$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa File: 6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa (raw, json) Hash identifier: C9Kr5DzFLjDbqcUL2nkhPch4ve2YlYrRaCTgjFr8ZGc= Subject key identifier: D8:ED:C6:74:E3:AF:D7:6F:8C:AE:81:EB:61:9E:D9:C5:99:F3:9E:8D Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 63E31D1B5F0B592BAD8DC4C1A1A8F1916E7775D8 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa Signing time: Mon 30 Jun 2025 17:40:51 +0000 ROA not before: Mon 30 Jun 2025 17:40:51 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:e3:1d:1b:5f:0b:59:2b:ad:8d:c4:c1:a1:a8:f1:91:6e:77:75:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:51 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=d4684a4e0ae35d93bb6cb17e13533ec423fd42c027963abc85bc4b8462ac2177, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2b:3b:3c:b6:0d:66:18:61:b6:44:a9:fd:50: 2b:44:24:a4:8c:44:87:4e:ae:e1:b8:3b:28:a0:f2: 51:aa:06:f9:ed:a0:5f:bc:98:0b:f9:6b:97:24:d5: 8d:de:68:f1:0f:00:c4:cd:4b:dd:4f:0a:42:5d:95: b9:68:3c:01:ab:1b:37:cf:ce:6c:2a:d0:9b:70:e2: 5c:5f:be:f6:42:94:b6:22:68:d6:66:0f:b4:d9:8f: 74:7a:0b:2d:ec:00:6f:62:04:b0:22:b2:98:0b:da: 33:43:c4:a2:c0:b9:ba:de:d7:a4:7f:c9:68:1c:bd: c4:87:3b:7a:cb:9d:40:34:14:ac:d0:36:1c:d7:a6: 6a:e3:b9:9d:4e:c2:b3:92:42:7f:0c:ab:f2:4a:e2: 09:cf:4e:d8:0b:f1:2a:63:e7:d0:f6:45:32:14:d8: 98:9c:20:95:a9:f3:3c:d2:34:80:42:76:1b:0d:30: e1:42:65:47:89:6f:ff:07:93:b8:12:76:84:2f:31: 72:3f:06:e3:0b:d4:a4:75:49:04:85:d9:b1:1b:66: d5:06:82:20:b8:37:d2:ca:a1:b0:26:a1:8c:20:c3: ac:40:b0:05:8e:6c:4b:b1:ce:8e:ef:7c:be:ec:8c: 1d:e4:a9:9d:70:89:5d:2d:82:08:4f:33:7d:59:23: f4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:ED:C6:74:E3:AF:D7:6F:8C:AE:81:EB:61:9E:D9:C5:99:F3:9E:8D X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.240.0/24 Signature Algorithm: sha256WithRSAEncryption 96:ef:ed:f8:cd:f1:f3:2f:b3:84:fd:62:4d:b6:43:ff:a7:6e: eb:fe:74:5b:6b:3d:3b:6a:61:09:3a:d5:c7:d0:b4:cd:d3:c0: 26:b0:6f:bb:bc:7f:7a:6a:60:81:0f:da:2e:0f:b7:89:47:22: e2:52:26:80:48:d7:d7:fa:c5:f8:a3:f5:57:a4:a6:af:a4:6e: 31:ce:cc:d6:40:bf:d6:ee:25:1c:f9:ad:71:42:6e:ac:96:67: a5:92:6d:68:e8:9e:e2:15:f6:86:74:bb:89:62:10:a6:46:fd: 86:6f:57:2f:20:41:98:de:61:31:5a:4a:70:1b:61:b2:3c:86: 1e:7b:cf:0b:c8:4c:df:24:9c:5f:08:00:46:8d:c9:dc:90:3a: 78:f9:b5:7d:0a:b8:44:9a:e0:16:92:86:cc:24:93:24:27:c1: da:0d:38:30:a1:fb:a7:6e:56:38:31:bb:59:32:34:72:06:32: f1:24:41:fa:6b:ef:ef:38:fe:e0:00:1f:79:fe:c8:74:d1:bd: c7:e2:06:53:87:f0:d8:25:c5:e3:30:67:d8:48:f1:88:bd:da: 4c:8c:7d:0f:bd:23:49:ab:ca:cc:fb:11:3e:03:49:d1:31:aa: 97:0f:02:77:6d:dd:33:d7:87:33:4d:89:ee:13:9d:04:91:38: 73:ae:2e:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY+MdG18LWSutjcTBoajxkW53ddgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDUxWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDY4NGE0ZTBhZTM1ZDkzYmI2Y2IxN2UxMzUzM2VjNDIz ZmQ0MmMwMjc5NjNhYmM4NWJjNGI4NDYyYWMyMTc3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjKzs8tg1mGGG2RKn9UCtEJKSMRIdOruG4Oyig8lGqBvnt oF+8mAv5a5ck1Y3eaPEPAMTNS91PCkJdlbloPAGrGzfPzmwq0Jtw4lxfvvZClLYi aNZmD7TZj3R6Cy3sAG9iBLAispgL2jNDxKLAubre16R/yWgcvcSHO3rLnUA0FKzQ NhzXpmrjuZ1OwrOSQn8Mq/JK4gnPTtgL8Spj59D2RTIU2JicIJWp8zzSNIBCdhsN MOFCZUeJb/8Hk7gSdoQvMXI/BuML1KR1SQSF2bEbZtUGgiC4N9LKobAmoYwgw6xA sAWObEuxzo7vfL7sjB3kqZ1wiV0tgghPM31ZI/THAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2O3GdOOv12+MroHrYZ7ZxZnzno0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzZhZDNhMThhLTkzZmUtNGZhZS1hYWZkLTE2MWQ0NjhhMzJlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPAwDQYJKoZIhvcNAQELBQADggEBAJbv7fjN8fMvs4T9Yk22Q/+nbuv+ dFtrPTtqYQk61cfQtM3TwCawb7u8f3pqYIEP2i4Pt4lHIuJSJoBI19f6xfij9Vek pq+kbjHOzNZAv9buJRz5rXFCbqyWZ6WSbWjonuIV9oZ0u4liEKZG/YZvVy8gQZje YTFaSnAbYbI8hh57zwvITN8knF8IAEaNydyQOnj5tX0KuESa4BaShswkkyQnwdoN ODCh+6duVjgxu1kyNHIGMvEkQfpr7+84/uAAH3n+yHTRvcfiBlOH8NglxeMwZ9hI 8Yi92kyMfQ+9I0mrysz7ET4DSdExqpcPAndt3TPXhzNNie4TnQSROHOuLmU= -----END CERTIFICATE-----Generated at Tue Jul 1 01:21:51 2025 by rpki-client