$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78fa3972-5318-47b7-a9d6-d6ceecbc554e.roa File: 78fa3972-5318-47b7-a9d6-d6ceecbc554e.roa (raw, json) Hash identifier: k18/LuTVroJLwG8CsiH6zPIh8xVzyjR+P2efvFJeahU= Subject key identifier: 2E:1F:2F:C3:19:35:D3:A2:2E:A0:75:FE:EE:3F:C0:2E:FC:44:64:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 293E2ABC20E07D8AC8697C51CF2FB20725AF8D39 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78fa3972-5318-47b7-a9d6-d6ceecbc554e.roa Signing time: Fri 04 Jul 2025 00:50:12 +0000 ROA not before: Fri 04 Jul 2025 00:50:12 +0000 ROA not after: Fri 08 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.55.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:3e:2a:bc:20:e0:7d:8a:c8:69:7c:51:cf:2f:b2:07:25:af:8d:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 4 00:50:12 2025 GMT Not After : Aug 8 23:59:59 2025 GMT Subject: serialNumber=03bcd8bf4f9d46ffb347f07900d8708da5fec2caf875e66c69ba5044d483d9aa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bc:04:5c:a7:24:91:76:b8:fb:2c:5c:c0:df: da:8f:c5:98:a2:eb:11:30:ab:a3:fd:ac:f6:7e:57: 2b:a3:de:42:c0:2b:81:d6:62:a6:7a:13:fb:42:b2: fa:5f:4a:53:a3:18:b8:2d:db:68:c9:4b:6a:6a:af: f1:1b:7e:d9:b1:d6:e8:ff:d7:f1:4b:d0:49:e8:4d: 92:b9:dc:96:dd:1d:28:83:7b:19:4b:03:c5:a4:ba: a8:2c:70:d6:ba:70:e1:9f:2a:89:29:a8:bd:5f:d9: 4f:fe:53:51:54:92:7d:fe:fd:24:f3:9c:d3:3f:e5: 5c:df:da:4c:6a:07:3a:aa:1f:8f:0d:00:68:37:52: 2e:cb:15:d8:53:ec:d4:c3:10:f3:58:3a:89:fb:d9: e0:75:7e:cb:83:52:43:ce:61:26:53:2b:01:10:0a: ba:63:07:54:4d:aa:3a:03:e5:75:87:3e:0f:e3:df: 0e:dc:67:37:26:c3:32:10:ca:4c:b6:7b:71:d4:aa: 10:e4:dc:b1:20:b3:ff:34:4f:c2:fa:4d:98:62:44: 8b:64:2a:ca:74:b5:d8:3a:67:09:bb:82:1e:27:87: 8e:c9:fb:33:11:8e:6d:9d:c5:0d:78:24:12:98:c0: 32:da:f6:33:39:0d:25:96:14:b6:8c:bc:d3:bf:90: eb:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:1F:2F:C3:19:35:D3:A2:2E:A0:75:FE:EE:3F:C0:2E:FC:44:64:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78fa3972-5318-47b7-a9d6-d6ceecbc554e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.55.0.0/16 Signature Algorithm: sha256WithRSAEncryption 61:bf:29:0d:79:3d:50:c8:01:82:72:cf:5d:62:1c:22:df:e8: 75:b0:6b:ed:b8:46:9d:c3:1b:7c:92:df:2d:66:18:39:df:90: 6b:4b:5d:9c:55:19:df:57:f2:50:f7:c5:f9:e1:5a:96:9d:e4: 45:de:63:81:2c:76:5c:fc:f9:03:54:14:c7:3b:5b:df:6f:15: 75:3f:10:51:98:28:ae:42:43:a6:83:1f:d4:2d:f9:15:c9:c0: 00:2e:05:fe:cf:eb:76:45:c3:d9:07:2e:11:29:85:4a:ce:bc: 3d:37:72:11:08:9b:1e:20:28:bc:af:43:35:45:b2:53:40:17: bf:bf:c5:97:cc:9b:a8:4a:61:04:74:56:ad:28:3d:0b:6d:c1: 5b:c1:6b:32:40:d6:b7:a6:d5:e6:d4:b9:ef:cd:1f:f2:4b:49: 13:f2:b7:66:62:85:5a:e0:4a:2a:0c:23:f4:4a:79:92:1a:06: e0:82:9e:b0:f0:83:33:9c:a5:35:6d:5f:e5:f6:0b:c7:86:50: be:de:7d:0f:c0:69:fa:17:64:35:19:ae:96:50:ac:af:5a:d9: 38:70:49:50:31:a6:a3:af:46:38:ad:cc:3e:88:69:f9:eb:98: a9:e4:8e:5c:2b:cc:70:34:dd:82:b7:f1:1b:c0:0e:1f:0a:24: 37:7a:29:67 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKT4qvCDgfYrIaXxRzy+yByWvjTkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA0MDA1MDEyWhcNMjUwODA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwM2JjZDhiZjRmOWQ0NmZmYjM0N2YwNzkwMGQ4NzA4ZGE1 ZmVjMmNhZjg3NWU2NmM2OWJhNTA0NGQ0ODNkOWFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDvARcpySRdrj7LFzA39qPxZii6xEwq6P9rPZ+Vyuj3kLA K4HWYqZ6E/tCsvpfSlOjGLgt22jJS2pqr/Ebftmx1uj/1/FL0EnoTZK53JbdHSiD exlLA8WkuqgscNa6cOGfKokpqL1f2U/+U1FUkn3+/STznNM/5Vzf2kxqBzqqH48N AGg3Ui7LFdhT7NTDEPNYOon72eB1fsuDUkPOYSZTKwEQCrpjB1RNqjoD5XWHPg/j 3w7cZzcmwzIQyky2e3HUqhDk3LEgs/80T8L6TZhiRItkKsp0tdg6Zwm7gh4nh47J +zMRjm2dxQ14JBKYwDLa9jM5DSWWFLaMvNO/kOt9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQULh8vwxk106IuoHX+7j/ALvxEZAwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4ZmEzOTcyLTUzMTgtNDdiNy1hOWQ2LWQ2Y2VlY2JjNTU0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjNzANBgkqhkiG9w0BAQsFAAOCAQEAYb8pDXk9UMgBgnLPXWIcIt/odbBr 7bhGncMbfJLfLWYYOd+Qa0tdnFUZ31fyUPfF+eFalp3kRd5jgSx2XPz5A1QUxztb 328VdT8QUZgorkJDpoMf1C35FcnAAC4F/s/rdkXD2QcuESmFSs68PTdyEQibHiAo vK9DNUWyU0AXv7/Fl8ybqEphBHRWrSg9C23BW8FrMkDWt6bV5tS5780f8ktJE/K3 ZmKFWuBKKgwj9Ep5khoG4IKesPCDM5ylNW1f5fYLx4ZQvt59D8Bp+hdkNRmullCs r1rZOHBJUDGmo69GOK3MPohp+euYqeSOXCvMcDTdgrfxG8AOHwokN3opZw== -----END CERTIFICATE-----Generated at Mon Jul 21 18:10:56 2025 by rpki-client