$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b6bed08-b7ec-4d0c-ba65-9858e8225560.roa File: 1b6bed08-b7ec-4d0c-ba65-9858e8225560.roa (raw, json) Hash identifier: EdyGORsYvvPS2bZSkrg6vtEkoGJBJ3fkSCwMZFfKqXM= Subject key identifier: 2D:80:75:95:F8:FB:65:D7:8C:61:55:79:A2:4B:2E:B9:06:DB:CB:B6 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1383EA9AD3DB64E7E871B879ED9831AC9205228C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b6bed08-b7ec-4d0c-ba65-9858e8225560.roa Signing time: Tue 19 Aug 2025 16:41:02 +0000 ROA not before: Tue 19 Aug 2025 16:41:02 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:83:ea:9a:d3:db:64:e7:e8:71:b8:79:ed:98:31:ac:92:05:22:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:41:02 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=f3e552553720f6d582b2440534425dbd7014b742a11396f94229e2f71b904279, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:45:d5:e4:8f:99:b5:be:f8:8d:10:ab:e9:b8: 24:3e:7d:d5:02:5e:54:14:80:9b:ad:f3:e5:5e:35: b1:7c:17:f8:03:36:02:5e:a6:9d:f6:40:00:57:90: 2f:f9:50:68:9b:ea:d6:fd:be:65:b7:9e:ee:78:77: 39:46:93:0c:c0:e9:7d:1d:9d:83:84:de:73:11:26: dc:ca:ee:02:b2:db:2a:15:ea:02:dc:06:1a:45:f4: eb:4e:ed:cc:97:d4:19:65:21:22:d1:59:38:24:d1: 99:86:91:72:e7:22:30:db:d6:5a:66:03:fc:15:7c: 4d:a1:af:bf:05:73:ff:8e:40:eb:28:bd:78:d8:f7: 12:21:a7:81:0a:cd:14:4c:75:ac:71:7e:0f:64:96: a4:aa:18:85:ee:50:82:08:3d:dc:2d:ee:58:26:39: 14:ae:03:48:7d:a2:f2:70:2b:47:a4:e4:30:3a:02: 56:8f:cd:00:f6:cb:d2:ea:e3:ca:73:69:1a:f8:6f: c7:1f:bb:a6:1e:a9:e4:0b:d3:80:92:e3:44:2c:60: 7e:6c:1c:ec:f2:ab:5b:4e:42:b6:c0:06:de:c7:05: 10:53:4b:44:9a:5b:19:d3:9c:34:ab:af:f4:71:2b: 11:35:49:99:dd:7c:98:88:d8:c8:b2:1b:81:90:9e: af:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:80:75:95:F8:FB:65:D7:8C:61:55:79:A2:4B:2E:B9:06:DB:CB:B6 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b6bed08-b7ec-4d0c-ba65-9858e8225560.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.251.0/24 Signature Algorithm: sha256WithRSAEncryption 27:5e:d3:a2:53:1b:28:b5:ee:68:02:be:0b:c9:63:bf:e9:a6: 53:1d:a5:e1:30:02:d2:6f:cf:89:99:79:28:f5:11:5c:b8:63: b5:d7:ee:81:76:03:7c:b5:23:6e:22:05:16:37:13:03:f9:f9: c5:1d:16:d9:cb:93:fb:7e:bc:a0:31:a1:9a:df:81:b4:e6:94: 91:e4:e2:f6:77:2b:9b:e9:98:18:c2:ba:97:eb:0f:05:54:d9: 9b:3b:d7:59:36:d9:82:67:26:1e:0c:c8:48:5d:71:b9:34:4d: 3b:79:ea:d4:97:09:57:7d:58:2b:58:9b:cb:ca:eb:87:5d:c7: 57:6a:70:48:ba:5d:ca:19:cc:cb:fa:7d:b1:8f:00:01:51:18: 0b:07:f2:46:f8:a8:88:26:18:5e:a9:36:c0:2a:69:b2:88:24: be:ba:b0:36:65:c7:46:93:d1:f6:4f:35:1d:73:65:76:59:9e: 57:92:ea:c4:85:74:cf:e0:ac:c4:ff:5e:f6:1c:64:c2:1a:41: e5:97:e5:cb:49:a1:65:d9:30:07:89:66:35:93:26:02:32:49: 27:74:80:05:ba:36:bc:61:cc:ac:42:31:d0:03:2c:37:56:e1: 7b:1f:ce:f2:f9:cf:34:9e:22:ac:e7:5f:85:0f:f3:5e:57:67: d7:77:1a:93 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE4PqmtPbZOfocbh57ZgxrJIFIowwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MTAyWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmM2U1NTI1NTM3MjBmNmQ1ODJiMjQ0MDUzNDQyNWRiZDcw MTRiNzQyYTExMzk2Zjk0MjI5ZTJmNzFiOTA0Mjc5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcRdXkj5m1vviNEKvpuCQ+fdUCXlQUgJut8+VeNbF8F/gD NgJepp32QABXkC/5UGib6tb9vmW3nu54dzlGkwzA6X0dnYOE3nMRJtzK7gKy2yoV 6gLcBhpF9OtO7cyX1BllISLRWTgk0ZmGkXLnIjDb1lpmA/wVfE2hr78Fc/+OQOso vXjY9xIhp4EKzRRMdaxxfg9klqSqGIXuUIIIPdwt7lgmORSuA0h9ovJwK0ek5DA6 AlaPzQD2y9Lq48pzaRr4b8cfu6YeqeQL04CS40QsYH5sHOzyq1tOQrbABt7HBRBT S0SaWxnTnDSrr/RxKxE1SZndfJiI2MiyG4GQnq+hAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULYB1lfj7ZdeMYVV5oksuuQbby7YwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzFiNmJlZDA4LWI3ZWMtNGQwYy1iYTY1LTk4NThlODIyNTU2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPswDQYJKoZIhvcNAQELBQADggEBACde06JTGyi17mgCvgvJY7/pplMd peEwAtJvz4mZeSj1EVy4Y7XX7oF2A3y1I24iBRY3EwP5+cUdFtnLk/t+vKAxoZrf gbTmlJHk4vZ3K5vpmBjCupfrDwVU2Zs711k22YJnJh4MyEhdcbk0TTt56tSXCVd9 WCtYm8vK64ddx1dqcEi6XcoZzMv6fbGPAAFRGAsH8kb4qIgmGF6pNsAqabKIJL66 sDZlx0aT0fZPNR1zZXZZnleS6sSFdM/grMT/XvYcZMIaQeWX5ctJoWXZMAeJZjWT JgIySSd0gAW6NrxhzKxCMdADLDdW4XsfzvL5zzSeIqznX4UP815XZ9d3GpM= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:44 2025 by rpki-client