$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2296581f-9248-4567-94d7-ea3a158d3c55.roa File: 2296581f-9248-4567-94d7-ea3a158d3c55.roa (raw, json) Hash identifier: 8iijynUVb+J2oj7eIcvfxRHygw/GJWUnF3cQnDAIQds= Subject key identifier: FD:35:6C:66:14:21:B2:52:2F:9B:04:BC:6E:E6:64:12:06:3D:DF:A9 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1F0DE27229CE048A1FADD3D0979896538D3AD6CE Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2296581f-9248-4567-94d7-ea3a158d3c55.roa Signing time: Tue 19 Aug 2025 16:40:16 +0000 ROA not before: Tue 19 Aug 2025 16:40:16 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:0d:e2:72:29:ce:04:8a:1f:ad:d3:d0:97:98:96:53:8d:3a:d6:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:16 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=64ac7e3df3dc2020fa2bbcb36a7d1a8ee0eb9fb3a964476cd6b3c95ad7c048de, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:76:4f:fe:ad:df:14:13:ab:6d:29:fe:c7:90: c3:6b:d7:63:22:ba:bd:f6:ad:b4:04:3f:f9:ce:5b: 60:f5:59:45:30:46:8e:dd:d8:8b:6c:8b:7d:ac:aa: b3:df:c6:ad:ad:fe:1f:08:97:49:8a:f3:59:f3:e6: f2:24:e6:94:36:4f:4d:cf:93:d3:4f:02:bd:f0:5e: 1d:2a:41:b9:9e:8e:0c:7b:40:3a:66:c0:07:85:4f: b9:5f:30:d1:91:ab:ba:79:c3:12:5d:5b:f1:da:18: a2:25:26:ef:96:b4:a3:5d:b0:47:4d:a8:32:9c:71: a2:bb:e2:cc:28:28:01:2f:ca:a0:c0:13:ed:cb:d5: 52:be:af:0a:84:2f:cf:1a:b4:78:3e:23:fc:79:32: fa:68:d8:fa:62:40:78:39:84:ce:12:22:73:7a:01: c1:7b:68:e5:ac:0c:3c:ed:cb:be:01:51:30:1c:4d: a3:15:ec:ba:30:16:50:53:72:aa:bb:63:8f:06:ad: 89:9a:a6:1c:a0:4a:f5:94:74:85:ae:a3:34:85:99: 27:51:88:44:9f:dc:46:13:33:eb:53:ed:ed:37:45: a8:c4:92:81:c9:eb:b5:d3:c4:48:5d:a9:3a:1c:0a: 3b:8a:44:13:ad:8c:15:13:bb:39:2e:7b:11:8c:d1: de:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:35:6C:66:14:21:B2:52:2F:9B:04:BC:6E:E6:64:12:06:3D:DF:A9 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2296581f-9248-4567-94d7-ea3a158d3c55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.252.0/24 Signature Algorithm: sha256WithRSAEncryption 20:bc:b6:22:76:c9:32:e6:a6:ff:80:b4:93:5f:41:48:5f:94: 29:a8:fe:3b:ec:d2:76:52:ac:19:45:11:94:b1:07:54:58:30: 3f:01:6e:6d:2f:e1:f0:ea:4e:f4:dd:78:b7:cc:f2:59:6c:46: 26:79:d2:8b:73:a9:87:73:a0:cc:9f:e9:05:68:7c:f6:c3:6a: 05:6a:11:78:52:82:6f:5e:c6:9a:32:cb:f2:47:44:1a:ce:92: ab:33:37:64:2e:8b:c9:1e:e5:ca:97:15:68:bd:72:62:5b:ee: 69:97:6f:8e:f2:87:c9:12:b3:65:55:8a:4a:92:f7:e2:20:d4: c3:40:df:7a:99:d3:73:47:00:d1:5a:e1:70:e9:e2:81:04:fc: 85:1e:36:a4:96:e0:0b:db:88:09:20:09:f2:04:6d:67:82:52: 5b:ac:47:91:5f:a3:66:03:2c:b1:39:a0:2b:d2:8c:9e:ee:21: fb:95:8c:6f:53:0b:d3:2a:fc:0e:2b:39:09:1e:7b:a4:a7:47: 38:c6:43:f4:c3:c6:07:ca:c5:a8:bc:2b:42:7c:5c:d0:cb:ec: 39:39:4d:74:64:32:2d:5c:28:79:ce:67:f1:26:bb:89:68:47: 42:5f:71:a3:58:4b:66:0b:a2:09:4d:11:1d:d4:0c:8b:6a:39: 8e:78:73:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHw3icinOBIofrdPQl5iWU4061s4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDE2WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGFjN2UzZGYzZGMyMDIwZmEyYmJjYjM2YTdkMWE4ZWUw ZWI5ZmIzYTk2NDQ3NmNkNmIzYzk1YWQ3YzA0OGRlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGdk/+rd8UE6ttKf7HkMNr12Miur32rbQEP/nOW2D1WUUw Ro7d2Itsi32sqrPfxq2t/h8Il0mK81nz5vIk5pQ2T03Pk9NPAr3wXh0qQbmejgx7 QDpmwAeFT7lfMNGRq7p5wxJdW/HaGKIlJu+WtKNdsEdNqDKccaK74swoKAEvyqDA E+3L1VK+rwqEL88atHg+I/x5Mvpo2PpiQHg5hM4SInN6AcF7aOWsDDzty74BUTAc TaMV7LowFlBTcqq7Y48GrYmaphygSvWUdIWuozSFmSdRiESf3EYTM+tT7e03RajE koHJ67XTxEhdqTocCjuKRBOtjBUTuzkuexGM0d6DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/TVsZhQhslIvmwS8buZkEgY936kwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzIyOTY1ODFmLTkyNDgtNDU2Ny05NGQ3LWVhM2ExNThkM2M1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPwwDQYJKoZIhvcNAQELBQADggEBACC8tiJ2yTLmpv+AtJNfQUhflCmo /jvs0nZSrBlFEZSxB1RYMD8Bbm0v4fDqTvTdeLfM8llsRiZ50otzqYdzoMyf6QVo fPbDagVqEXhSgm9expoyy/JHRBrOkqszN2Qui8ke5cqXFWi9cmJb7mmXb47yh8kS s2VVikqS9+Ig1MNA33qZ03NHANFa4XDp4oEE/IUeNqSW4AvbiAkgCfIEbWeCUlus R5Ffo2YDLLE5oCvSjJ7uIfuVjG9TC9Mq/A4rOQkee6SnRzjGQ/TDxgfKxai8K0J8 XNDL7Dk5TXRkMi1cKHnOZ/Emu4loR0JfcaNYS2YLoglNER3UDItqOY54c8k= -----END CERTIFICATE-----Generated at Wed Aug 20 10:47:56 2025 by rpki-client