$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4c031f9-6d40-4ba7-bd96-b1eb485d6adb.roa File: a4c031f9-6d40-4ba7-bd96-b1eb485d6adb.roa (raw, json) Hash identifier: 6pLoCbWqvYC5w7nBBUQi/j89kacfsZStJbFn85F3pgk= Subject key identifier: 0B:2C:46:B4:3D:36:71:23:D1:2C:44:0D:C6:4B:E7:A8:F6:F0:84:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4ADE55881A88AC6BAEE56F14884DB442ED7178A9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4c031f9-6d40-4ba7-bd96-b1eb485d6adb.roa Signing time: Sat 12 Jul 2025 00:30:23 +0000 ROA not before: Sat 12 Jul 2025 00:30:23 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:de:55:88:1a:88:ac:6b:ae:e5:6f:14:88:4d:b4:42:ed:71:78:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 12 00:30:23 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=50a60a71bc469cd6660c2f93b028f0e993a2cad0d2d17e401d018fea67e95858, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:4f:62:df:e7:13:60:e1:74:c1:58:fb:e3:8d: f9:cb:88:28:f2:95:4b:97:a0:60:3c:c8:8c:f4:a0: d2:76:12:7f:11:0e:eb:d7:0f:58:b0:fc:55:b8:bc: 68:f6:e8:6d:2c:81:9d:4e:26:0f:38:65:59:03:ef: a5:fc:27:ff:b6:fd:aa:49:90:b2:04:a5:9c:08:54: aa:10:c5:f3:6e:1c:f3:21:7b:23:70:e1:94:59:b4: 34:94:5d:d2:a7:db:67:44:21:89:5c:02:12:93:75: 52:b6:de:19:b8:a4:e7:1c:88:55:36:c3:4e:7e:94: 71:45:d3:2b:ac:02:97:f9:64:f5:d9:79:a6:58:47: 42:1b:67:39:11:0d:3e:11:18:1e:e5:e4:ad:87:c9: fa:d7:45:9d:9a:b1:17:82:47:f8:37:29:cb:1b:8c: 84:d0:af:db:e1:1b:13:03:d7:30:56:10:5e:e0:a2: 17:e9:5e:b6:fd:4e:b0:7e:5d:e2:36:82:ce:30:ff: 12:d6:8a:41:a6:6c:df:e0:32:9d:6a:84:fa:ec:c2: 7f:45:c6:8f:ef:5c:c5:41:87:25:09:13:35:6d:12: 00:22:86:23:8a:ec:a4:64:0b:31:96:8f:79:06:65: ec:a5:4f:f1:21:0d:3d:cd:9e:50:57:eb:e6:45:3f: e6:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:2C:46:B4:3D:36:71:23:D1:2C:44:0D:C6:4B:E7:A8:F6:F0:84:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4c031f9-6d40-4ba7-bd96-b1eb485d6adb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption 12:ea:ef:e6:cc:1e:b0:db:e1:7e:a6:ab:4f:07:f8:01:37:4b: 02:88:08:25:62:32:82:5d:0a:01:fc:f0:66:ab:74:f8:8d:f4: 3d:04:e6:f4:38:e5:08:e1:02:35:71:61:45:ff:67:27:af:86: 59:24:84:33:1d:51:82:4e:b6:25:08:19:23:37:5f:3f:3b:57: c5:52:cf:7c:f5:69:5a:62:a7:91:65:52:2a:34:64:12:73:97: 09:ff:35:ee:2b:83:0e:55:d2:1d:77:5c:5d:03:6a:62:1d:5d: 16:b3:86:ef:df:31:58:12:f6:2d:43:2a:9f:91:b3:e6:cf:ff: b5:4a:ae:2e:09:66:1e:c6:b0:fc:41:ce:18:ef:b4:8e:e4:5f: 95:be:37:be:d2:4f:e9:b6:db:51:30:bb:4a:ce:e7:55:fb:42: 1d:42:bb:06:4e:aa:43:04:93:36:b7:d6:a7:be:be:c9:4f:a6: 30:46:2c:7a:9a:8f:b2:16:9a:0d:ff:ae:fd:c9:ae:92:4d:c2: dc:58:3c:ce:ed:22:60:40:f6:2d:6d:e5:dd:e2:ad:1e:c0:c4: 8e:ef:cf:28:bf:89:25:7f:de:71:3a:62:4f:7c:8b:4f:e2:1c: e6:6f:2f:5d:05:07:b3:1a:18:71:5b:0a:f4:91:9c:ba:18:f6: 5d:02:0c:33 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSt5ViBqIrGuu5W8UiE20Qu1xeKkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzEyMDAzMDIzWhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MGE2MGE3MWJjNDY5Y2Q2NjYwYzJmOTNiMDI4ZjBlOTkz YTJjYWQwZDJkMTdlNDAxZDAxOGZlYTY3ZTk1ODU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCET2Lf5xNg4XTBWPvjjfnLiCjylUuXoGA8yIz0oNJ2En8R DuvXD1iw/FW4vGj26G0sgZ1OJg84ZVkD76X8J/+2/apJkLIEpZwIVKoQxfNuHPMh eyNw4ZRZtDSUXdKn22dEIYlcAhKTdVK23hm4pOcciFU2w05+lHFF0yusApf5ZPXZ eaZYR0IbZzkRDT4RGB7l5K2HyfrXRZ2asReCR/g3KcsbjITQr9vhGxMD1zBWEF7g ohfpXrb9TrB+XeI2gs4w/xLWikGmbN/gMp1qhPrswn9Fxo/vXMVBhyUJEzVtEgAi hiOK7KRkCzGWj3kGZeylT/EhDT3NnlBX6+ZFP+bzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCyxGtD02cSPRLEQNxkvnqPbwhEowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E0YzAzMWY5LTZkNDAtNGJhNy1iZDk2LWIxZWI0ODVkNmFkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjKzANBgkqhkiG9w0BAQsFAAOCAQEAEurv5swesNvhfqarTwf4ATdLAogI JWIygl0KAfzwZqt0+I30PQTm9DjlCOECNXFhRf9nJ6+GWSSEMx1Rgk62JQgZIzdf PztXxVLPfPVpWmKnkWVSKjRkEnOXCf817iuDDlXSHXdcXQNqYh1dFrOG798xWBL2 LUMqn5Gz5s//tUquLglmHsaw/EHOGO+0juRflb43vtJP6bbbUTC7Ss7nVftCHUK7 Bk6qQwSTNrfWp76+yU+mMEYsepqPshaaDf+u/cmukk3C3Fg8zu0iYED2LW3l3eKt HsDEju/PKL+JJX/ecTpiT3yLT+Ic5m8vXQUHsxoYcVsK9JGcuhj2XQIMMw== -----END CERTIFICATE-----Generated at Tue Jul 22 04:31:22 2025 by rpki-client