$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6df93fb2-679f-4247-81c7-fd108c812488.roa File: 6df93fb2-679f-4247-81c7-fd108c812488.roa (raw, json) Hash identifier: Xbn9TSQ10qN/NzQVdp2fr0TxM2KZGBC9d0t97a8FsI0= Subject key identifier: D3:3A:E3:97:51:AA:CD:9C:03:EC:FB:A2:55:02:F4:B6:9C:09:09:D2 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7A1F4574AF99D67BF134553118B00D8D6BCF986D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6df93fb2-679f-4247-81c7-fd108c812488.roa Signing time: Tue 19 Aug 2025 16:50:34 +0000 ROA not before: Tue 19 Aug 2025 16:50:34 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:1f:45:74:af:99:d6:7b:f1:34:55:31:18:b0:0d:8d:6b:cf:98:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:50:34 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=b66b5641a9af5c83cde900fa46e8ff9aec4692b77fa0989f646f60c6d02ea89c, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3d:f1:c7:b3:34:d0:c7:8a:cb:c1:0a:60:ea: a0:d4:82:85:2f:55:e7:c7:36:eb:31:15:2d:68:1b: 81:c6:87:12:27:00:58:97:1a:7d:2d:1d:03:4e:c3: 7a:f5:7d:cb:8c:f0:a6:ae:0b:21:bc:3d:09:ff:95: 07:cc:9b:c0:a2:b7:ab:a2:ab:3d:94:5b:f5:69:be: b0:53:4e:fc:52:5b:cc:d9:84:52:2d:0c:13:a6:e4: 66:3e:75:c1:73:8f:c8:8e:f4:0f:49:3b:df:ca:49: 76:a3:e5:38:b2:02:6d:48:8e:c4:7e:e8:d4:83:7e: 6d:e8:7c:96:23:71:75:dc:76:43:29:f9:aa:44:de: a8:4f:0c:aa:f2:f9:6e:b7:fe:7d:30:00:a3:fa:17: 8d:b5:d8:ce:31:aa:0a:6f:23:fd:84:c6:b1:97:6f: 1a:82:12:d5:1f:9a:08:12:eb:99:74:3f:00:c9:20: 2a:1a:95:90:39:45:b8:51:c4:bc:98:4d:5e:ed:82: b7:12:0f:e1:4b:cc:a2:db:60:57:12:0d:12:a5:9b: e4:20:01:a7:a9:f3:4d:d4:84:65:1d:51:29:a2:29: 69:5b:dc:c0:97:23:2f:6d:df:98:8e:7a:ab:03:55: 38:12:23:64:8e:8e:c2:d5:fe:64:f7:ae:6b:40:8a: 6b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3A:E3:97:51:AA:CD:9C:03:EC:FB:A2:55:02:F4:B6:9C:09:09:D2 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6df93fb2-679f-4247-81c7-fd108c812488.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.128.0/20 Signature Algorithm: sha256WithRSAEncryption 85:ee:4b:30:c4:4a:a7:fc:f3:ee:aa:eb:19:14:39:6d:ad:76: 90:27:bc:30:80:12:80:79:32:c9:8c:2c:d5:e0:42:a2:76:d2: cf:28:ad:a7:0e:85:a4:3e:56:8d:38:4d:20:3a:01:75:3f:54: 80:3b:ee:68:e0:d9:31:68:d6:3c:40:8f:14:08:c9:04:c7:e7: f4:8c:e5:38:df:2b:2f:13:15:3b:02:32:91:22:14:36:74:09: 24:71:9a:8c:93:a6:52:8b:a4:9b:d2:89:ae:b1:60:a8:7b:12: c4:21:3e:99:44:66:f1:ce:6c:63:73:bd:c5:4f:79:97:1e:63: 41:a5:bd:2f:4a:e0:73:d2:4e:7a:5d:b8:69:f3:56:bd:5f:ff: dc:a6:56:9e:fa:b3:e7:d4:5f:f4:09:51:3e:70:d5:aa:4e:a6: 5f:2c:2b:49:4b:bf:5c:4b:ae:b0:54:32:32:e3:6c:4e:bd:15: 78:2a:6b:a2:b6:52:9b:12:23:3f:7c:c5:1a:b3:2b:c7:89:fe: 7b:01:0a:9d:5d:14:ee:3c:a5:05:28:fe:c7:ef:40:a5:f6:2f: a9:05:85:8d:0a:13:3e:c6:4b:9a:fd:1b:3d:9f:a4:2c:e3:49: c1:35:d1:e2:75:a1:14:1d:d5:2a:51:c6:b9:48:2c:49:7a:8b: 36:63:6b:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeh9FdK+Z1nvxNFUxGLANjWvPmG0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY1MDM0WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjZiNTY0MWE5YWY1YzgzY2RlOTAwZmE0NmU4ZmY5YWVj NDY5MmI3N2ZhMDk4OWY2NDZmNjBjNmQwMmVhODljMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDePfHHszTQx4rLwQpg6qDUgoUvVefHNusxFS1oG4HGhxIn AFiXGn0tHQNOw3r1fcuM8KauCyG8PQn/lQfMm8Cit6uiqz2UW/VpvrBTTvxSW8zZ hFItDBOm5GY+dcFzj8iO9A9JO9/KSXaj5TiyAm1IjsR+6NSDfm3ofJYjcXXcdkMp +apE3qhPDKry+W63/n0wAKP6F4212M4xqgpvI/2ExrGXbxqCEtUfmggS65l0PwDJ ICoalZA5RbhRxLyYTV7tgrcSD+FLzKLbYFcSDRKlm+QgAaep803UhGUdUSmiKWlb 3MCXIy9t35iOeqsDVTgSI2SOjsLV/mT3rmtAimtXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0zrjl1GqzZwD7PuiVQL0tpwJCdIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzZkZjkzZmIyLTY3OWYtNDI0Ny04MWM3LWZkMTA4YzgxMjQ4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYIAwDQYJKoZIhvcNAQELBQADggEBAIXuSzDESqf88+6q6xkUOW2tdpAn vDCAEoB5MsmMLNXgQqJ20s8oracOhaQ+Vo04TSA6AXU/VIA77mjg2TFo1jxAjxQI yQTH5/SM5TjfKy8TFTsCMpEiFDZ0CSRxmoyTplKLpJvSia6xYKh7EsQhPplEZvHO bGNzvcVPeZceY0GlvS9K4HPSTnpduGnzVr1f/9ymVp76s+fUX/QJUT5w1apOpl8s K0lLv1xLrrBUMjLjbE69FXgqa6K2UpsSIz98xRqzK8eJ/nsBCp1dFO48pQUo/sfv QKX2L6kFhY0KEz7GS5r9Gz2fpCzjScE10eJ1oRQd1SpRxrlILEl6izZja24= -----END CERTIFICATE-----Generated at Wed Aug 20 13:19:34 2025 by rpki-client