$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b87b1635-006a-405d-b6c6-d32ebea9ae0f.roa File: b87b1635-006a-405d-b6c6-d32ebea9ae0f.roa (raw, json) Hash identifier: iomQewtZ26CxcXjJ7M5oyjZ0UNkULawKjHNqtyaLC9Y= Subject key identifier: 41:61:77:48:B3:B9:6F:F8:5F:B2:4C:D8:0C:AF:64:A0:42:EC:5B:82 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5992C0B87B69A101DF27446B0AAD5887CCEFF524 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b87b1635-006a-405d-b6c6-d32ebea9ae0f.roa Signing time: Tue 19 Aug 2025 16:50:44 +0000 ROA not before: Tue 19 Aug 2025 16:50:44 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:92:c0:b8:7b:69:a1:01:df:27:44:6b:0a:ad:58:87:cc:ef:f5:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:50:44 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=35c48e8bb78756af94b6c8db89fb196593cdae73f423af19e7be716204930f3a, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e5:9b:36:8a:5d:83:52:85:66:42:bc:54:52: 65:4c:84:05:dc:71:75:b2:96:9e:66:49:64:e8:12: 6d:1c:2a:d4:8c:d3:f3:34:89:74:89:53:e7:d5:5e: 02:cb:01:51:e7:2f:d3:13:76:4e:dd:59:34:4c:a1: d6:70:d8:6a:95:fa:de:89:a7:10:19:2c:4d:89:5e: ba:a1:6d:6e:8f:d7:c7:b9:e2:2f:f4:4a:b1:16:a5: 96:50:d3:b8:6c:df:e4:90:2b:16:6b:09:cd:91:c9: 5b:51:e5:e4:ae:f1:3f:7c:74:1f:4c:c6:43:0c:27: 25:2b:91:b5:90:4f:bc:f1:a1:6f:ef:30:83:ed:c2: ae:84:a8:58:47:02:f9:81:27:8b:e6:bb:90:d2:d1: 3b:fe:51:2f:05:b8:9e:79:70:2f:2f:d6:d5:f2:e9: 09:f3:c8:2b:91:9e:49:b0:50:a2:68:fb:90:6e:32: 65:eb:53:bf:44:cc:27:bd:23:66:f0:f5:c0:91:cf: d0:69:f6:50:4e:bc:62:3f:e5:2e:68:0e:a4:af:dd: 4f:65:77:ce:e2:08:83:79:d1:d5:b7:94:99:e6:c9: d9:da:70:60:7c:93:a5:ce:cf:28:9f:6e:6c:f4:67: fb:a1:00:97:71:dd:d8:89:58:8f:95:c9:e0:4e:22: 85:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:61:77:48:B3:B9:6F:F8:5F:B2:4C:D8:0C:AF:64:A0:42:EC:5B:82 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b87b1635-006a-405d-b6c6-d32ebea9ae0f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.112.0/22 Signature Algorithm: sha256WithRSAEncryption 55:42:be:61:bd:58:45:a8:b0:60:19:16:e3:92:03:54:9c:30: 59:2f:8c:7e:dc:df:69:57:c5:e9:89:b6:bb:a6:55:12:a6:97: 78:e1:d8:38:a9:c8:43:00:47:dd:f9:b1:bb:80:45:1e:bf:23: 32:d1:13:b8:98:8c:c6:ad:ed:ed:b4:60:85:f0:4b:44:30:07: 51:5e:3f:29:8d:99:d6:e2:8c:31:8a:44:4c:a3:ae:af:10:5e: 24:70:cb:41:b4:e6:f0:b9:26:e6:aa:ee:9f:8d:9d:53:5e:1f: ff:0c:36:9b:4f:7f:f6:09:f2:b1:9c:cd:b8:cc:7e:f5:b4:f4: 87:a8:64:03:aa:ca:c1:7d:3d:34:e7:b4:4f:e4:69:47:17:6d: ca:e4:0a:85:07:48:5f:9d:82:a3:8a:4c:fd:04:57:81:54:f6: b3:88:dd:f8:e4:93:e4:2f:c2:e0:14:eb:4f:4c:0b:b1:c5:6b: 87:75:c7:cf:40:34:95:40:fb:9c:23:cc:1e:25:ae:75:58:21: b4:36:6d:d4:c5:7f:e3:18:7f:e2:24:0e:2f:ee:a3:4b:cf:c9: e0:12:e2:08:bb:cd:c7:74:b9:50:71:48:5b:3e:d5:bd:4f:0c: 63:af:d3:34:8f:41:05:06:88:24:2d:6d:d3:77:14:89:ad:17: 9e:3f:8f:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWZLAuHtpoQHfJ0RrCq1Yh8zv9SQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY1MDQ0WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWM0OGU4YmI3ODc1NmFmOTRiNmM4ZGI4OWZiMTk2NTkz Y2RhZTczZjQyM2FmMTllN2JlNzE2MjA0OTMwZjNhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI5Zs2il2DUoVmQrxUUmVMhAXccXWylp5mSWToEm0cKtSM 0/M0iXSJU+fVXgLLAVHnL9MTdk7dWTRModZw2GqV+t6JpxAZLE2JXrqhbW6P18e5 4i/0SrEWpZZQ07hs3+SQKxZrCc2RyVtR5eSu8T98dB9MxkMMJyUrkbWQT7zxoW/v MIPtwq6EqFhHAvmBJ4vmu5DS0Tv+US8FuJ55cC8v1tXy6QnzyCuRnkmwUKJo+5Bu MmXrU79EzCe9I2bw9cCRz9Bp9lBOvGI/5S5oDqSv3U9ld87iCIN50dW3lJnmydna cGB8k6XOzyifbmz0Z/uhAJdx3diJWI+VyeBOIoXzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQWF3SLO5b/hfskzYDK9koELsW4IwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2I4N2IxNjM1LTAwNmEtNDA1ZC1iNmM2LWQzMmViZWE5YWUwZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYHAwDQYJKoZIhvcNAQELBQADggEBAFVCvmG9WEWosGAZFuOSA1ScMFkv jH7c32lXxemJtrumVRKml3jh2DipyEMAR935sbuARR6/IzLRE7iYjMat7e20YIXw S0QwB1FePymNmdbijDGKREyjrq8QXiRwy0G05vC5Juaq7p+NnVNeH/8MNptPf/YJ 8rGczbjMfvW09IeoZAOqysF9PTTntE/kaUcXbcrkCoUHSF+dgqOKTP0EV4FU9rOI 3fjkk+QvwuAU609MC7HFa4d1x89ANJVA+5wjzB4lrnVYIbQ2bdTFf+MYf+IkDi/u o0vPyeAS4gi7zcd0uVBxSFs+1b1PDGOv0zSPQQUGiCQtbdN3FImtF54/j8E= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:44 2025 by rpki-client