$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/07bd3aac-7c97-429a-9a81-6751e4001f6d.roa File: 07bd3aac-7c97-429a-9a81-6751e4001f6d.roa (raw, json) Hash identifier: saFFZMo6YQ4SmISmGIJG09cN8KnazUU8HKrmPNNzhtk= Subject key identifier: B1:A0:B9:00:B2:99:EE:75:48:79:87:AC:25:A5:45:C4:E7:A0:D9:85 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 740143E9E83E15734C41A80E2E8D3DCDF0D8B87F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/07bd3aac-7c97-429a-9a81-6751e4001f6d.roa Signing time: Sat 12 Jul 2025 00:40:59 +0000 ROA not before: Sat 12 Jul 2025 00:40:59 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 26 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:01:43:e9:e8:3e:15:73:4c:41:a8:0e:2e:8d:3d:cd:f0:d8:b8:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 12 00:40:59 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=97c2d8322dc35b9225e415e31c7098216c8c984b0c0d055ee864200048a60d0e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:51:8b:1c:b6:7d:0e:e2:bc:49:a6:d2:14:60: d5:28:61:91:09:33:c6:b9:6e:39:d0:d0:bb:ba:d9: 49:4b:dc:1b:dd:22:e5:fa:23:e7:f6:b8:fc:26:65: b4:ee:24:6c:42:8b:00:2b:82:af:3e:b0:4d:87:e4: 7e:0f:b0:85:9b:bb:90:4a:bd:c3:c2:ab:43:4d:d5: af:32:21:7b:5b:95:95:8f:6b:0b:65:bc:19:b2:ae: 16:4c:71:25:b9:ff:6c:97:10:b0:5e:60:85:16:03: 9e:f1:17:84:ee:fa:84:92:50:14:c9:0f:da:10:a0: 2f:e3:21:45:07:94:34:fc:cb:bb:74:89:6f:03:76: 94:a7:68:3d:23:06:64:bb:a9:3e:b1:8f:27:5d:dc: 8d:9f:88:eb:6c:0f:87:c0:4c:a2:c8:95:c5:81:cf: cc:d6:9c:05:fb:ba:f7:d8:c7:c6:9f:08:5c:98:ca: 26:9c:b7:e0:a1:29:bb:43:a0:96:f2:57:88:ed:12: 73:ff:81:0d:cf:d4:82:a0:12:96:8f:91:3e:bd:c3: f4:b8:fc:2e:e3:2b:57:bf:18:ee:82:6c:51:0f:ab: c6:90:71:e9:fe:b3:58:3a:4a:1b:65:30:d5:07:de: b0:5e:78:ba:86:0c:b0:2e:b4:d2:f1:14:bc:5a:da: 3e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A0:B9:00:B2:99:EE:75:48:79:87:AC:25:A5:45:C4:E7:A0:D9:85 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/07bd3aac-7c97-429a-9a81-6751e4001f6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.6.0/24 Signature Algorithm: sha256WithRSAEncryption 96:e4:2a:e3:d2:bd:2f:ec:bb:0f:a3:49:ce:66:8e:b1:38:f6: 8a:43:da:c3:91:77:0f:45:04:34:56:8d:0b:eb:bd:7a:86:4b: 65:9b:65:eb:ff:28:b5:4f:7b:16:ba:2a:ec:c3:87:18:80:b5: ce:40:86:ca:c2:8c:7a:15:fc:e5:1a:d7:5a:8f:e1:63:b8:eb: 37:ed:61:3d:af:d4:3c:c8:62:64:86:d7:49:ca:d4:8f:73:ba: 70:25:36:29:f1:95:be:dd:ad:ff:a6:92:8b:fe:be:65:63:51: aa:74:6a:4c:e4:3b:7e:54:76:3d:6b:20:53:c6:6e:0f:47:b4: e9:db:e5:e3:3b:cc:5b:5b:05:31:13:da:69:4b:c0:41:9a:63: e9:01:76:b4:7b:49:b6:fe:22:4c:e8:b2:3a:b8:d7:6a:aa:84: 39:24:8c:a8:ae:1a:4e:78:c0:f7:14:b9:d9:3f:0f:09:c7:ca: 7b:5e:2d:b1:2a:8f:8a:7d:6e:e1:30:6a:42:6a:19:b3:32:b0: aa:ec:8a:56:a7:95:58:27:40:68:bd:78:43:67:60:5e:63:9a: 40:94:5d:3d:6e:93:d6:df:a9:e1:c5:8b:2a:91:08:c7:b2:3e: 20:46:ff:24:68:76:94:9c:4a:35:40:94:33:e8:c2:34:0e:31: 6a:a6:9f:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdAFD6eg+FXNMQagOLo09zfDYuH8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzEyMDA0MDU5WhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2MyZDgzMjJkYzM1YjkyMjVlNDE1ZTMxYzcwOTgyMTZj OGM5ODRiMGMwZDA1NWVlODY0MjAwMDQ4YTYwZDBlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnUYsctn0O4rxJptIUYNUoYZEJM8a5bjnQ0Lu62UlL3Bvd IuX6I+f2uPwmZbTuJGxCiwArgq8+sE2H5H4PsIWbu5BKvcPCq0NN1a8yIXtblZWP awtlvBmyrhZMcSW5/2yXELBeYIUWA57xF4Tu+oSSUBTJD9oQoC/jIUUHlDT8y7t0 iW8DdpSnaD0jBmS7qT6xjydd3I2fiOtsD4fATKLIlcWBz8zWnAX7uvfYx8afCFyY yiact+ChKbtDoJbyV4jtEnP/gQ3P1IKgEpaPkT69w/S4/C7jK1e/GO6CbFEPq8aQ cen+s1g6ShtlMNUH3rBeeLqGDLAutNLxFLxa2j7hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsaC5ALKZ7nVIeYesJaVFxOeg2YUwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzA3YmQzYWFjLTdjOTctNDI5YS05YTgxLTY3NTFlNDAwMWY2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAYwDQYJKoZIhvcNAQELBQADggEBAJbkKuPSvS/suw+jSc5mjrE49opD 2sORdw9FBDRWjQvrvXqGS2WbZev/KLVPexa6KuzDhxiAtc5AhsrCjHoV/OUa11qP 4WO46zftYT2v1DzIYmSG10nK1I9zunAlNinxlb7drf+mkov+vmVjUap0akzkO35U dj1rIFPGbg9HtOnb5eM7zFtbBTET2mlLwEGaY+kBdrR7Sbb+Ikzosjq412qqhDkk jKiuGk54wPcUudk/DwnHynteLbEqj4p9buEwakJqGbMysKrsilanlVgnQGi9eENn YF5jmkCUXT1uk9bfqeHFiyqRCMeyPiBG/yRodpScSjVAlDPowjQOMWqmn9s= -----END CERTIFICATE-----Generated at Fri Jul 25 17:26:21 2025 by rpki-client