$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8716ec49-0081-425d-9aaf-205576cab220.roa File: 8716ec49-0081-425d-9aaf-205576cab220.roa (raw, json) Hash identifier: yEfBhUNqkBmT1yRZxLX9ucwsj6ZWgv/Mi3LWMqObCd0= Subject key identifier: 77:B0:69:EC:6B:8A:44:EF:D1:D3:FF:01:E4:04:1C:FD:F3:EC:70:7F Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2D4B44FB70AE356B233674769D6DBA9E5F079D09 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8716ec49-0081-425d-9aaf-205576cab220.roa Signing time: Fri 15 Aug 2025 19:52:05 +0000 ROA not before: Fri 15 Aug 2025 19:52:05 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:4b:44:fb:70:ae:35:6b:23:36:74:76:9d:6d:ba:9e:5f:07:9d:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 15 19:52:05 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=5e8aa26c29f24fa53d9c5b3e9f98dbb04d7c4ef3191049e4e8a8a620ffe478f6, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0a:76:c4:4b:15:50:5c:91:be:48:a5:15:b5: d4:dc:9d:d5:b6:b7:01:cc:1e:cc:9d:90:47:dc:13: 10:06:8a:61:72:06:62:8e:92:65:0c:b2:0e:d2:ec: 57:cc:72:56:3b:61:22:4a:4c:9b:12:bc:59:9e:ee: 60:75:70:e0:99:a2:52:56:6b:07:45:7a:aa:bb:e1: 04:64:0b:88:2d:88:a9:e6:0c:8f:fb:d0:3c:82:81: 8b:01:63:ab:7d:a2:fe:1e:08:ac:be:19:9a:81:26: 0e:72:a4:96:b3:f9:aa:29:93:8a:54:65:0a:54:7f: 81:c6:3d:83:34:5f:a5:08:f3:4e:61:c8:f2:60:30: 75:2a:f1:4b:9b:d7:c9:16:b1:3a:8d:37:df:d9:8a: 2e:ae:54:60:e7:e4:bb:38:16:8d:7d:94:93:a3:8a: e6:5d:03:15:ce:44:fd:6b:98:34:89:d4:94:55:a2: 37:a8:42:82:be:10:c0:bf:8e:dc:db:39:21:0d:dd: 47:f0:a5:87:9e:78:72:43:20:15:b3:64:46:d6:60: be:75:65:3d:96:3a:a3:3b:9c:14:f2:e7:d8:15:58: 66:38:18:10:db:7a:a7:2f:a6:97:88:1f:9e:c1:26: db:b7:f2:4d:d9:cd:36:f9:11:39:e0:5f:8f:21:eb: f8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:B0:69:EC:6B:8A:44:EF:D1:D3:FF:01:E4:04:1C:FD:F3:EC:70:7F X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8716ec49-0081-425d-9aaf-205576cab220.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.7.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:5b:37:1c:89:8b:d5:80:1b:fa:cb:87:35:d8:b9:56:fd:80: 4c:95:3a:5b:9f:d9:7c:fb:fe:df:b2:03:b5:5d:2f:3f:a2:63: 79:7b:b3:b1:d5:e7:20:01:16:47:33:9e:33:db:bd:c7:d4:34: 73:1f:4a:59:0f:1d:56:b3:ec:07:a4:7b:dd:cd:65:45:5f:b1: af:e2:dd:58:c3:6c:3d:e2:a3:43:51:1b:8e:90:ee:56:da:03: cb:df:f3:98:12:11:14:83:ce:1c:b2:d6:eb:20:8d:d2:19:55: 21:ff:49:1a:e4:5f:a1:e6:32:cf:37:82:99:20:a1:44:24:6c: 71:9a:38:ac:3f:39:df:9a:dd:5b:3d:a6:e8:d0:e1:4e:c8:2c: 65:04:e0:ad:ba:19:36:23:07:18:23:60:3d:de:ab:26:8b:af: 17:9c:e6:df:8b:5a:fa:5a:1b:38:6b:0f:8d:6c:a3:8f:30:69: 9e:12:28:28:ce:62:0b:57:3f:f5:81:fe:a5:fd:a5:c8:f9:96: df:97:db:d5:2d:a1:58:a9:ad:4a:10:d4:7e:fa:1a:64:cd:17: 09:2a:bc:e7:95:d7:3e:66:5e:72:be:39:d0:6d:80:da:30:5f: b8:f4:5d:5e:4e:92:6e:d0:bd:ed:4c:93:00:6e:62:2a:f0:5b: a4:34:b8:3b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULUtE+3CuNWsjNnR2nW26nl8HnQkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE1MTk1MjA1WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZThhYTI2YzI5ZjI0ZmE1M2Q5YzViM2U5Zjk4ZGJiMDRk N2M0ZWYzMTkxMDQ5ZTRlOGE4YTYyMGZmZTQ3OGY2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuCnbESxVQXJG+SKUVtdTcndW2twHMHsydkEfcExAGimFy BmKOkmUMsg7S7FfMclY7YSJKTJsSvFme7mB1cOCZolJWawdFeqq74QRkC4gtiKnm DI/70DyCgYsBY6t9ov4eCKy+GZqBJg5ypJaz+aopk4pUZQpUf4HGPYM0X6UI805h yPJgMHUq8Uub18kWsTqNN9/Zii6uVGDn5Ls4Fo19lJOjiuZdAxXORP1rmDSJ1JRV ojeoQoK+EMC/jtzbOSEN3UfwpYeeeHJDIBWzZEbWYL51ZT2WOqM7nBTy59gVWGY4 GBDbeqcvppeIH57BJtu38k3ZzTb5ETngX48h6/hXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUd7Bp7GuKRO/R0/8B5AQc/fPscH8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzg3MTZlYzQ5LTAwODEtNDI1ZC05YWFmLTIwNTU3NmNhYjIyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAcwDQYJKoZIhvcNAQELBQADggEBAFxbNxyJi9WAG/rLhzXYuVb9gEyV Oluf2Xz7/t+yA7VdLz+iY3l7s7HV5yABFkcznjPbvcfUNHMfSlkPHVaz7Aeke93N ZUVfsa/i3VjDbD3io0NRG46Q7lbaA8vf85gSERSDzhyy1usgjdIZVSH/SRrkX6Hm Ms83gpkgoUQkbHGaOKw/Od+a3Vs9pujQ4U7ILGUE4K26GTYjBxgjYD3eqyaLrxec 5t+LWvpaGzhrD41so48waZ4SKCjOYgtXP/WB/qX9pcj5lt+X29UtoViprUoQ1H76 GmTNFwkqvOeV1z5mXnK+OdBtgNowX7j0XV5Okm7Qve1MkwBuYirwW6Q0uDs= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:14 2025 by rpki-client