$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa File: 5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa (raw, json) Hash identifier: ieJ9N2BdTU8+bxtM0MU0Ddh8spi0v84YtGhxZmOgh7U= Subject key identifier: E0:08:CA:E1:00:8B:EF:A7:03:F1:04:67:C7:F3:5D:4F:8F:19:D0:43 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 01F00D3C070DFDFCA805D784CD9277D6A422D0EB Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa Signing time: Fri 11 Jul 2025 18:20:11 +0000 ROA not before: Fri 11 Jul 2025 18:20:11 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 26 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:f0:0d:3c:07:0d:fd:fc:a8:05:d7:84:cd:92:77:d6:a4:22:d0:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 11 18:20:11 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=d2163ad36b1ebf6f6d0941c2060744898085c681e45d08f23c0505f6e1c35dbc, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2d:24:f4:68:21:7f:fd:a5:4c:51:ae:05:fd: 24:63:07:7a:9e:19:2b:7a:bc:f1:bc:7c:26:c9:8b: 2b:75:bb:a5:17:90:3e:13:4d:c5:ee:6c:4a:ba:46: 3a:ed:8d:e4:95:69:d2:43:dc:e9:22:c4:bd:24:32: 6e:b0:c0:ad:87:29:60:0f:25:68:76:3c:20:65:c8: 9d:ea:7f:30:16:c3:79:d3:58:87:44:af:f9:98:f7: e7:09:87:9b:08:bb:05:42:17:4b:86:99:4a:4e:fb: 13:6d:0f:51:06:c2:08:4a:10:36:ff:be:fe:77:90: 26:fd:12:ea:da:a4:b2:90:b6:6a:6e:97:2e:af:ba: 6b:8e:02:eb:0b:67:00:c0:be:10:40:4e:64:f8:f1: 6d:51:05:9e:a0:73:0d:6c:ac:1f:4a:86:c7:1b:93: cc:58:b2:47:98:b4:f8:24:05:81:1f:31:73:d3:3d: 38:13:3c:00:79:e1:12:f2:94:2d:84:78:b1:85:46: c2:95:fb:1e:e0:c1:81:b7:5d:23:a5:d6:e8:14:7a: 76:f8:0e:28:77:40:95:1d:ef:dc:50:b5:ec:1b:a7: 9d:f7:dd:a9:65:d2:7c:f1:96:84:12:c3:54:2e:f8: 95:e7:49:56:2c:72:f0:33:9a:8d:6d:d1:c2:36:1d: 54:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:08:CA:E1:00:8B:EF:A7:03:F1:04:67:C7:F3:5D:4F:8F:19:D0:43 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.14.0/24 Signature Algorithm: sha256WithRSAEncryption 86:97:0f:ae:14:a8:9a:38:89:34:8f:f8:09:d3:65:22:90:a5: 32:35:92:f4:8d:80:b9:30:03:a9:ff:74:4c:7c:fc:9e:f1:a1: 88:dc:95:5c:69:74:09:4e:a5:4f:43:c6:b5:60:0b:37:1d:3a: dd:1c:de:f3:62:1e:d5:77:aa:40:b2:58:5a:91:68:72:84:03: 32:07:55:1e:b7:c5:9e:10:89:c1:b5:b7:a3:52:96:46:0b:75: 0c:5e:88:25:33:f1:f7:41:ea:de:88:a6:44:fa:a8:28:92:54: 07:cf:a5:fc:46:20:61:ae:fe:55:3a:af:e0:99:38:12:33:c6: d2:83:cc:0f:6b:c3:92:9d:39:51:4f:67:d9:5e:37:d4:7f:87: 55:16:1b:e6:20:af:d0:fe:82:f7:56:92:03:8b:91:77:f6:8a: 19:f4:28:8e:31:50:dc:72:ea:8b:b0:35:96:4d:4d:a3:af:e1: 84:db:06:35:66:db:d1:84:70:68:8d:31:55:6b:4d:a7:78:9a: a5:87:df:17:c9:b2:00:22:b5:6a:a1:fd:2f:73:a4:fa:dd:4b: a6:f6:6c:05:f8:a1:3c:ee:63:55:08:30:82:91:ae:73:f0:c1: c7:05:3d:a9:e9:94:36:de:19:87:ad:30:81:35:3e:41:a7:e9: 5e:1d:e1:73 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAfANPAcN/fyoBdeEzZJ31qQi0OswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzExMTgyMDExWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjE2M2FkMzZiMWViZjZmNmQwOTQxYzIwNjA3NDQ4OTgw ODVjNjgxZTQ1ZDA4ZjIzYzA1MDVmNmUxYzM1ZGJjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwLST0aCF//aVMUa4F/SRjB3qeGSt6vPG8fCbJiyt1u6UX kD4TTcXubEq6RjrtjeSVadJD3OkixL0kMm6wwK2HKWAPJWh2PCBlyJ3qfzAWw3nT WIdEr/mY9+cJh5sIuwVCF0uGmUpO+xNtD1EGwghKEDb/vv53kCb9EurapLKQtmpu ly6vumuOAusLZwDAvhBATmT48W1RBZ6gcw1srB9Khscbk8xYskeYtPgkBYEfMXPT PTgTPAB54RLylC2EeLGFRsKV+x7gwYG3XSOl1ugUenb4Dih3QJUd79xQtewbp533 3all0nzxloQSw1Qu+JXnSVYscvAzmo1t0cI2HVQLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4AjK4QCL76cD8QRnx/NdT48Z0EMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzVkNjUwOGNlLTQ3YTEtNDAwMi1iMDNiLTljZTIxYjE2Y2Y2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYA4wDQYJKoZIhvcNAQELBQADggEBAIaXD64UqJo4iTSP+AnTZSKQpTI1 kvSNgLkwA6n/dEx8/J7xoYjclVxpdAlOpU9DxrVgCzcdOt0c3vNiHtV3qkCyWFqR aHKEAzIHVR63xZ4QicG1t6NSlkYLdQxeiCUz8fdB6t6IpkT6qCiSVAfPpfxGIGGu /lU6r+CZOBIzxtKDzA9rw5KdOVFPZ9leN9R/h1UWG+Ygr9D+gvdWkgOLkXf2ihn0 KI4xUNxy6ouwNZZNTaOv4YTbBjVm29GEcGiNMVVrTad4mqWH3xfJsgAitWqh/S9z pPrdS6b2bAX4oTzuY1UIMIKRrnPwwccFPanplDbeGYetMIE1PkGn6V4d4XM= -----END CERTIFICATE-----Generated at Fri Jul 25 17:26:17 2025 by rpki-client