$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/906a4434-ef79-4be5-917c-827859a9939a.roa File: 906a4434-ef79-4be5-917c-827859a9939a.roa (raw, json) Hash identifier: dX3VifRti4HYl3BGFeez3XEzCFXA7lF1v8ktKVIkV/M= Subject key identifier: 9A:A5:8F:A6:ED:E2:62:5F:7C:C3:68:5A:94:2A:83:B1:FE:71:7D:67 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1EA036094CC32D81B9D6047934F8208CA6F07ECE Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/906a4434-ef79-4be5-917c-827859a9939a.roa Signing time: Mon 21 Jul 2025 16:30:16 +0000 ROA not before: Mon 21 Jul 2025 16:30:16 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 26 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:a0:36:09:4c:c3:2d:81:b9:d6:04:79:34:f8:20:8c:a6:f0:7e:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 21 16:30:16 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=b6051a0cc62f20327f2d14e0babc63f3c1511f7b8b3cc52e9d7d1836f4854111, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4f:6c:9d:a4:15:3c:05:f0:8a:9b:45:6b:0a: f1:74:23:23:0a:bf:0d:43:e9:cb:db:d8:f3:41:54: a7:49:c2:2c:89:32:68:6f:a9:fc:91:66:6e:fb:72: da:89:b9:af:8a:d4:c8:9c:20:2c:5c:e9:e7:6b:7d: 22:ad:98:37:3f:65:fc:bb:2e:4f:49:cc:f5:32:98: 29:89:59:5e:5f:b4:ac:87:c1:64:42:3e:77:e2:51: 32:65:b6:a4:e1:7a:ba:ac:44:25:d1:22:e5:fe:0f: 6b:23:f3:5e:0a:d8:bf:4e:91:13:0e:89:a9:e0:b3: 6d:65:5b:5e:a0:f0:37:f8:32:5e:f7:d7:40:5b:a6: 78:7e:7a:e8:7b:43:e9:ed:fd:7c:2b:b6:6e:9b:ca: 58:5c:e3:b3:bc:98:db:b7:cc:92:74:47:2d:68:89: ea:d6:4f:77:a4:92:f5:8e:31:72:88:b3:4a:02:d6: 31:9c:da:b0:26:c4:f4:af:63:a7:6d:54:6c:5e:b7: cc:fb:87:33:74:bc:6d:e2:f6:d5:74:21:ee:44:4e: 0c:c4:ed:66:14:4e:15:88:24:30:01:6d:3c:63:04: 19:9c:03:58:29:02:29:0e:f6:59:f7:f6:36:45:a0: 48:9a:2f:72:55:2c:87:82:5f:a5:61:97:04:9f:80: c5:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A5:8F:A6:ED:E2:62:5F:7C:C3:68:5A:94:2A:83:B1:FE:71:7D:67 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/906a4434-ef79-4be5-917c-827859a9939a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.246.0/24 Signature Algorithm: sha256WithRSAEncryption 59:64:a5:8b:f0:88:d7:94:c2:09:1f:e8:2c:52:c1:2b:04:d2: 02:76:4f:70:2c:19:a8:b6:9f:97:52:a2:bc:69:ab:03:bb:96: 31:b9:5c:07:06:96:d7:ec:70:a3:94:b1:18:d9:16:70:e7:35: 37:85:95:0a:2f:3d:56:bf:a0:ba:8f:f0:04:b4:19:c9:05:47: 04:8c:99:de:f8:7c:b5:9b:78:4a:08:8f:2a:32:32:ef:fa:17: 8e:66:b8:ad:7d:b8:ed:2b:fe:b6:3f:47:b0:c5:8e:a2:17:69: 0f:b9:03:73:a7:8f:19:88:85:17:0c:21:9f:bd:34:9d:57:57: ba:32:17:08:09:5b:58:8b:ef:b1:e3:69:54:83:aa:12:9d:7c: 08:a1:d5:eb:0e:c8:d9:a7:51:e0:22:b3:c5:6e:ab:4f:80:67: 58:27:57:ab:84:42:36:35:35:f6:83:b9:df:77:79:a6:46:14: 87:59:07:94:93:b0:72:d8:5a:d7:4b:39:9a:b4:0f:e5:a4:63: 98:cc:e8:39:4e:81:a4:dd:3a:80:60:c7:61:dc:9d:ba:a3:24: 3a:b8:89:a7:ee:35:f1:0f:0e:7c:be:0a:05:53:a8:06:dd:58: e2:9c:d7:d8:8f:26:48:77:40:3b:c9:6d:82:c5:a2:4d:95:1d: a7:5d:31:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHqA2CUzDLYG51gR5NPggjKbwfs4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzIxMTYzMDE2WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjA1MWEwY2M2MmYyMDMyN2YyZDE0ZTBiYWJjNjNmM2Mx NTExZjdiOGIzY2M1MmU5ZDdkMTgzNmY0ODU0MTExMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/T2ydpBU8BfCKm0VrCvF0IyMKvw1D6cvb2PNBVKdJwiyJ MmhvqfyRZm77ctqJua+K1MicICxc6edrfSKtmDc/Zfy7Lk9JzPUymCmJWV5ftKyH wWRCPnfiUTJltqTherqsRCXRIuX+D2sj814K2L9OkRMOiangs21lW16g8Df4Ml73 10Bbpnh+euh7Q+nt/Xwrtm6bylhc47O8mNu3zJJ0Ry1oierWT3ekkvWOMXKIs0oC 1jGc2rAmxPSvY6dtVGxet8z7hzN0vG3i9tV0Ie5ETgzE7WYUThWIJDABbTxjBBmc A1gpAikO9ln39jZFoEiaL3JVLIeCX6VhlwSfgMW9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmqWPpu3iYl98w2halCqDsf5xfWcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzkwNmE0NDM0LWVmNzktNGJlNS05MTdjLTgyNzg1OWE5OTM5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPYwDQYJKoZIhvcNAQELBQADggEBAFlkpYvwiNeUwgkf6CxSwSsE0gJ2 T3AsGai2n5dSorxpqwO7ljG5XAcGltfscKOUsRjZFnDnNTeFlQovPVa/oLqP8AS0 GckFRwSMmd74fLWbeEoIjyoyMu/6F45muK19uO0r/rY/R7DFjqIXaQ+5A3OnjxmI hRcMIZ+9NJ1XV7oyFwgJW1iL77HjaVSDqhKdfAih1esOyNmnUeAis8Vuq0+AZ1gn V6uEQjY1NfaDud93eaZGFIdZB5STsHLYWtdLOZq0D+WkY5jM6DlOgaTdOoBgx2Hc nbqjJDq4iafuNfEPDny+CgVTqAbdWOKc19iPJkh3QDvJbYLFok2VHaddMbE= -----END CERTIFICATE-----Generated at Fri Jul 25 17:25:40 2025 by rpki-client