$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49d51f42-2ffc-4217-9e32-f46cec71a85a.roa File: 49d51f42-2ffc-4217-9e32-f46cec71a85a.roa (raw, json) Hash identifier: UEPvYnLIV2y2iNs8JRzJeciSI/ULPiS8CM4O+8g6h7Y= Subject key identifier: 65:23:11:46:53:17:90:C8:1F:33:51:62:19:F1:C1:85:DA:2E:61:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1BF25E2D9750B9B6C48017DBF51A2B961954FE96 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49d51f42-2ffc-4217-9e32-f46cec71a85a.roa Signing time: Tue 02 Sep 2025 00:20:53 +0000 ROA not before: Tue 02 Sep 2025 00:20:53 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.35.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:f2:5e:2d:97:50:b9:b6:c4:80:17:db:f5:1a:2b:96:19:54:fe:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 2 00:20:53 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=7d1e87329035390571121a08c3e09ca6043c62a75fa8140f87763a19cf79d5f7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7e:9d:85:c4:71:f9:a6:f9:d9:42:d0:a6:56: e7:28:39:e5:23:e0:31:60:7d:db:03:e4:b8:d2:cb: fd:ac:07:84:52:e2:67:aa:8f:06:e0:00:e3:d8:17: b4:aa:7c:58:6b:57:b6:32:28:4b:79:73:34:eb:d9: 6c:41:d8:2b:f9:56:93:9e:2c:55:36:fa:0b:07:af: d1:10:69:ca:77:88:cc:83:f9:0b:df:00:4a:df:7c: 71:3b:ee:f5:57:9b:cc:2f:ed:14:34:45:61:69:ec: dd:b3:e5:29:4f:e3:e2:b2:e9:ba:1d:15:2c:c1:b1: d1:55:6f:04:4a:10:63:de:5b:37:02:13:f6:9f:60: 0c:1c:f1:57:bd:29:ef:37:5a:13:87:89:92:d3:7d: 16:dc:41:4c:fc:ca:96:b7:6f:ff:87:c2:9c:28:76: b0:18:2e:30:d6:3a:37:68:a2:cc:32:1f:a6:65:35: 84:58:ad:c3:9e:db:3d:bb:16:8c:d3:2c:de:87:b4: 11:8a:24:bf:0f:87:a8:ed:ed:39:8e:ad:ce:f3:32: f1:ca:ea:81:e4:d1:90:e0:30:b0:f6:36:04:a5:88: 2d:8c:c0:f2:b3:d7:f9:cb:5c:c1:02:06:07:a1:16: 20:20:84:34:66:3c:05:0e:66:42:af:d9:52:70:82: 32:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:23:11:46:53:17:90:C8:1F:33:51:62:19:F1:C1:85:DA:2E:61:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49d51f42-2ffc-4217-9e32-f46cec71a85a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.35.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:42:fe:42:06:f0:98:f6:18:92:20:cf:be:27:61:ca:8f:79: 65:17:41:de:dc:4c:f4:1c:45:3f:89:8a:6e:07:d8:5f:09:9d: 8f:0f:42:48:d2:19:ca:76:ff:4d:b6:06:d8:03:6c:d2:24:5f: a9:0a:a2:8f:7b:b9:bb:2a:1f:7c:fb:3e:67:2d:e6:de:2a:97: 4a:e6:e0:14:e7:e1:81:cf:fb:02:64:3d:90:91:ec:e1:bb:94: 84:53:09:2a:d5:1b:ec:82:b2:7f:9a:17:2e:57:c3:ed:a9:5a: 03:3b:52:32:44:a5:8a:9b:21:9e:7d:83:aa:5a:48:45:9a:9e: 81:8e:ea:ca:fb:f0:6c:b7:c6:38:1b:d8:d5:ab:f4:b8:33:c5: b3:f4:31:57:54:96:dd:f1:5c:48:0b:d0:2d:ba:bf:76:c7:7a: a6:a3:f6:2e:5e:78:41:a6:ff:09:ac:77:8d:61:f4:5d:71:0c: 77:12:b7:e0:a7:6d:7f:6a:ec:a6:06:16:38:9b:bd:95:10:52: ba:d1:8c:6e:8b:62:65:f9:8e:c2:1a:38:93:c2:cd:30:bd:d9: e3:b4:28:b6:e9:96:8e:00:77:b9:fa:f2:ed:9a:0c:3f:e0:2e: 3d:c1:86:9f:5c:c7:a5:0e:70:52:4b:86:ab:bb:83:0d:17:d8: 0b:dd:a3:22 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUG/JeLZdQubbEgBfb9RorlhlU/pYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAyMDAyMDUzWhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDFlODczMjkwMzUzOTA1NzExMjFhMDhjM2UwOWNhNjA0 M2M2MmE3NWZhODE0MGY4Nzc2M2ExOWNmNzlkNWY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsfp2FxHH5pvnZQtCmVucoOeUj4DFgfdsD5LjSy/2sB4RS 4meqjwbgAOPYF7SqfFhrV7YyKEt5czTr2WxB2Cv5VpOeLFU2+gsHr9EQacp3iMyD +QvfAErffHE77vVXm8wv7RQ0RWFp7N2z5SlP4+Ky6bodFSzBsdFVbwRKEGPeWzcC E/afYAwc8Ve9Ke83WhOHiZLTfRbcQUz8ypa3b/+HwpwodrAYLjDWOjdooswyH6Zl NYRYrcOe2z27FozTLN6HtBGKJL8Ph6jt7TmOrc7zMvHK6oHk0ZDgMLD2NgSliC2M wPKz1/nLXMECBgehFiAghDRmPAUOZkKv2VJwgjLbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZSMRRlMXkMgfM1FiGfHBhdouYWEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5ZDUxZjQyLTJmZmMtNDIxNy05ZTMyLWY0NmNlYzcxYTg1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjIzANBgkqhkiG9w0BAQsFAAOCAQEAiEL+QgbwmPYYkiDPvidhyo95ZRdB 3txM9BxFP4mKbgfYXwmdjw9CSNIZynb/TbYG2ANs0iRfqQqij3u5uyoffPs+Zy3m 3iqXSubgFOfhgc/7AmQ9kJHs4buUhFMJKtUb7IKyf5oXLlfD7alaAztSMkSlipsh nn2DqlpIRZqegY7qyvvwbLfGOBvY1av0uDPFs/QxV1SW3fFcSAvQLbq/dsd6pqP2 Ll54Qab/Cax3jWH0XXEMdxK34Kdtf2rspgYWOJu9lRBSutGMbotiZfmOwho4k8LN ML3Z47QotumWjgB3ufry7ZoMP+AuPcGGn1zHpQ5wUkuGq7uDDRfYC92jIg== -----END CERTIFICATE-----Generated at Sat Sep 6 14:05:59 2025 by rpki-client