$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa File: 3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa (raw, json) Hash identifier: /F9ZES+C+U7DxFLx1mSWmOZh11+CBuG+Yh/lWvl7erc= Subject key identifier: BB:7F:1D:B9:2E:83:DE:D4:65:E7:13:C1:2C:56:F7:4C:18:62:99:41 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 56750A2088BF6E7E9391C0496DE2CC68C9241495 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa Signing time: Tue 19 Aug 2025 16:40:59 +0000 ROA not before: Tue 19 Aug 2025 16:40:59 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:75:0a:20:88:bf:6e:7e:93:91:c0:49:6d:e2:cc:68:c9:24:14:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:59 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=52130fdb28e49da01e235cfeb67be1e4f62dab31eb3266577689b354fac5152e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:10:43:9d:6b:79:73:38:9b:d3:2b:09:80:28: 38:be:23:37:15:dc:c3:71:df:41:1f:ef:65:9a:e7: 64:6a:88:88:48:55:2b:a4:01:4a:24:26:09:2b:8d: 02:ac:41:cf:80:22:73:0d:ba:83:20:1e:10:42:29: cb:a7:73:a5:51:da:92:c8:fa:c2:90:a1:30:73:bb: 96:0f:95:31:66:b4:ce:1b:69:53:ce:43:8a:f9:b2: 53:b6:39:01:06:8a:6e:69:6a:de:67:a9:93:15:ba: 49:af:62:a4:ed:22:d1:cd:20:c5:89:18:db:d8:c8: 0d:5e:07:bb:29:62:82:a4:b1:d2:49:39:b8:04:d2: 1a:0a:53:be:63:60:5d:45:46:8b:5a:8b:85:24:63: 1e:81:c0:d1:eb:a8:91:d5:92:cd:52:1d:29:f7:6f: 46:3a:2d:25:33:f5:5d:26:00:b1:9d:60:c5:b4:87: 55:07:7f:81:1e:4e:bc:7d:7f:94:d0:7e:81:18:c1: b2:ce:15:b4:f2:b2:94:9f:22:0e:63:b8:45:bf:fe: 5b:58:1d:1a:e8:bc:f1:d8:7c:4d:7e:e9:18:03:c7: 9f:16:ef:cf:3f:eb:96:67:90:3b:33:f6:c2:52:d7: 83:f4:b3:a5:f9:eb:b8:d9:4f:17:60:06:c1:eb:7e: c7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7F:1D:B9:2E:83:DE:D4:65:E7:13:C1:2C:56:F7:4C:18:62:99:41 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.254.0/24 Signature Algorithm: sha256WithRSAEncryption 51:b6:c9:7c:59:96:8e:53:4c:95:ac:d8:b8:1d:a8:0c:8c:94: 24:c7:66:db:00:49:29:11:2c:b9:e6:b1:ea:65:34:8d:af:c4: 00:2e:aa:ac:04:fe:74:dc:f6:ff:fe:13:69:f3:1e:7e:05:7a: c4:97:58:90:29:8c:c6:29:ec:6a:c5:49:6d:25:ff:db:6c:00: 5d:32:ed:17:18:13:d3:d0:5e:96:94:16:1b:f4:7a:16:bf:ab: f0:8f:21:54:28:e9:b7:78:6d:67:03:3a:54:dc:66:55:58:5c: 3b:4d:7f:dd:82:27:64:81:86:64:a8:65:45:80:b7:0a:ac:cd: 7d:11:e8:16:93:1a:e2:6c:8f:e2:65:8e:4c:e2:b7:96:45:5a: d3:79:2c:f8:df:8e:73:82:69:c4:60:e5:d0:96:bf:c9:40:78: 6b:a2:e6:58:f6:28:38:2d:40:63:29:0a:5f:9e:a1:76:e6:60: f1:43:9c:cb:46:8a:13:0d:60:29:bb:6c:48:97:2c:07:a0:45: f7:97:71:50:73:79:e6:45:db:53:cf:bd:b1:d9:38:4e:c7:1e: c0:64:49:4f:50:61:e7:22:48:82:69:a5:12:8d:9b:4d:80:09: 4a:05:19:6e:81:28:54:c1:df:f6:e7:d5:5b:84:c6:d1:96:c1: 77:b8:aa:32 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVnUKIIi/bn6TkcBJbeLMaMkkFJUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDU5WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MjEzMGZkYjI4ZTQ5ZGEwMWUyMzVjZmViNjdiZTFlNGY2 MmRhYjMxZWIzMjY2NTc3Njg5YjM1NGZhYzUxNTJlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtEEOda3lzOJvTKwmAKDi+IzcV3MNx30Ef72Wa52RqiIhI VSukAUokJgkrjQKsQc+AInMNuoMgHhBCKcunc6VR2pLI+sKQoTBzu5YPlTFmtM4b aVPOQ4r5slO2OQEGim5pat5nqZMVukmvYqTtItHNIMWJGNvYyA1eB7spYoKksdJJ ObgE0hoKU75jYF1FRotai4UkYx6BwNHrqJHVks1SHSn3b0Y6LSUz9V0mALGdYMW0 h1UHf4EeTrx9f5TQfoEYwbLOFbTyspSfIg5juEW//ltYHRrovPHYfE1+6RgDx58W 788/65ZnkDsz9sJS14P0s6X567jZTxdgBsHrfscDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUu38duS6D3tRl5xPBLFb3TBhimUEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzNlMGFhYjhlLTc4YTEtNGI0YS1iODdjLTRhNzkyOTRmYzBhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYP4wDQYJKoZIhvcNAQELBQADggEBAFG2yXxZlo5TTJWs2LgdqAyMlCTH ZtsASSkRLLnmseplNI2vxAAuqqwE/nTc9v/+E2nzHn4FesSXWJApjMYp7GrFSW0l /9tsAF0y7RcYE9PQXpaUFhv0eha/q/CPIVQo6bd4bWcDOlTcZlVYXDtNf92CJ2SB hmSoZUWAtwqszX0R6BaTGuJsj+Jljkzit5ZFWtN5LPjfjnOCacRg5dCWv8lAeGui 5lj2KDgtQGMpCl+eoXbmYPFDnMtGihMNYCm7bEiXLAegRfeXcVBzeeZF21PPvbHZ OE7HHsBkSU9QYeciSIJppRKNm02ACUoFGW6BKFTB3/bn1VuExtGWwXe4qjI= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:43 2025 by rpki-client