$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fecb6982-06d4-4bb4-a59c-59982eb1b971.roa File: fecb6982-06d4-4bb4-a59c-59982eb1b971.roa (raw, json) Hash identifier: RkM4r1THmNW72DyPhM9R73p4ONDJzVs7XLwMjBBbV+U= Subject key identifier: 88:71:BA:9D:48:F2:0B:98:08:4F:95:47:74:2A:7A:D4:52:9F:41:31 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 31BB1C2DEE6BEFDDC541C47FA290E2CAC3AC662D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fecb6982-06d4-4bb4-a59c-59982eb1b971.roa Signing time: Mon 21 Jul 2025 16:30:19 +0000 ROA not before: Mon 21 Jul 2025 16:30:19 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 26 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:bb:1c:2d:ee:6b:ef:dd:c5:41:c4:7f:a2:90:e2:ca:c3:ac:66:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 21 16:30:19 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=540efe1516af007c11058eef46321381f88d25d60a27be8162d7f3b2f54c968c, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ce:f8:48:e7:18:90:fa:55:31:2c:c6:3a:95: 5f:ed:0b:a9:c0:db:fe:c8:86:dd:52:97:ea:81:28: e8:63:c9:de:e4:f2:d7:4e:7e:d8:dd:17:b1:2a:96: f7:cd:f1:b2:7b:3c:54:9b:65:f7:82:fd:2d:e1:4c: b5:13:6a:92:e7:8e:39:43:0b:02:6f:a3:2e:c6:de: 36:53:e6:3a:0b:43:2f:95:f0:2b:26:20:bc:71:43: 36:dd:ab:35:5e:30:6c:81:16:a6:ca:0b:8e:d8:6d: 39:7d:b2:a6:b1:c3:74:58:86:2f:53:a5:8f:a4:1d: 32:4e:b3:0d:a5:1f:8a:59:3d:41:82:f5:05:96:c4: 4d:5e:ed:3a:30:0e:59:38:60:8b:92:ab:ac:76:a3: 76:81:76:61:f8:0a:1d:e4:14:1b:3a:20:19:76:c4: 80:8c:f4:3a:ba:49:c7:1a:67:fd:70:16:58:da:c9: d7:bf:33:40:9b:96:33:c2:f4:8f:d0:b7:50:9d:3a: 30:71:84:30:20:20:22:a4:6c:9b:0d:b3:b7:76:20: e0:c8:d6:78:34:3e:cf:e4:92:24:7b:85:66:32:83: 4a:ca:f7:d7:c1:4e:bf:e5:41:b9:13:c5:90:9b:8c: e7:fe:9f:bc:a8:69:eb:b2:41:78:80:e7:80:c6:58: 1c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:71:BA:9D:48:F2:0B:98:08:4F:95:47:74:2A:7A:D4:52:9F:41:31 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fecb6982-06d4-4bb4-a59c-59982eb1b971.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.30.0/23 Signature Algorithm: sha256WithRSAEncryption 97:ea:73:0d:62:3d:c7:5b:3d:9b:8d:e7:73:1f:91:a5:d3:90: e2:79:0d:c4:9e:cb:b9:dc:a5:d1:49:fe:fb:d2:ad:9c:21:88: 5d:ee:00:ed:09:d2:00:03:a9:a5:2a:6f:d2:7d:53:0d:67:30: 9e:6f:0a:8b:18:6a:85:06:34:bc:7e:73:0c:06:06:05:ad:fa: e5:db:ca:7b:77:89:50:9b:37:21:fa:84:b0:4c:8f:68:23:75: a0:0c:3f:9f:d9:ba:63:5d:81:5d:78:fc:f1:0d:e8:66:92:c9: 7e:ec:62:17:92:27:06:03:b9:c4:39:39:b3:c3:92:04:09:26: e2:91:69:5e:99:25:05:ff:5f:cf:bf:10:cb:9a:6a:32:5b:47: be:e9:56:f9:32:87:6b:fa:6d:e2:49:6d:db:1d:3f:47:fe:70: 8e:0b:e2:81:2d:ce:c9:1a:57:68:af:a8:c3:25:c8:0a:00:38: c3:2a:1f:bb:5c:ed:9f:86:b1:0f:73:8b:54:ab:dc:74:37:8e: f0:4a:df:57:d5:16:3d:3c:c5:4d:d4:65:e5:4b:8e:ee:72:ba: ad:df:17:5b:db:45:39:76:4e:28:87:6d:95:3e:f6:92:13:07: ca:93:c5:26:6d:ac:36:cc:b8:9e:24:cc:08:12:44:3d:89:b3: ec:08:13:76 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMbscLe5r793FQcR/opDiysOsZi0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzIxMTYzMDE5WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDBlZmUxNTE2YWYwMDdjMTEwNThlZWY0NjMyMTM4MWY4 OGQyNWQ2MGEyN2JlODE2MmQ3ZjNiMmY1NGM5NjhjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDezvhI5xiQ+lUxLMY6lV/tC6nA2/7Iht1Sl+qBKOhjyd7k 8tdOftjdF7EqlvfN8bJ7PFSbZfeC/S3hTLUTapLnjjlDCwJvoy7G3jZT5joLQy+V 8CsmILxxQzbdqzVeMGyBFqbKC47YbTl9sqaxw3RYhi9TpY+kHTJOsw2lH4pZPUGC 9QWWxE1e7TowDlk4YIuSq6x2o3aBdmH4Ch3kFBs6IBl2xICM9Dq6SccaZ/1wFlja yde/M0CbljPC9I/Qt1CdOjBxhDAgICKkbJsNs7d2IODI1ng0Ps/kkiR7hWYyg0rK 99fBTr/lQbkTxZCbjOf+n7yoaeuyQXiA54DGWBwZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiHG6nUjyC5gIT5VHdCp61FKfQTEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2ZlY2I2OTgyLTA2ZDQtNGJiNC1hNTljLTU5OTgyZWIxYjk3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYB4wDQYJKoZIhvcNAQELBQADggEBAJfqcw1iPcdbPZuN53MfkaXTkOJ5 DcSey7ncpdFJ/vvSrZwhiF3uAO0J0gADqaUqb9J9Uw1nMJ5vCosYaoUGNLx+cwwG BgWt+uXbynt3iVCbNyH6hLBMj2gjdaAMP5/ZumNdgV14/PEN6GaSyX7sYheSJwYD ucQ5ObPDkgQJJuKRaV6ZJQX/X8+/EMuaajJbR77pVvkyh2v6beJJbdsdP0f+cI4L 4oEtzskaV2ivqMMlyAoAOMMqH7tc7Z+GsQ9zi1Sr3HQ3jvBK31fVFj08xU3UZeVL ju5yuq3fF1vbRTl2TiiHbZU+9pITB8qTxSZtrDbMuJ4kzAgSRD2Js+wIE3Y= -----END CERTIFICATE-----Generated at Fri Jul 25 17:22:13 2025 by rpki-client