$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/31375d26-e2f2-4b0b-8d94-424d3ef5e55a.roa File: 31375d26-e2f2-4b0b-8d94-424d3ef5e55a.roa (raw, json) Hash identifier: IgoEUXDHsFRYXtnyI24lzXoZKVRGMWGytkXgRbfj/zI= Subject key identifier: 05:B4:90:14:BE:9A:F2:AD:FB:32:6A:82:6C:E3:E9:FA:76:66:78:1E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1898FDF689985E8E028F68C51507C3E6DAB5A774 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/31375d26-e2f2-4b0b-8d94-424d3ef5e55a.roa Signing time: Tue 19 Aug 2025 16:50:47 +0000 ROA not before: Tue 19 Aug 2025 16:50:47 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.97.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:98:fd:f6:89:98:5e:8e:02:8f:68:c5:15:07:c3:e6:da:b5:a7:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:50:47 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=889b701c9140c72d703899da761862a33d8a4cb18c9d971b789205aed875587e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ef:a9:0c:19:8a:da:8c:8d:4b:99:58:91:ce: 97:2f:bb:42:06:63:86:86:b6:12:b3:65:83:2f:94: c1:6a:14:0a:b7:a2:26:e4:5c:17:97:ca:57:0a:bf: 19:4b:54:26:a4:08:7f:92:45:8c:fd:b9:f4:71:64: 84:16:ed:0e:6b:a4:ac:18:9b:17:69:72:45:cf:11: f0:15:f9:b6:71:26:d3:86:3a:af:f8:3e:35:b2:c5: 23:bd:8e:e3:a1:1f:a7:a5:f8:a1:0f:bf:0f:60:81: b9:3d:ea:00:13:c0:16:2b:7d:cb:c1:86:12:ba:c6: 88:f1:e1:4f:48:09:90:5a:e5:ab:2a:8b:bd:93:ed: eb:14:46:f4:e3:a4:44:c5:94:41:e4:19:77:71:bd: f2:c2:c8:45:64:2d:08:aa:a3:73:87:a8:88:61:2d: a6:06:dd:00:0d:28:fa:0e:b7:50:ab:01:95:4c:2e: 33:34:33:7a:c1:91:a0:46:b7:43:56:09:98:32:16: c5:05:c7:15:e1:7b:41:70:ff:30:e5:99:a8:ea:8a: c0:55:44:9a:bd:2a:92:77:41:c9:7a:38:df:35:3a: 3b:d6:e7:82:67:08:6e:6d:14:15:75:dd:c2:36:b9: 28:86:6c:d1:e7:7d:af:72:7e:c2:b5:75:40:d7:7e: 1e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:B4:90:14:BE:9A:F2:AD:FB:32:6A:82:6C:E3:E9:FA:76:66:78:1E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/31375d26-e2f2-4b0b-8d94-424d3ef5e55a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.97.0.0/20 Signature Algorithm: sha256WithRSAEncryption 90:97:b7:98:dd:27:16:f6:42:02:ac:92:20:83:f7:72:57:37: d6:6e:fe:33:77:5b:89:18:84:29:7e:58:37:09:05:6e:34:eb: 0d:19:6e:a0:74:b5:65:a7:bf:b5:4d:17:e3:42:ba:75:3b:3a: ab:f5:74:a9:2d:df:10:69:5d:c2:1c:ec:9e:b8:a1:7f:d6:bd: 83:33:69:49:c1:bf:0c:ca:cc:db:8c:a8:7d:6c:8f:ab:3c:fd: 1e:c2:de:94:fd:5c:8c:46:b4:f5:91:80:a4:f2:2f:55:82:a2: f2:7d:75:62:16:bb:6c:1a:e5:5a:56:20:71:f4:19:95:c4:84: cf:83:9d:a5:a2:36:09:9e:32:f6:a9:12:fa:ea:d9:12:47:63: 27:6a:eb:b7:50:42:2a:2e:46:9b:24:e3:e6:27:4f:0e:f5:79: 7e:eb:75:8b:8f:8f:45:8f:a7:c6:10:5a:8c:20:11:e9:bf:f6: 59:78:f0:a4:01:5c:f5:44:5a:2f:f2:75:a9:8a:d6:81:d1:4e: 2b:b3:f7:91:e7:c9:ff:18:a3:e3:a4:3a:f1:8a:40:73:4b:45: 55:c5:51:4a:a3:8c:84:fe:2c:26:1c:83:3e:3b:67:50:6a:eb: 2b:a4:14:69:a4:71:58:99:78:e0:1a:bb:dd:28:58:82:8c:7a: 02:43:76:b7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGJj99omYXo4Cj2jFFQfD5tq1p3QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY1MDQ3WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODliNzAxYzkxNDBjNzJkNzAzODk5ZGE3NjE4NjJhMzNk OGE0Y2IxOGM5ZDk3MWI3ODkyMDVhZWQ4NzU1ODdlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC576kMGYrajI1LmViRzpcvu0IGY4aGthKzZYMvlMFqFAq3 oibkXBeXylcKvxlLVCakCH+SRYz9ufRxZIQW7Q5rpKwYmxdpckXPEfAV+bZxJtOG Oq/4PjWyxSO9juOhH6el+KEPvw9ggbk96gATwBYrfcvBhhK6xojx4U9ICZBa5asq i72T7esURvTjpETFlEHkGXdxvfLCyEVkLQiqo3OHqIhhLaYG3QANKPoOt1CrAZVM LjM0M3rBkaBGt0NWCZgyFsUFxxXhe0Fw/zDlmajqisBVRJq9KpJ3Qcl6ON81OjvW 54JnCG5tFBV13cI2uSiGbNHnfa9yfsK1dUDXfh5HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBbSQFL6a8q37MmqCbOPp+nZmeB4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzMxMzc1ZDI2LWUyZjItNGIwYi04ZDk0LTQyNGQzZWY1ZTU1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYQAwDQYJKoZIhvcNAQELBQADggEBAJCXt5jdJxb2QgKskiCD93JXN9Zu /jN3W4kYhCl+WDcJBW406w0ZbqB0tWWnv7VNF+NCunU7Oqv1dKkt3xBpXcIc7J64 oX/WvYMzaUnBvwzKzNuMqH1sj6s8/R7C3pT9XIxGtPWRgKTyL1WCovJ9dWIWu2wa 5VpWIHH0GZXEhM+DnaWiNgmeMvapEvrq2RJHYydq67dQQiouRpsk4+YnTw71eX7r dYuPj0WPp8YQWowgEem/9ll48KQBXPVEWi/ydamK1oHRTiuz95Hnyf8Yo+OkOvGK QHNLRVXFUUqjjIT+LCYcgz47Z1Bq6yukFGmkcViZeOAau90oWIKMegJDdrc= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:25 2025 by rpki-client