$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a74be31-f0ee-498b-9348-eb800cee944d.roa File: 9a74be31-f0ee-498b-9348-eb800cee944d.roa (raw, json) Hash identifier: oRW0UAaCfTbyHgi5whhwLK5FBM+JZTmElVXjErUiVfY= Subject key identifier: 78:D5:58:12:00:FC:EF:DC:9B:9D:C0:A2:4A:52:D9:A7:17:D1:9F:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68A520C251E8FD81B7575834FB02E8B95C5B815E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a74be31-f0ee-498b-9348-eb800cee944d.roa Signing time: Tue 02 Sep 2025 00:20:57 +0000 ROA not before: Tue 02 Sep 2025 00:20:57 +0000 ROA not after: Tue 07 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.48.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:a5:20:c2:51:e8:fd:81:b7:57:58:34:fb:02:e8:b9:5c:5b:81:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 2 00:20:57 2025 GMT Not After : Oct 7 23:59:59 2025 GMT Subject: serialNumber=4a86f7415335a8067393cf2b1dbafce507142e8f52bb0042bc7521056675d488, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8a:04:4d:bf:18:b4:24:1c:86:fa:9e:ee:d6: 28:d8:c0:2a:97:c5:f6:68:ba:50:89:79:f8:4d:bf: 39:6d:0c:ff:48:b2:ae:0b:e5:94:dd:b9:65:6b:d0: ac:98:f7:f2:a5:d9:f1:4f:00:d3:26:19:2d:13:dc: b1:fe:29:55:78:f0:f8:78:6e:69:df:e1:94:9b:1a: 26:f8:1b:93:e8:bf:a4:03:39:16:07:9b:56:f9:1e: 93:c4:82:2b:5e:79:94:76:32:f9:d0:ba:2c:e5:5a: a1:10:73:b3:4a:50:7a:dc:9e:f3:56:73:4a:ff:44: de:62:2f:1a:cd:68:57:20:b0:48:f3:71:7d:22:e0: 9c:39:fa:72:60:f6:00:9c:32:93:62:eb:93:c7:3f: e8:44:fb:b7:13:71:0b:8f:ec:dc:49:07:63:6e:32: 8f:26:3f:95:a3:34:84:e7:c1:4e:c5:fe:21:3f:19: 21:28:68:86:9b:51:78:0b:84:40:bd:46:d0:c7:2f: 82:44:9f:35:3c:82:b7:32:28:37:67:cf:ca:d1:4a: f2:d9:52:a5:aa:65:7b:44:b5:2a:13:b8:d8:3a:24: 8d:da:2c:97:a4:1f:51:c9:69:1d:11:52:c3:04:dc: a4:89:9e:6a:8a:51:6d:36:b1:5c:1d:2c:fb:64:ce: 9e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D5:58:12:00:FC:EF:DC:9B:9D:C0:A2:4A:52:D9:A7:17:D1:9F:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a74be31-f0ee-498b-9348-eb800cee944d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.48.0.0/15 Signature Algorithm: sha256WithRSAEncryption 67:14:93:67:64:95:b2:b1:5b:08:6a:61:da:65:99:83:5e:6d: 00:07:fb:58:24:1f:89:ae:7c:5f:f9:9c:bc:81:24:a9:a0:d5: 7b:43:5a:25:a9:bf:ae:1a:04:3c:0a:c1:94:19:02:2e:66:27: 06:1b:9a:32:fc:8a:94:e9:d6:e1:6c:5b:70:0b:a5:a3:f2:0e: 08:99:c0:54:7c:27:e8:22:41:4b:1e:33:98:eb:a3:44:c5:f3: 6a:36:6b:b6:bf:f8:b4:2c:27:ca:fa:8b:3c:a0:1b:de:e9:ea: 4d:e0:0a:dd:12:17:2f:93:05:35:21:e1:cd:b2:f0:ac:73:21: 80:25:4a:04:5f:b2:2e:7c:99:24:df:92:92:97:7c:48:11:98: 1a:08:36:73:17:70:fe:21:b8:25:16:e0:4c:a9:1a:7c:d3:0b: cf:7a:8f:5b:12:8f:35:02:d2:d7:61:1e:56:cf:fd:ac:20:18: c5:29:cf:29:0e:07:d6:b0:df:e2:e1:14:bb:89:2a:0c:bc:7c: 0b:8d:d7:fd:8b:b5:56:fc:10:41:2e:d0:89:08:8e:27:f5:80: 1a:d2:35:ee:39:a7:ab:32:42:ec:12:40:a7:26:a5:f3:d6:76: 72:ff:2f:2a:d8:0a:f9:0b:69:69:56:b4:bb:22:04:06:b1:34: 97:20:aa:ff -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaKUgwlHo/YG3V1g0+wLouVxbgV4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAyMDAyMDU3WhcNMjUxMDA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTg2Zjc0MTUzMzVhODA2NzM5M2NmMmIxZGJhZmNlNTA3 MTQyZThmNTJiYjAwNDJiYzc1MjEwNTY2NzVkNDg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRigRNvxi0JByG+p7u1ijYwCqXxfZoulCJefhNvzltDP9I sq4L5ZTduWVr0KyY9/Kl2fFPANMmGS0T3LH+KVV48Ph4bmnf4ZSbGib4G5Pov6QD ORYHm1b5HpPEgiteeZR2MvnQuizlWqEQc7NKUHrcnvNWc0r/RN5iLxrNaFcgsEjz cX0i4Jw5+nJg9gCcMpNi65PHP+hE+7cTcQuP7NxJB2NuMo8mP5WjNITnwU7F/iE/ GSEoaIabUXgLhEC9RtDHL4JEnzU8grcyKDdnz8rRSvLZUqWqZXtEtSoTuNg6JI3a LJekH1HJaR0RUsME3KSJnmqKUW02sVwdLPtkzp4XAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeNVYEgD879ybncCiSlLZpxfRnwkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhNzRiZTMxLWYwZWUtNDk4Yi05MzQ4LWViODAwY2VlOTQ0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjMDANBgkqhkiG9w0BAQsFAAOCAQEAZxSTZ2SVsrFbCGph2mWZg15tAAf7 WCQfia58X/mcvIEkqaDVe0NaJam/rhoEPArBlBkCLmYnBhuaMvyKlOnW4WxbcAul o/IOCJnAVHwn6CJBSx4zmOujRMXzajZrtr/4tCwnyvqLPKAb3unqTeAK3RIXL5MF NSHhzbLwrHMhgCVKBF+yLnyZJN+Skpd8SBGYGgg2cxdw/iG4JRbgTKkafNMLz3qP WxKPNQLS12EeVs/9rCAYxSnPKQ4H1rDf4uEUu4kqDLx8C43X/Yu1VvwQQS7QiQiO J/WAGtI17jmnqzJC7BJApyal89Z2cv8vKtgK+QtpaVa0uyIEBrE0lyCq/w== -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:56 2025 by rpki-client