$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa File: 0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa (raw, json) Hash identifier: hx2msuPT0nlK2CXS+aS+ytyVBfvHFJqF6wvsfc3cNYI= Subject key identifier: E2:9F:6A:9E:2B:E2:5C:5E:76:26:E1:9E:56:9B:F6:99:AA:12:D7:E2 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6914A6505D7B8734DA4BE6EBE35BE25AD9FA43A0 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa Signing time: Tue 05 Aug 2025 18:20:10 +0000 ROA not before: Tue 05 Aug 2025 18:20:10 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 12 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:14:a6:50:5d:7b:87:34:da:4b:e6:eb:e3:5b:e2:5a:d9:fa:43:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 5 18:20:10 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=48a4ef7d076c25a736b5afa70f435e7be8d18eaa8f9bce2e3b2df3cc16914c07, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:28:59:6b:8d:a4:ce:47:50:f7:d6:4a:18:05: 08:41:93:2e:97:7d:dc:3f:a8:19:4b:b7:2d:50:f7: 6e:0f:42:4a:e3:76:18:25:c2:07:7a:76:ad:c2:2c: 3b:26:96:5b:72:a6:e0:71:fb:73:cb:b6:99:be:64: ea:b7:76:32:ea:b2:11:67:a1:85:f6:8a:75:e7:c2: d4:93:2d:9e:f7:a7:36:37:3f:6a:45:e0:8f:11:b5: a3:ca:2b:08:c7:c7:ef:9b:43:e3:d7:9c:6b:8a:e5: e6:65:0f:83:6f:7d:b6:49:e5:54:29:03:38:9b:09: 1c:61:5f:95:20:64:62:b3:89:69:83:ec:c7:93:62: cd:5f:fe:0d:01:f4:9e:81:82:71:dc:2d:68:fa:5d: 66:ae:5c:0b:ff:fd:07:81:de:3e:fc:58:52:c0:4b: 12:03:8b:4b:f0:60:14:da:5d:e4:2c:5d:96:3b:be: 08:cb:57:73:c5:65:de:dd:d3:74:fb:d1:bb:38:b9: 40:c4:06:64:ec:01:ac:e2:5f:b5:49:70:11:dd:05: c4:05:d8:0c:e9:67:af:15:ec:f5:93:05:e6:22:c1: 74:44:83:a2:e0:75:67:85:b4:c7:c8:ba:a9:4f:95: 42:6f:53:9a:bb:99:d7:9d:3f:df:76:aa:a6:1e:8a: b7:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:9F:6A:9E:2B:E2:5C:5E:76:26:E1:9E:56:9B:F6:99:AA:12:D7:E2 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.2.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:88:d2:ca:44:3c:47:3f:c4:4a:6f:6f:6f:1e:59:dc:66:dd: bb:0e:00:ee:9f:5a:33:4b:52:19:cf:b4:fd:d7:42:20:ae:9e: f2:2c:2e:64:86:c9:76:3d:2a:7b:bd:b5:d7:ed:9c:5e:92:f0: eb:b1:69:3e:fc:bf:1b:71:67:f3:c9:12:e8:9a:b5:06:b2:64: 55:58:2d:c6:14:d5:4f:d8:23:05:3f:f8:2b:8b:da:52:45:53: 3a:8d:23:81:15:ad:03:e1:8e:12:df:c4:fb:fb:af:d6:1a:eb: 53:41:f4:33:70:5e:b2:d1:c9:85:04:d4:4c:6e:fb:e0:a7:25: f3:0d:d9:d5:5a:b4:2f:2d:85:30:87:bc:95:ba:5c:78:1f:6d: f2:b4:cc:61:3a:6d:4e:42:95:72:f2:78:a9:23:0b:66:b8:ed: 6d:02:c8:32:27:3e:24:2d:b9:ce:33:bf:c1:1f:c2:fe:fa:be: 40:c1:fc:ea:5b:bf:d5:cf:93:a8:4e:07:45:ec:35:df:03:15: 57:23:d9:c0:b5:d1:e2:bd:ef:0f:bd:e7:35:ee:d6:4b:2c:ee: fc:7f:97:62:6e:bf:49:78:25:a5:d1:88:50:49:94:77:fc:1c: 72:7c:c7:54:37:e6:27:27:fa:ff:a4:bc:d5:55:76:98:9e:d2: bf:ee:08:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaRSmUF17hzTaS+br41viWtn6Q6AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODA1MTgyMDEwWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OGE0ZWY3ZDA3NmMyNWE3MzZiNWFmYTcwZjQzNWU3YmU4 ZDE4ZWFhOGY5YmNlMmUzYjJkZjNjYzE2OTE0YzA3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbKFlrjaTOR1D31koYBQhBky6Xfdw/qBlLty1Q924PQkrj dhglwgd6dq3CLDsmlltypuBx+3PLtpm+ZOq3djLqshFnoYX2inXnwtSTLZ73pzY3 P2pF4I8RtaPKKwjHx++bQ+PXnGuK5eZlD4NvfbZJ5VQpAzibCRxhX5UgZGKziWmD 7MeTYs1f/g0B9J6BgnHcLWj6XWauXAv//QeB3j78WFLASxIDi0vwYBTaXeQsXZY7 vgjLV3PFZd7d03T70bs4uUDEBmTsAaziX7VJcBHdBcQF2AzpZ68V7PWTBeYiwXRE g6LgdWeFtMfIuqlPlUJvU5q7mdedP992qqYeirfXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4p9qniviXF52JuGeVpv2maoS1+IwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBlODE0ZjJjLTYxMDAtNDAzNy05ZGNjLWNkYWYzZTIwZDg1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAIwDQYJKoZIhvcNAQELBQADggEBAF+I0spEPEc/xEpvb28eWdxm3bsO AO6fWjNLUhnPtP3XQiCunvIsLmSGyXY9Knu9tdftnF6S8OuxaT78vxtxZ/PJEuia tQayZFVYLcYU1U/YIwU/+CuL2lJFUzqNI4EVrQPhjhLfxPv7r9Ya61NB9DNwXrLR yYUE1Exu++CnJfMN2dVatC8thTCHvJW6XHgfbfK0zGE6bU5ClXLyeKkjC2a47W0C yDInPiQtuc4zv8Efwv76vkDB/Opbv9XPk6hOB0XsNd8DFVcj2cC10eK97w+95zXu 1kss7vx/l2Juv0l4JaXRiFBJlHf8HHJ8x1Q35icn+v+kvNVVdpie0r/uCHc= -----END CERTIFICATE-----Generated at Mon Aug 11 06:09:04 2025 by rpki-client