c:a0:64:74:44:7c:f3:6d:78: 34:89:e9:d7:c8:ae:85:00:5a:26:18:98:02:54:86: 87:85:45:da:f5:bf:4a:e4:3b:39:45:ad:fd:9e:1d: 8d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:CA:41:7B:DE:50:E6:AC:4C:EF:C5:ED:56:66:29:7D:08:6F:2E:C1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1a12bd5-5987-4ee6-9dd7-c745c18ce4a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.18.0.0/15 Signature Algorithm: sha256WithRSAEncryption 21:8b:c4:4b:4b:ff:fd:c1:8f:cf:b4:39:60:c6:98:ec:ad:1f: ff:0b:64:1a:59:29:bf:7f:2c:59:f9:ad:39:ba:f7:26:05:88: 3d:87:86:97:f9:34:35:57:d6:d2:8a:b0:f5:8b:e3:5e:32:7d: 9f:97:2c:f4:c1:3a:7d:c0:2d:46:00:73:f4:61:7b:b9:c0:93: 33:fe:0e:f3:f6:21:e3:ed:0c:c0:b4:93:3f:d5:28:94:6f:fc: 07:e4:94:7d:cb:8c:8f:39:71:07:cd:ee:dc:24:b7:53:95:a5: b2:5f:4f:ec:ea:8c:f7:24:f6:73:e1:84:d8:66:53:1c:f3:ac: e9:20:a4:52:1b:00:c3:6d:f3:8d:55:b0:bc:ce:82:7d:19:fb: 3c:c6:ad:4d:25:d4:63:43:8c:d7:e9:41:22:4e:4a:80:27:66: 8f:c3:fa:78:94:4a:31:6d:6c:bc:b8:85:e6:97:91:2e:82:b0: b1:88:38:b7:be:93:a4:62:88:06:24:77:88:1d:06:27:7c:96: ed:8b:47:25:76:f2:08:e3:ca:69:fe:2f:ee:66:4c:e0:c5:07: df:4b:52:fc:04:31:59:ef:8a:9c:be:0d:07:06:c9:cc:20:be: 8f:23:45:53:68:ee:42:06:c6:5a:2b:d4:96:87:78:1e:56:46: 43:2b:17:f6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNwCmv9619/ubVW1GFCN7ttFrWNMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAxMTI0WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2RiYWM0NWU2MTM1ZGJkNDUzMmI2NGRmMDk0MTIyMDJk MDcyOGJkNDY5ZmQ1NTIwMjhmZDk5YTg0YTBiY2NlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7HQ7nDWqhYS9tIJpzMJKhz/PNAZwZ16ybE302vNLAVqg0 VwR9f3gtSzyolppYqhHlLllKr9ul8IpIhXboxAApVd0Kjt/zYgURg8nhApXozpie tDHJB6V5f39+I18dW349I4s5BRKAEgVeUNaVHW5QKLVFIakmTLlNwenpCWXaTms/ Vfe8TBRn3OIh1sLJviBOB+yhS11tvKA9lFB+os/lx15MUKTsSKBYxZlLEFavH8UZ kf96VeMdjCeYTmMI3zZ8ltGb6KMx2SgdXzX66tWDEp/eeULfBAygZHREfPNteDSJ 6dfIroUAWiYYmAJUhoeFRdr1v0rkOzlFrf2eHY3XAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUMcpBe95Q5qxM78XtVmYpfQhvLsEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxYTEyYmQ1LTU5ODctNGVlNi05ZGQ3LWM3NDVjMThjZTRhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjEjANBgkqhkiG9w0BAQsFAAOCAQEAIYvES0v//cGPz7Q5YMaY7K0f/wtk Glkpv38sWfmtObr3JgWIPYeGl/k0NVfW0oqw9YvjXjJ9n5cs9ME6fcAtRgBz9GF7 ucCTM/4O8/Yh4+0MwLSTP9UolG/8B+SUfcuMjzlxB83u3CS3U5Wlsl9P7OqM9yT2 c+GE2GZTHPOs6SCkUhsAw23zjVWwvM6CfRn7PMatTSXUY0OM1+lBIk5KgCdmj8P6 eJRKMW1svLiF5peRLoKwsYg4t76TpGKIBiR3iB0GJ3yW7YtHJXbyCOPKaf4v7mZM 4MUH30tS/AQxWe+KnL4NBwbJzCC+jyNFU2juQgbGWivUlod4HlZGQysX9g== -----END CERTIFICATE-----Generated at Sat Aug 9 00:59:45 2025 by rpki-client