$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fcabc937-df80-4df7-95c8-bde2ef225d55.roa File: fcabc937-df80-4df7-95c8-bde2ef225d55.roa (raw, json) Hash identifier: JDGPVzmvLB5rt4pVjGu3W0hR0ZSulYhTIa0nDpG6h7o= Subject key identifier: 3A:4E:2B:F9:07:C9:EC:76:70:B4:83:78:83:D8:1C:18:E3:0B:D1:E3 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3C8AD8BA14CBB8D051356DFE8F526A3A62951FB5 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fcabc937-df80-4df7-95c8-bde2ef225d55.roa Signing time: Tue 19 Aug 2025 16:50:32 +0000 ROA not before: Tue 19 Aug 2025 16:50:32 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:8a:d8:ba:14:cb:b8:d0:51:35:6d:fe:8f:52:6a:3a:62:95:1f:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:50:32 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=644e964a85cb49195ec927df8b420168aaae803ca9c8ab6a2ef190aaf4517611, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b9:08:eb:c6:0e:a2:bc:5f:60:e8:5f:86:fb: 72:1e:25:b1:1d:15:cd:5a:23:8d:4c:60:19:20:00: 18:53:41:8f:e7:52:fd:ba:f5:b8:61:54:ec:cb:0a: d6:42:71:99:fa:e1:53:d6:3b:b5:c2:7d:aa:42:84: eb:84:44:16:09:1b:ed:40:83:bd:ef:50:37:db:91: 89:aa:41:a3:86:e4:3b:3b:49:51:af:e0:f2:2b:62: b1:4a:e3:14:f3:36:aa:da:b8:7a:05:0e:e6:69:f6: c0:2a:66:20:f1:12:0e:34:08:aa:9f:b8:e7:26:77: d2:6d:59:fa:f5:35:8a:70:96:41:6e:40:48:da:5d: 78:78:66:15:18:94:57:ed:3c:99:71:64:b1:89:7e: 10:9e:59:ab:08:a5:75:b0:ff:3d:f6:78:6b:2d:1f: 27:7d:ab:77:7c:3d:0c:b9:a5:66:8f:cf:23:7d:66: ad:32:7a:73:b6:a4:9a:94:4c:23:79:18:0a:3a:8e: 84:66:58:5e:47:a4:34:36:42:18:e7:26:a3:3c:c4: 61:5b:e6:2e:86:9e:1a:78:ad:88:a4:83:27:e6:37: 6d:21:19:37:af:6b:25:a7:46:18:b0:28:83:dc:d8: ac:a2:3d:3e:6b:6f:c8:cf:e5:66:07:70:b4:b6:7e: a5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:4E:2B:F9:07:C9:EC:76:70:B4:83:78:83:D8:1C:18:E3:0B:D1:E3 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fcabc937-df80-4df7-95c8-bde2ef225d55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.48.0/20 Signature Algorithm: sha256WithRSAEncryption 3b:9c:e3:2a:94:cc:f9:49:3d:c2:74:58:fa:ae:d2:d2:0a:0c: 67:5c:ba:f5:88:6d:73:fd:30:e5:2e:d5:3e:36:92:17:86:56: ee:0b:51:63:2a:7f:56:e7:d1:66:94:96:2c:30:22:7a:1d:00: 09:7a:e5:45:11:e0:7c:42:c5:42:a2:c1:af:e6:88:f1:90:cb: 8e:2e:57:c1:d8:0e:8c:c0:f4:8a:e6:89:7d:3b:83:70:6d:37: 29:9f:d1:b0:09:39:07:ad:80:8f:66:ea:05:c4:f9:48:c4:83: fc:bc:e4:9a:cf:5a:8b:67:70:90:f8:c7:ce:fc:73:46:7d:e9: 51:c2:ec:7c:94:1c:94:4c:89:15:b3:13:d5:cd:20:69:a1:7e: 27:43:d6:43:ea:54:58:62:cf:6b:9e:44:08:4c:f8:13:ad:fd: 4d:5f:d6:e0:2d:3d:2e:b9:df:9b:a7:ed:0c:a2:fb:fb:2f:c7: cc:07:49:6a:72:57:1d:c2:9e:dc:65:27:d8:dc:25:e9:1d:a9: ae:43:c1:80:42:ec:d5:82:f5:3e:9d:79:1b:a8:ed:56:49:7e: 0e:f0:17:01:37:aa:29:e1:f2:68:eb:4d:f2:8c:f4:61:96:18: ae:f4:9c:b4:9b:6a:57:a3:6d:d3:1b:25:9d:0a:ac:f4:bc:4a: d2:df:92:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPIrYuhTLuNBRNW3+j1JqOmKVH7UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY1MDMyWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDRlOTY0YTg1Y2I0OTE5NWVjOTI3ZGY4YjQyMDE2OGFh YWU4MDNjYTljOGFiNmEyZWYxOTBhYWY0NTE3NjExMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCluQjrxg6ivF9g6F+G+3IeJbEdFc1aI41MYBkgABhTQY/n Uv269bhhVOzLCtZCcZn64VPWO7XCfapChOuERBYJG+1Ag73vUDfbkYmqQaOG5Ds7 SVGv4PIrYrFK4xTzNqrauHoFDuZp9sAqZiDxEg40CKqfuOcmd9JtWfr1NYpwlkFu QEjaXXh4ZhUYlFftPJlxZLGJfhCeWasIpXWw/z32eGstHyd9q3d8PQy5pWaPzyN9 Zq0yenO2pJqUTCN5GAo6joRmWF5HpDQ2QhjnJqM8xGFb5i6Gnhp4rYikgyfmN20h GTevayWnRhiwKIPc2KyiPT5rb8jP5WYHcLS2fqWNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOk4r+QfJ7HZwtIN4g9gcGOML0eMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2ZjYWJjOTM3LWRmODAtNGRmNy05NWM4LWJkZTJlZjIyNWQ1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYDAwDQYJKoZIhvcNAQELBQADggEBADuc4yqUzPlJPcJ0WPqu0tIKDGdc uvWIbXP9MOUu1T42kheGVu4LUWMqf1bn0WaUliwwInodAAl65UUR4HxCxUKiwa/m iPGQy44uV8HYDozA9IrmiX07g3BtNymf0bAJOQetgI9m6gXE+UjEg/y85JrPWotn cJD4x878c0Z96VHC7HyUHJRMiRWzE9XNIGmhfidD1kPqVFhiz2ueRAhM+BOt/U1f 1uAtPS6535un7Qyi+/svx8wHSWpyVx3CntxlJ9jcJekdqa5DwYBC7NWC9T6deRuo 7VZJfg7wFwE3qinh8mjrTfKM9GGWGK70nLSbalejbdMbJZ0KrPS8StLfkqQ= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:00 2025 by rpki-client