$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa File: 87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa (raw, json) Hash identifier: j55scq5BYHcj/zyde5KMEJX+gijFpNkRzx7nkmGeNF4= Subject key identifier: AE:1B:13:7C:61:C9:13:9B:1E:DF:A9:27:11:8A:46:5A:D5:AA:A7:45 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0F8CB83324BBE07CA0EF34EF9F0FE25866CFED7E Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa Signing time: Tue 19 Aug 2025 16:50:45 +0000 ROA not before: Tue 19 Aug 2025 16:50:45 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:8c:b8:33:24:bb:e0:7c:a0:ef:34:ef:9f:0f:e2:58:66:cf:ed:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:50:45 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=289ff938e0a4cf9dca7b6b480d9dc5e5c4b81e1515227c09cd678d2a5cc392a5, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bf:09:19:1f:45:27:1f:9d:18:a2:b4:e7:cf: e0:f8:b6:23:8f:c3:bc:e3:9c:6b:3e:32:cd:80:df: 40:d6:f3:ae:38:55:07:a8:c4:52:9b:cf:46:0a:25: e1:4a:c6:25:51:63:28:cd:80:a6:ac:35:d3:0e:0b: 2b:48:8d:68:c3:84:a5:c7:6e:2d:f7:a0:a8:df:6e: 6d:7a:35:40:33:8e:43:97:12:a0:13:4d:8f:de:98: 50:ac:69:bf:2a:45:b8:09:32:0c:62:a2:fd:7e:ae: 15:0a:4d:84:b7:d0:d9:18:a4:18:f8:28:b8:3d:4c: ee:b0:f3:aa:ca:30:91:6e:20:9a:fc:25:f0:30:21: 74:0a:0d:9b:7c:d2:74:f1:36:6a:6b:93:03:68:98: 27:19:40:a2:7b:86:04:26:74:c2:89:13:ed:01:14: b9:12:72:8f:04:0f:1a:6a:14:65:32:7d:4a:1e:43: b3:54:85:42:a6:8b:9d:18:08:3a:24:de:7b:d4:ea: 6f:1a:0c:24:9a:48:54:96:a3:44:f5:cb:e6:da:b5: 03:b6:fb:e8:19:a5:b2:b2:fb:9b:34:1a:a4:ec:09: e4:b5:49:e3:a5:85:7d:6a:d0:37:39:f5:f9:fc:fb: 19:92:60:5e:a2:7d:dd:e3:7b:2c:a9:01:0f:3d:38: 34:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:1B:13:7C:61:C9:13:9B:1E:DF:A9:27:11:8A:46:5A:D5:AA:A7:45 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.112.0/20 Signature Algorithm: sha256WithRSAEncryption 7b:04:88:7e:e8:46:41:c3:97:59:90:01:88:17:50:07:97:bc: 98:e0:47:43:f9:f3:38:be:56:e6:d9:3e:ec:7c:0c:64:40:45: 57:fb:9e:0a:87:0e:96:0d:67:f0:98:81:0c:23:55:94:13:1f: 79:2a:e8:db:62:21:43:cb:50:78:61:5b:9c:e9:ca:ab:dd:c3: ce:b4:9b:e6:29:53:56:cd:d3:9f:70:34:ee:02:5e:0f:d1:bc: be:f3:35:47:30:7e:c0:01:b2:9e:91:71:c4:e4:02:18:8b:ee: 7e:c4:d6:6c:0c:1c:3f:69:fc:5b:d3:c8:5a:90:0d:9b:14:94: 0e:46:77:5b:5b:af:7f:79:cc:4e:92:8b:18:9d:18:6c:ad:1b: 4a:9c:13:da:6d:bb:c6:9f:89:c6:a2:c9:9c:5c:2e:94:35:d2: 8d:dc:29:1a:ad:07:8e:3f:df:d7:e2:e3:e3:77:1d:ad:96:a3: bb:f8:52:98:1c:56:4c:97:c1:6a:47:05:e1:e5:6e:36:a5:59: 48:6e:9c:6f:00:fa:70:b5:89:f6:d2:e9:de:56:55:04:0a:79: 94:e6:1f:37:03:eb:87:d3:e5:38:d8:34:23:28:24:f0:b5:bc: c9:18:95:81:f2:2f:da:11:36:c2:19:df:40:a3:a1:b3:29:dd: c7:50:2c:0b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD4y4MyS74Hyg7zTvnw/iWGbP7X4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY1MDQ1WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyODlmZjkzOGUwYTRjZjlkY2E3YjZiNDgwZDlkYzVlNWM0 YjgxZTE1MTUyMjdjMDljZDY3OGQyYTVjYzM5MmE1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7vwkZH0UnH50YorTnz+D4tiOPw7zjnGs+Ms2A30DW8644 VQeoxFKbz0YKJeFKxiVRYyjNgKasNdMOCytIjWjDhKXHbi33oKjfbm16NUAzjkOX EqATTY/emFCsab8qRbgJMgxiov1+rhUKTYS30NkYpBj4KLg9TO6w86rKMJFuIJr8 JfAwIXQKDZt80nTxNmprkwNomCcZQKJ7hgQmdMKJE+0BFLkSco8EDxpqFGUyfUoe Q7NUhUKmi50YCDok3nvU6m8aDCSaSFSWo0T1y+batQO2++gZpbKy+5s0GqTsCeS1 SeOlhX1q0Dc59fn8+xmSYF6ifd3jeyypAQ89ODSbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrhsTfGHJE5se36knEYpGWtWqp0UwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzg3ZTQwY2E3LTRiZDUtNGE4ZS1iYWJjLWVmNDUwZDI1YTBjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYHAwDQYJKoZIhvcNAQELBQADggEBAHsEiH7oRkHDl1mQAYgXUAeXvJjg R0P58zi+VubZPux8DGRARVf7ngqHDpYNZ/CYgQwjVZQTH3kq6NtiIUPLUHhhW5zp yqvdw860m+YpU1bN059wNO4CXg/RvL7zNUcwfsABsp6RccTkAhiL7n7E1mwMHD9p /FvTyFqQDZsUlA5Gd1tbr395zE6SixidGGytG0qcE9ptu8aficaiyZxcLpQ10o3c KRqtB44/39fi4+N3Ha2Wo7v4UpgcVkyXwWpHBeHlbjalWUhunG8A+nC1ifbS6d5W VQQKeZTmHzcD64fT5TjYNCMoJPC1vMkYlYHyL9oRNsIZ30CjobMp3cdQLAs= -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:07 2025 by rpki-client