$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa File: 2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa (raw, json) Hash identifier: RCJoRrJBERTCYBUAaz5YU2In8OwggBWo2UiM8V/k0e8= Subject key identifier: F0:0D:BC:1A:D3:05:9A:C6:0B:31:EC:A8:FB:03:4A:A6:A3:1D:24:5D Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4A41D030DE2F2303C06A101031B0A10425B8C8B0 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa Signing time: Mon 30 Jun 2025 17:40:19 +0000 ROA not before: Mon 30 Jun 2025 17:40:19 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 26 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:41:d0:30:de:2f:23:03:c0:6a:10:10:31:b0:a1:04:25:b8:c8:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:19 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=1288bc7277ad7aaf8484a64566e4fcf331141f9e44353978742f68c66c07825a, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:16:3a:18:de:bd:2c:0b:52:a8:d2:80:75:41: 55:c0:fc:6b:6c:dd:93:05:40:c4:c5:43:83:a9:10: c1:f3:e5:76:4a:a1:cb:13:db:5d:ec:10:94:92:b3: d0:95:7e:45:53:01:e2:33:ae:21:46:bb:93:90:67: 69:6f:13:a9:60:ae:15:7f:ef:f1:4a:7f:e3:e2:0f: 98:03:6c:a9:8c:9c:33:73:e1:7a:16:b5:be:03:64: 06:e7:8d:05:5e:02:61:2b:1b:47:8f:d2:e0:75:fe: 35:1d:70:38:6f:d7:1e:82:0f:66:5e:7f:1d:1a:03: 94:28:0c:a4:78:26:f1:f7:89:de:7b:42:1f:b8:06: 2a:f4:36:f0:eb:47:e2:28:27:f2:bf:be:0c:2a:13: f6:c4:b3:22:ce:6d:49:34:61:1f:e6:2c:ce:27:fe: 7c:47:0e:9e:71:23:78:4f:b2:9c:71:50:53:8e:b1: f1:f9:b4:f8:16:a8:fa:b1:d0:ea:fd:33:04:2f:f3: 28:d1:39:1c:3b:3a:b0:ee:7d:78:77:00:01:26:25: eb:bf:4d:30:f6:87:b3:4d:7e:d9:a5:66:2f:fe:ca: df:c9:98:0a:d5:77:72:a2:d5:56:7a:d2:d1:bd:33: 82:1b:82:90:b9:e9:7d:44:ee:5c:4d:8f:93:c4:84: 45:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:0D:BC:1A:D3:05:9A:C6:0B:31:EC:A8:FB:03:4A:A6:A3:1D:24:5D X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption 73:5a:8e:60:ce:b7:4c:d6:80:c6:0c:aa:d1:d1:66:d0:7c:c9: 11:3e:bc:38:12:d2:12:20:b6:08:d0:d9:87:98:86:d5:6d:45: 9d:7f:eb:00:53:2b:f7:f2:45:f4:39:80:a6:bc:fa:a4:c8:53: 71:f6:95:94:29:45:d3:b1:f6:4f:23:e7:99:c5:3c:5d:03:48: 8d:de:d6:6b:c2:c7:e5:23:22:e4:12:07:3b:1b:b9:b8:30:87: 52:17:ea:8c:2e:1e:a5:c3:17:2e:01:18:f4:7c:fd:6b:9b:de: e6:eb:1b:fd:bf:0f:d3:69:67:1a:2b:a4:c8:af:be:ad:db:01: 36:07:95:1d:62:ac:20:d5:5b:46:a3:b0:e6:30:07:9d:8e:a5: 49:3b:ca:f7:f4:fe:ac:93:23:61:b2:c5:32:d0:a0:6c:71:6a: 65:95:a1:e2:1a:25:82:66:4d:fe:6f:f0:ea:84:ed:3a:8b:d6: 16:ac:29:20:07:01:93:1b:dc:7c:5c:85:80:ee:18:cb:e0:0e: 08:ef:67:4d:4d:2e:b7:6f:1e:27:d4:d3:90:1b:51:7f:37:05: 00:d7:85:01:34:dc:a7:c1:af:4d:f3:17:76:86:9d:07:12:b7: 76:f4:a1:76:9e:ca:ab:ba:7f:a0:a7:50:d5:fb:08:7d:53:63: 46:23:3f:c2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSkHQMN4vIwPAahAQMbChBCW4yLAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDE5WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjg4YmM3Mjc3YWQ3YWFmODQ4NGE2NDU2NmU0ZmNmMzMx MTQxZjllNDQzNTM5Nzg3NDJmNjhjNjZjMDc4MjVhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtFjoY3r0sC1Ko0oB1QVXA/Gts3ZMFQMTFQ4OpEMHz5XZK ocsT213sEJSSs9CVfkVTAeIzriFGu5OQZ2lvE6lgrhV/7/FKf+PiD5gDbKmMnDNz 4XoWtb4DZAbnjQVeAmErG0eP0uB1/jUdcDhv1x6CD2Zefx0aA5QoDKR4JvH3id57 Qh+4Bir0NvDrR+IoJ/K/vgwqE/bEsyLObUk0YR/mLM4n/nxHDp5xI3hPspxxUFOO sfH5tPgWqPqx0Or9MwQv8yjRORw7OrDufXh3AAEmJeu/TTD2h7NNftmlZi/+yt/J mArVd3Ki1VZ60tG9M4IbgpC56X1E7lxNj5PEhEXTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8A28GtMFmsYLMeyo+wNKpqMdJF0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJjYTUyNjRjLTdiZjUtNDI0OC1iNmFkLWRkOWNmNTdhMmJlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPQwDQYJKoZIhvcNAQELBQADggEBAHNajmDOt0zWgMYMqtHRZtB8yRE+ vDgS0hIgtgjQ2YeYhtVtRZ1/6wBTK/fyRfQ5gKa8+qTIU3H2lZQpRdOx9k8j55nF PF0DSI3e1mvCx+UjIuQSBzsbubgwh1IX6owuHqXDFy4BGPR8/Wub3ubrG/2/D9Np ZxorpMivvq3bATYHlR1irCDVW0ajsOYwB52OpUk7yvf0/qyTI2GyxTLQoGxxamWV oeIaJYJmTf5v8OqE7TqL1hasKSAHAZMb3HxchYDuGMvgDgjvZ01NLrdvHifU05Ab UX83BQDXhQE03KfBr03zF3aGnQcSt3b0oXaeyqu6f6CnUNX7CH1TY0YjP8I= -----END CERTIFICATE-----Generated at Fri Jul 25 17:23:42 2025 by rpki-client