$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa File: 35dd8080-5375-4755-bea9-982f40526ea4.roa (raw, json) Hash identifier: fMePxvQlL173ZULlux0BF7HZR1QYYfrJ/+6vIDduh74= Subject key identifier: EE:DE:CF:09:88:8F:92:BB:45:B7:E8:23:25:04:62:09:7F:80:C2:15 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 68D0B84ADDE40FE6772D323DB907BEC1C2478EEB Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa Signing time: Sat 26 Jul 2025 00:20:41 +0000 ROA not before: Sat 26 Jul 2025 00:20:41 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 7224 IP address blocks: 172.96.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d0:b8:4a:dd:e4:0f:e6:77:2d:32:3d:b9:07:be:c1:c2:47:8e:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Jul 26 00:20:41 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=b3ccbff37ae4140c662f1b97e3600671017c605ae190df5625a101f837a83ab4, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d2:b2:64:18:a0:bc:e9:2b:c0:f8:a8:f4:bc: 81:b4:7e:48:c0:98:63:dc:d2:5b:c1:8c:e4:09:41: d7:dd:60:e6:76:13:a0:9f:04:65:4b:85:59:13:47: 1e:8f:b6:30:84:a4:87:ea:e2:f8:bb:00:be:58:d2: 75:20:70:23:77:02:17:8c:d8:fa:6f:d6:4d:7c:dc: af:37:12:79:33:16:91:62:f7:8b:8a:b9:a1:28:7e: a6:83:22:2f:c2:1b:17:55:c2:6b:c2:79:1f:ca:1b: 93:e7:77:b0:b0:7f:c6:41:95:88:c3:e7:09:fb:2a: b0:32:f7:fd:45:44:4c:da:b3:42:c4:6c:14:ab:ed: 4e:20:a9:59:91:2c:f8:15:cb:0d:f1:33:f2:af:1c: 06:ec:e8:71:e0:b2:2f:1e:ca:e5:e7:7c:fc:e8:42: 5c:0f:4e:c7:f3:e1:38:fc:0f:67:b2:12:c5:1b:38: 3c:ce:50:30:09:00:84:ee:11:fa:68:d6:96:1e:1f: d3:cc:d0:44:20:00:b6:2c:cf:d5:8d:e3:d6:16:9a: a1:05:4a:22:c4:34:c7:04:bd:0f:61:93:ce:bf:7e: aa:92:60:4f:9c:a6:71:7a:7d:7c:93:b1:8d:50:8c: 6b:72:d8:cc:b3:e9:4d:a9:46:db:31:54:91:12:08: 81:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:DE:CF:09:88:8F:92:BB:45:B7:E8:23:25:04:62:09:7F:80:C2:15 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 5e:08:de:4c:0a:ff:45:11:4c:59:c7:04:ef:36:7c:fe:6b:e9: 26:56:c7:b8:66:73:14:73:3f:f5:65:be:b2:e4:19:67:cf:ab: 57:15:8b:2d:cc:47:1b:58:12:e6:45:ce:10:cf:1d:dd:bb:e9: f4:7b:9d:29:18:07:2f:9d:89:dd:07:f0:92:ad:37:3a:50:59: 3c:53:71:5a:1e:32:be:af:da:a5:04:95:8e:5b:4b:b5:4b:97: aa:e3:3e:62:a4:93:cf:7b:fc:cb:77:9c:b4:45:58:27:85:e3: 75:43:89:eb:98:4d:b1:88:62:ea:c9:8b:d0:ec:31:f3:5b:2e: ea:3e:80:e9:5b:77:54:c7:44:ed:12:4e:25:5c:da:71:ab:cf: 35:01:a1:16:42:63:38:e9:46:79:25:96:21:6a:62:b1:d5:dc: 50:69:61:36:2e:03:75:5a:68:27:b3:12:b1:04:d7:3a:f4:49: 84:c8:ed:8d:81:95:72:ed:67:93:34:3f:b1:9e:3a:2e:70:2e: 9e:28:bc:61:e6:28:d5:c0:6e:b4:e3:f3:bb:0f:2f:b8:6d:a9: 5b:2c:ab:3a:1f:3c:a2:f4:f9:05:16:5a:29:32:6a:da:1c:9a: d8:01:3d:e7:7c:f1:87:fa:77:c5:75:68:e9:a8:93:53:8c:a9: b5:4c:6f:d8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaNC4St3kD+Z3LTI9uQe+wcJHjuswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwNzI2MDAyMDQxWhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2NjYmZmMzdhZTQxNDBjNjYyZjFiOTdlMzYwMDY3MTAx N2M2MDVhZTE5MGRmNTYyNWExMDFmODM3YTgzYWI0MS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC20rJkGKC86SvA+Kj0vIG0fkjAmGPc0lvBjOQJQdfdYOZ2 E6CfBGVLhVkTRx6PtjCEpIfq4vi7AL5Y0nUgcCN3AheM2Ppv1k183K83EnkzFpFi 94uKuaEofqaDIi/CGxdVwmvCeR/KG5Pnd7Cwf8ZBlYjD5wn7KrAy9/1FREzas0LE bBSr7U4gqVmRLPgVyw3xM/KvHAbs6HHgsi8eyuXnfPzoQlwPTsfz4Tj8D2eyEsUb ODzOUDAJAITuEfpo1pYeH9PM0EQgALYsz9WN49YWmqEFSiLENMcEvQ9hk86/fqqS YE+cpnF6fXyTsY1QjGty2Myz6U2pRtsxVJESCIFlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7t7PCYiPkrtFt+gjJQRiCX+AwhUwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzM1ZGQ4MDgwLTUzNzUtNDc1NS1iZWE5LTk4MmY0MDUyNmVhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASsYGAwDQYJKoZIhvcNAQELBQADggEBAF4I3kwK/0URTFnHBO82fP5r6SZW x7hmcxRzP/VlvrLkGWfPq1cViy3MRxtYEuZFzhDPHd276fR7nSkYBy+did0H8JKt NzpQWTxTcVoeMr6v2qUElY5bS7VLl6rjPmKkk897/Mt3nLRFWCeF43VDieuYTbGI YurJi9DsMfNbLuo+gOlbd1THRO0STiVc2nGrzzUBoRZCYzjpRnklliFqYrHV3FBp YTYuA3VaaCezErEE1zr0SYTI7Y2BlXLtZ5M0P7GeOi5wLp4ovGHmKNXAbrTj87sP L7htqVssqzofPKL0+QUWWikyatocmtgBPed88Yf6d8V1aOmok1OMqbVMb9g= -----END CERTIFICATE-----Generated at Sat Aug 9 02:51:55 2025 by rpki-client