$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f106bd1f-1175-4eda-af94-f788dab09805.roa File: f106bd1f-1175-4eda-af94-f788dab09805.roa (raw, json) Hash identifier: tZj+Log5YdVqgNbFb+px/3VCb4y1bHhfSJeHKCj1+fM= Subject key identifier: 37:2A:42:8C:B1:AC:D4:F5:F4:66:17:55:D6:F9:F8:B9:D8:25:8E:44 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3FAFC43E9A66A879746B2D098B38918B33D771AD Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f106bd1f-1175-4eda-af94-f788dab09805.roa Signing time: Fri 04 Jul 2025 18:20:16 +0000 ROA not before: Fri 04 Jul 2025 18:20:16 +0000 ROA not after: Fri 08 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:af:c4:3e:9a:66:a8:79:74:6b:2d:09:8b:38:91:8b:33:d7:71:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 4 18:20:16 2025 GMT Not After : Aug 8 23:59:59 2025 GMT Subject: serialNumber=a1edbd1f9530664f5014adce184495aff7e832c05f1b31559dae31f4637eecbd, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1c:bd:0d:0f:9b:f4:ee:3c:51:83:96:26:83: 31:ae:44:fd:74:82:af:f1:ca:d4:a6:b1:92:58:0a: cb:b6:86:58:6c:09:b6:a5:4f:54:bb:a0:71:8f:cf: 85:44:72:d5:47:f5:05:d7:61:f9:4a:6b:2c:f3:8e: 27:24:04:19:9e:73:a2:7a:a5:0f:a9:4e:56:33:16: f7:5c:8c:36:67:bc:8a:88:62:01:e6:42:5e:1c:a7: 9c:8b:89:a7:dd:db:83:0e:3b:a0:06:86:69:7d:9a: a6:cf:f6:cc:15:67:b2:a5:4a:d1:ac:36:13:c8:e8: 0e:76:5f:89:97:29:2f:6e:04:f3:ac:e7:6a:8a:ef: 5e:d4:ae:d8:ca:0d:ab:11:cf:af:d3:3a:54:11:d7: 77:8a:fa:25:3f:62:00:b7:0b:ac:60:a8:46:16:24: 75:f1:53:4b:fe:b4:51:06:50:47:e3:67:a1:3a:a2: 52:7f:de:c6:b4:0e:7d:22:ef:31:65:73:54:a4:ad: c0:f0:6a:95:49:12:fb:a1:87:ad:80:f6:3f:1a:ca: 68:e0:e6:62:72:32:c2:ed:60:50:27:0d:58:25:24: 77:8e:8b:c1:9a:5f:4d:7f:3c:17:01:4c:be:81:f8: fd:cc:73:6a:96:c5:a8:c1:10:48:e4:98:69:2c:da: 25:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:2A:42:8C:B1:AC:D4:F5:F4:66:17:55:D6:F9:F8:B9:D8:25:8E:44 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f106bd1f-1175-4eda-af94-f788dab09805.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.37.0/24 Signature Algorithm: sha256WithRSAEncryption 05:04:3a:a3:74:3a:c9:1e:66:84:81:c4:32:4f:76:0b:0b:39: 37:dd:75:c1:12:9b:26:5a:0f:41:e7:1b:b6:5a:ff:45:76:8a: 4d:1e:85:d1:18:3f:6a:26:d6:5f:d8:09:e5:11:48:68:d1:0b: 1e:ba:fc:7e:be:b0:8d:e2:ac:6d:51:a2:06:e3:20:42:e5:06: cf:e6:18:34:30:23:c2:43:14:59:be:c1:37:78:1b:f9:1d:da: b8:b6:f7:48:2d:e9:87:48:2e:f3:c7:a6:58:00:e4:6e:81:53: 53:d0:a2:c0:d4:56:d8:34:6b:43:ef:4e:1d:d9:42:ff:bf:38: 6f:cf:87:b8:9e:b6:57:db:c9:b5:38:76:dc:f5:27:6f:a3:98: 31:41:6c:1b:2d:73:73:c0:1a:0c:0c:58:0e:26:24:5e:2a:f0: 22:f1:86:d8:8d:44:96:4c:f1:85:47:4c:63:6e:98:1f:40:33: 07:0c:9d:8c:a1:bc:29:9f:34:93:6c:04:90:4d:26:c3:38:eb: ea:7f:b2:31:3d:e3:ca:ac:ad:d3:4c:79:95:df:5b:4b:6f:af: 53:c8:ee:98:cc:17:6f:ea:51:88:70:c4:3a:4b:bf:eb:51:1d: 45:f0:ef:ca:e0:fc:45:c8:74:91:52:6d:5b:eb:4d:ec:62:54: 5f:d2:9d:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP6/EPppmqHl0ay0JiziRizPXca0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzA0MTgyMDE2WhcNMjUwODA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMWVkYmQxZjk1MzA2NjRmNTAxNGFkY2UxODQ0OTVhZmY3 ZTgzMmMwNWYxYjMxNTU5ZGFlMzFmNDYzN2VlY2JkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxHL0ND5v07jxRg5YmgzGuRP10gq/xytSmsZJYCsu2hlhs CbalT1S7oHGPz4VEctVH9QXXYflKayzzjickBBmec6J6pQ+pTlYzFvdcjDZnvIqI YgHmQl4cp5yLiafd24MOO6AGhml9mqbP9swVZ7KlStGsNhPI6A52X4mXKS9uBPOs 52qK717UrtjKDasRz6/TOlQR13eK+iU/YgC3C6xgqEYWJHXxU0v+tFEGUEfjZ6E6 olJ/3sa0Dn0i7zFlc1SkrcDwapVJEvuhh62A9j8aymjg5mJyMsLtYFAnDVglJHeO i8GaX01/PBcBTL6B+P3Mc2qWxajBEEjkmGks2iVVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNypCjLGs1PX0ZhdV1vn4udgljkQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2YxMDZiZDFmLTExNzUtNGVkYS1hZjk0LWY3ODhkYWIwOTgwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCUwDQYJKoZIhvcNAQELBQADggEBAAUEOqN0OskeZoSBxDJPdgsLOTfd dcESmyZaD0HnG7Za/0V2ik0ehdEYP2om1l/YCeURSGjRCx66/H6+sI3irG1Rogbj IELlBs/mGDQwI8JDFFm+wTd4G/kd2ri290gt6YdILvPHplgA5G6BU1PQosDUVtg0 a0PvTh3ZQv+/OG/Ph7ietlfbybU4dtz1J2+jmDFBbBstc3PAGgwMWA4mJF4q8CLx htiNRJZM8YVHTGNumB9AMwcMnYyhvCmfNJNsBJBNJsM46+p/sjE948qsrdNMeZXf W0tvr1PI7pjMF2/qUYhwxDpLv+tRHUXw78rg/EXIdJFSbVvrTexiVF/SnZ4= -----END CERTIFICATE-----Generated at Sun Jul 6 08:59:48 2025 by rpki-client