$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa File: 6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa (raw, json) Hash identifier: fL2GvBzoZPmF3X3MbZgEtqKF8GGqoOZ1V8A7eooTETQ= Subject key identifier: 98:9E:F5:78:57:6C:5A:D4:02:01:6B:43:F5:20:01:7B:77:A5:55:6E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0656B6A5CF06929D91E013D1854C532BBB00896C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa Signing time: Tue 19 Aug 2025 16:40:59 +0000 ROA not before: Tue 19 Aug 2025 16:40:59 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:56:b6:a5:cf:06:92:9d:91:e0:13:d1:85:4c:53:2b:bb:00:89:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:59 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=c75b8e28839c5c926e202e8275b14194fb1e90eab34a713aaff6fcc5acc9b33f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c8:bf:f7:5b:be:80:02:ea:d3:0d:6b:ff:5f: d2:ee:1a:32:40:ef:2c:fc:70:d8:91:18:f1:dc:0e: ba:09:15:61:74:f2:08:8d:1b:44:bb:2b:a2:b4:23: 36:98:ca:2e:02:78:8f:95:42:ed:c3:5c:fe:27:05: 52:8b:c0:b0:6c:98:eb:02:8e:a3:dc:54:9d:c9:4e: 96:9e:44:ce:a9:9b:42:1b:75:e9:23:17:8e:85:0b: e3:d4:24:39:76:3d:db:ca:45:f5:ad:11:b1:20:8f: d7:b3:ed:6c:ab:7c:57:eb:04:c1:bb:a5:6b:75:ce: cf:4b:1d:91:a6:f5:1e:12:f0:ee:f0:7c:3f:9c:e3: 24:e1:82:ca:f3:92:21:bc:6d:63:d2:a5:6a:26:5b: 30:68:49:f9:5e:23:50:5d:35:e9:56:25:94:75:9c: 31:f1:96:78:2a:90:21:09:ff:31:d5:5f:d7:8c:b1: e4:12:4d:df:53:9f:09:3b:a9:44:f7:1b:e3:ee:c3: 7e:e7:3b:9b:6c:17:f8:43:3f:fb:ed:fa:dc:5e:d4: ee:b5:5e:e4:a1:65:b4:37:98:2b:43:92:ce:79:f7: f1:b8:08:55:d5:aa:ee:b2:e8:a1:16:5a:2c:0f:d5: de:8f:99:ca:5c:0d:c0:77:9b:e2:00:90:63:0e:bd: 9b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:9E:F5:78:57:6C:5A:D4:02:01:6B:43:F5:20:01:7B:77:A5:55:6E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.240.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:4c:67:61:d4:cb:55:af:ce:58:b8:8e:4e:fc:99:ef:58:41: 87:94:44:d8:ae:4b:bf:bd:03:bc:50:45:21:3d:a0:6d:5c:67: 92:93:84:a2:dd:2b:d2:0b:7a:a8:53:62:da:b5:69:8d:42:e8: da:07:6c:53:e6:3e:5b:99:30:15:bd:76:0a:d7:c7:00:57:81: c6:98:ab:97:0d:69:4a:40:17:60:cd:ca:00:eb:e6:68:e5:ea: 87:11:87:a0:08:b2:74:06:5e:3c:37:c8:30:75:75:c9:e7:fc: ae:dd:b8:7e:cb:40:ce:05:ab:1b:55:c8:02:4f:43:3b:75:93: c0:e0:36:90:13:4e:a7:56:91:9d:7c:a7:94:18:e5:f3:03:ce: 4e:f8:37:ac:da:40:7b:1a:c5:0d:18:a8:dd:9d:cc:59:39:d3: d1:cb:d6:fc:16:5a:22:d5:52:80:e8:f9:11:0a:94:3c:a7:99: 3b:2a:26:30:80:20:d4:ff:53:ca:20:d5:35:37:dd:9c:2e:6d: f4:b2:42:3a:49:a0:ad:50:06:dd:18:74:46:c9:13:1b:e0:2f: 70:08:f6:33:af:b9:2a:3a:50:43:ff:b5:2c:b9:5e:ef:27:72: 5e:49:1b:9f:88:d7:67:33:15:d6:5f:72:b5:c6:c7:a3:f3:f6: ee:93:c6:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBla2pc8Gkp2R4BPRhUxTK7sAiWwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDU5WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzViOGUyODgzOWM1YzkyNmUyMDJlODI3NWIxNDE5NGZi MWU5MGVhYjM0YTcxM2FhZmY2ZmNjNWFjYzliMzNmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkyL/3W76AAurTDWv/X9LuGjJA7yz8cNiRGPHcDroJFWF0 8giNG0S7K6K0IzaYyi4CeI+VQu3DXP4nBVKLwLBsmOsCjqPcVJ3JTpaeRM6pm0Ib dekjF46FC+PUJDl2PdvKRfWtEbEgj9ez7WyrfFfrBMG7pWt1zs9LHZGm9R4S8O7w fD+c4yThgsrzkiG8bWPSpWomWzBoSfleI1BdNelWJZR1nDHxlngqkCEJ/zHVX9eM seQSTd9Tnwk7qUT3G+Puw37nO5tsF/hDP/vt+txe1O61XuShZbQ3mCtDks559/G4 CFXVqu6y6KEWWiwP1d6PmcpcDcB3m+IAkGMOvZvvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmJ71eFdsWtQCAWtD9SABe3elVW4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzZhZDNhMThhLTkzZmUtNGZhZS1hYWZkLTE2MWQ0NjhhMzJlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPAwDQYJKoZIhvcNAQELBQADggEBACtMZ2HUy1Wvzli4jk78me9YQYeU RNiuS7+9A7xQRSE9oG1cZ5KThKLdK9ILeqhTYtq1aY1C6NoHbFPmPluZMBW9dgrX xwBXgcaYq5cNaUpAF2DNygDr5mjl6ocRh6AIsnQGXjw3yDB1dcnn/K7duH7LQM4F qxtVyAJPQzt1k8DgNpATTqdWkZ18p5QY5fMDzk74N6zaQHsaxQ0YqN2dzFk509HL 1vwWWiLVUoDo+REKlDynmTsqJjCAINT/U8og1TU33ZwubfSyQjpJoK1QBt0YdEbJ ExvgL3AI9jOvuSo6UEP/tSy5Xu8ncl5JG5+I12czFdZfcrXGx6Pz9u6TxsA= -----END CERTIFICATE-----Generated at Wed Aug 20 10:47:59 2025 by rpki-client