$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/7081834a-8e47-41c4-b648-ecb8acc8ea5d.roa File: 7081834a-8e47-41c4-b648-ecb8acc8ea5d.roa (raw, json) Hash identifier: sIlS1KMHFIbj2HUQOryJ7QUDJezU91kbaBTxGzzfeMo= Subject key identifier: 4B:DE:A0:1B:A1:51:0B:EF:EF:65:E3:03:C3:C2:31:3C:11:A4:0C:1E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 226B39DF7B51B882FE356434E525E1D3F81A22CF Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/7081834a-8e47-41c4-b648-ecb8acc8ea5d.roa Signing time: Tue 19 Aug 2025 16:50:35 +0000 ROA not before: Tue 19 Aug 2025 16:50:35 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:6b:39:df:7b:51:b8:82:fe:35:64:34:e5:25:e1:d3:f8:1a:22:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:50:35 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=d55e9a81c41e4cd55d29ad6f042eb1b54908983c536ae15294b9db703d2ec24f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:af:44:5d:27:55:ee:80:d5:c1:09:fc:c0:b0: 4f:c7:e4:14:2f:79:d1:36:d8:a9:67:10:e7:26:2e: 3b:7a:80:f1:e0:46:38:66:da:e9:f8:8b:81:0b:63: be:e8:69:16:00:08:48:83:99:20:a3:92:55:d6:7f: b2:93:22:b2:55:a9:2b:82:8a:ad:ef:8b:d5:05:21: d1:af:f9:46:28:aa:03:fa:e2:e9:0d:9c:3f:3a:1a: 2a:2e:97:56:46:d3:ba:12:2e:90:35:f8:73:5e:92: 73:3d:55:88:98:63:eb:34:b2:a4:5b:2b:55:49:37: 7d:38:64:ae:62:a8:ca:07:14:59:b3:f5:cb:9d:26: 51:91:9d:c8:34:b0:4d:4b:74:ff:ca:c0:f8:da:9f: 5c:b8:4f:90:b2:3a:0e:66:36:bf:bc:2a:59:8c:24: df:d3:91:8f:7d:ea:75:8b:b3:aa:62:2d:a5:1e:d3: 14:8b:71:77:05:19:43:1c:a8:c6:93:85:56:b1:b5: 43:10:3d:4f:c5:7a:cc:3a:52:f6:9c:b7:41:a4:79: 8d:76:fd:95:52:88:6b:e3:72:4f:81:e3:c2:76:0c: a6:34:dd:3b:d0:bc:d8:7b:d7:11:58:05:55:26:13: 25:3f:30:15:2f:40:5b:5a:0a:2a:42:34:45:bc:70: 40:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:DE:A0:1B:A1:51:0B:EF:EF:65:E3:03:C3:C2:31:3C:11:A4:0C:1E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/7081834a-8e47-41c4-b648-ecb8acc8ea5d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.64.0/22 Signature Algorithm: sha256WithRSAEncryption 87:6e:74:c7:ad:bc:40:4a:84:fa:ba:3a:fc:82:23:1f:fa:5a: 92:2f:35:67:41:b4:44:16:14:40:5a:e2:5e:95:5d:38:44:9b: af:30:39:27:d2:5f:e5:29:d1:09:14:ed:e7:fd:4f:29:e3:37: e4:b4:6b:eb:c9:e8:0a:d2:2c:5f:9c:c3:12:1d:f1:0c:bd:72: bf:97:5d:ea:97:6b:a2:1a:a6:ea:2d:7b:be:6a:82:83:90:2d: a5:ee:bb:ca:d3:43:1c:33:25:74:40:96:9b:19:9d:c2:2b:40: a0:65:80:f5:de:e7:89:f3:77:c0:5d:6b:5e:e5:f9:93:6b:01: 5c:80:4b:64:81:a1:5c:8f:6a:d8:3d:bd:b9:0d:d4:8a:44:f1: d3:4f:05:96:3a:dc:b9:66:ab:7e:09:53:16:2e:ab:f2:ee:c7: 18:7c:0b:0f:23:f3:d3:08:1e:32:68:22:64:38:90:d9:9c:ff: 46:b0:ef:c3:28:fd:89:a7:cf:14:04:9d:70:c2:ab:67:4f:5d: 2f:f0:c7:05:ff:1f:e4:55:56:85:97:bb:f2:d4:da:ea:cc:21: 24:61:32:4b:c1:92:71:66:46:65:ca:ce:d1:8b:39:69:46:eb: b1:59:aa:64:9f:6c:b7:08:1b:cd:92:19:b4:a3:39:14:df:e3: 97:cc:5a:17 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIms533tRuIL+NWQ05SXh0/gaIs8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY1MDM1WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTVlOWE4MWM0MWU0Y2Q1NWQyOWFkNmYwNDJlYjFiNTQ5 MDg5ODNjNTM2YWUxNTI5NGI5ZGI3MDNkMmVjMjRmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5r0RdJ1XugNXBCfzAsE/H5BQvedE22KlnEOcmLjt6gPHg Rjhm2un4i4ELY77oaRYACEiDmSCjklXWf7KTIrJVqSuCiq3vi9UFIdGv+UYoqgP6 4ukNnD86Gioul1ZG07oSLpA1+HNeknM9VYiYY+s0sqRbK1VJN304ZK5iqMoHFFmz 9cudJlGRncg0sE1LdP/KwPjan1y4T5CyOg5mNr+8KlmMJN/TkY996nWLs6piLaUe 0xSLcXcFGUMcqMaThVaxtUMQPU/Fesw6Uvact0GkeY12/ZVSiGvjck+B48J2DKY0 3TvQvNh71xFYBVUmEyU/MBUvQFtaCipCNEW8cEBnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUS96gG6FRC+/vZeMDw8IxPBGkDB4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzcwODE4MzRhLThlNDctNDFjNC1iNjQ4LWVjYjhhY2M4ZWE1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYEAwDQYJKoZIhvcNAQELBQADggEBAIdudMetvEBKhPq6OvyCIx/6WpIv NWdBtEQWFEBa4l6VXThEm68wOSfSX+Up0QkU7ef9TynjN+S0a+vJ6ArSLF+cwxId 8Qy9cr+XXeqXa6Iapuote75qgoOQLaXuu8rTQxwzJXRAlpsZncIrQKBlgPXe54nz d8Bda17l+ZNrAVyAS2SBoVyPatg9vbkN1IpE8dNPBZY63Llmq34JUxYuq/Luxxh8 Cw8j89MIHjJoImQ4kNmc/0aw78Mo/YmnzxQEnXDCq2dPXS/wxwX/H+RVVoWXu/LU 2urMISRhMkvBknFmRmXKztGLOWlG67FZqmSfbLcIG82SGbSjORTf45fMWhc= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:30 2025 by rpki-client