$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/93da312c-9a87-4802-ae6d-e784f74c131d.roa File: 93da312c-9a87-4802-ae6d-e784f74c131d.roa (raw, json) Hash identifier: Tngk7NsHMQh5NIojR3XUktDLK043QTImQUjL30Srn5A= Subject key identifier: 62:F5:0F:29:C7:5B:D5:3E:30:EE:21:9C:6F:2F:15:51:CA:09:E9:90 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2336CB48F8E533555A1DFDD636CDF7589CA2105D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/93da312c-9a87-4802-ae6d-e784f74c131d.roa Signing time: Sat 12 Jul 2025 00:40:54 +0000 ROA not before: Sat 12 Jul 2025 00:40:54 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 26 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:36:cb:48:f8:e5:33:55:5a:1d:fd:d6:36:cd:f7:58:9c:a2:10:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 12 00:40:54 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=f6ddc52811436970adf4d2e57afeadd7410a8b48989326043a0f9e399a65d153, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:32:08:96:eb:c4:a1:14:92:a8:c2:2d:c0:1e: 6a:9d:ba:c6:54:60:db:f2:7c:1a:80:e3:b0:6b:a9: d0:d7:f1:d4:6a:06:17:24:22:f7:06:c4:52:ed:30: 64:62:67:5c:b0:f7:74:8c:3a:c7:2c:f4:cb:c5:71: b2:a7:fb:78:36:1a:82:de:e8:2e:d3:95:bc:ac:ee: 18:8e:fd:b2:87:b9:97:be:6b:3f:e3:7b:c2:d0:8d: 32:15:10:46:b7:70:9a:8f:cc:67:a4:42:8d:c2:0d: 50:4e:6a:fd:09:75:10:6b:c7:ef:d3:4c:7a:5c:5b: e6:16:91:b6:0a:03:e7:85:b4:c3:ec:5f:04:a7:ea: 8f:38:b2:94:7c:a5:75:73:4c:69:7b:f3:2a:9b:3c: 57:bb:62:38:67:ba:3a:13:52:a8:5c:43:2c:63:50: 22:04:a0:7c:ac:0c:be:81:20:a1:b4:ec:4c:de:22: 32:fd:4c:bd:c8:85:26:98:69:b0:16:cb:49:2e:c4: af:b4:2b:30:82:dd:04:1a:19:03:4c:0d:f2:2f:2a: fb:0e:85:60:04:fd:80:52:14:8e:8f:4a:27:58:7b: ff:a6:a7:27:48:9d:c6:2a:b4:0a:68:18:5c:ec:d0: 07:ab:df:27:fa:fa:f3:ab:24:93:16:b1:84:3e:03: aa:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F5:0F:29:C7:5B:D5:3E:30:EE:21:9C:6F:2F:15:51:CA:09:E9:90 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/93da312c-9a87-4802-ae6d-e784f74c131d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.4.0/24 Signature Algorithm: sha256WithRSAEncryption 13:ee:7d:bc:81:06:26:94:34:c9:a1:d2:2d:cc:bb:58:8b:ff: f6:78:fd:e1:c5:0f:86:37:3e:e8:97:fd:65:1f:ba:d9:fc:e1: 46:a2:ac:db:ca:25:05:7b:a2:68:a8:a8:ff:6b:49:39:1a:e1: 88:2f:a1:56:72:ec:3e:bc:58:c5:55:04:2e:2d:e9:8d:d3:8f: 65:cd:2a:06:8f:e0:db:af:ae:94:79:1a:92:8a:e3:21:79:34: c6:da:f0:eb:bc:bb:2c:c5:f8:b6:65:27:1f:32:34:37:2f:62: 47:39:68:64:c8:4b:89:f0:fe:85:01:50:f1:62:81:98:5a:7c: d4:6a:c8:ee:a9:b8:c6:2b:e9:7f:31:b0:06:86:a2:85:92:63: 52:3b:65:30:6a:71:ae:cd:b3:bb:60:8b:29:d2:41:e4:5f:72: 1f:98:02:fb:1f:aa:9a:24:f3:4b:78:f4:bf:19:52:27:c8:73: 26:3d:a8:db:5a:3f:cc:63:5d:e3:e8:89:2e:8f:82:d2:76:3b: 0e:f9:ea:3b:87:e8:3e:6a:00:e2:b7:5c:9a:a7:2c:b8:f6:15: 66:d6:12:99:f3:ac:39:d4:ef:c4:82:3b:31:70:e2:9f:eb:06: eb:cf:66:7b:28:da:ea:85:3d:f4:17:63:4b:7c:42:ad:0b:a2: ed:e1:ed:23 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIzbLSPjlM1VaHf3WNs33WJyiEF0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzEyMDA0MDU0WhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNmRkYzUyODExNDM2OTcwYWRmNGQyZTU3YWZlYWRkNzQx MGE4YjQ4OTg5MzI2MDQzYTBmOWUzOTlhNjVkMTUzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtMgiW68ShFJKowi3AHmqdusZUYNvyfBqA47BrqdDX8dRq BhckIvcGxFLtMGRiZ1yw93SMOscs9MvFcbKn+3g2GoLe6C7Tlbys7hiO/bKHuZe+ az/je8LQjTIVEEa3cJqPzGekQo3CDVBOav0JdRBrx+/TTHpcW+YWkbYKA+eFtMPs XwSn6o84spR8pXVzTGl78yqbPFe7YjhnujoTUqhcQyxjUCIEoHysDL6BIKG07Eze IjL9TL3IhSaYabAWy0kuxK+0KzCC3QQaGQNMDfIvKvsOhWAE/YBSFI6PSidYe/+m pydIncYqtApoGFzs0Aer3yf6+vOrJJMWsYQ+A6otAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYvUPKcdb1T4w7iGcby8VUcoJ6ZAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzkzZGEzMTJjLTlhODctNDgwMi1hZTZkLWU3ODRmNzRjMTMxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAQwDQYJKoZIhvcNAQELBQADggEBABPufbyBBiaUNMmh0i3Mu1iL//Z4 /eHFD4Y3PuiX/WUfutn84UairNvKJQV7omioqP9rSTka4YgvoVZy7D68WMVVBC4t 6Y3Tj2XNKgaP4NuvrpR5GpKK4yF5NMba8Ou8uyzF+LZlJx8yNDcvYkc5aGTIS4nw /oUBUPFigZhafNRqyO6puMYr6X8xsAaGooWSY1I7ZTBqca7Ns7tgiynSQeRfch+Y Avsfqpok80t49L8ZUifIcyY9qNtaP8xjXePoiS6PgtJ2Ow756juH6D5qAOK3XJqn LLj2FWbWEpnzrDnU78SCOzFw4p/rBuvPZnso2uqFPfQXY0t8Qq0Lou3h7SM= -----END CERTIFICATE-----Generated at Fri Jul 25 17:26:21 2025 by rpki-client