$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/84ad29f8-1c63-4176-8a14-68de6ff20aab.roa File: 84ad29f8-1c63-4176-8a14-68de6ff20aab.roa (raw, json) Hash identifier: DYQjZtaXBD+cshQfcEDAetczYxem16Il3kf5WfvvBEQ= Subject key identifier: C3:14:1F:5F:E3:1E:0B:2E:AA:0B:85:D3:90:E0:0D:85:87:C4:9B:91 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 33956904B6B8E61960F3FD445068458E08C4C45A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/84ad29f8-1c63-4176-8a14-68de6ff20aab.roa Signing time: Tue 19 Aug 2025 16:50:48 +0000 ROA not before: Tue 19 Aug 2025 16:50:48 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.97.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:95:69:04:b6:b8:e6:19:60:f3:fd:44:50:68:45:8e:08:c4:c4:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:50:48 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=0ba22aa23cbb7e002cb3694143d203bac2fc47d63e28bd08ed0ce368581ebabe, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:09:4a:bf:54:9d:2d:9b:5e:e9:55:14:62:d8: 9f:d6:94:0d:00:8f:2b:7c:53:13:00:11:4e:6c:77: 58:a6:c8:ae:5c:2a:a6:2b:56:49:47:c4:83:17:83: c8:55:40:07:db:04:02:cf:8e:0e:94:69:83:4d:ae: bf:87:b4:7c:e3:b3:e1:f4:28:6c:42:b3:73:40:c2: 7d:04:a1:93:8a:be:df:0b:dc:4d:20:5b:0b:e2:0e: 96:f5:70:d7:81:10:68:7e:31:ef:47:b0:45:c8:29: 0b:b3:73:59:95:52:ae:2b:c3:9d:39:bd:3d:9c:e1: 57:2c:88:2c:e2:47:dc:1c:1d:8a:84:86:1d:f7:ba: 40:72:37:57:be:4d:3e:8e:a1:a9:66:c5:d7:79:71: 94:08:cd:eb:bd:b6:e9:a4:b1:81:3c:c5:5b:66:32: 2e:66:d9:27:57:a2:84:0f:d1:6f:01:c3:bd:98:0b: c9:f2:eb:5c:6d:ef:2e:60:20:cc:06:a1:76:67:4e: 02:88:66:28:67:c2:1e:cc:8d:b5:a5:cb:36:44:85: db:5b:ca:c9:35:11:fd:7a:da:5a:19:ea:c2:1a:9e: b0:70:5a:e7:43:d7:8f:61:a2:81:5b:b1:62:6e:3d: d8:d5:97:7f:b8:6d:30:ea:de:ff:9e:75:7c:46:6f: f1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:14:1F:5F:E3:1E:0B:2E:AA:0B:85:D3:90:E0:0D:85:87:C4:9B:91 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/84ad29f8-1c63-4176-8a14-68de6ff20aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.97.0.0/16 Signature Algorithm: sha256WithRSAEncryption 09:8f:dd:45:da:cf:63:0c:a9:94:ad:69:23:4c:38:a3:3b:ae: a8:d3:ce:df:d4:06:27:e9:c6:09:d5:20:e8:c1:f1:d1:60:05: 3a:bb:46:3a:32:c0:83:e4:67:04:0d:9a:b6:c7:94:60:d4:c5: 3b:8d:56:0b:cc:26:dd:99:12:43:2e:7e:31:a0:15:2b:e3:9b: 59:44:0d:52:a4:55:e4:10:90:cd:de:4a:b3:4d:8c:e2:a3:0c: 06:34:ff:42:4a:2b:15:c9:64:ea:51:5e:09:62:4c:5f:dc:f4: 0b:5e:b4:a0:b0:df:7f:37:9a:97:67:a5:c7:c6:75:b7:69:8d: 4f:86:2e:29:9a:7b:02:62:8e:9f:c4:15:90:ed:48:fc:41:e4: e5:27:03:c8:4b:1e:19:85:d1:44:d6:a3:d1:4a:31:ae:af:e4: 66:14:f8:99:c2:1f:5f:ac:92:7c:9d:75:7d:80:f8:c5:b3:97: cc:d7:46:85:ac:08:e7:b6:fd:6e:b2:f7:75:14:fb:11:a2:61: d8:67:5b:21:b8:3f:04:1c:8b:9d:4e:63:01:bc:ef:46:33:e4: d7:24:f5:a2:5d:1c:15:b8:c9:17:d6:da:27:36:87:32:a9:ec: 60:4a:a9:0c:0d:f6:0f:ea:52:81:1d:f8:30:d4:29:a8:dd:cf: 22:ab:4f:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUM5VpBLa45hlg8/1EUGhFjgjExFowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY1MDQ4WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYmEyMmFhMjNjYmI3ZTAwMmNiMzY5NDE0M2QyMDNiYWMy ZmM0N2Q2M2UyOGJkMDhlZDBjZTM2ODU4MWViYWJlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVCUq/VJ0tm17pVRRi2J/WlA0Ajyt8UxMAEU5sd1imyK5c KqYrVklHxIMXg8hVQAfbBALPjg6UaYNNrr+HtHzjs+H0KGxCs3NAwn0EoZOKvt8L 3E0gWwviDpb1cNeBEGh+Me9HsEXIKQuzc1mVUq4rw505vT2c4VcsiCziR9wcHYqE hh33ukByN1e+TT6Ooalmxdd5cZQIzeu9tumksYE8xVtmMi5m2SdXooQP0W8Bw72Y C8ny61xt7y5gIMwGoXZnTgKIZihnwh7MjbWlyzZEhdtbysk1Ef162loZ6sIanrBw WudD149hooFbsWJuPdjVl3+4bTDq3v+edXxGb/GRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwxQfX+MeCy6qC4XTkOANhYfEm5EwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzg0YWQyOWY4LTFjNjMtNDE3Ni04YTE0LTY4ZGU2ZmYyMGFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjYTANBgkqhkiG9w0BAQsFAAOCAQEACY/dRdrPYwyplK1pI0w4ozuuqNPO 39QGJ+nGCdUg6MHx0WAFOrtGOjLAg+RnBA2atseUYNTFO41WC8wm3ZkSQy5+MaAV K+ObWUQNUqRV5BCQzd5Ks02M4qMMBjT/QkorFclk6lFeCWJMX9z0C160oLDffzea l2elx8Z1t2mNT4YuKZp7AmKOn8QVkO1I/EHk5ScDyEseGYXRRNaj0Uoxrq/kZhT4 mcIfX6ySfJ11fYD4xbOXzNdGhawI57b9brL3dRT7EaJh2GdbIbg/BByLnU5jAbzv RjPk1yT1ol0cFbjJF9baJzaHMqnsYEqpDA32D+pSgR34MNQpqN3PIqtPCw== -----END CERTIFICATE-----Generated at Wed Aug 20 13:20:09 2025 by rpki-client