$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f0a96265-a445-4e05-83b9-a3b3fd739677.roa File: f0a96265-a445-4e05-83b9-a3b3fd739677.roa (raw, json) Hash identifier: EJcjOlvBb5EJMdcoJGQrGOOUisXcmZDcjZE0xy1cTiE= Subject key identifier: 84:D0:84:0D:44:7F:38:B9:5B:4C:41:02:89:88:C6:76:8F:A5:0E:72 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6FF738150CD4471B70FD5AFC4093B4091FBA7EF3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f0a96265-a445-4e05-83b9-a3b3fd739677.roa Signing time: Mon 21 Jul 2025 16:40:04 +0000 ROA not before: Mon 21 Jul 2025 16:40:04 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 26 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:f7:38:15:0c:d4:47:1b:70:fd:5a:fc:40:93:b4:09:1f:ba:7e:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 21 16:40:04 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=6c235e761efa432e52fd7b4d935307c6aac74d3a7c7573016f0a5ce16826062c, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f4:c9:76:9c:d6:9b:db:aa:e3:32:0a:10:6d: 4b:2f:f8:1f:31:2f:76:de:a1:66:f7:3c:4e:ca:4e: b6:c0:2c:de:99:cb:f6:e4:88:90:5b:9a:20:dd:ac: 97:62:86:da:5a:57:37:e6:1c:3a:70:15:13:04:27: ec:2c:d7:1f:dd:97:d4:08:cf:79:c6:f1:49:3e:72: 2d:ee:47:fa:55:d7:a3:17:b6:42:35:a4:83:29:5a: 9b:ba:95:05:7b:58:5c:02:5a:75:a4:7a:35:ee:3d: 85:f7:bc:e2:94:89:0e:dd:e3:53:9d:ab:4e:c7:a5: 56:3a:ee:10:eb:f2:16:05:da:5e:dd:5e:c1:5b:e6: 19:11:65:56:8b:56:5f:1d:c4:b0:65:d9:ce:e0:85: 10:06:9c:f8:99:5c:90:c6:bf:9f:92:d7:b0:ff:64: b6:88:f2:03:18:68:4b:11:71:fd:be:55:9e:34:ab: af:e7:4f:9b:a5:07:2d:be:93:54:79:27:31:61:46: b3:38:47:b5:07:93:9c:09:bb:89:e4:1c:8b:dc:f9: 30:4d:31:ab:9d:78:0b:9a:53:33:e0:18:c9:34:92: f0:32:bd:eb:ca:6d:b2:8e:3f:4e:e4:4e:e9:57:7b: e5:3a:57:89:2f:bb:f5:21:eb:ba:99:70:cf:d8:83: 4b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D0:84:0D:44:7F:38:B9:5B:4C:41:02:89:88:C6:76:8F:A5:0E:72 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f0a96265-a445-4e05-83b9-a3b3fd739677.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.28.0/23 Signature Algorithm: sha256WithRSAEncryption 72:17:a2:03:a8:32:51:e2:e8:52:87:78:c5:01:e6:04:b3:d8: 2f:9a:56:7b:e6:30:67:2f:df:12:15:c7:e0:eb:38:26:08:84: cb:53:c9:61:70:d3:af:3e:08:30:da:05:e8:5a:e1:d2:d0:6d: 39:a9:a7:5c:8c:58:06:cd:56:95:ff:3d:c6:60:67:91:fe:d2: 83:9f:11:5b:68:be:4b:79:6a:f4:7f:ba:21:08:41:1a:16:06: 9a:4c:5b:f5:fc:c9:93:10:20:80:50:a7:73:6c:43:ac:5d:ea: dc:ab:27:e9:bc:06:35:11:fa:b3:57:f1:65:1a:75:66:1e:ed: da:63:20:2e:40:b5:fd:54:92:e3:2e:ad:ab:97:e4:bf:80:79: 48:69:ac:d9:fd:fa:0e:bc:7d:ac:69:fd:a0:cd:41:4a:f7:9b: 32:f5:6b:b9:37:7a:ee:b1:0f:20:74:dc:06:bb:6e:bf:a9:33: e3:54:d5:3f:92:d0:96:64:c7:1f:ee:e2:10:75:85:5b:bc:dc: 8e:7b:f2:91:57:aa:95:a4:d5:59:eb:92:c6:58:56:e0:9c:c3: 7b:a0:f6:7d:dd:f6:79:35:db:9b:a9:79:f0:94:65:a5:57:85: 2a:ee:b9:6b:09:4a:27:3e:b0:d4:dd:90:a1:4b:23:4a:75:d4: a7:35:14:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb/c4FQzURxtw/Vr8QJO0CR+6fvMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzIxMTY0MDA0WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YzIzNWU3NjFlZmE0MzJlNTJmZDdiNGQ5MzUzMDdjNmFh Yzc0ZDNhN2M3NTczMDE2ZjBhNWNlMTY4MjYwNjJjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCp9Ml2nNab26rjMgoQbUsv+B8xL3beoWb3PE7KTrbALN6Z y/bkiJBbmiDdrJdihtpaVzfmHDpwFRMEJ+ws1x/dl9QIz3nG8Uk+ci3uR/pV16MX tkI1pIMpWpu6lQV7WFwCWnWkejXuPYX3vOKUiQ7d41Odq07HpVY67hDr8hYF2l7d XsFb5hkRZVaLVl8dxLBl2c7ghRAGnPiZXJDGv5+S17D/ZLaI8gMYaEsRcf2+VZ40 q6/nT5ulBy2+k1R5JzFhRrM4R7UHk5wJu4nkHIvc+TBNMaudeAuaUzPgGMk0kvAy vevKbbKOP07kTulXe+U6V4kvu/Uh67qZcM/Yg0tTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhNCEDUR/OLlbTEECiYjGdo+lDnIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2YwYTk2MjY1LWE0NDUtNGUwNS04M2I5LWEzYjNmZDczOTY3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBwwDQYJKoZIhvcNAQELBQADggEBAHIXogOoMlHi6FKHeMUB5gSz2C+a VnvmMGcv3xIVx+DrOCYIhMtTyWFw068+CDDaBeha4dLQbTmpp1yMWAbNVpX/PcZg Z5H+0oOfEVtovkt5avR/uiEIQRoWBppMW/X8yZMQIIBQp3NsQ6xd6tyrJ+m8BjUR +rNX8WUadWYe7dpjIC5Atf1UkuMurauX5L+AeUhprNn9+g68faxp/aDNQUr3mzL1 a7k3eu6xDyB03Aa7br+pM+NU1T+S0JZkxx/u4hB1hVu83I578pFXqpWk1VnrksZY VuCcw3ug9n3d9nk125upefCUZaVXhSruuWsJSic+sNTdkKFLI0p11Kc1FG4= -----END CERTIFICATE-----Generated at Fri Jul 25 17:23:42 2025 by rpki-client