$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/091bd218-6d23-4d4b-a23a-59d4459462ce.roa File: 091bd218-6d23-4d4b-a23a-59d4459462ce.roa (raw, json) Hash identifier: oeHhPxENfABFZ7jxMArMWObkW2PuRs4L9sc5NtX70IM= Subject key identifier: 56:80:CE:C7:50:0A:AA:0F:EA:EF:4C:4F:C8:D4:8D:C4:14:B0:E4:30 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 601AB12FA0A1A3E740868DF0FA9B6BBA0FC7EBF2 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/091bd218-6d23-4d4b-a23a-59d4459462ce.roa Signing time: Fri 25 Jul 2025 16:41:23 +0000 ROA not before: Fri 25 Jul 2025 16:41:23 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:1a:b1:2f:a0:a1:a3:e7:40:86:8d:f0:fa:9b:6b:ba:0f:c7:eb:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 25 16:41:23 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=38c52264853c051fcc79d891ac71f45e4cfc150bfb367d4a5a6ed6e9ce721f1b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:85:f9:17:57:af:59:e2:4a:ea:f3:08:70:9f: 73:6b:d5:12:f9:cf:cb:a4:b6:f9:56:d2:48:63:42: ba:c5:2a:ad:4b:31:0e:86:2b:f5:68:65:60:54:83: 12:4c:32:cb:4d:33:e9:fe:f7:43:67:eb:8e:50:71: 4a:da:23:f1:0d:2f:b0:c1:44:3d:a6:3e:bd:93:c0: 4d:09:99:71:d3:38:36:15:05:8d:67:b8:ca:53:34: cf:76:e2:20:14:55:4b:00:9c:6b:f5:a7:65:dd:c0: 3d:53:98:7f:53:fa:b0:b3:35:c4:31:e1:42:1e:f5: a7:ae:c8:83:02:fa:49:67:64:72:cf:a5:9a:21:5d: 6f:b9:31:02:4e:6d:e0:b7:ba:0b:e0:4d:44:76:24: 98:d1:0a:22:b0:a6:19:11:40:fe:98:f2:9d:1d:eb: b0:03:cd:28:41:7e:a2:63:69:97:46:30:a0:25:a6: d4:2f:77:35:0d:6a:31:d2:5c:a2:03:31:8c:3d:a2: bb:c2:a1:82:f2:1b:92:f9:0b:08:ca:3e:e8:6a:5f: 5a:f3:6a:23:d6:c6:f5:4c:f2:25:b3:19:12:05:3e: f6:c9:0f:c3:db:4a:ea:ba:b0:a4:96:58:02:62:d9: d4:fb:eb:cf:01:7f:e6:8b:eb:d5:46:8b:8d:2a:54: fe:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:80:CE:C7:50:0A:AA:0F:EA:EF:4C:4F:C8:D4:8D:C4:14:B0:E4:30 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/091bd218-6d23-4d4b-a23a-59d4459462ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.68.0/22 Signature Algorithm: sha256WithRSAEncryption 04:ce:fc:d2:87:81:c9:bd:10:f4:c7:a2:47:53:5e:94:02:8b: e2:86:7a:1f:fd:cc:cc:ec:4f:93:0f:07:30:12:93:c4:3f:53: 99:3e:59:cd:35:a1:9a:e4:71:28:9e:8a:e6:00:fb:dc:5d:9d: f4:e9:64:45:d5:81:73:2c:ba:2c:b2:d7:73:e7:2d:ae:3e:bd: 09:11:6f:ae:2f:db:90:28:42:f7:99:53:40:2a:9f:a5:f1:77: 5a:64:95:26:2b:00:da:49:4b:9d:21:4b:57:15:90:3e:9f:60: ee:47:4b:b6:c8:c4:cf:03:90:b8:55:2c:f8:fb:f7:7d:04:f3: a6:98:7a:9a:3f:67:85:ee:da:ee:1d:8c:38:73:ae:88:8f:5d: 53:b1:7e:4c:e1:3d:b0:5a:cc:f6:d6:3d:c8:61:68:57:02:e7: 77:b2:09:fd:b9:5d:64:1c:15:3b:12:50:70:42:e3:3a:d2:27: e9:f4:cf:cc:dc:d2:e1:b7:12:ff:61:b1:5e:f0:06:4d:ea:af: 0c:ca:f6:bb:af:0f:99:23:05:29:9d:eb:37:dc:24:ec:a5:c6: 9d:a4:78:dc:ad:de:6a:cf:42:d8:94:8d:d0:5e:fa:af:c4:7e: c0:0d:c3:5c:be:ac:5d:9f:93:a0:52:98:16:44:1a:3f:7c:af: 39:ee:f9:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYBqxL6Cho+dAho3w+ptrug/H6/IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI1MTY0MTIzWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOGM1MjI2NDg1M2MwNTFmY2M3OWQ4OTFhYzcxZjQ1ZTRj ZmMxNTBiZmIzNjdkNGE1YTZlZDZlOWNlNzIxZjFiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjhfkXV69Z4krq8whwn3Nr1RL5z8uktvlW0khjQrrFKq1L MQ6GK/VoZWBUgxJMMstNM+n+90Nn645QcUraI/ENL7DBRD2mPr2TwE0JmXHTODYV BY1nuMpTNM924iAUVUsAnGv1p2XdwD1TmH9T+rCzNcQx4UIe9aeuyIMC+klnZHLP pZohXW+5MQJObeC3ugvgTUR2JJjRCiKwphkRQP6Y8p0d67ADzShBfqJjaZdGMKAl ptQvdzUNajHSXKIDMYw9orvCoYLyG5L5CwjKPuhqX1rzaiPWxvVM8iWzGRIFPvbJ D8PbSuq6sKSWWAJi2dT7688Bf+aL69VGi40qVP4JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVoDOx1AKqg/q70xPyNSNxBSw5DAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzA5MWJkMjE4LTZkMjMtNGQ0Yi1hMjNhLTU5ZDQ0NTk0NjJjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYEQwDQYJKoZIhvcNAQELBQADggEBAATO/NKHgcm9EPTHokdTXpQCi+KG eh/9zMzsT5MPBzASk8Q/U5k+Wc01oZrkcSieiuYA+9xdnfTpZEXVgXMsuiyy13Pn La4+vQkRb64v25AoQveZU0Aqn6Xxd1pklSYrANpJS50hS1cVkD6fYO5HS7bIxM8D kLhVLPj7930E86aYepo/Z4Xu2u4djDhzroiPXVOxfkzhPbBazPbWPchhaFcC53ey Cf25XWQcFTsSUHBC4zrSJ+n0z8zc0uG3Ev9hsV7wBk3qrwzK9ruvD5kjBSmd6zfc JOylxp2keNyt3mrPQtiUjdBe+q/EfsANw1y+rF2fk6BSmBZEGj98rznu+YE= -----END CERTIFICATE-----Generated at Fri Aug 8 19:25:54 2025 by rpki-client