$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2296581f-9248-4567-94d7-ea3a158d3c55.roa File: 2296581f-9248-4567-94d7-ea3a158d3c55.roa (raw, json) Hash identifier: 210x99C80LDqZF1+9rQelf5ggvYL1YY9FyeSFUvDVbs= Subject key identifier: 3F:95:48:0D:32:10:C8:25:64:05:01:69:80:E9:D2:2F:77:43:42:4C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6FB6B8EE2F54495CA85CE03CB11CB0084CCDC454 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2296581f-9248-4567-94d7-ea3a158d3c55.roa Signing time: Fri 25 Jul 2025 16:40:11 +0000 ROA not before: Fri 25 Jul 2025 16:40:11 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:b6:b8:ee:2f:54:49:5c:a8:5c:e0:3c:b1:1c:b0:08:4c:cd:c4:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 25 16:40:11 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=4dc6d2122885142102dff2372cd1d6e1c22cb32e77e013bfc66bf9dd67417a4b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5b:93:d9:9c:a9:25:0b:24:4b:32:26:ec:50: c6:21:67:a3:ca:d5:bd:c4:e3:ec:6e:68:8d:13:80: f6:e0:0d:82:64:85:ad:c5:07:af:f8:b0:d5:0c:27: 77:c6:a0:4c:c1:15:85:43:a8:21:9d:76:e8:ac:fb: c1:ad:a0:66:e1:8f:5a:70:4d:0c:3a:aa:c7:9e:a1: 03:6c:bd:67:14:cc:32:75:7d:27:ce:7a:9c:3b:9a: 7c:a4:5c:30:65:dc:ef:d8:91:b3:cb:14:68:d6:9f: e6:ca:f2:ec:4c:2b:bc:1e:7c:20:cf:98:0c:de:7f: d0:2c:b2:69:c2:2b:e7:c3:d7:bf:59:ca:db:0e:3c: 8c:74:d4:91:2e:c2:7a:3c:f4:5d:c8:35:66:6b:52: 18:fa:ad:b3:a6:41:26:20:9c:81:c2:40:79:37:2c: 6c:44:4a:e7:72:eb:68:e1:13:c6:50:4a:cf:1a:49: 01:2a:50:16:32:1c:1c:a0:7c:f1:12:20:11:c6:c4: 47:97:da:9e:c9:da:cd:2c:24:aa:a4:43:c4:13:b7: fb:82:cf:12:5b:4e:b4:45:9b:1a:0d:ad:ab:48:52: 17:2d:10:65:71:fd:8a:12:5c:3c:96:d0:49:a5:a2: 04:07:33:39:9e:cf:29:05:78:cd:13:3c:ad:0e:1b: ab:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:95:48:0D:32:10:C8:25:64:05:01:69:80:E9:D2:2F:77:43:42:4C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2296581f-9248-4567-94d7-ea3a158d3c55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.252.0/24 Signature Algorithm: sha256WithRSAEncryption 62:d4:07:fa:fe:f0:d2:97:98:e6:40:aa:75:17:b0:ec:cb:fe: e1:1f:17:f5:7c:bf:4b:92:6d:87:01:18:07:b6:cb:ce:0c:77: 70:63:15:4a:8d:1e:c2:70:b3:17:be:ef:66:df:d4:29:94:52: 2b:8e:7f:ac:50:e5:d7:67:4f:82:67:3f:57:e8:ce:3f:66:16: 69:b4:a4:99:65:b1:c6:53:f8:5b:b1:99:5c:0d:a4:51:7b:90: bd:c1:4a:46:7e:ae:80:ac:e1:7f:34:78:52:10:07:59:30:63: 81:3b:f5:3e:53:27:fe:5e:86:ed:d9:b6:50:7d:3b:12:4a:8d: d4:50:ea:fe:bb:cc:82:99:c6:e6:da:41:15:d7:7a:52:c3:76: 41:8f:72:3d:b8:a5:94:f0:d8:39:92:f9:12:8f:8b:13:02:7b: 32:33:02:5e:8e:76:c6:41:09:40:f0:d5:b8:59:b6:cf:1c:7c: 14:ef:69:c2:8b:33:d0:ef:ca:67:cd:31:1b:15:37:ed:27:1f: a0:0d:76:62:e0:36:33:4c:1d:f2:4c:58:d7:4c:22:ce:06:02: e2:64:cb:18:64:61:36:16:7b:c7:3d:c0:f5:ab:73:ba:7d:48: 94:7c:2e:8e:77:f9:1f:c5:05:2d:b4:bf:48:9c:9e:b5:d3:4a: 79:b8:31:93 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb7a47i9USVyoXOA8sRywCEzNxFQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI1MTY0MDExWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZGM2ZDIxMjI4ODUxNDIxMDJkZmYyMzcyY2QxZDZlMWMy MmNiMzJlNzdlMDEzYmZjNjZiZjlkZDY3NDE3YTRiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJW5PZnKklCyRLMibsUMYhZ6PK1b3E4+xuaI0TgPbgDYJk ha3FB6/4sNUMJ3fGoEzBFYVDqCGdduis+8GtoGbhj1pwTQw6qseeoQNsvWcUzDJ1 fSfOepw7mnykXDBl3O/YkbPLFGjWn+bK8uxMK7wefCDPmAzef9AssmnCK+fD179Z ytsOPIx01JEuwno89F3INWZrUhj6rbOmQSYgnIHCQHk3LGxESudy62jhE8ZQSs8a SQEqUBYyHBygfPESIBHGxEeX2p7J2s0sJKqkQ8QTt/uCzxJbTrRFmxoNratIUhct EGVx/YoSXDyW0EmlogQHMzmezykFeM0TPK0OG6uBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUP5VIDTIQyCVkBQFpgOnSL3dDQkwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzIyOTY1ODFmLTkyNDgtNDU2Ny05NGQ3LWVhM2ExNThkM2M1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPwwDQYJKoZIhvcNAQELBQADggEBAGLUB/r+8NKXmOZAqnUXsOzL/uEf F/V8v0uSbYcBGAe2y84Md3BjFUqNHsJwsxe+72bf1CmUUiuOf6xQ5ddnT4JnP1fo zj9mFmm0pJllscZT+FuxmVwNpFF7kL3BSkZ+roCs4X80eFIQB1kwY4E79T5TJ/5e hu3ZtlB9OxJKjdRQ6v67zIKZxubaQRXXelLDdkGPcj24pZTw2DmS+RKPixMCezIz Al6OdsZBCUDw1bhZts8cfBTvacKLM9DvymfNMRsVN+0nH6ANdmLgNjNMHfJMWNdM Is4GAuJkyxhkYTYWe8c9wPWrc7p9SJR8Lo53+R/FBS20v0icnrXTSnm4MZM= -----END CERTIFICATE-----Generated at Sat Aug 9 01:20:07 2025 by rpki-client