$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa File: e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa (raw, json) Hash identifier: BwAD4t9kup9O6eA/Iv4Zu27zK133AoVWtPzY2s2GtN4= Subject key identifier: 07:39:FE:1F:9E:05:04:EF:46:57:87:03:90:3B:C7:7E:5A:00:6E:2F Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 590C76124370F9B82D00518AC6D02BE955FE8E4A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa Signing time: Sat 12 Jul 2025 00:40:55 +0000 ROA not before: Sat 12 Jul 2025 00:40:55 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 26 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:0c:76:12:43:70:f9:b8:2d:00:51:8a:c6:d0:2b:e9:55:fe:8e:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 12 00:40:55 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=3646c32bd5442be2b5270df50220d23e5b614bda9a8e30b42af2dc7955b09b7e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6f:65:d4:56:c8:e3:99:37:ec:6e:cb:0a:4d: 27:6c:a0:9b:cf:21:e4:58:13:a5:31:ee:29:e6:5a: 5c:9b:f3:f4:09:cd:e7:17:ec:97:e7:b4:a3:07:9b: bc:bf:72:2c:4d:3e:4c:bd:8e:0e:51:66:93:88:17: 44:04:74:b8:09:d3:e2:b3:93:89:3d:9b:dd:0d:9d: 10:70:36:09:eb:83:ca:92:83:5f:b2:38:c8:c0:ee: 98:9c:cb:8e:00:1a:5e:fe:19:1e:5a:53:1b:31:ce: 1d:c1:28:24:98:65:dc:ac:10:75:ca:6f:12:50:ac: 9d:ea:a0:8e:0b:ef:f9:0e:5c:b2:74:7c:53:8a:d4: 1d:b4:a3:2f:1c:4a:fe:a9:84:1d:1e:a7:bb:d3:6b: 3e:1c:cd:da:13:d7:59:c7:e9:fc:a4:11:0d:e3:0b: 52:a6:d7:79:7f:84:25:ec:f0:8f:3d:9c:e5:59:bd: ad:04:a6:dd:7d:d7:7a:95:53:df:6e:b3:4b:14:7f: a3:7c:31:86:e8:f9:53:f3:3f:2e:b8:0d:80:b8:82: 47:c9:b4:7b:23:24:2e:69:ed:83:82:5d:7c:81:5d: b6:02:31:c6:bc:7d:77:4e:a1:de:92:45:ec:b2:fd: 43:b3:b8:e2:20:d6:bd:d4:be:9a:f1:71:d7:b4:1d: bb:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:39:FE:1F:9E:05:04:EF:46:57:87:03:90:3B:C7:7E:5A:00:6E:2F X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.4.0/24 Signature Algorithm: sha256WithRSAEncryption 87:a1:5d:4d:2c:9d:b6:68:f6:7a:13:d5:23:cd:f2:b3:08:12: ff:3c:91:cc:bb:89:d7:79:70:33:a3:97:58:e5:c0:fa:df:7c: b9:88:df:fd:67:0a:8b:84:69:e6:5c:54:1f:22:5a:24:69:74: 49:a5:6b:3c:fe:35:0f:ef:1f:cf:9f:96:bc:9a:8a:b9:db:df: a7:ef:cd:b9:3e:08:d2:62:6a:9b:b2:ad:58:fe:1a:e6:65:0d: 13:eb:3c:7d:53:47:12:08:08:08:f1:ad:3a:23:43:cc:12:fb: d8:77:ba:e3:46:2b:a9:04:5b:d4:b3:0b:a4:a4:53:fb:41:9f: d0:7f:fa:ce:17:0e:60:26:99:9c:88:2d:04:14:fa:0b:0a:77: 77:92:4b:a4:ad:b9:6b:23:7b:b2:05:7c:f8:4e:e2:32:26:f5: 9f:cf:62:79:ad:ef:87:f1:8c:f4:3e:82:82:fd:6d:ee:f4:70: cb:73:d5:c0:7b:c6:d8:01:ef:14:08:66:3b:0b:e7:0a:d5:f6: 1e:5b:96:cb:e3:70:31:57:23:96:3a:ab:ee:de:e8:80:65:aa: b7:c3:c9:c8:cd:ae:67:fe:7c:f1:e7:1a:6b:36:9c:24:fa:c5: 32:34:ac:aa:b1:b2:19:bb:7a:62:51:21:07:71:a9:9d:11:f4: 5b:4f:ae:98 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWQx2EkNw+bgtAFGKxtAr6VX+jkowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzEyMDA0MDU1WhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNjQ2YzMyYmQ1NDQyYmUyYjUyNzBkZjUwMjIwZDIzZTVi NjE0YmRhOWE4ZTMwYjQyYWYyZGM3OTU1YjA5YjdlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCb2XUVsjjmTfsbssKTSdsoJvPIeRYE6Ux7inmWlyb8/QJ zecX7JfntKMHm7y/cixNPky9jg5RZpOIF0QEdLgJ0+Kzk4k9m90NnRBwNgnrg8qS g1+yOMjA7picy44AGl7+GR5aUxsxzh3BKCSYZdysEHXKbxJQrJ3qoI4L7/kOXLJ0 fFOK1B20oy8cSv6phB0ep7vTaz4czdoT11nH6fykEQ3jC1Km13l/hCXs8I89nOVZ va0Ept1913qVU99us0sUf6N8MYbo+VPzPy64DYC4gkfJtHsjJC5p7YOCXXyBXbYC Mca8fXdOod6SReyy/UOzuOIg1r3Uvprxcde0HbtrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBzn+H54FBO9GV4cDkDvHfloAbi8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2U1YzFiOWI4LTk3ZjAtNDRlMC1hNGI1LTJmNmMyYTI1MzFjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAQwDQYJKoZIhvcNAQELBQADggEBAIehXU0snbZo9noT1SPN8rMIEv88 kcy7idd5cDOjl1jlwPrffLmI3/1nCouEaeZcVB8iWiRpdEmlazz+NQ/vH8+flrya irnb36fvzbk+CNJiapuyrVj+GuZlDRPrPH1TRxIICAjxrTojQ8wS+9h3uuNGK6kE W9SzC6SkU/tBn9B/+s4XDmAmmZyILQQU+gsKd3eSS6StuWsje7IFfPhO4jIm9Z/P Ynmt74fxjPQ+goL9be70cMtz1cB7xtgB7xQIZjsL5wrV9h5blsvjcDFXI5Y6q+7e 6IBlqrfDycjNrmf+fPHnGms2nCT6xTI0rKqxshm7emJRIQdxqZ0R9FtPrpg= -----END CERTIFICATE-----Generated at Fri Jul 25 17:22:18 2025 by rpki-client