$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/091bd218-6d23-4d4b-a23a-59d4459462ce.roa File: 091bd218-6d23-4d4b-a23a-59d4459462ce.roa (raw, json) Hash identifier: Y2Ql1ezv07kuWTSyNMf7Gn2qMwMUjB7U73ucrTw4m1c= Subject key identifier: 63:57:F8:C8:C6:FE:1C:D6:D2:4B:72:37:41:D2:DA:68:BA:DB:B7:77 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1726BC1188E3B99393B52CDC516A6EA18039EAD5 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/091bd218-6d23-4d4b-a23a-59d4459462ce.roa Signing time: Mon 30 Jun 2025 17:50:20 +0000 ROA not before: Mon 30 Jun 2025 17:50:20 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:26:bc:11:88:e3:b9:93:93:b5:2c:dc:51:6a:6e:a1:80:39:ea:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:50:20 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=d981e0cc107d42c9f11da895e696e9775ca64c136a8ba00ebac86761097c8647, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:35:2d:9f:78:a3:6f:f3:1d:ae:b0:9e:5e:79: bf:a4:28:fd:60:27:48:ba:5e:4c:c5:83:10:01:52: 15:8d:80:3d:97:5e:75:0b:5b:bb:ab:d6:21:83:6e: 5b:47:a3:af:57:75:8b:b3:3a:55:42:01:95:7a:f8: 93:ca:44:3d:87:4b:eb:a3:b0:b2:20:77:09:2b:76: d1:96:f7:bc:de:91:55:be:a9:70:ea:f6:c2:2e:b9: 4b:87:20:ee:26:d7:85:d1:de:81:d5:c8:15:53:49: b0:00:ee:f5:61:41:a0:4c:2f:08:2f:24:a5:44:14: 5e:5f:fc:43:bd:c9:ee:24:35:31:92:e1:86:3e:9f: 0a:3f:25:52:53:6b:1a:b5:02:e1:8a:e5:1f:25:5a: 46:97:ca:29:21:c2:24:85:d5:4d:2e:60:93:32:ac: 29:de:e6:12:36:f9:06:36:4c:e7:b6:3a:ef:a4:d0: 02:c2:36:2a:82:b9:82:92:cb:07:11:6d:b0:7f:b7: ea:13:89:6a:e8:b3:15:38:57:6f:28:4a:da:a2:bc: 6d:ef:47:7d:9a:13:18:92:c9:7a:a8:92:fe:18:f6: d2:4e:f4:20:f1:ad:63:1d:36:3c:4e:54:08:63:f7: 16:06:6d:ad:7a:98:ff:0e:b0:16:e4:a7:b5:43:05: 86:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:57:F8:C8:C6:FE:1C:D6:D2:4B:72:37:41:D2:DA:68:BA:DB:B7:77 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/091bd218-6d23-4d4b-a23a-59d4459462ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.68.0/22 Signature Algorithm: sha256WithRSAEncryption 70:27:d3:3c:de:78:f9:b1:be:42:a4:b4:15:ab:22:44:24:01: 10:18:53:fc:16:c1:e1:3f:f7:5b:fb:69:e8:53:23:15:0f:a5: ca:23:05:07:15:53:ad:a1:21:37:c5:12:91:c6:11:c2:29:e7: 6b:b6:0a:39:45:76:64:45:13:e7:20:de:7c:b5:fc:47:19:2d: 31:82:a1:7d:66:0e:f6:44:e2:72:2e:4f:8b:5e:76:fe:9f:7d: 01:af:43:dd:98:f8:c9:01:2c:e1:64:90:20:df:15:9a:c1:7d: 29:f9:87:5d:be:ff:0d:e7:29:93:96:76:9a:00:e2:c1:dd:5c: c4:34:35:3e:c7:f9:ed:bb:2f:80:29:56:4b:64:be:fa:49:f9: af:b9:0c:1e:44:f2:f1:9d:ab:01:1a:86:d8:75:9b:3a:02:bd: 27:e3:c7:23:d3:f4:2f:69:2e:8b:92:55:63:92:8f:1d:82:f6: 9d:60:58:b9:bb:1c:74:80:5f:85:e4:4e:54:1e:fb:bf:74:f0: 86:07:e9:a4:ce:f3:f6:a5:c6:cd:c5:b9:6a:5a:af:71:9e:dc: b3:78:df:ba:2b:a9:42:75:3b:4a:e8:96:1c:a0:2d:66:51:8f: b1:c3:3b:73:57:fd:b1:c3:47:f3:a2:b9:a5:9d:5f:25:72:6a: 6f:be:5d:8f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFya8EYjjuZOTtSzcUWpuoYA56tUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc1MDIwWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTgxZTBjYzEwN2Q0MmM5ZjExZGE4OTVlNjk2ZTk3NzVj YTY0YzEzNmE4YmEwMGViYWM4Njc2MTA5N2M4NjQ3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5NS2feKNv8x2usJ5eeb+kKP1gJ0i6XkzFgxABUhWNgD2X XnULW7ur1iGDbltHo69XdYuzOlVCAZV6+JPKRD2HS+ujsLIgdwkrdtGW97zekVW+ qXDq9sIuuUuHIO4m14XR3oHVyBVTSbAA7vVhQaBMLwgvJKVEFF5f/EO9ye4kNTGS 4YY+nwo/JVJTaxq1AuGK5R8lWkaXyikhwiSF1U0uYJMyrCne5hI2+QY2TOe2Ou+k 0ALCNiqCuYKSywcRbbB/t+oTiWrosxU4V28oStqivG3vR32aExiSyXqokv4Y9tJO 9CDxrWMdNjxOVAhj9xYGba16mP8OsBbkp7VDBYbrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUY1f4yMb+HNbSS3I3QdLaaLrbt3cwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzA5MWJkMjE4LTZkMjMtNGQ0Yi1hMjNhLTU5ZDQ0NTk0NjJjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYEQwDQYJKoZIhvcNAQELBQADggEBAHAn0zzeePmxvkKktBWrIkQkARAY U/wWweE/91v7aehTIxUPpcojBQcVU62hITfFEpHGEcIp52u2CjlFdmRFE+cg3ny1 /EcZLTGCoX1mDvZE4nIuT4tedv6ffQGvQ92Y+MkBLOFkkCDfFZrBfSn5h12+/w3n KZOWdpoA4sHdXMQ0NT7H+e27L4ApVktkvvpJ+a+5DB5E8vGdqwEahth1mzoCvSfj xyPT9C9pLouSVWOSjx2C9p1gWLm7HHSAX4XkTlQe+7908IYH6aTO8/alxs3FuWpa r3Ge3LN437orqUJ1O0rolhygLWZRj7HDO3NX/bHDR/OiuaWdXyVyam++XY8= -----END CERTIFICATE-----Generated at Tue Jul 1 01:22:04 2025 by rpki-client