$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/7081834a-8e47-41c4-b648-ecb8acc8ea5d.roa File: 7081834a-8e47-41c4-b648-ecb8acc8ea5d.roa (raw, json) Hash identifier: IQROUT9/3jlkyFDwTi+yZ8l9vLyj4/sHpgTiIlZIZdc= Subject key identifier: D1:22:0D:73:CC:6D:40:6B:09:6F:91:CC:8D:86:D8:AC:E2:44:AD:61 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 384C9EC131A5AF72FAD40D9D606474BDE99ACB8A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/7081834a-8e47-41c4-b648-ecb8acc8ea5d.roa Signing time: Mon 30 Jun 2025 17:50:10 +0000 ROA not before: Mon 30 Jun 2025 17:50:10 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:4c:9e:c1:31:a5:af:72:fa:d4:0d:9d:60:64:74:bd:e9:9a:cb:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:50:10 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=d5eb731bf5688b5665d6fe9ba344177f7b5bd5db423f32a588c5c7464449c887, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0b:8a:2d:80:1d:d3:14:c0:53:ed:eb:b2:8c: f8:d1:bc:6f:4a:93:8e:df:c6:02:59:16:3f:50:f4: 27:19:49:2e:16:0e:5f:3a:da:58:71:b3:53:4f:98: 81:1b:b7:1c:a8:a0:c6:97:61:d8:1a:f8:e3:fe:7d: a0:7d:02:bf:d3:b0:18:7b:21:7a:1c:e2:35:1f:6a: 63:93:3e:7c:f7:d1:36:d5:35:6f:50:40:e6:16:b0: 59:7e:f7:99:79:ca:c0:d6:b1:db:f5:83:90:d8:21: 07:46:7e:80:eb:79:e8:1c:1b:b6:e8:ba:bb:a5:14: 7e:c5:cf:96:da:c8:b6:30:42:1c:d0:f1:05:7d:79: 45:93:f9:54:fb:d9:ef:f8:6b:cd:1a:84:83:cb:34: bd:39:5d:24:01:97:94:ba:e8:6f:5f:7b:fe:e3:8c: 86:a7:52:ab:a0:c8:6e:c6:c5:9c:6d:de:a1:ce:59: 0b:b7:a9:e0:e4:b7:92:41:97:5b:f1:63:b5:e9:1c: 36:88:dd:53:f8:a5:34:49:c0:c6:6b:d1:ad:ec:e6: c7:1e:15:46:56:36:4a:de:7f:b2:52:34:02:9d:e7: 1f:65:e8:bb:ab:e2:ad:83:26:6e:d5:6f:39:00:d5: 66:b7:fd:a9:b7:32:19:11:a2:2d:24:80:10:bf:c8: 00:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:22:0D:73:CC:6D:40:6B:09:6F:91:CC:8D:86:D8:AC:E2:44:AD:61 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/7081834a-8e47-41c4-b648-ecb8acc8ea5d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.64.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:57:d4:57:13:97:ab:04:3a:27:23:2c:04:5a:60:2c:0d:69: 4b:4a:be:c1:70:78:d8:43:0c:15:00:2d:0a:54:df:ba:70:ec: 06:d7:2d:63:db:c4:a8:43:06:d1:82:04:fe:cb:24:45:74:10: 34:5b:8a:9c:ac:9c:57:14:31:d1:fa:c4:74:2f:0f:fa:c2:90: 74:c2:32:01:c5:3b:56:9e:09:bd:b9:3e:88:15:5d:25:24:9f: e3:fb:bd:6d:fd:8f:a7:7f:51:3e:75:21:42:08:16:ea:de:ee: 59:8a:e9:7f:03:d9:2d:87:06:d9:2e:39:e5:25:09:51:02:f8: d8:49:7a:c4:3d:cb:57:9c:c7:1a:1c:4f:e8:af:9d:50:d2:e1: 28:0c:2c:04:e3:dd:95:fc:d3:96:74:a1:d6:02:28:65:62:fe: 64:57:9d:ec:39:7c:fa:de:9b:fa:49:a3:78:4e:8e:d8:59:44: 62:11:a6:9e:56:aa:13:c4:2e:e4:f8:bb:99:31:47:d7:ea:ec: e2:8c:0a:5a:cd:9b:fd:d7:ff:fa:30:b3:85:9e:c7:fd:c4:20: 21:43:34:85:6d:45:12:ad:82:3a:b1:dd:67:53:54:38:5c:24: 81:cd:9a:b1:13:0b:1e:35:ff:44:d5:c5:ca:c8:7f:f8:70:13: 00:09:16:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOEyewTGlr3L61A2dYGR0vemay4owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc1MDEwWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNWViNzMxYmY1Njg4YjU2NjVkNmZlOWJhMzQ0MTc3Zjdi NWJkNWRiNDIzZjMyYTU4OGM1Yzc0NjQ0NDljODg3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3C4otgB3TFMBT7euyjPjRvG9Kk47fxgJZFj9Q9CcZSS4W Dl862lhxs1NPmIEbtxyooMaXYdga+OP+faB9Ar/TsBh7IXoc4jUfamOTPnz30TbV NW9QQOYWsFl+95l5ysDWsdv1g5DYIQdGfoDreegcG7bourulFH7Fz5bayLYwQhzQ 8QV9eUWT+VT72e/4a80ahIPLNL05XSQBl5S66G9fe/7jjIanUqugyG7GxZxt3qHO WQu3qeDkt5JBl1vxY7XpHDaI3VP4pTRJwMZr0a3s5sceFUZWNkref7JSNAKd5x9l 6Lur4q2DJm7VbzkA1Wa3/am3MhkRoi0kgBC/yAAbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0SINc8xtQGsJb5HMjYbYrOJErWEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzcwODE4MzRhLThlNDctNDFjNC1iNjQ4LWVjYjhhY2M4ZWE1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYEAwDQYJKoZIhvcNAQELBQADggEBABtX1FcTl6sEOicjLARaYCwNaUtK vsFweNhDDBUALQpU37pw7AbXLWPbxKhDBtGCBP7LJEV0EDRbipysnFcUMdH6xHQv D/rCkHTCMgHFO1aeCb25PogVXSUkn+P7vW39j6d/UT51IUIIFure7lmK6X8D2S2H BtkuOeUlCVEC+NhJesQ9y1ecxxocT+ivnVDS4SgMLATj3ZX805Z0odYCKGVi/mRX new5fPrem/pJo3hOjthZRGIRpp5WqhPELuT4u5kxR9fq7OKMClrNm/3X//ows4We x/3EICFDNIVtRRKtgjqx3WdTVDhcJIHNmrETCx41/0TVxcrIf/hwEwAJFkg= -----END CERTIFICATE-----Generated at Tue Jul 1 01:22:39 2025 by rpki-client