$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4393951a-48f6-4d5e-a6a1-c5a21955005d.roa File: 4393951a-48f6-4d5e-a6a1-c5a21955005d.roa (raw, json) Hash identifier: fsfRAzxvx5z1EBpkb/5q1ktOZl7n977YF7qMjS7hgH4= Subject key identifier: 8D:0C:FC:A7:09:F4:47:C7:D4:2C:5B:B8:65:37:EE:B2:BD:51:68:29 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6915BD984B1B44380EF9EC5CB8C123AB28669CDE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4393951a-48f6-4d5e-a6a1-c5a21955005d.roa Signing time: Tue 02 Sep 2025 00:20:55 +0000 ROA not before: Tue 02 Sep 2025 00:20:55 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.42.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:15:bd:98:4b:1b:44:38:0e:f9:ec:5c:b8:c1:23:ab:28:66:9c:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 2 00:20:55 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=42e00604ac06ff43e879fe48e433987ebd4ce33dc8e1763d3f5e1b174566d8a1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1f:18:b4:63:eb:62:98:1a:4b:48:94:92:72: 8a:68:e5:4f:db:10:71:44:d7:92:77:66:0a:2a:eb: ab:50:16:15:70:87:d4:d8:39:4c:48:10:b9:0a:25: 90:db:3c:5a:98:a6:e5:7c:ee:ef:42:df:7f:d3:a0: e4:c9:07:f1:c0:f9:50:62:b0:ac:13:5d:4b:04:36: c1:f0:5d:fc:e2:6d:23:54:49:7a:be:a6:8c:42:6c: d0:3a:25:bd:fd:2b:4d:73:66:0d:8c:da:94:c6:69: 77:a1:dc:54:80:59:33:e3:3f:cc:71:f4:94:b3:53: e4:d8:46:b3:b6:03:50:e8:a0:21:6f:92:54:d5:19: 7c:f3:d8:48:2f:ad:a0:b4:8f:1e:6e:85:72:bd:2a: c1:1a:3b:95:e4:92:5d:51:8d:a0:fc:43:02:2c:72: ee:dd:5b:65:83:e6:41:0b:d8:d1:10:a3:a8:11:2a: 27:21:b6:6d:47:b6:9c:ea:23:88:4c:47:35:2c:d7: 5a:11:9b:40:32:56:b6:13:6a:28:01:ce:98:75:90: 64:37:9d:b3:af:41:ae:5e:95:9e:c8:19:aa:5a:97: 71:05:5d:7e:c8:33:40:1b:cf:3d:c1:62:18:91:bd: dc:88:07:0c:ef:3e:cc:74:5a:dc:fd:14:88:8a:34: 2c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:0C:FC:A7:09:F4:47:C7:D4:2C:5B:B8:65:37:EE:B2:BD:51:68:29 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4393951a-48f6-4d5e-a6a1-c5a21955005d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.42.0.0/16 Signature Algorithm: sha256WithRSAEncryption 17:d3:ee:7a:f5:f6:43:85:7e:a0:15:ef:50:60:03:84:d6:21: 69:66:5e:bc:da:f1:d1:82:19:ad:e6:00:8d:22:d1:82:e4:3c: 8e:a2:38:3c:ac:0c:b5:41:d4:f7:c0:22:4b:46:ff:61:26:d7: ce:ce:4b:57:6c:dc:5c:50:5a:52:b5:a2:83:cc:3b:03:38:20: 54:4c:25:ea:ee:ff:12:8b:1b:45:d2:51:1e:b0:2b:37:46:07: 02:98:43:17:d8:b0:d3:6e:a9:1a:0a:fd:00:f0:0f:9e:7d:45: 08:30:41:a8:d4:15:74:cb:d4:7c:bf:a0:00:89:9e:54:69:77: ec:92:63:3d:4a:60:5c:70:97:05:18:3e:ee:c6:09:ba:3a:bf: 7f:36:f1:dd:bd:55:bb:cb:9b:56:be:b4:ea:2b:8f:6a:44:dc: 24:72:c2:74:73:f8:df:a8:81:ba:14:d9:60:fd:4e:e5:30:d4: 87:e1:cb:90:38:63:f5:9d:67:cb:7b:6a:c1:6f:83:40:c4:cb: 48:d3:bf:58:d3:3b:07:f5:34:ae:0c:d1:0d:d6:61:5b:e3:a8: 4b:22:60:94:35:a4:17:78:be:b1:44:ab:c3:6d:4d:64:b1:d8: 5f:8c:6c:bf:b8:60:57:2e:88:b1:9f:eb:b8:0c:a2:92:25:dc: 39:fb:9b:d4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaRW9mEsbRDgO+excuMEjqyhmnN4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAyMDAyMDU1WhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MmUwMDYwNGFjMDZmZjQzZTg3OWZlNDhlNDMzOTg3ZWJk NGNlMzNkYzhlMTc2M2QzZjVlMWIxNzQ1NjZkOGExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1Hxi0Y+timBpLSJSScopo5U/bEHFE15J3Zgoq66tQFhVw h9TYOUxIELkKJZDbPFqYpuV87u9C33/ToOTJB/HA+VBisKwTXUsENsHwXfzibSNU SXq+poxCbNA6Jb39K01zZg2M2pTGaXeh3FSAWTPjP8xx9JSzU+TYRrO2A1DooCFv klTVGXzz2EgvraC0jx5uhXK9KsEaO5Xkkl1RjaD8QwIscu7dW2WD5kEL2NEQo6gR Kichtm1HtpzqI4hMRzUs11oRm0AyVrYTaigBzph1kGQ3nbOvQa5elZ7IGapal3EF XX7IM0Abzz3BYhiRvdyIBwzvPsx0Wtz9FIiKNCypAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjQz8pwn0R8fULFu4ZTfusr1RaCkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzOTM5NTFhLTQ4ZjYtNGQ1ZS1hNmExLWM1YTIxOTU1MDA1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjKjANBgkqhkiG9w0BAQsFAAOCAQEAF9PuevX2Q4V+oBXvUGADhNYhaWZe vNrx0YIZreYAjSLRguQ8jqI4PKwMtUHU98AiS0b/YSbXzs5LV2zcXFBaUrWig8w7 AzggVEwl6u7/EosbRdJRHrArN0YHAphDF9iw026pGgr9APAPnn1FCDBBqNQVdMvU fL+gAImeVGl37JJjPUpgXHCXBRg+7sYJujq/fzbx3b1Vu8ubVr606iuPakTcJHLC dHP436iBuhTZYP1O5TDUh+HLkDhj9Z1ny3tqwW+DQMTLSNO/WNM7B/U0rgzRDdZh W+OoSyJglDWkF3i+sUSrw21NZLHYX4xsv7hgVy6IsZ/ruAyikiXcOfub1A== -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:45 2025 by rpki-client