$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4a409b3c-5797-4e0a-a251-693df1106b07.roa File: 4a409b3c-5797-4e0a-a251-693df1106b07.roa (raw, json) Hash identifier: kZtFqZJewx+1MQqApQR6OBT+cW3YXCA6cWjOGQQlQNI= Subject key identifier: B4:7B:88:F3:EE:A5:FD:B8:46:09:5A:1C:B5:B4:DF:14:C8:39:FC:4B Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6F6D2AB527D30C47041BD9891BA74EE53C1E8ECD Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4a409b3c-5797-4e0a-a251-693df1106b07.roa Signing time: Tue 19 Aug 2025 16:41:03 +0000 ROA not before: Tue 19 Aug 2025 16:41:03 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:6d:2a:b5:27:d3:0c:47:04:1b:d9:89:1b:a7:4e:e5:3c:1e:8e:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:41:03 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=72b7321027e60bab29f9ec5037081419f7f8cad2e9b31fd836de860960da234a, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:67:ef:de:e7:52:71:15:98:a7:0d:03:c2:77: af:dc:78:0a:41:00:01:e8:7b:be:ac:bd:e1:bc:a4: 79:37:d1:46:19:c7:6b:87:19:ae:1d:0b:a9:9d:e8: 58:cb:83:d9:f6:35:6a:c0:66:11:7c:61:9b:ea:b0: d6:3d:8e:c7:be:64:f5:0c:6e:b8:e0:73:c5:af:0c: 44:f5:45:42:70:11:7c:01:c9:bc:45:9d:02:bc:94: 74:30:95:dd:d4:28:aa:80:e8:b6:e6:90:8a:ed:1f: 93:74:98:0c:0c:cc:b8:eb:a5:0c:00:23:3b:91:9c: 6f:cd:6d:3f:96:a9:20:34:4c:d7:fe:12:ee:37:73: 43:99:54:61:21:0b:7d:49:85:07:9a:90:80:f3:bc: cb:68:fc:f1:d3:61:8f:88:be:43:5b:04:d2:ad:b6: 0f:bc:ef:a9:c0:62:97:2d:89:13:d5:80:c5:80:1e: 6f:85:33:ab:97:c2:23:79:db:59:97:09:05:33:ff: e1:27:b2:29:dc:85:9e:61:28:93:19:ad:ce:19:59: 6c:72:4b:93:54:10:3f:12:fc:f4:fa:4c:e1:41:3c: 1a:90:37:ac:b5:5e:e1:14:3b:bc:cc:cf:1e:bb:f1: 7b:64:55:77:d4:c4:7f:4a:3c:67:4f:b9:7c:8e:be: 7b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:7B:88:F3:EE:A5:FD:B8:46:09:5A:1C:B5:B4:DF:14:C8:39:FC:4B X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4a409b3c-5797-4e0a-a251-693df1106b07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.248.0/24 Signature Algorithm: sha256WithRSAEncryption 38:e8:f4:1d:c4:4c:28:50:fc:49:37:68:79:f5:d7:db:96:6e: 1b:c0:c9:ab:3a:27:fe:89:5d:a1:b1:72:11:2c:e5:e3:68:c6: 21:78:e5:12:45:2c:37:0b:0a:0e:92:09:c0:1b:59:77:f6:d0: 9f:16:a9:80:f7:24:2c:8d:b0:78:f3:2f:19:8e:27:3f:d1:48: f7:4b:b1:35:57:7a:be:27:4f:8a:b7:5d:ab:29:90:dd:94:51: 6a:8c:14:92:cb:c3:13:48:f8:dd:66:61:1b:be:78:21:70:7f: 4f:fa:77:10:c3:7c:3f:38:82:33:2c:65:62:d1:53:42:98:e9: 8d:77:9f:4f:ef:6b:7a:b6:df:fc:63:35:08:be:f5:2a:ab:d7: cd:60:71:4e:e0:1a:42:a8:25:a7:b2:19:a1:71:01:f3:97:84: e0:52:79:d4:5c:39:9e:4a:2a:ca:b7:00:57:ff:67:59:10:54: 5a:7d:a6:66:4f:b8:29:62:6f:30:72:22:c0:f8:90:9b:bc:b0: 81:b9:f2:b2:96:80:c4:89:2e:71:dd:5c:8a:89:a4:f1:a6:72: 5c:2c:05:14:31:34:99:ae:d6:c4:38:13:88:fb:ab:28:7a:ca: 31:7b:e9:85:7b:3c:34:01:7c:42:b5:b7:00:6d:36:8d:96:8a: 40:a2:68:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb20qtSfTDEcEG9mJG6dO5Twejs0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MTAzWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MmI3MzIxMDI3ZTYwYmFiMjlmOWVjNTAzNzA4MTQxOWY3 ZjhjYWQyZTliMzFmZDgzNmRlODYwOTYwZGEyMzRhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVZ+/e51JxFZinDQPCd6/ceApBAAHoe76sveG8pHk30UYZ x2uHGa4dC6md6FjLg9n2NWrAZhF8YZvqsNY9jse+ZPUMbrjgc8WvDET1RUJwEXwB ybxFnQK8lHQwld3UKKqA6LbmkIrtH5N0mAwMzLjrpQwAIzuRnG/NbT+WqSA0TNf+ Eu43c0OZVGEhC31JhQeakIDzvMto/PHTYY+IvkNbBNKttg+876nAYpctiRPVgMWA Hm+FM6uXwiN521mXCQUz/+EnsinchZ5hKJMZrc4ZWWxyS5NUED8S/PT6TOFBPBqQ N6y1XuEUO7zMzx678XtkVXfUxH9KPGdPuXyOvnstAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtHuI8+6l/bhGCVoctbTfFMg5/EswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzRhNDA5YjNjLTU3OTctNGUwYS1hMjUxLTY5M2RmMTEwNmIwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPgwDQYJKoZIhvcNAQELBQADggEBADjo9B3ETChQ/Ek3aHn119uWbhvA yas6J/6JXaGxchEs5eNoxiF45RJFLDcLCg6SCcAbWXf20J8WqYD3JCyNsHjzLxmO Jz/RSPdLsTVXer4nT4q3XaspkN2UUWqMFJLLwxNI+N1mYRu+eCFwf0/6dxDDfD84 gjMsZWLRU0KY6Y13n0/va3q23/xjNQi+9Sqr181gcU7gGkKoJaeyGaFxAfOXhOBS edRcOZ5KKsq3AFf/Z1kQVFp9pmZPuClibzByIsD4kJu8sIG58rKWgMSJLnHdXIqJ pPGmclwsBRQxNJmu1sQ4E4j7qyh6yjF76YV7PDQBfEK1twBtNo2WikCiaEk= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:00 2025 by rpki-client