$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b87b1635-006a-405d-b6c6-d32ebea9ae0f.roa File: b87b1635-006a-405d-b6c6-d32ebea9ae0f.roa (raw, json) Hash identifier: AWfQAuqOLQZy7wcQkFQPPArCRcoyCgvqiYhYkOgvd/k= Subject key identifier: 3A:4B:31:AA:E3:D4:3C:D2:A3:A3:40:BF:35:DA:F5:42:83:45:E4:EB Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 51354AE6C62D9FD9D9467E06F75C3B15BED3C70E Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b87b1635-006a-405d-b6c6-d32ebea9ae0f.roa Signing time: Mon 30 Jun 2025 17:50:21 +0000 ROA not before: Mon 30 Jun 2025 17:50:21 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:35:4a:e6:c6:2d:9f:d9:d9:46:7e:06:f7:5c:3b:15:be:d3:c7:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:50:21 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=3e7255c08df49f25f4b799a89701d4d4c5de88f150955f88d8812a5ad4769f7f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2a:53:f4:66:6f:64:9f:f6:01:c4:26:75:16: ca:dd:f0:b4:f5:e1:38:81:40:e8:dc:ce:f8:84:63: 6b:94:e1:5e:44:22:8a:79:6e:13:9f:ca:25:90:22: a9:b9:37:fb:a2:65:c9:79:34:90:df:c7:7a:04:3b: 69:86:e3:ca:38:dc:91:f0:80:c5:b8:47:0a:46:58: 3d:01:98:e0:bc:46:a0:c6:7f:7f:d6:f9:58:91:49: 98:20:82:e6:a9:ee:44:e6:80:63:af:4d:b2:f4:d6: 58:56:bc:d3:94:3d:9e:7c:3d:60:22:07:4c:c1:60: 7d:71:ba:ab:4e:c5:44:be:16:40:b1:23:b2:ea:6a: 77:67:1a:34:28:c5:01:80:cb:a1:b2:d8:a1:50:e9: fb:3a:a0:04:4f:c7:8e:8b:ac:e1:89:7c:d4:32:fb: b3:d0:aa:1d:e7:50:08:b1:21:85:ed:8e:de:22:22: 4f:b9:90:21:c4:3d:cd:8b:0b:3e:ae:3a:95:b0:81: 66:eb:ea:9c:4e:1e:65:65:f7:7f:df:d3:a4:6a:f0: 51:02:84:3f:a1:80:32:84:5a:21:42:d1:94:86:55: cd:8d:7c:ba:34:25:91:ba:42:e7:e4:55:b6:af:9c: 54:99:c9:46:19:e0:9c:6e:ba:98:6f:e8:1d:9b:23: c0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:4B:31:AA:E3:D4:3C:D2:A3:A3:40:BF:35:DA:F5:42:83:45:E4:EB X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b87b1635-006a-405d-b6c6-d32ebea9ae0f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.112.0/22 Signature Algorithm: sha256WithRSAEncryption 84:8f:ea:81:f1:a5:bc:8a:45:6a:da:00:ce:6f:5a:4a:e5:7b: 56:05:8a:56:46:1f:2f:83:00:7f:25:64:ae:26:f2:eb:d2:0e: cb:c6:4e:57:e6:af:ee:ea:ba:ba:d6:0c:a1:58:04:9a:2a:a5: 35:6d:29:27:89:21:a5:04:99:38:64:88:09:c0:44:e9:63:00: 60:3f:b8:31:94:53:f6:e5:68:0c:70:8e:cf:7e:a9:d3:22:34: 3c:e7:5d:7b:64:d6:3a:05:73:94:ec:2b:85:26:b8:bf:ea:18: fe:cd:a6:75:a9:f4:6b:9b:f6:39:b8:70:17:eb:e2:04:76:fc: 4c:27:3c:7f:82:73:dc:91:58:f2:ec:37:27:ff:8b:32:29:8c: 20:68:90:59:3f:33:f4:c9:b7:79:b6:91:8c:af:4c:0b:fb:34: 63:c8:43:7a:95:e1:a8:41:5b:27:a7:8b:15:0c:e0:56:f7:04: a0:ee:20:e6:3b:80:71:14:92:f7:82:d2:cd:61:46:c6:f0:1f: 64:45:9b:d8:f9:81:5c:aa:89:21:fe:f6:c4:34:c4:32:36:53: 42:fc:82:9c:9b:6e:48:48:05:db:4d:85:1d:6f:af:4d:a9:3a: bb:15:5c:72:fc:d2:71:2f:c5:16:21:c3:a1:75:7d:68:40:56: 69:97:1a:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUTVK5sYtn9nZRn4G91w7Fb7Txw4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc1MDIxWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTcyNTVjMDhkZjQ5ZjI1ZjRiNzk5YTg5NzAxZDRkNGM1 ZGU4OGYxNTA5NTVmODhkODgxMmE1YWQ0NzY5ZjdmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSKlP0Zm9kn/YBxCZ1Fsrd8LT14TiBQOjczviEY2uU4V5E Iop5bhOfyiWQIqm5N/uiZcl5NJDfx3oEO2mG48o43JHwgMW4RwpGWD0BmOC8RqDG f3/W+ViRSZggguap7kTmgGOvTbL01lhWvNOUPZ58PWAiB0zBYH1xuqtOxUS+FkCx I7LqandnGjQoxQGAy6Gy2KFQ6fs6oARPx46LrOGJfNQy+7PQqh3nUAixIYXtjt4i Ik+5kCHEPc2LCz6uOpWwgWbr6pxOHmVl93/f06Rq8FEChD+hgDKEWiFC0ZSGVc2N fLo0JZG6QufkVbavnFSZyUYZ4Jxuuphv6B2bI8D3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOksxquPUPNKjo0C/Ndr1QoNF5OswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2I4N2IxNjM1LTAwNmEtNDA1ZC1iNmM2LWQzMmViZWE5YWUwZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYHAwDQYJKoZIhvcNAQELBQADggEBAISP6oHxpbyKRWraAM5vWkrle1YF ilZGHy+DAH8lZK4m8uvSDsvGTlfmr+7qurrWDKFYBJoqpTVtKSeJIaUEmThkiAnA ROljAGA/uDGUU/blaAxwjs9+qdMiNDznXXtk1joFc5TsK4UmuL/qGP7NpnWp9Gub 9jm4cBfr4gR2/EwnPH+Cc9yRWPLsNyf/izIpjCBokFk/M/TJt3m2kYyvTAv7NGPI Q3qV4ahBWyenixUM4Fb3BKDuIOY7gHEUkveC0s1hRsbwH2RFm9j5gVyqiSH+9sQ0 xDI2U0L8gpybbkhIBdtNhR1vr02pOrsVXHL80nEvxRYhw6F1fWhAVmmXGpY= -----END CERTIFICATE-----Generated at Tue Jul 1 01:22:59 2025 by rpki-client