$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a72ebb99-aece-49aa-9f29-1f0286b84f4a.roa File: a72ebb99-aece-49aa-9f29-1f0286b84f4a.roa (raw, json) Hash identifier: nzwb+FeD/R1Q/wtSDd7jHfefnd+bq7qiDQNgv2ydryI= Subject key identifier: 76:49:EF:5F:08:86:43:49:25:E5:C5:ED:EE:15:39:E2:2A:C4:CD:4C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 63F6894B8F90F4E6477E8BDF5A8D48E1B03052D0 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a72ebb99-aece-49aa-9f29-1f0286b84f4a.roa Signing time: Fri 04 Jul 2025 18:30:22 +0000 ROA not before: Fri 04 Jul 2025 18:30:22 +0000 ROA not after: Fri 08 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:f6:89:4b:8f:90:f4:e6:47:7e:8b:df:5a:8d:48:e1:b0:30:52:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 4 18:30:22 2025 GMT Not After : Aug 8 23:59:59 2025 GMT Subject: serialNumber=34a28cbf68fa5a0f8774de947bdeacbf13305e40dc440cba52b2582d5c9fa27b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:86:7d:38:12:90:07:4a:80:c1:2b:91:48:ba: c5:18:ef:b7:e9:3d:c9:01:72:16:0f:96:1e:02:5d: 4e:57:ab:8a:da:1d:2b:af:83:1a:e5:a0:60:66:71: 25:6f:d4:8c:4f:c7:51:c1:b0:71:de:cf:50:ba:5d: 8b:63:37:c6:1b:9b:b9:e6:e0:f5:89:4f:61:5d:0e: 6e:e3:e2:b4:7d:aa:d4:c1:71:cf:87:5e:74:90:81: c8:cb:11:0b:1a:bc:62:83:7a:24:a8:8d:95:87:68: d2:a9:6a:9f:eb:ad:c3:58:95:7f:33:a3:1e:97:97: 4f:62:97:3d:80:a7:e6:b2:93:17:91:96:aa:5f:09: 5e:7e:d2:f7:bd:50:3f:56:f6:70:87:a1:3d:4c:ae: 18:f9:99:26:1d:5f:29:ef:7a:19:cc:1f:8b:57:ab: f3:19:8b:62:8b:7e:f3:eb:49:5a:24:28:a0:77:db: 95:85:e4:31:5e:45:47:44:2d:00:40:fa:e4:ee:f2: 5f:c9:6d:5e:b0:e0:3e:45:c9:7d:ee:6b:9e:29:0d: 5b:31:40:e8:b1:be:af:17:5c:d7:9a:96:55:d2:19: a3:d0:2e:31:79:42:c9:b0:8a:3b:2e:a4:e4:d7:73: 5d:9b:f5:07:fb:7d:6a:02:f8:f5:e4:b9:31:5b:0b: 73:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:49:EF:5F:08:86:43:49:25:E5:C5:ED:EE:15:39:E2:2A:C4:CD:4C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a72ebb99-aece-49aa-9f29-1f0286b84f4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.40.0/24 Signature Algorithm: sha256WithRSAEncryption 46:5c:3d:2d:06:29:6b:0b:fa:c3:2e:3b:1a:eb:67:c2:52:7e: c2:48:fc:d0:65:a8:76:7e:32:68:fa:fb:d1:8a:c4:66:b5:c5: 20:23:aa:cc:41:fa:ad:bc:f6:92:f6:3f:11:3e:93:46:fa:23: 75:56:8d:50:ad:4e:f3:d5:2c:65:f0:bb:d5:3a:82:d6:f1:0d: dc:2e:6d:d3:3b:8f:12:2e:28:82:80:57:4d:8d:1a:c8:4f:37: a3:83:5b:f0:4e:13:85:ff:6a:ab:42:e1:11:d8:8d:f7:96:60: 9c:07:08:f0:52:37:f5:55:08:1f:9c:78:46:b4:7d:a6:c8:19: 0b:31:0e:4b:3d:c6:73:78:ff:43:4e:f9:90:aa:8c:fe:6a:7f: 5b:03:03:7a:14:59:c0:d6:2a:62:fe:4e:18:6c:38:8c:ff:d7: b2:2d:67:45:ed:05:95:1a:d6:6d:f6:36:0e:85:03:dc:03:ec: 2f:10:2f:5d:8d:b1:ef:3b:be:39:e8:b7:cf:5a:fe:f6:e6:24: f5:6d:a8:90:92:af:c0:0c:2d:59:15:bb:c8:5e:a4:39:d5:8d: a7:52:86:a7:09:3b:fe:fb:fd:99:59:0a:94:c3:46:f2:9d:35: f5:a8:21:de:13:8a:cb:65:12:fd:44:16:40:f9:5a:07:96:b6: 2d:60:16:5b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY/aJS4+Q9OZHfovfWo1I4bAwUtAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzA0MTgzMDIyWhcNMjUwODA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNGEyOGNiZjY4ZmE1YTBmODc3NGRlOTQ3YmRlYWNiZjEz MzA1ZTQwZGM0NDBjYmE1MmIyNTgyZDVjOWZhMjdiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzhn04EpAHSoDBK5FIusUY77fpPckBchYPlh4CXU5Xq4ra HSuvgxrloGBmcSVv1IxPx1HBsHHez1C6XYtjN8Ybm7nm4PWJT2FdDm7j4rR9qtTB cc+HXnSQgcjLEQsavGKDeiSojZWHaNKpap/rrcNYlX8zox6Xl09ilz2Ap+aykxeR lqpfCV5+0ve9UD9W9nCHoT1Mrhj5mSYdXynvehnMH4tXq/MZi2KLfvPrSVokKKB3 25WF5DFeRUdELQBA+uTu8l/JbV6w4D5FyX3ua54pDVsxQOixvq8XXNeallXSGaPQ LjF5QsmwijsupOTXc12b9Qf7fWoC+PXkuTFbC3P9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdknvXwiGQ0kl5cXt7hU54irEzUwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2E3MmViYjk5LWFlY2UtNDlhYS05ZjI5LTFmMDI4NmI4NGY0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCgwDQYJKoZIhvcNAQELBQADggEBAEZcPS0GKWsL+sMuOxrrZ8JSfsJI /NBlqHZ+Mmj6+9GKxGa1xSAjqsxB+q289pL2PxE+k0b6I3VWjVCtTvPVLGXwu9U6 gtbxDdwubdM7jxIuKIKAV02NGshPN6ODW/BOE4X/aqtC4RHYjfeWYJwHCPBSN/VV CB+ceEa0fabIGQsxDks9xnN4/0NO+ZCqjP5qf1sDA3oUWcDWKmL+ThhsOIz/17It Z0XtBZUa1m32Ng6FA9wD7C8QL12Nse87vjnot89a/vbmJPVtqJCSr8AMLVkVu8he pDnVjadShqcJO/77/ZlZCpTDRvKdNfWoId4TistlEv1EFkD5WgeWti1gFls= -----END CERTIFICATE-----Generated at Sun Jul 6 08:50:58 2025 by rpki-client