$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9c674793-2377-4f72-bcf8-2ff0d70f9566.roa File: 9c674793-2377-4f72-bcf8-2ff0d70f9566.roa (raw, json) Hash identifier: cu9Btm32dmvcGZlYN6InpnP7XnnRfhyzyqAhFtJG1Fw= Subject key identifier: 68:F4:C7:6B:FB:CF:71:2D:A2:7F:13:D4:4A:95:36:A4:B4:49:18:49 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 581C879D67CBED6C1F9D682D161C2666A285F6ED Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9c674793-2377-4f72-bcf8-2ff0d70f9566.roa Signing time: Tue 19 Aug 2025 16:50:37 +0000 ROA not before: Tue 19 Aug 2025 16:50:37 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:1c:87:9d:67:cb:ed:6c:1f:9d:68:2d:16:1c:26:66:a2:85:f6:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:50:37 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=95e38e57e959bab4cef89e3a8633de69c6f8aff8e94fdae4655d5e9b0b72ae8b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:48:1e:c4:a2:f9:9e:37:20:bb:fe:4b:92:7e: a4:a2:84:53:43:24:88:2d:dd:d6:cd:fe:49:7f:6a: c9:ca:85:18:e4:d9:fc:c6:df:2d:64:d7:0d:6e:4a: e6:a0:6c:8c:88:4a:01:90:e7:68:a3:91:76:8a:dc: 1c:35:68:d7:57:f9:d9:b2:b4:f3:80:13:3a:bb:59: e2:8c:aa:92:1b:a4:fd:e0:8c:80:81:2e:88:94:b2: ea:32:6f:76:ca:a1:99:6c:3e:ca:09:24:35:4d:3f: 3c:60:25:9e:6e:a0:8d:9d:9d:ca:88:69:6f:a1:7a: e7:dc:3d:e7:7e:32:e3:19:ae:52:6a:bf:10:c7:e1: 45:bc:69:d4:7f:89:1f:6d:24:95:5d:48:74:e6:0d: 1c:2d:63:8f:5f:7b:f4:08:d8:76:dc:0c:7c:8f:37: 3c:f0:7a:77:d0:42:2b:a1:9e:7c:1d:96:e7:71:87: 70:01:16:fe:07:9f:e1:6c:b3:b8:7d:4d:c9:4c:e7: 42:a2:c7:4e:5d:56:98:05:25:08:54:44:c0:23:aa: ac:6c:a9:23:23:7c:bf:c6:e4:a3:0a:3c:d8:18:8a: 34:ad:07:a6:15:28:47:70:43:9c:2f:ca:b5:1d:d4: f4:c2:97:7e:81:97:09:87:5f:57:0e:fa:32:fc:32: b0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F4:C7:6B:FB:CF:71:2D:A2:7F:13:D4:4A:95:36:A4:B4:49:18:49 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9c674793-2377-4f72-bcf8-2ff0d70f9566.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.96.0/22 Signature Algorithm: sha256WithRSAEncryption 38:26:f4:8a:17:87:97:fe:ad:1c:a5:25:ce:20:57:70:5f:9c: 33:ab:8c:35:e6:74:c0:5d:42:78:b7:5c:d5:37:ba:7e:c7:b3: 86:0d:a5:34:a6:01:fe:4c:10:6c:f2:51:02:82:b6:e9:e8:fe: 86:fe:b5:4c:54:6e:56:9e:53:c4:aa:09:5b:26:eb:b2:ad:e4: 23:e1:7a:92:26:77:06:f6:d4:9f:33:f6:9c:58:10:f0:2c:18: d0:31:ff:89:79:8d:0e:b7:01:ef:57:5c:7f:58:25:f4:c0:c8: 64:7a:45:af:ca:40:0c:d9:27:8c:c2:ec:c6:91:64:c5:8b:3d: f1:56:6d:37:07:d0:40:28:e2:a0:a8:30:d8:6f:13:ad:7e:55: 84:fe:d5:c9:b9:4a:d4:0b:b3:2b:27:38:55:e2:d0:61:be:3b: b9:e1:ae:7c:d9:0e:20:8d:66:82:1f:b0:fc:45:6e:f0:a5:fe: 7a:a0:ed:c5:c1:54:66:f3:49:c0:2c:a9:2b:a1:93:b1:ad:d5: 8f:52:60:b2:3a:f7:17:e3:93:90:bf:4a:6b:ef:5e:11:ba:7b: f9:3d:34:bd:db:87:0b:0d:22:1b:ed:d9:96:8e:1b:26:10:b0: 3b:f1:70:7a:2c:6c:df:f1:97:bf:fa:72:82:f0:42:4c:28:3b: 5c:ac:21:ac -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWByHnWfL7WwfnWgtFhwmZqKF9u0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY1MDM3WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWUzOGU1N2U5NTliYWI0Y2VmODllM2E4NjMzZGU2OWM2 ZjhhZmY4ZTk0ZmRhZTQ2NTVkNWU5YjBiNzJhZThiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSSB7EovmeNyC7/kuSfqSihFNDJIgt3dbN/kl/asnKhRjk 2fzG3y1k1w1uSuagbIyISgGQ52ijkXaK3Bw1aNdX+dmytPOAEzq7WeKMqpIbpP3g jICBLoiUsuoyb3bKoZlsPsoJJDVNPzxgJZ5uoI2dncqIaW+heufcPed+MuMZrlJq vxDH4UW8adR/iR9tJJVdSHTmDRwtY49fe/QI2HbcDHyPNzzwenfQQiuhnnwdludx h3ABFv4Hn+Fss7h9TclM50Kix05dVpgFJQhURMAjqqxsqSMjfL/G5KMKPNgYijSt B6YVKEdwQ5wvyrUd1PTCl36BlwmHX1cO+jL8MrB3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaPTHa/vPcS2ifxPUSpU2pLRJGEkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzljNjc0NzkzLTIzNzctNGY3Mi1iY2Y4LTJmZjBkNzBmOTU2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYGAwDQYJKoZIhvcNAQELBQADggEBADgm9IoXh5f+rRylJc4gV3BfnDOr jDXmdMBdQni3XNU3un7Hs4YNpTSmAf5MEGzyUQKCtuno/ob+tUxUblaeU8SqCVsm 67Kt5CPhepImdwb21J8z9pxYEPAsGNAx/4l5jQ63Ae9XXH9YJfTAyGR6Ra/KQAzZ J4zC7MaRZMWLPfFWbTcH0EAo4qCoMNhvE61+VYT+1cm5StQLsysnOFXi0GG+O7nh rnzZDiCNZoIfsPxFbvCl/nqg7cXBVGbzScAsqSuhk7Gt1Y9SYLI69xfjk5C/Smvv XhG6e/k9NL3bhwsNIhvt2ZaOGyYQsDvxcHosbN/xl7/6coLwQkwoO1ysIaw= -----END CERTIFICATE-----Generated at Wed Aug 20 10:47:58 2025 by rpki-client