$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ff893aad-9ed8-41c3-9b48-507fa414885d.roa File: ff893aad-9ed8-41c3-9b48-507fa414885d.roa (raw, json) Hash identifier: fcvYeWKMv0ToTNpCQnYsnXqTcaTcEfQxO/44LPu7f4c= Subject key identifier: 36:B4:98:7F:1C:EA:13:32:54:F0:5B:7C:8B:A1:B4:F0:13:95:4F:2A Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 40A3B1D80DEDA153630C488B2F76BEA03B93F555 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ff893aad-9ed8-41c3-9b48-507fa414885d.roa Signing time: Mon 21 Jul 2025 16:30:12 +0000 ROA not before: Mon 21 Jul 2025 16:30:12 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 26 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:a3:b1:d8:0d:ed:a1:53:63:0c:48:8b:2f:76:be:a0:3b:93:f5:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 21 16:30:12 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=013c2c6afa71b7740309c9a5f4e9c70824120002d4efdcacce0de6ee458f4e5b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:11:a3:71:bd:e5:36:42:9a:53:cc:d0:99:3d: 77:bb:c8:ae:ee:e2:15:06:16:b0:61:0e:45:8f:ef: 44:d0:80:0c:c7:77:79:e4:21:ce:fa:e9:c3:f8:da: 23:9e:46:f6:d5:28:86:16:cf:d1:14:b9:44:76:7e: 63:1c:8a:c6:1e:02:16:8c:e2:a2:c1:5a:34:ba:09: 55:af:59:52:e3:10:5e:2d:a3:4e:ff:a8:97:94:59: 64:87:ed:5a:ef:30:af:d7:38:a0:1c:1d:69:d8:40: f4:8f:db:b1:be:15:ef:ed:f8:d3:3c:15:d8:65:da: 77:7f:43:05:b3:56:2b:e1:60:87:5a:66:da:80:14: 79:be:84:fe:d3:03:28:a8:80:18:dc:0e:ce:e5:c9: 58:7f:40:5b:f4:88:1a:ef:4f:8c:66:f1:3d:b8:15: f0:9b:aa:91:be:f1:3e:ba:ba:82:5e:bd:4b:1a:c2: 93:f7:7e:df:bb:b4:38:6d:b9:22:85:70:6f:85:8b: 6b:5a:bc:fc:9e:b6:48:4a:cc:2a:be:8c:49:58:10: d9:30:37:bf:e7:bf:15:72:e1:4e:d9:0c:48:c4:92: 98:24:1d:c6:d6:5a:b1:eb:07:bd:d7:58:af:70:a4: 4b:4b:6a:c6:b3:2a:c3:54:f3:f4:42:07:c6:2e:ee: e4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:B4:98:7F:1C:EA:13:32:54:F0:5B:7C:8B:A1:B4:F0:13:95:4F:2A X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ff893aad-9ed8-41c3-9b48-507fa414885d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.247.0/24 Signature Algorithm: sha256WithRSAEncryption 76:f2:4b:e2:61:71:53:24:44:77:be:5e:e8:24:12:a7:ac:18: 20:2e:65:f4:3c:6c:34:9f:e2:5a:b8:c5:76:e5:38:ed:64:80: d8:d1:4f:a7:ea:b5:39:3a:14:1e:d7:32:e2:d0:17:6a:03:d0: 16:68:fe:b9:29:bb:10:fe:98:ef:7c:c7:70:a5:6e:09:28:9a: fa:ee:15:97:81:c0:d5:9b:e4:9a:9a:1b:d2:91:20:7c:d5:22: 59:7a:11:c6:18:f8:eb:a0:b1:74:3f:25:14:fb:8f:3a:15:6b: 29:d5:fc:56:bf:fa:49:b6:31:ec:39:90:f8:07:f9:09:70:f4: 63:da:dd:01:8c:2c:f3:91:b4:2a:86:8c:e9:1f:f1:eb:ac:a0: 7c:47:2b:d8:dd:b9:ca:89:a8:95:8c:e0:db:22:f5:62:fb:e0: d9:a5:30:b8:96:68:a0:f2:02:72:96:b2:e6:d4:a8:28:63:89: 59:84:25:bc:a8:06:86:c6:c8:fa:dd:1d:d8:e0:1b:a3:9b:1b: 02:4d:af:38:d3:1c:7e:3d:c7:c5:90:33:87:4b:f5:cd:a9:4d: 96:f3:47:5c:99:41:9e:ba:62:fa:09:3c:38:ab:23:40:a8:90: 78:67:fb:83:b5:77:eb:99:97:22:52:e2:66:55:6f:5a:e6:51: 0f:f9:94:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQKOx2A3toVNjDEiLL3a+oDuT9VUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzIxMTYzMDEyWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTNjMmM2YWZhNzFiNzc0MDMwOWM5YTVmNGU5YzcwODI0 MTIwMDAyZDRlZmRjYWNjZTBkZTZlZTQ1OGY0ZTViMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpEaNxveU2QppTzNCZPXe7yK7u4hUGFrBhDkWP70TQgAzH d3nkIc766cP42iOeRvbVKIYWz9EUuUR2fmMcisYeAhaM4qLBWjS6CVWvWVLjEF4t o07/qJeUWWSH7VrvMK/XOKAcHWnYQPSP27G+Fe/t+NM8Fdhl2nd/QwWzVivhYIda ZtqAFHm+hP7TAyiogBjcDs7lyVh/QFv0iBrvT4xm8T24FfCbqpG+8T66uoJevUsa wpP3ft+7tDhtuSKFcG+Fi2tavPyetkhKzCq+jElYENkwN7/nvxVy4U7ZDEjEkpgk HcbWWrHrB73XWK9wpEtLasazKsNU8/RCB8Yu7uS7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNrSYfxzqEzJU8Ft8i6G08BOVTyowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2ZmODkzYWFkLTllZDgtNDFjMy05YjQ4LTUwN2ZhNDE0ODg1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPcwDQYJKoZIhvcNAQELBQADggEBAHbyS+JhcVMkRHe+XugkEqesGCAu ZfQ8bDSf4lq4xXblOO1kgNjRT6fqtTk6FB7XMuLQF2oD0BZo/rkpuxD+mO98x3Cl bgkomvruFZeBwNWb5JqaG9KRIHzVIll6EcYY+OugsXQ/JRT7jzoVaynV/Fa/+km2 Mew5kPgH+Qlw9GPa3QGMLPORtCqGjOkf8eusoHxHK9jducqJqJWM4Nsi9WL74Nml MLiWaKDyAnKWsubUqChjiVmEJbyoBobGyPrdHdjgG6ObGwJNrzjTHH49x8WQM4dL 9c2pTZbzR1yZQZ66YvoJPDirI0CokHhn+4O1d+uZlyJS4mZVb1rmUQ/5lDE= -----END CERTIFICATE-----Generated at Fri Jul 25 17:25:48 2025 by rpki-client