$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa File: 8b1249ac-b74a-4544-80b2-2b577af731f1.roa (raw, json) Hash identifier: jrPAcsn8aJFX3C4Z4/2H386WTbSw+zGSxc3LSsOMT/Y= Subject key identifier: 49:4B:26:BF:0A:09:F3:C3:CB:24:89:BB:96:B7:DB:96:97:AB:62:B6 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 211643DFA5175474D71835BBC84BFE4D4026FC1A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa Signing time: Tue 09 Sep 2025 15:40:31 +0000 ROA not before: Tue 09 Sep 2025 15:40:31 +0000 ROA not after: Tue 14 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:16:43:df:a5:17:54:74:d7:18:35:bb:c8:4b:fe:4d:40:26:fc:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Sep 9 15:40:31 2025 GMT Not After : Oct 14 23:59:59 2025 GMT Subject: serialNumber=72b62249b789ec16cc26e2cdcb9bd4ccb6010400ec37056ceb688f557c6977ee, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:46:93:7a:e6:3b:12:32:98:b7:38:3d:ec:16: 63:d1:71:58:e7:4e:d0:1f:83:ba:b0:96:c8:09:e0: 20:e4:c1:33:c5:77:bb:81:bb:d0:94:09:0a:c0:38: be:74:86:a0:49:bb:d6:a2:7f:ee:e4:50:dd:fc:db: 64:46:ff:6c:ff:0f:cc:b2:a9:1d:38:c1:a4:42:3e: 05:64:88:0e:eb:19:b3:f4:63:98:67:21:6e:33:fb: 6e:60:cb:4f:92:03:6f:75:af:13:a9:47:2a:d6:24: fb:cb:9e:91:3e:85:4b:33:a5:3a:f6:4c:c0:8e:aa: 13:72:5f:42:63:b0:ad:0c:c6:a5:b4:d4:5c:59:59: a9:a3:b6:f3:ad:91:76:9d:f2:63:81:9c:60:e8:5b: 0c:ba:76:ed:24:fc:23:f6:c9:83:70:6a:96:b5:87: bb:a0:a9:81:c4:6c:af:e9:96:5a:e6:55:b3:7a:af: 33:aa:86:ab:4c:e4:b8:b5:88:3d:63:de:cb:7c:05: c5:e4:97:c8:99:8a:89:a3:17:d5:40:10:51:74:4a: b3:cf:95:9c:a4:d3:5b:3e:62:35:bf:80:5d:2a:76: 1b:de:07:d9:1f:b0:78:03:98:0e:08:73:49:22:ac: 9e:1d:7d:05:2d:9d:e2:ea:26:41:bd:3e:4b:c1:f6: b7:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:4B:26:BF:0A:09:F3:C3:CB:24:89:BB:96:B7:DB:96:97:AB:62:B6 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.20.0/23 Signature Algorithm: sha256WithRSAEncryption 08:cc:ae:53:aa:e4:2d:b0:b6:07:7c:0b:dd:f4:4c:92:10:38: cd:cb:85:17:a4:60:1a:ef:68:8d:06:f1:f3:0b:0b:1b:92:16: 88:21:8b:ad:72:18:66:b5:bb:c1:61:e1:31:40:f3:56:8c:21: 27:21:aa:5d:7c:e2:89:c9:36:aa:d3:7e:39:f5:92:25:b6:73: bf:76:57:29:9f:4f:3e:f2:40:8a:49:12:ba:c0:8f:0e:b5:32: 7f:95:ce:2b:2c:11:57:e6:ea:08:f5:16:f9:91:7b:9a:dd:85: a5:ce:dd:da:8d:da:c2:65:01:9d:8c:e3:4b:97:d7:14:fe:0a: 4f:21:f1:9f:9a:73:aa:49:d7:2a:ce:1d:31:c7:21:cd:70:a1: 3b:50:5b:0c:28:71:95:fb:a2:a7:18:25:91:c9:64:77:17:7e: 00:2d:09:1b:48:38:7d:fa:31:46:9f:8f:46:77:34:a6:18:ed: 74:0d:af:31:eb:83:70:35:b4:60:2f:33:06:d7:38:04:dd:04: ac:9f:b4:cb:6c:39:de:b0:0b:21:54:2c:ec:17:2c:75:00:90: af:0b:88:85:ba:ea:91:60:c0:57:a9:1b:ea:5c:65:d6:f3:97: 95:8f:ed:3a:93:50:83:38:78:6f:62:12:85:2c:03:34:1c:28: f7:f3:17:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIRZD36UXVHTXGDW7yEv+TUAm/BowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwOTA5MTU0MDMxWhcNMjUxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MmI2MjI0OWI3ODllYzE2Y2MyNmUyY2RjYjliZDRjY2I2 MDEwNDAwZWMzNzA1NmNlYjY4OGY1NTdjNjk3N2VlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4RpN65jsSMpi3OD3sFmPRcVjnTtAfg7qwlsgJ4CDkwTPF d7uBu9CUCQrAOL50hqBJu9aif+7kUN3822RG/2z/D8yyqR04waRCPgVkiA7rGbP0 Y5hnIW4z+25gy0+SA291rxOpRyrWJPvLnpE+hUszpTr2TMCOqhNyX0JjsK0MxqW0 1FxZWamjtvOtkXad8mOBnGDoWwy6du0k/CP2yYNwapa1h7ugqYHEbK/pllrmVbN6 rzOqhqtM5Li1iD1j3st8BcXkl8iZiomjF9VAEFF0SrPPlZyk01s+YjW/gF0qdhve B9kfsHgDmA4Ic0kirJ4dfQUtneLqJkG9PkvB9rffAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSUsmvwoJ88PLJIm7lrfblperYrYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhiMTI0OWFjLWI3NGEtNDU0NC04MGIyLTJiNTc3YWY3MzFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBQwDQYJKoZIhvcNAQELBQADggEBAAjMrlOq5C2wtgd8C930TJIQOM3L hRekYBrvaI0G8fMLCxuSFoghi61yGGa1u8Fh4TFA81aMISchql184onJNqrTfjn1 kiW2c792VymfTz7yQIpJErrAjw61Mn+VzissEVfm6gj1FvmRe5rdhaXO3dqN2sJl AZ2M40uX1xT+Ck8h8Z+ac6pJ1yrOHTHHIc1woTtQWwwocZX7oqcYJZHJZHcXfgAt CRtIOH36MUafj0Z3NKYY7XQNrzHrg3A1tGAvMwbXOATdBKyftMtsOd6wCyFULOwX LHUAkK8LiIW66pFgwFepG+pcZdbzl5WP7TqTUIM4eG9iEoUsAzQcKPfzFzc= -----END CERTIFICATE-----Generated at Fri Sep 19 08:53:50 2025 by rpki-client