$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f9e50d68-b0c9-485d-9221-bde42a68abe9.roa File: f9e50d68-b0c9-485d-9221-bde42a68abe9.roa (raw, json) Hash identifier: oxU8ZJv3pXXPSW0ITiHTCsZtVCEBYrrgzQXO7L29ehg= Subject key identifier: B8:DD:9C:8E:EF:94:16:AE:53:FF:9B:7B:E3:F9:45:C4:7A:C0:30:5B Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 31CC0BD22CD01B55342C73DFCECB9F69DE27D12D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f9e50d68-b0c9-485d-9221-bde42a68abe9.roa Signing time: Tue 19 Aug 2025 16:50:36 +0000 ROA not before: Tue 19 Aug 2025 16:50:36 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:cc:0b:d2:2c:d0:1b:55:34:2c:73:df:ce:cb:9f:69:de:27:d1:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:50:36 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=d5f7de6154d73d54ee35f73abd767717e850b0f6b55f1dd2526a175889aacda4, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c9:f9:ec:fb:04:2c:a2:41:9f:65:6c:14:41: dc:19:61:07:f2:ec:5f:1e:cd:84:3a:cc:3f:74:e2: 6b:e8:e5:c1:c3:1b:3e:ba:62:70:1b:f8:d2:9d:b6: ca:8a:07:f6:98:ae:c3:a9:27:b1:62:05:f6:6f:ae: 0d:20:31:a4:4e:c2:c7:ca:54:02:d4:86:d7:81:4e: 65:0c:a3:31:45:cc:a7:e7:4d:dc:dc:fb:ef:a9:ea: 68:e9:de:01:56:9c:24:a1:03:9e:7b:84:bc:e5:1b: 4d:8c:63:a3:dd:cd:93:b2:dc:58:14:fa:cf:5a:c4: e4:07:df:07:f9:61:e4:44:82:71:39:50:e4:75:82: 12:c9:d0:eb:9a:16:03:f9:d7:85:76:38:45:fa:aa: e8:74:2e:aa:dd:b9:4b:e4:01:d7:0f:6d:93:27:a4: f5:3e:ca:5d:89:45:8c:da:f9:e7:25:d1:80:3c:13: 99:9c:d8:e4:0d:ea:71:27:78:41:c5:0e:2b:0e:15: 52:a4:2c:33:73:7a:ed:41:af:d7:c4:aa:2e:e1:7f: 47:79:13:30:a4:1d:db:89:26:3b:76:9f:1f:99:24: 39:70:52:ef:4a:cb:49:5d:76:9f:ff:2e:ad:7a:76: 3c:88:f1:87:7b:78:d5:ea:b4:e2:16:a0:e0:09:c3: d3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:DD:9C:8E:EF:94:16:AE:53:FF:9B:7B:E3:F9:45:C4:7A:C0:30:5B X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f9e50d68-b0c9-485d-9221-bde42a68abe9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.64.0/20 Signature Algorithm: sha256WithRSAEncryption 51:4c:99:da:b8:6b:32:a6:75:2f:70:d4:1c:33:fc:cb:19:be: 0e:51:4f:7c:df:d1:5d:29:2f:37:a1:45:5b:ec:17:1e:4b:db: 37:9a:8c:4b:b5:71:8f:5f:4d:4c:79:1a:38:b0:a1:77:14:78: fb:78:23:72:9d:d8:bf:a5:f6:f8:0c:fe:a4:49:68:06:f6:41: 0c:04:e6:9c:9c:69:cc:89:ac:0f:c8:0f:a2:bd:e7:e2:ae:96: 70:e0:2f:57:22:0d:3f:2c:3c:93:d7:8d:77:f0:c8:2b:20:b4: 03:92:f0:8e:67:e1:eb:d5:aa:ba:90:01:ec:6a:c5:6b:9a:3f: dc:c9:27:3f:ad:7c:ee:3f:00:65:96:0a:b2:0c:bb:c1:0e:a7: dc:c7:50:d3:d5:1a:5e:f0:12:53:18:c1:a7:7a:b5:43:33:30: 38:32:d2:c2:c3:75:e7:7e:99:e9:16:46:76:5c:cc:6d:41:8a: b3:43:d9:d2:40:f2:38:af:6c:4d:8f:8a:cb:e7:bd:60:36:b2: 1d:ff:27:7f:28:fd:0d:10:6e:cc:a2:d6:b4:3e:af:c0:38:14: b1:7d:e4:cc:85:18:ee:1f:f7:48:ba:7f:5d:df:a2:61:3f:9c: 47:4f:d2:a7:a5:95:ad:d7:00:35:7a:7a:f6:fa:92:67:74:93: dc:49:e1:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMcwL0izQG1U0LHPfzsufad4n0S0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY1MDM2WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNWY3ZGU2MTU0ZDczZDU0ZWUzNWY3M2FiZDc2NzcxN2U4 NTBiMGY2YjU1ZjFkZDI1MjZhMTc1ODg5YWFjZGE0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCryfns+wQsokGfZWwUQdwZYQfy7F8ezYQ6zD904mvo5cHD Gz66YnAb+NKdtsqKB/aYrsOpJ7FiBfZvrg0gMaROwsfKVALUhteBTmUMozFFzKfn Tdzc+++p6mjp3gFWnCShA557hLzlG02MY6PdzZOy3FgU+s9axOQH3wf5YeREgnE5 UOR1ghLJ0OuaFgP514V2OEX6quh0LqrduUvkAdcPbZMnpPU+yl2JRYza+ecl0YA8 E5mc2OQN6nEneEHFDisOFVKkLDNzeu1Br9fEqi7hf0d5EzCkHduJJjt2nx+ZJDlw Uu9Ky0lddp//Lq16djyI8Yd7eNXqtOIWoOAJw9OZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuN2cju+UFq5T/5t74/lFxHrAMFswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2Y5ZTUwZDY4LWIwYzktNDg1ZC05MjIxLWJkZTQyYTY4YWJlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYEAwDQYJKoZIhvcNAQELBQADggEBAFFMmdq4azKmdS9w1Bwz/MsZvg5R T3zf0V0pLzehRVvsFx5L2zeajEu1cY9fTUx5GjiwoXcUePt4I3Kd2L+l9vgM/qRJ aAb2QQwE5pycacyJrA/ID6K95+KulnDgL1ciDT8sPJPXjXfwyCsgtAOS8I5n4evV qrqQAexqxWuaP9zJJz+tfO4/AGWWCrIMu8EOp9zHUNPVGl7wElMYwad6tUMzMDgy 0sLDded+mekWRnZczG1BirND2dJA8jivbE2PisvnvWA2sh3/J38o/Q0Qbsyi1rQ+ r8A4FLF95MyFGO4f90i6f13fomE/nEdP0qella3XADV6evb6kmd0k9xJ4fI= -----END CERTIFICATE-----Generated at Wed Aug 20 13:20:09 2025 by rpki-client