$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bb137ef6-15e7-4d0d-9872-00d472b0776b.roa File: bb137ef6-15e7-4d0d-9872-00d472b0776b.roa (raw, json) Hash identifier: ZHxgOljcnGm67Loa54Tf7xYOA+5HrF3d2tTI7NxB96M= Subject key identifier: F8:CA:60:00:D1:06:6F:CC:86:97:68:5A:7D:86:BD:53:CE:E2:F9:19 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0ACB1CD4247247E93D4E640A5740D076B56473B7 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bb137ef6-15e7-4d0d-9872-00d472b0776b.roa Signing time: Tue 19 Aug 2025 16:50:46 +0000 ROA not before: Tue 19 Aug 2025 16:50:46 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:cb:1c:d4:24:72:47:e9:3d:4e:64:0a:57:40:d0:76:b5:64:73:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:50:46 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=47a64de1c86aca6041b6d1c19008da4592a6b04c34cb4ec90044b97e8fac005b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:99:e9:77:43:51:b9:da:48:65:8d:67:3f:13: 6c:7a:ca:99:b2:34:00:f9:8d:3d:bb:16:56:da:77: 76:8c:e9:d1:5f:ad:bf:b8:59:99:63:10:75:34:05: 54:07:ac:48:4d:64:66:8d:84:b1:70:d9:3c:d1:d1: 54:5a:3d:04:73:f8:f2:4c:b7:be:07:ac:65:e3:73: cf:05:74:0a:5b:51:77:60:4e:96:e1:3b:8a:f5:f2: 41:d5:4d:32:88:29:15:f4:d8:09:00:d6:36:e5:92: d4:88:01:7c:64:91:a2:6c:1e:09:44:85:f7:a7:96: ea:ba:07:34:c0:3c:c0:d0:31:de:ae:b4:25:4e:4e: be:0c:d1:3f:ad:4f:4e:ed:17:1b:0b:c3:aa:26:c4: 04:a8:bf:d8:c3:01:36:5c:72:8c:15:ea:a2:f6:34: b6:78:d0:4f:70:8a:21:12:65:82:85:64:cc:6e:ee: 42:c9:81:4c:e3:19:ac:7e:e1:98:bb:e0:b9:16:68: 32:72:67:bc:7b:22:ec:9a:7d:1f:31:f5:ff:f6:e6: b3:3c:15:3f:6c:6b:fb:67:27:99:72:ac:6a:4c:45: d4:fe:2c:67:b2:86:9e:04:ad:71:5b:62:1e:49:64: db:68:c0:27:a6:9f:79:1e:5a:d4:52:d3:c6:6d:5f: 2d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:CA:60:00:D1:06:6F:CC:86:97:68:5A:7D:86:BD:53:CE:E2:F9:19 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bb137ef6-15e7-4d0d-9872-00d472b0776b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.60.0/22 Signature Algorithm: sha256WithRSAEncryption 91:75:42:d2:d9:9b:3f:b5:09:8d:f3:ab:4e:05:fe:c5:60:10: 37:5a:f6:7d:0d:c7:b0:8c:f5:68:40:0f:60:4e:13:8b:79:97: a1:b6:b7:8a:40:0b:39:b8:cc:d9:5f:67:b0:c4:e4:3b:8a:4f: 49:8d:7a:44:46:2a:a3:f3:97:be:bb:2b:3f:09:ec:6d:87:07: 1f:04:7e:79:57:96:36:54:0b:bf:67:b6:57:44:c7:c9:1a:07: a8:39:8a:24:b8:ad:15:5f:28:e6:f7:53:8f:fd:57:5c:fb:48: 6a:49:01:2c:d2:3b:1f:d2:02:ff:d8:94:4e:f1:f3:a0:9b:ce: 74:96:28:bf:50:03:32:da:a6:f6:86:94:bc:5e:cd:b3:69:72: 76:82:a1:de:90:d5:11:c4:de:57:de:f5:0b:ce:65:4a:4a:74: 66:75:35:39:66:2c:fc:70:c7:eb:30:d3:03:63:b7:fd:54:dc: e3:7b:ae:90:b2:c6:c9:b5:e5:dc:31:73:14:fd:8f:c3:8e:bc: e7:f7:f1:94:01:fd:bf:e5:ae:4b:88:13:24:f8:46:2a:9d:ad: da:3b:44:0f:e4:fe:9b:89:14:fe:7a:90:ee:3b:f6:b8:1f:d0: bc:a6:df:db:4e:ad:fe:6d:de:57:cf:3b:fd:5f:4d:81:12:35: d9:8e:a2:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCssc1CRyR+k9TmQKV0DQdrVkc7cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY1MDQ2WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2E2NGRlMWM4NmFjYTYwNDFiNmQxYzE5MDA4ZGE0NTky YTZiMDRjMzRjYjRlYzkwMDQ0Yjk3ZThmYWMwMDViMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3mel3Q1G52khljWc/E2x6ypmyNAD5jT27Flbad3aM6dFf rb+4WZljEHU0BVQHrEhNZGaNhLFw2TzR0VRaPQRz+PJMt74HrGXjc88FdApbUXdg TpbhO4r18kHVTTKIKRX02AkA1jblktSIAXxkkaJsHglEhfenluq6BzTAPMDQMd6u tCVOTr4M0T+tT07tFxsLw6omxASov9jDATZccowV6qL2NLZ40E9wiiESZYKFZMxu 7kLJgUzjGax+4Zi74LkWaDJyZ7x7IuyafR8x9f/25rM8FT9sa/tnJ5lyrGpMRdT+ LGeyhp4ErXFbYh5JZNtowCemn3keWtRS08ZtXy0ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+MpgANEGb8yGl2hafYa9U87i+RkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2JiMTM3ZWY2LTE1ZTctNGQwZC05ODcyLTAwZDQ3MmIwNzc2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYDwwDQYJKoZIhvcNAQELBQADggEBAJF1QtLZmz+1CY3zq04F/sVgEDda 9n0Nx7CM9WhAD2BOE4t5l6G2t4pACzm4zNlfZ7DE5DuKT0mNekRGKqPzl767Kz8J 7G2HBx8EfnlXljZUC79ntldEx8kaB6g5iiS4rRVfKOb3U4/9V1z7SGpJASzSOx/S Av/YlE7x86CbznSWKL9QAzLapvaGlLxezbNpcnaCod6Q1RHE3lfe9QvOZUpKdGZ1 NTlmLPxwx+sw0wNjt/1U3ON7rpCyxsm15dwxcxT9j8OOvOf38ZQB/b/lrkuIEyT4 Riqdrdo7RA/k/puJFP56kO479rgf0Lym39tOrf5t3lfPO/1fTYESNdmOouY= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:21 2025 by rpki-client