$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/de89b5cc-8cd4-4206-884c-189b4133f8da.roa File: de89b5cc-8cd4-4206-884c-189b4133f8da.roa (raw, json) Hash identifier: TXvqcCMvNXocf5CjEVU7mAWFpcbozFbhpar3rOGlNAs= Subject key identifier: 55:45:37:C7:36:16:6A:DF:B7:A8:1B:48:B8:52:3F:CD:2D:57:3F:F4 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4D13ECC7C59C0C14789669648C57C238438F7AF8 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/de89b5cc-8cd4-4206-884c-189b4133f8da.roa Signing time: Tue 19 Aug 2025 16:40:23 +0000 ROA not before: Tue 19 Aug 2025 16:40:23 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:13:ec:c7:c5:9c:0c:14:78:96:69:64:8c:57:c2:38:43:8f:7a:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:23 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=cf7dafd12009bb663be022e44c9f549f05f408ebbe2bc1ea84addea4e8cd294d, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:4a:c2:af:a8:45:c3:62:50:a4:a4:8a:ec:85: 39:4d:87:78:12:15:c3:33:8b:80:77:18:06:4f:05: 89:5f:ba:f8:a8:87:e5:4f:9b:2b:eb:69:6a:00:1c: be:a4:08:e4:8b:62:2e:21:de:b8:81:4e:c8:e6:a7: 41:df:87:c9:61:48:b7:a5:a8:8f:87:c6:76:95:19: ca:a0:68:58:97:cb:9e:cf:14:4b:dc:f8:48:94:e2: ae:0d:91:1e:db:41:73:1e:12:af:86:9b:fb:c3:64: c9:b6:69:d5:ee:2a:a2:ae:a3:c7:a4:c7:29:18:fb: 6e:26:7e:cc:1e:d4:2f:11:a6:a0:3b:01:45:e2:bb: 9e:5c:4c:33:9c:2c:e3:89:2a:8b:8c:bd:e4:10:82: a8:d3:01:b3:82:49:c2:38:52:87:a5:b1:4c:9d:48: cb:71:76:62:91:7f:52:bc:b9:ea:e8:ac:b5:ab:51: b9:44:cd:8c:f9:46:17:2e:a8:9f:9f:70:65:a7:e4: 3d:ea:33:10:1f:85:20:6d:b4:fd:08:c6:6d:13:b7: 2b:2e:59:c0:1d:bb:2b:59:f1:70:f1:64:ae:4f:4f: bb:ac:ab:80:81:0f:ad:9c:64:a7:8f:5e:e9:0f:2a: 6b:0d:7c:24:ba:aa:b5:24:b5:57:a3:86:26:1e:c9: 5a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:45:37:C7:36:16:6A:DF:B7:A8:1B:48:B8:52:3F:CD:2D:57:3F:F4 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/de89b5cc-8cd4-4206-884c-189b4133f8da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.255.0/24 Signature Algorithm: sha256WithRSAEncryption 97:d9:10:c3:7f:40:df:52:56:6b:82:f7:39:be:ab:86:4e:a4: e4:b4:55:db:53:29:6b:5e:9a:55:f5:61:69:16:6d:02:a8:43: ac:fa:53:89:fd:59:fc:9a:1e:56:78:07:86:92:9e:01:66:91: 57:fe:fe:18:f3:74:f5:df:02:7b:4b:44:55:05:a3:8d:9f:ae: 61:41:a0:36:6e:af:0d:53:3a:28:17:43:15:8f:d9:c1:3c:8a: b5:b6:47:32:1e:94:ae:e1:2f:1c:9f:51:8f:c7:8f:3c:44:7e: 5f:0e:c5:89:50:97:41:5c:d2:d8:a9:7c:74:0c:9f:cc:dc:ce: fb:d7:47:5d:1e:68:e3:20:59:d7:c3:73:79:41:50:4d:67:99: 34:fd:0c:af:65:fc:4f:b2:ab:e1:c4:c2:e2:25:2f:a0:a6:ef: 65:e8:72:1a:38:af:d9:87:46:a5:db:72:97:eb:50:f3:a8:3d: 98:f7:0c:77:ea:4a:fb:34:7b:ce:c0:7e:b7:ae:e7:52:61:b4: b5:22:08:5f:e5:42:65:98:53:72:fc:0f:65:0b:5b:5a:11:99: 77:35:8a:f3:1b:5a:15:a4:cf:30:fb:eb:75:2b:93:7a:d6:4d: 2e:fb:6e:cc:8e:bf:c4:7f:3a:3b:1b:2f:3c:da:5c:34:2a:5a: 34:5a:f5:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTRPsx8WcDBR4lmlkjFfCOEOPevgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDIzWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjdkYWZkMTIwMDliYjY2M2JlMDIyZTQ0YzlmNTQ5ZjA1 ZjQwOGViYmUyYmMxZWE4NGFkZGVhNGU4Y2QyOTRkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdSsKvqEXDYlCkpIrshTlNh3gSFcMzi4B3GAZPBYlfuvio h+VPmyvraWoAHL6kCOSLYi4h3riBTsjmp0Hfh8lhSLelqI+HxnaVGcqgaFiXy57P FEvc+EiU4q4NkR7bQXMeEq+Gm/vDZMm2adXuKqKuo8ekxykY+24mfswe1C8RpqA7 AUXiu55cTDOcLOOJKouMveQQgqjTAbOCScI4UoelsUydSMtxdmKRf1K8uerorLWr UblEzYz5RhcuqJ+fcGWn5D3qMxAfhSBttP0Ixm0TtysuWcAduytZ8XDxZK5PT7us q4CBD62cZKePXukPKmsNfCS6qrUktVejhiYeyVonAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVUU3xzYWat+3qBtIuFI/zS1XP/QwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RlODliNWNjLThjZDQtNDIwNi04ODRjLTE4OWI0MTMzZjhkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYP8wDQYJKoZIhvcNAQELBQADggEBAJfZEMN/QN9SVmuC9zm+q4ZOpOS0 VdtTKWtemlX1YWkWbQKoQ6z6U4n9WfyaHlZ4B4aSngFmkVf+/hjzdPXfAntLRFUF o42frmFBoDZurw1TOigXQxWP2cE8irW2RzIelK7hLxyfUY/HjzxEfl8OxYlQl0Fc 0tipfHQMn8zczvvXR10eaOMgWdfDc3lBUE1nmTT9DK9l/E+yq+HEwuIlL6Cm72Xo cho4r9mHRqXbcpfrUPOoPZj3DHfqSvs0e87Afreu51JhtLUiCF/lQmWYU3L8D2UL W1oRmXc1ivMbWhWkzzD763Urk3rWTS77bsyOv8R/OjsbLzzaXDQqWjRa9ek= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:40 2025 by rpki-client