$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4c031f9-6d40-4ba7-bd96-b1eb485d6adb.roa File: a4c031f9-6d40-4ba7-bd96-b1eb485d6adb.roa (raw, json) Hash identifier: y5vo8pDL9DoBUr/REziaIEgwAONK40GxfTsKQUe6LPk= Subject key identifier: 3B:A8:2C:54:87:C0:BA:88:F5:E6:D8:6D:86:64:64:AE:C4:78:53:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A59DAFDC686AC09673DB5860A83AC577A04F89D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4c031f9-6d40-4ba7-bd96-b1eb485d6adb.roa Signing time: Mon 01 Sep 2025 15:31:10 +0000 ROA not before: Mon 01 Sep 2025 15:31:10 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:59:da:fd:c6:86:ac:09:67:3d:b5:86:0a:83:ac:57:7a:04:f8:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:31:10 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=f3fb5816f01cb35a58b2137824f2de63d77f250c29b6927653650b0cfc565182, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a8:93:0e:96:c6:66:b9:4d:96:85:ac:d4:70: 3e:6b:93:81:61:78:4f:1c:fd:79:22:66:b7:32:ff: f1:c4:0b:22:aa:4e:af:9a:ee:70:13:e4:cb:01:25: 79:d5:1e:04:8d:19:91:a9:59:2e:af:fe:6e:86:c7: fe:88:25:58:1b:c2:26:7f:36:07:c1:20:7b:86:fd: d6:83:b6:71:bc:82:b9:5b:b6:c0:25:68:d9:50:8a: ca:d7:05:ae:bb:43:55:46:1e:0c:54:b9:51:a7:b4: 03:e5:1a:1b:b5:b6:64:5b:e6:a0:dd:03:d2:80:26: 0d:60:1e:17:1c:9e:db:1e:28:bc:d0:19:c8:d6:e0: d5:56:6f:55:6f:28:8c:b9:51:5f:7c:2d:0d:99:5f: 8a:52:f7:8b:93:86:24:1f:e5:35:96:7c:4f:6e:6f: ac:1a:8f:17:02:b0:28:b9:c4:5f:4e:9c:ac:2a:13: 87:ea:85:5f:0c:9f:7c:29:06:22:5f:27:55:35:17: d1:20:1b:43:32:c2:a7:33:f4:0e:15:49:84:ad:a7: 56:d0:ff:fe:65:7e:70:f6:1a:14:62:30:a2:d9:8c: 0e:cd:06:23:ac:da:dd:89:6e:58:9b:6f:31:3e:a7: 99:47:7e:5a:b4:db:81:22:cf:ba:27:b7:0e:f1:ab: a4:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:A8:2C:54:87:C0:BA:88:F5:E6:D8:6D:86:64:64:AE:C4:78:53:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4c031f9-6d40-4ba7-bd96-b1eb485d6adb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption b7:3e:7d:c2:a2:f3:88:cf:5a:7f:3a:05:dc:43:9c:59:98:e8: a0:75:6a:02:a8:76:ac:e3:77:eb:79:41:82:05:7d:97:3b:58: 30:15:fd:16:f5:a4:42:e6:4e:22:0f:ce:03:33:36:7a:53:a9: ab:64:53:ef:f9:62:a0:c0:42:e3:72:96:45:f9:95:0f:58:bb: a5:93:19:7b:f6:07:e8:8f:23:04:5b:dd:bf:ed:df:d3:50:e6: f9:88:bd:d7:9f:fd:b5:01:b5:07:61:c4:c9:1e:df:26:ca:36: a6:e8:98:54:07:ed:2e:28:c2:58:88:c2:57:da:c5:78:77:65: 27:be:3f:d9:75:e3:b4:83:c0:bb:7d:04:09:6e:c4:ac:c7:ee: d3:6a:02:ea:87:9b:e1:87:4e:52:de:15:2c:f1:65:a6:bf:36: 92:7d:cc:7a:46:99:ab:fd:2e:5f:d2:86:3e:a0:13:d9:ea:82: 42:be:db:2d:61:82:43:ab:fb:71:2c:50:09:10:14:99:2e:8e: 5c:bd:95:b8:21:cb:57:9f:a1:85:3f:a4:e1:9a:c9:84:49:46: ea:1c:27:5f:c9:1e:a1:4d:c6:b6:a7:e3:30:09:34:6f:e0:77: 9b:8b:6f:e3:f0:9f:98:06:3a:58:21:af:bc:04:81:74:86:c3: 49:6a:a9:1f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSlna/caGrAlnPbWGCoOsV3oE+J0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUzMTEwWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmM2ZiNTgxNmYwMWNiMzVhNThiMjEzNzgyNGYyZGU2M2Q3 N2YyNTBjMjliNjkyNzY1MzY1MGIwY2ZjNTY1MTgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpqJMOlsZmuU2WhazUcD5rk4FheE8c/XkiZrcy//HECyKq Tq+a7nAT5MsBJXnVHgSNGZGpWS6v/m6Gx/6IJVgbwiZ/NgfBIHuG/daDtnG8grlb tsAlaNlQisrXBa67Q1VGHgxUuVGntAPlGhu1tmRb5qDdA9KAJg1gHhccntseKLzQ GcjW4NVWb1VvKIy5UV98LQ2ZX4pS94uThiQf5TWWfE9ub6wajxcCsCi5xF9OnKwq E4fqhV8Mn3wpBiJfJ1U1F9EgG0Mywqcz9A4VSYStp1bQ//5lfnD2GhRiMKLZjA7N BiOs2t2JblibbzE+p5lHflq024Eiz7ontw7xq6T7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUO6gsVIfAuoj15ththmRkrsR4U08wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E0YzAzMWY5LTZkNDAtNGJhNy1iZDk2LWIxZWI0ODVkNmFkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjKzANBgkqhkiG9w0BAQsFAAOCAQEAtz59wqLziM9afzoF3EOcWZjooHVq Aqh2rON363lBggV9lztYMBX9FvWkQuZOIg/OAzM2elOpq2RT7/lioMBC43KWRfmV D1i7pZMZe/YH6I8jBFvdv+3f01Dm+Yi915/9tQG1B2HEyR7fJso2puiYVAftLijC WIjCV9rFeHdlJ74/2XXjtIPAu30ECW7ErMfu02oC6oeb4YdOUt4VLPFlpr82kn3M ekaZq/0uX9KGPqAT2eqCQr7bLWGCQ6v7cSxQCRAUmS6OXL2VuCHLV5+hhT+k4ZrJ hElG6hwnX8keoU3GtqfjMAk0b+B3m4tv4/CfmAY6WCGvvASBdIbDSWqpHw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:16 2025 by rpki-client