$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50f68e79-dceb-4d6c-b0b9-8f4eb96b81db.roa File: 50f68e79-dceb-4d6c-b0b9-8f4eb96b81db.roa (raw, json) Hash identifier: pSRq4DP3Cp4paTFLQUqFu9pgYBk7OJHsTbFORzRscd4= Subject key identifier: 9A:CA:F1:15:43:82:1C:B5:38:B3:11:3E:33:32:31:6A:E6:35:C8:ED Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4054DB3593547684AD68161433AA752BBDBB1352 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50f68e79-dceb-4d6c-b0b9-8f4eb96b81db.roa Signing time: Fri 29 Aug 2025 16:30:23 +0000 ROA not before: Fri 29 Aug 2025 16:30:23 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.47.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:54:db:35:93:54:76:84:ad:68:16:14:33:aa:75:2b:bd:bb:13:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 16:30:23 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=228fef39d9fd33c9d22ed8ea34e8d25dd6529aee4ab2ea5bb6a2782601d237df, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:4c:c6:83:e3:c4:73:f2:72:d8:71:0f:ab:05: d0:7d:aa:1e:b2:36:c2:e0:48:d8:6c:7a:df:ac:a5: 0f:f4:e2:a2:26:40:07:36:a3:68:d8:98:b0:94:96: 1e:ee:10:59:1c:08:cd:d2:9b:24:29:e7:12:51:2f: 3c:f4:e1:00:6f:94:a3:3a:54:7a:2c:ad:fa:3b:01: d4:0b:10:ac:07:26:07:0d:12:d2:47:7d:f4:fa:2b: 70:fb:96:45:0c:d7:bd:6c:94:a5:14:64:d1:2e:78: 4f:9b:17:30:22:74:af:9a:cd:42:11:aa:74:4f:21: 2a:d8:9c:10:7a:25:f2:b1:eb:5a:5e:65:4d:7e:b2: 57:74:b6:bd:37:46:37:7a:6f:99:ac:57:e3:4c:80: 9a:f8:8c:ea:42:d4:0b:44:b9:17:f1:e1:5f:5f:08: ac:54:18:d3:b3:f6:c7:3e:41:82:ff:ae:95:dc:d4: e4:d7:d5:0e:a1:43:e3:9b:ca:02:60:f5:76:1e:1f: 5d:67:60:4e:47:bf:9d:85:1d:9d:ce:13:b6:b8:c9: c4:32:27:fb:07:41:a3:1a:81:59:e4:e3:33:4c:07: 96:da:29:8d:38:ba:3f:85:e4:f3:4f:9d:d2:2d:cb: fc:a4:1b:24:a0:0f:98:0f:81:40:26:1c:a6:0c:69: cb:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:CA:F1:15:43:82:1C:B5:38:B3:11:3E:33:32:31:6A:E6:35:C8:ED X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50f68e79-dceb-4d6c-b0b9-8f4eb96b81db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.47.0.0/16 Signature Algorithm: sha256WithRSAEncryption 69:80:6d:f8:49:3b:dd:70:76:3f:97:39:95:7e:1e:04:67:a8: fc:09:1e:7d:3d:1f:fa:ed:57:c4:4a:89:39:69:09:e5:bb:b4: 71:c6:f6:4e:15:a9:60:0d:5b:77:c1:6d:1e:ab:67:27:62:7b: b9:4e:28:d3:dd:2c:74:00:ab:52:5c:c0:8b:52:a5:71:6d:8c: 5e:e9:ba:34:0d:08:67:ed:29:9c:fb:6c:0f:10:d9:b4:c5:27: 67:d1:eb:00:a2:6d:a1:c1:af:1e:36:a4:01:ca:7f:70:5a:a6: ae:dc:79:6f:4d:4b:ec:36:83:77:ff:7c:ab:be:f0:f9:e2:86: 7c:c4:13:ea:43:df:b5:e8:1f:16:0e:06:d0:6c:a0:45:03:e9: d0:3e:52:ce:a6:4c:98:8b:df:71:da:cf:cb:82:b3:09:ae:d0: bd:18:30:be:94:af:fd:17:90:ea:53:19:07:9b:8c:78:d4:18: 52:30:a6:4a:1c:19:d3:b8:98:fa:79:19:25:bd:12:32:5c:a5: 31:81:44:da:58:84:ca:41:f2:77:72:c7:51:1b:83:ea:0a:71: e2:fa:23:07:be:fe:99:af:41:7e:1f:bc:24:4f:be:28:61:fa: 7a:52:dd:97:d8:65:5c:9a:1b:28:0a:b9:b6:88:05:19:86:43: 8c:32:a1:89 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQFTbNZNUdoStaBYUM6p1K727E1IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTYzMDIzWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjhmZWYzOWQ5ZmQzM2M5ZDIyZWQ4ZWEzNGU4ZDI1ZGQ2 NTI5YWVlNGFiMmVhNWJiNmEyNzgyNjAxZDIzN2RmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRTMaD48Rz8nLYcQ+rBdB9qh6yNsLgSNhset+spQ/04qIm QAc2o2jYmLCUlh7uEFkcCM3SmyQp5xJRLzz04QBvlKM6VHosrfo7AdQLEKwHJgcN EtJHffT6K3D7lkUM171slKUUZNEueE+bFzAidK+azUIRqnRPISrYnBB6JfKx61pe ZU1+sld0tr03Rjd6b5msV+NMgJr4jOpC1AtEuRfx4V9fCKxUGNOz9sc+QYL/rpXc 1OTX1Q6hQ+ObygJg9XYeH11nYE5Hv52FHZ3OE7a4ycQyJ/sHQaMagVnk4zNMB5ba KY04uj+F5PNPndIty/ykGySgD5gPgUAmHKYMacuvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmsrxFUOCHLU4sxE+MzIxauY1yO0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUwZjY4ZTc5LWRjZWItNGQ2Yy1iMGI5LThmNGViOTZiODFkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjLzANBgkqhkiG9w0BAQsFAAOCAQEAaYBt+Ek73XB2P5c5lX4eBGeo/Ake fT0f+u1XxEqJOWkJ5bu0ccb2ThWpYA1bd8FtHqtnJ2J7uU4o090sdACrUlzAi1Kl cW2MXum6NA0IZ+0pnPtsDxDZtMUnZ9HrAKJtocGvHjakAcp/cFqmrtx5b01L7DaD d/98q77w+eKGfMQT6kPftegfFg4G0GygRQPp0D5SzqZMmIvfcdrPy4KzCa7QvRgw vpSv/ReQ6lMZB5uMeNQYUjCmShwZ07iY+nkZJb0SMlylMYFE2liEykHyd3LHURuD 6gpx4vojB77+ma9Bfh+8JE++KGH6elLdl9hlXJobKAq5togFGYZDjDKhiQ== -----END CERTIFICATE-----Generated at Sat Sep 6 16:25:51 2025 by rpki-client