$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa File: 3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa (raw, json) Hash identifier: NwGJR7wP0VTb9wtLqYfxIu1N4BTuBPWpkHSoZ2KhSTg= Subject key identifier: 4E:CC:71:1E:A4:4A:60:7B:EB:9E:10:9B:96:49:E3:11:E6:58:75:4D Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5793D85A98A9B194111E3EA391731A6D4612D7F5 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa Signing time: Tue 19 Aug 2025 16:40:58 +0000 ROA not before: Tue 19 Aug 2025 16:40:58 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:93:d8:5a:98:a9:b1:94:11:1e:3e:a3:91:73:1a:6d:46:12:d7:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:58 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=3f0a5ab1d2e8a8743e4f58776f26203c8cb7bb2ac1bd056241d2adaad9aa8a50, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:73:9d:f6:80:a8:ab:b4:63:33:0d:1a:fc:f2: 94:dd:f9:95:ca:df:e6:f8:c0:13:83:fa:53:84:e3: 2f:88:5d:47:3c:88:2f:c5:da:10:1b:93:0b:7c:49: e9:9c:dc:1b:df:a2:21:99:95:3d:94:2b:ba:69:94: fd:7c:01:18:19:b1:2c:74:4f:31:62:de:c7:bf:3f: d5:4c:10:1f:3c:ea:ae:b4:bc:bb:e7:fe:ea:8d:9e: 3f:87:e3:36:a8:d7:f5:55:fe:cb:10:fb:fb:00:9d: a4:fc:8e:fd:8b:c1:a1:f8:98:9c:9a:4b:d0:8e:a0: 0b:0b:b1:e6:2e:8b:74:21:6a:e3:2d:c8:a7:7b:86: 49:45:25:41:a7:ac:e3:6c:02:89:c8:4e:bb:27:b9: 7d:9c:ec:c6:8b:1e:46:10:92:05:c7:15:9b:0d:c1: ea:a8:82:0b:1a:42:02:5a:7b:b7:54:68:fa:d9:67: 99:d4:0f:fd:13:4f:5f:e1:80:55:d4:a7:a1:da:86: 86:fc:07:fa:28:5e:f2:fc:1a:9f:80:9c:fb:e4:77: 28:13:1f:77:6f:b4:e7:08:6e:9f:f9:0d:3b:3d:d8: 04:f5:70:3a:4e:1d:86:25:81:d9:2c:3f:91:3f:8d: 3d:24:68:ab:cf:52:a1:00:36:17:28:a1:d5:0e:a4: f3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:CC:71:1E:A4:4A:60:7B:EB:9E:10:9B:96:49:E3:11:E6:58:75:4D X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.245.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:dc:22:78:fa:b1:90:7f:27:07:89:15:2e:9a:f1:d8:a1:c6: ea:00:16:68:86:8c:3a:5f:6c:1a:89:1a:f7:16:e3:36:63:20: 96:0b:29:7f:2e:9e:05:77:64:de:4d:49:90:4b:4b:bc:4b:51: f9:9a:6b:85:e4:75:fa:eb:0e:42:7a:79:f9:6c:42:39:b5:e7: 54:ef:42:65:2b:37:dd:a4:47:6b:db:b2:9a:47:8b:3f:8a:ee: 8b:52:51:3d:01:28:bb:80:f1:05:90:59:10:6b:d0:51:f0:1c: 1f:9e:08:9c:30:cd:6b:9c:03:12:09:ab:ed:d5:0e:c2:ff:c2: 89:e7:1b:bb:47:b5:99:60:d8:89:73:35:34:5d:57:42:f8:9a: 82:fb:17:bd:b1:a6:15:4d:91:31:88:e2:df:53:d8:af:91:70: ef:d4:8b:c5:50:32:2a:32:0e:b2:3f:cb:39:bd:ed:54:2f:ea: 2b:f3:6c:64:67:30:62:f7:ec:26:97:64:da:30:34:64:cd:2f: db:7d:33:8e:9a:a2:a3:be:c9:43:f3:41:c0:39:76:e5:d7:d0: 0b:3f:37:39:5b:05:9b:45:c6:35:a3:48:54:29:3e:bd:b7:4f: 74:37:0f:d8:0d:8c:3f:d4:09:20:c6:40:ed:81:9b:bf:32:b4: 5a:cb:12:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV5PYWpipsZQRHj6jkXMabUYS1/UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDU4WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjBhNWFiMWQyZThhODc0M2U0ZjU4Nzc2ZjI2MjAzYzhj YjdiYjJhYzFiZDA1NjI0MWQyYWRhYWQ5YWE4YTUwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcc532gKirtGMzDRr88pTd+ZXK3+b4wBOD+lOE4y+IXUc8 iC/F2hAbkwt8Semc3BvfoiGZlT2UK7pplP18ARgZsSx0TzFi3se/P9VMEB886q60 vLvn/uqNnj+H4zao1/VV/ssQ+/sAnaT8jv2LwaH4mJyaS9COoAsLseYui3QhauMt yKd7hklFJUGnrONsAonITrsnuX2c7MaLHkYQkgXHFZsNweqoggsaQgJae7dUaPrZ Z5nUD/0TT1/hgFXUp6Hahob8B/ooXvL8Gp+AnPvkdygTH3dvtOcIbp/5DTs92AT1 cDpOHYYlgdksP5E/jT0kaKvPUqEANhcoodUOpPMbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTsxxHqRKYHvrnhCblknjEeZYdU0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzNiOGJmMjMxLTJiMGUtNDZmOC04ZGIwLWEwYWYxNTAzZDc4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPUwDQYJKoZIhvcNAQELBQADggEBAI3cInj6sZB/JweJFS6a8dihxuoA FmiGjDpfbBqJGvcW4zZjIJYLKX8ungV3ZN5NSZBLS7xLUfmaa4XkdfrrDkJ6efls Qjm151TvQmUrN92kR2vbsppHiz+K7otSUT0BKLuA8QWQWRBr0FHwHB+eCJwwzWuc AxIJq+3VDsL/wonnG7tHtZlg2IlzNTRdV0L4moL7F72xphVNkTGI4t9T2K+RcO/U i8VQMioyDrI/yzm97VQv6ivzbGRnMGL37CaXZNowNGTNL9t9M46aoqO+yUPzQcA5 duXX0As/NzlbBZtFxjWjSFQpPr23T3Q3D9gNjD/UCSDGQO2Bm78ytFrLEkc= -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:57 2025 by rpki-client