$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa File: e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa (raw, json) Hash identifier: udP87N0jRX1KL5pns6lDWsuVclXOw3zRVSXn0vmWHBc= Subject key identifier: 7E:BE:B2:F2:68:C1:28:4C:66:CD:9F:F5:8B:63:F1:14:3C:FB:8F:C1 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5E24F0B444DF456F8C5B1764992811B5699D78B3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa Signing time: Mon 21 Jul 2025 16:40:14 +0000 ROA not before: Mon 21 Jul 2025 16:40:14 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 26 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:24:f0:b4:44:df:45:6f:8c:5b:17:64:99:28:11:b5:69:9d:78:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 21 16:40:14 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=18199b3ff319c22d54b35ff13b10d492db4948f5c508cd18e16bbe8096d15fe8, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7a:bd:a7:6a:b1:5e:8b:53:5b:66:4b:e0:d0: 66:d4:c7:94:f7:f9:a9:15:40:f8:16:42:46:ea:23: 12:0a:8c:6e:fa:6e:01:f3:14:8e:8f:32:be:6f:25: 34:3e:a8:c9:63:91:95:2d:86:bf:49:06:8f:64:26: 18:bc:ae:26:df:c1:2b:05:72:ea:f0:8a:aa:77:85: 1d:eb:37:fb:b3:34:86:d2:f8:13:1a:d3:0c:43:bd: 76:d3:fe:15:cc:48:bc:ba:4f:6b:6d:43:c8:13:96: a4:32:bf:28:0d:bf:bc:c0:2d:a0:54:cf:70:ec:59: ba:81:d2:6e:fa:4c:ff:8d:ce:ea:f9:d2:6c:29:f8: 1c:1d:6f:d8:95:0d:f5:8c:1d:e7:95:d1:0c:cc:1e: 1b:6b:c1:7e:01:a2:11:a7:61:65:ff:51:e1:fa:41: 88:38:67:e3:54:e5:b8:cd:81:a5:7c:00:15:8a:7b: 4e:af:73:51:27:69:a3:e6:29:b0:55:a6:db:bd:76: 41:b8:d3:df:fe:58:d0:a1:ff:78:72:76:76:2f:f9: 4e:5f:37:ae:d8:e0:aa:ee:0b:62:59:fd:c2:61:4b: 89:f8:44:04:7e:d8:b3:0c:c6:73:bc:05:54:ce:d7: ee:0d:aa:f5:ec:d2:96:5a:89:02:8b:ef:5b:ee:f8: 4e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:BE:B2:F2:68:C1:28:4C:66:CD:9F:F5:8B:63:F1:14:3C:FB:8F:C1 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 42:6e:dc:c6:3f:51:6e:52:43:12:06:02:f5:e4:de:95:42:30: 36:ab:75:66:82:e6:2e:58:f2:ee:08:1b:df:38:9e:f0:21:92: f6:b4:d3:8a:fe:3c:97:49:88:4c:23:4d:eb:46:0a:33:b8:2a: f2:dc:d7:89:19:85:4b:66:45:ca:4d:35:ee:96:e9:b8:02:81: 50:61:29:2a:03:34:89:0a:f5:9d:07:dc:70:98:89:7f:15:77: f6:47:8b:65:1c:7a:8b:59:3b:ca:f0:42:38:ef:54:39:65:81: c9:c0:bf:44:f7:c3:b8:aa:ea:3d:0d:73:0b:c6:17:c5:2f:75: d3:58:37:c1:c1:70:1e:9a:f7:a1:da:0c:52:19:eb:27:07:d6: 86:a1:a4:2f:38:b5:0c:52:f7:7f:7d:62:77:76:9f:92:de:2b: 47:2b:33:12:13:aa:bb:0b:fe:5e:1b:16:65:49:b9:2e:c4:8c: 8e:ed:4f:d2:26:20:8c:2d:93:e8:a4:4f:d2:7e:f6:9d:f6:d4: f6:09:a6:33:f4:07:85:12:ab:56:0c:27:89:5c:3f:69:6a:3f: ca:67:3b:3d:ef:ab:00:eb:16:88:6d:a2:ea:3f:a5:2f:76:ae: db:d0:c5:da:81:8e:d8:9a:81:0b:1f:04:ed:bb:86:9a:80:73: 5a:cc:35:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXiTwtETfRW+MWxdkmSgRtWmdeLMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzIxMTY0MDE0WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxODE5OWIzZmYzMTljMjJkNTRiMzVmZjEzYjEwZDQ5MmRi NDk0OGY1YzUwOGNkMThlMTZiYmU4MDk2ZDE1ZmU4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCker2narFei1NbZkvg0GbUx5T3+akVQPgWQkbqIxIKjG76 bgHzFI6PMr5vJTQ+qMljkZUthr9JBo9kJhi8ribfwSsFcurwiqp3hR3rN/uzNIbS +BMa0wxDvXbT/hXMSLy6T2ttQ8gTlqQyvygNv7zALaBUz3DsWbqB0m76TP+Nzur5 0mwp+Bwdb9iVDfWMHeeV0QzMHhtrwX4BohGnYWX/UeH6QYg4Z+NU5bjNgaV8ABWK e06vc1EnaaPmKbBVptu9dkG409/+WNCh/3hydnYv+U5fN67Y4KruC2JZ/cJhS4n4 RAR+2LMMxnO8BVTO1+4NqvXs0pZaiQKL71vu+E5NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfr6y8mjBKExmzZ/1i2PxFDz7j8EwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2UyYjhhNzYzLTgzZTQtNDA4ZS04NTRhLWEyZTlmNjhjYTk5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBAEJu3MY/UW5SQxIGAvXk3pVCMDar dWaC5i5Y8u4IG984nvAhkva004r+PJdJiEwjTetGCjO4KvLc14kZhUtmRcpNNe6W 6bgCgVBhKSoDNIkK9Z0H3HCYiX8Vd/ZHi2UceotZO8rwQjjvVDllgcnAv0T3w7iq 6j0NcwvGF8UvddNYN8HBcB6a96HaDFIZ6ycH1oahpC84tQxS9399Ynd2n5LeK0cr MxITqrsL/l4bFmVJuS7EjI7tT9ImIIwtk+ikT9J+9p321PYJpjP0B4USq1YMJ4lc P2lqP8pnOz3vqwDrFohtouo/pS92rtvQxdqBjtiagQsfBO27hpqAc1rMNW0= -----END CERTIFICATE-----Generated at Fri Jul 25 17:23:40 2025 by rpki-client