$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b6bed08-b7ec-4d0c-ba65-9858e8225560.roa File: 1b6bed08-b7ec-4d0c-ba65-9858e8225560.roa (raw, json) Hash identifier: wGWXgpT3OcVaIJ84me12Ek8sz2W09DqxGiz13trmCCY= Subject key identifier: FD:FD:92:82:EC:09:7F:36:8D:35:2E:8C:BA:41:DC:7D:B0:51:90:84 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 48AB5A78C9E60E53B5B14BD9A12EEBAC2D01ABE0 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b6bed08-b7ec-4d0c-ba65-9858e8225560.roa Signing time: Mon 30 Jun 2025 17:40:55 +0000 ROA not before: Mon 30 Jun 2025 17:40:55 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:ab:5a:78:c9:e6:0e:53:b5:b1:4b:d9:a1:2e:eb:ac:2d:01:ab:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:55 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=3fb86797954e9a0fb4fe868f2e04d90e77c5a140f8ec3f694db8bcdf0c668bb0, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fc:22:64:f8:e6:fd:09:2c:70:6c:4c:b3:d3: 68:18:4d:36:f4:f5:5c:30:05:59:db:fb:3d:e6:c0: 1e:16:6d:c8:1a:23:b8:c3:5b:76:d5:a3:cf:8d:13: 80:82:db:fb:6d:de:f5:3d:bd:e7:22:6f:2d:e1:a5: d7:ed:4c:91:33:8a:cd:81:cb:a6:2a:b5:74:75:c9: 2e:e4:33:ca:08:46:85:ff:ed:92:dc:23:f4:02:6f: 66:2e:60:a9:e0:5a:6a:85:bf:d5:1a:9e:12:0e:95: 66:3f:94:99:5c:ba:67:01:a3:25:ee:62:f0:46:43: 30:e8:74:00:81:0c:e5:5a:18:f1:28:1d:eb:a1:a7: 5a:b9:52:53:13:83:83:ba:d0:67:b0:55:2f:6b:9d: 02:db:81:7a:50:95:57:87:d2:75:ab:0e:71:48:69: 5c:f3:1f:92:06:b5:96:0f:92:c0:2b:c8:b3:9d:6d: 20:7c:16:5d:77:f3:b4:14:9e:5f:85:28:d3:0d:78: 07:07:75:97:ec:29:bb:33:57:72:ef:5b:c8:51:e1: 58:00:37:c8:7c:ef:4c:0a:82:2d:af:9d:ac:6d:55: 1e:de:bb:cb:67:20:c4:b5:db:1e:81:9a:8b:80:f8: dc:57:0f:dd:77:9e:30:3b:98:c3:71:0c:d0:8e:14: 0a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:FD:92:82:EC:09:7F:36:8D:35:2E:8C:BA:41:DC:7D:B0:51:90:84 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1b6bed08-b7ec-4d0c-ba65-9858e8225560.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.251.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:17:15:06:f9:8c:59:9c:ae:09:53:7c:bd:cf:c1:fc:85:1e: a7:d4:21:09:16:c0:98:e8:17:3d:e8:f9:d6:0d:a8:b1:20:2d: e7:2e:45:c3:59:31:39:14:d5:df:6a:2b:8f:a5:74:ed:1d:00: ba:77:d7:d6:d4:0f:c1:18:2a:33:4b:d9:8f:16:8d:5e:9f:71: ef:4c:12:ad:37:7a:3d:9b:df:52:79:1a:8e:7e:ab:09:6c:96: c8:d0:d9:fe:8f:e4:7e:38:3e:d6:d8:d9:c4:6c:d5:3d:1f:ed: fb:6f:0a:8c:e5:2a:47:ec:60:21:36:87:ea:b6:ce:3c:dc:20: a4:29:45:93:b3:b1:dc:c0:c7:40:ff:87:e4:60:f6:62:f9:71: c1:a4:93:e6:b1:c0:ff:1d:33:22:3e:99:4b:f8:da:03:1d:07: 07:3c:47:56:2f:f0:36:a2:3e:37:29:39:a7:bf:cf:2f:56:fb: 13:6c:13:94:60:13:d8:1f:ea:04:85:9a:56:4e:29:f9:e9:e8: c4:e3:43:16:d9:13:31:fe:73:54:63:d1:62:cb:da:26:4d:e3: ee:27:ba:a7:e8:5f:a8:c4:64:d1:df:bd:96:6f:b0:b1:e2:b1: c5:7d:5d:2d:68:3a:0d:fa:ce:69:21:2d:ad:b0:09:54:43:1f: 1d:6f:35:0e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSKtaeMnmDlO1sUvZoS7rrC0Bq+AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDU1WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZmI4Njc5Nzk1NGU5YTBmYjRmZTg2OGYyZTA0ZDkwZTc3 YzVhMTQwZjhlYzNmNjk0ZGI4YmNkZjBjNjY4YmIwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC//CJk+Ob9CSxwbEyz02gYTTb09VwwBVnb+z3mwB4Wbcga I7jDW3bVo8+NE4CC2/tt3vU9veciby3hpdftTJEzis2By6YqtXR1yS7kM8oIRoX/ 7ZLcI/QCb2YuYKngWmqFv9UanhIOlWY/lJlcumcBoyXuYvBGQzDodACBDOVaGPEo Heuhp1q5UlMTg4O60GewVS9rnQLbgXpQlVeH0nWrDnFIaVzzH5IGtZYPksAryLOd bSB8Fl1387QUnl+FKNMNeAcHdZfsKbszV3LvW8hR4VgAN8h870wKgi2vnaxtVR7e u8tnIMS12x6BmouA+NxXD913njA7mMNxDNCOFAqPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/f2SguwJfzaNNS6MukHcfbBRkIQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzFiNmJlZDA4LWI3ZWMtNGQwYy1iYTY1LTk4NThlODIyNTU2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPswDQYJKoZIhvcNAQELBQADggEBAJ0XFQb5jFmcrglTfL3PwfyFHqfU IQkWwJjoFz3o+dYNqLEgLecuRcNZMTkU1d9qK4+ldO0dALp319bUD8EYKjNL2Y8W jV6fce9MEq03ej2b31J5Go5+qwlslsjQ2f6P5H44PtbY2cRs1T0f7ftvCozlKkfs YCE2h+q2zjzcIKQpRZOzsdzAx0D/h+Rg9mL5ccGkk+axwP8dMyI+mUv42gMdBwc8 R1Yv8DaiPjcpOae/zy9W+xNsE5RgE9gf6gSFmlZOKfnp6MTjQxbZEzH+c1Rj0WLL 2iZN4+4nuqfoX6jEZNHfvZZvsLHiscV9XS1oOg36zmkhLa2wCVRDHx1vNQ4= -----END CERTIFICATE-----Generated at Tue Jul 1 01:22:58 2025 by rpki-client