$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/029102e7-06f2-46c3-b375-2f65fa6d8f27.roa File: 029102e7-06f2-46c3-b375-2f65fa6d8f27.roa (raw, json) Hash identifier: +V2AObZ6VDIq7lEwF9Z8cM/xxikByQ+NJ0fBkjsHyFs= Subject key identifier: 7C:60:6D:DD:65:EE:86:63:B0:8E:13:5B:34:37:27:A4:61:F0:18:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5352DF1CCA43F3C0486E80AD564A5EE68F3CCE10 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/029102e7-06f2-46c3-b375-2f65fa6d8f27.roa Signing time: Fri 05 Sep 2025 18:37:04 +0000 ROA not before: Fri 05 Sep 2025 18:37:04 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:52:df:1c:ca:43:f3:c0:48:6e:80:ad:56:4a:5e:e6:8f:3c:ce:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 18:37:04 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=71cecc90de89988b6f7bad7bd5f4eda1acf20a155dc4aae5123c005455634b3d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:52:73:74:2e:72:52:8d:25:92:81:5f:14:fb: c1:ec:46:74:c9:34:7f:7c:d7:49:3a:14:a8:66:0e: d7:62:ae:ad:70:d1:0d:51:64:1f:47:3e:75:ac:41: 34:a6:cd:61:e4:69:a2:f3:3d:fb:b5:0e:e4:d5:e6: c3:f4:db:21:01:99:da:40:cd:69:f5:56:bb:0c:6c: 9b:3f:39:e7:b0:4a:31:97:1f:ee:04:98:85:7f:67: 60:7b:82:2a:92:ae:b0:ac:13:99:ef:dd:51:8c:71: af:a6:a5:f4:26:3f:9a:8a:35:bf:2a:a9:b7:be:bf: be:0a:0e:16:cf:3e:f0:c8:19:54:4f:0d:c3:9e:e5: e4:90:55:71:a9:31:6f:38:bb:27:a3:1f:5d:8c:a9: de:f0:ba:04:74:ce:aa:b9:3b:17:8f:65:15:ea:48: 86:34:bb:1e:54:48:96:19:ad:ae:bd:11:e6:12:ed: 42:3e:05:c2:5c:62:f0:f3:ae:6d:6e:17:35:d8:e9: 7d:a2:40:c9:10:cc:79:a5:d0:f1:8a:a2:d0:2b:ce: 0a:bd:16:8c:d9:89:35:b9:59:d7:41:44:f3:f3:8c: db:b1:d1:4d:6f:86:34:b9:97:f4:a8:d9:01:4d:26: b5:cc:2a:1f:14:3e:e1:3a:05:f8:a4:d5:ff:54:61: 9f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:60:6D:DD:65:EE:86:63:B0:8E:13:5B:34:37:27:A4:61:F0:18:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/029102e7-06f2-46c3-b375-2f65fa6d8f27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.46.0/23 Signature Algorithm: sha256WithRSAEncryption d3:30:3b:e2:78:68:77:24:63:59:cf:3a:1b:21:91:12:fc:2e: 1b:06:6d:25:49:29:1c:9a:a1:8c:e0:75:f5:57:3c:ff:3b:2c: 1a:e7:91:30:97:89:3c:3e:17:90:11:db:d1:07:10:36:41:92: 90:a8:87:b3:1e:d9:63:57:72:a6:ba:75:84:52:fc:5b:df:86: 4f:d4:4d:4a:9f:f8:81:da:56:ca:3f:81:1b:cd:f9:53:cb:9b: 44:96:0b:58:aa:99:22:0f:10:cb:92:cf:1d:55:7d:9c:72:71: 00:b4:e7:7f:07:a4:48:20:0b:84:ed:16:9f:b2:75:06:0f:27: f8:64:76:e0:02:63:65:c6:af:bd:5a:ac:88:5b:00:e5:91:7a: c9:f4:60:03:2a:ff:f7:9b:66:e6:ff:8f:ab:46:95:fd:63:bf: 9e:e8:f1:f6:24:a4:97:5d:9e:55:79:ed:cc:50:aa:28:ff:0e: 7d:9d:ac:89:f6:7d:da:43:ef:f7:e8:db:17:89:f6:dd:59:de: ea:8b:ae:bb:8d:d7:af:d9:81:32:42:e7:b5:96:c8:d2:5c:4b: d4:c7:09:50:a5:b5:2d:16:6d:2e:53:a7:87:ee:48:de:85:8e: ff:11:14:66:7b:80:11:8a:33:1e:cc:17:ae:65:d3:82:e5:45: 8f:f8:ea:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU1LfHMpD88BIboCtVkpe5o88zhAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MTgzNzA0WhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MWNlY2M5MGRlODk5ODhiNmY3YmFkN2JkNWY0ZWRhMWFj ZjIwYTE1NWRjNGFhZTUxMjNjMDA1NDU1NjM0YjNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWUnN0LnJSjSWSgV8U+8HsRnTJNH9810k6FKhmDtdirq1w 0Q1RZB9HPnWsQTSmzWHkaaLzPfu1DuTV5sP02yEBmdpAzWn1VrsMbJs/OeewSjGX H+4EmIV/Z2B7giqSrrCsE5nv3VGMca+mpfQmP5qKNb8qqbe+v74KDhbPPvDIGVRP DcOe5eSQVXGpMW84uyejH12Mqd7wugR0zqq5OxePZRXqSIY0ux5USJYZra69EeYS 7UI+BcJcYvDzrm1uFzXY6X2iQMkQzHml0PGKotArzgq9FozZiTW5WddBRPPzjNux 0U1vhjS5l/So2QFNJrXMKh8UPuE6Bfik1f9UYZ9hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfGBt3WXuhmOwjhNbNDcnpGHwGHYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAyOTEwMmU3LTA2ZjItNDZjMy1iMzc1LTJmNjVmYTZkOGYyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjNi4wDQYJKoZIhvcNAQELBQADggEBANMwO+J4aHckY1nPOhshkRL8LhsG bSVJKRyaoYzgdfVXPP87LBrnkTCXiTw+F5AR29EHEDZBkpCoh7Me2WNXcqa6dYRS /Fvfhk/UTUqf+IHaVso/gRvN+VPLm0SWC1iqmSIPEMuSzx1VfZxycQC0538HpEgg C4TtFp+ydQYPJ/hkduACY2XGr71arIhbAOWResn0YAMq//ebZub/j6tGlf1jv57o 8fYkpJddnlV57cxQqij/Dn2drIn2fdpD7/fo2xeJ9t1Z3uqLrruN16/ZgTJC57WW yNJcS9THCVCltS0WbS5Tp4fuSN6Fjv8RFGZ7gBGKMx7MF65l04LlRY/46rU= -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:57 2025 by rpki-client