$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa File: 22f66e2d-2753-44a1-9aec-16b69cdffad1.roa (raw, json) Hash identifier: qCpJqIbBrun6JqQTwtON0R+KsR0NvHQq6cQCUNk28+U= Subject key identifier: 63:93:4E:3D:FC:D2:DA:E9:F8:DF:80:AB:A6:36:89:2E:D9:11:73:28 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4C800612BDD89C65CABBC597FF9499D11B192C57 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa Signing time: Mon 14 Jul 2025 15:30:09 +0000 ROA not before: Mon 14 Jul 2025 15:30:09 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 26 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:80:06:12:bd:d8:9c:65:ca:bb:c5:97:ff:94:99:d1:1b:19:2c:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 14 15:30:09 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=3bbcdb2ac313c1b98b651ff0084df978cb4b3f4d4822522f6bbadb0a273c367b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:04:79:90:59:f8:92:1b:41:4e:a3:d9:c0:97: b4:5f:21:fd:35:ce:e9:26:9f:a3:43:6d:14:25:83: 49:87:3a:cd:5d:ea:1a:5f:c2:5f:72:a9:cd:a1:49: d0:7b:10:3e:6f:35:8c:c9:1d:72:f2:c4:2b:e4:4c: 8b:e2:05:4e:a0:e2:a7:da:eb:a1:f1:38:30:7f:dd: 6d:86:42:c3:99:ab:ee:ec:9c:6c:1c:42:b0:cd:d5: 33:a1:63:1a:e3:ac:59:11:0e:5a:c0:1e:92:50:4f: be:38:8c:05:d0:a3:08:ab:17:0b:2e:82:11:51:b3: 0d:df:34:28:e4:3d:b3:f5:09:c2:f3:2e:13:81:78: 18:ac:f6:d0:ce:69:e6:52:09:9b:94:31:66:be:04: 9c:2c:cf:94:31:76:23:e1:80:b4:08:af:8b:23:39: ec:cd:30:d0:b4:e8:80:6f:bf:29:1a:1f:ba:7f:63: 2b:2c:5b:f4:20:bb:9b:cc:03:c5:af:d3:66:a2:18: 8b:f4:54:6d:2d:2f:ae:98:4d:e6:40:ce:8a:1c:77: 4d:6d:c0:a7:ad:8a:4a:eb:fa:70:16:2d:36:18:ec: 6d:38:4c:bb:a6:60:d6:4b:aa:b7:ca:6c:16:b5:8a: 82:0c:cf:15:70:e1:0e:9e:6d:da:86:d1:5a:ce:d0: 40:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:93:4E:3D:FC:D2:DA:E9:F8:DF:80:AB:A6:36:89:2E:D9:11:73:28 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.1.0/24 Signature Algorithm: sha256WithRSAEncryption 77:92:bd:8f:54:bd:dc:fa:b4:a5:2c:2c:1e:21:df:5f:3c:e8: 41:9d:32:45:08:e5:d9:ec:7e:c1:42:4f:70:ec:7d:de:bc:9d: 58:4a:de:c7:8c:bc:16:92:81:d8:e2:ad:82:71:a5:d2:98:dc: bb:45:86:6c:c0:e2:fd:3a:f2:26:ff:c6:63:a6:2e:1d:85:cf: a5:bc:72:e1:e9:55:c7:0d:0b:e4:ae:fa:91:f3:d0:24:bb:5e: d2:2c:2c:b0:32:fa:4a:a5:83:85:a2:b9:2e:21:3d:d7:aa:46: c6:8b:56:35:0c:ae:6a:ab:e6:49:3d:ed:98:c7:99:9a:4b:f6: 01:ed:d7:f7:ce:3c:23:07:10:ee:12:48:d5:6d:56:a4:ff:02: 7e:63:b9:6f:8c:0b:3b:d8:ad:cc:8b:58:f6:e4:16:83:9a:95: d5:42:44:89:bf:35:0d:ca:dd:ae:30:26:68:e3:b4:f3:dd:74: 08:47:1a:a5:4d:e7:3b:36:8b:cd:46:84:45:c5:b2:11:ca:ed: b7:f9:6f:e5:65:1e:e5:d8:64:a9:e5:da:64:8a:01:8e:37:78: f3:dc:35:38:db:a5:e0:7e:8f:b0:a9:21:2c:b0:33:4a:89:41: 9c:18:0b:9b:95:fb:68:38:cc:aa:c7:39:4f:05:69:ed:6b:e3: 15:2b:51:ed -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTIAGEr3YnGXKu8WX/5SZ0RsZLFcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzE0MTUzMDA5WhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYmJjZGIyYWMzMTNjMWI5OGI2NTFmZjAwODRkZjk3OGNi NGIzZjRkNDgyMjUyMmY2YmJhZGIwYTI3M2MzNjdiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKBHmQWfiSG0FOo9nAl7RfIf01zukmn6NDbRQlg0mHOs1d 6hpfwl9yqc2hSdB7ED5vNYzJHXLyxCvkTIviBU6g4qfa66HxODB/3W2GQsOZq+7s nGwcQrDN1TOhYxrjrFkRDlrAHpJQT744jAXQowirFwsughFRsw3fNCjkPbP1CcLz LhOBeBis9tDOaeZSCZuUMWa+BJwsz5QxdiPhgLQIr4sjOezNMNC06IBvvykaH7p/ YyssW/Qgu5vMA8Wv02aiGIv0VG0tL66YTeZAzoocd01twKetikrr+nAWLTYY7G04 TLumYNZLqrfKbBa1ioIMzxVw4Q6ebdqG0VrO0EDJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUY5NOPfzS2un434CrpjaJLtkRcygwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzIyZjY2ZTJkLTI3NTMtNDRhMS05YWVjLTE2YjY5Y2RmZmFkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAEwDQYJKoZIhvcNAQELBQADggEBAHeSvY9Uvdz6tKUsLB4h31886EGd MkUI5dnsfsFCT3Dsfd68nVhK3seMvBaSgdjirYJxpdKY3LtFhmzA4v068ib/xmOm Lh2Fz6W8cuHpVccNC+Su+pHz0CS7XtIsLLAy+kqlg4WiuS4hPdeqRsaLVjUMrmqr 5kk97ZjHmZpL9gHt1/fOPCMHEO4SSNVtVqT/An5juW+MCzvYrcyLWPbkFoOaldVC RIm/NQ3K3a4wJmjjtPPddAhHGqVN5zs2i81GhEXFshHK7bf5b+VlHuXYZKnl2mSK AY43ePPcNTjbpeB+j7CpISywM0qJQZwYC5uV+2g4zKrHOU8Fae1r4xUrUe0= -----END CERTIFICATE-----Generated at Fri Jul 25 17:24:09 2025 by rpki-client