$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa File: 27feea1a-4933-4577-b9c4-9488e2a550f0.roa (raw, json) Hash identifier: a1g6iVzNXKU1boyKbv5k5StvyGzQwqBd73KSaPcIWtA= Subject key identifier: 60:FC:2F:39:42:28:8B:D7:F3:04:11:97:8F:72:1E:10:17:6A:8E:DC Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2AA73C9F25D81C85B315DE444314CFA4958F8F97 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa Signing time: Fri 25 Jul 2025 16:40:24 +0000 ROA not before: Fri 25 Jul 2025 16:40:24 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:a7:3c:9f:25:d8:1c:85:b3:15:de:44:43:14:cf:a4:95:8f:8f:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 25 16:40:24 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=9bf132e7928f88b6adac0ef5dc054e012700c5b64f1ce59ca3845edf8211dcc8, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:57:8f:63:a2:bd:68:c0:ea:fb:27:ab:68:95: c0:ad:fb:4b:44:20:0f:06:ad:0d:87:9b:f3:53:0a: 60:9a:e0:da:85:5e:0b:56:d0:13:08:25:61:1f:a7: 25:e6:a6:d1:be:14:d9:38:fb:86:33:43:f6:42:d4: a8:16:3b:fa:7e:21:39:ca:7e:4b:22:a3:36:84:8d: eb:db:62:88:3b:82:ad:2c:52:85:df:41:90:4f:85: 12:8c:27:19:d3:f9:5f:6b:d1:9d:c1:64:f9:10:8f: 2d:8c:02:37:c9:98:1e:24:c3:9e:98:b9:f7:53:f2: 08:01:d6:18:a0:71:31:63:ee:7d:45:ba:32:68:f9: 8b:dc:19:a2:c9:90:5a:73:16:d1:2e:3f:4c:0e:e8: 98:9a:27:4a:c5:ad:62:28:1f:df:6a:66:bb:1f:1b: f6:b7:fb:d4:1e:e1:aa:2a:b6:2e:6d:dd:dd:89:94: 15:7c:b5:0a:06:19:8c:de:b3:c1:fc:29:40:46:79: a2:54:bc:fa:e4:9e:bb:ef:f8:26:18:49:8b:3e:24: 47:f3:bd:13:e8:3c:c2:6e:ea:39:f5:50:ea:b0:60: 71:65:d5:21:9e:b8:1e:06:10:96:9c:18:90:69:d5: fd:32:26:6d:e6:55:56:ac:b9:56:d2:42:d3:95:af: b1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:FC:2F:39:42:28:8B:D7:F3:04:11:97:8F:72:1E:10:17:6A:8E:DC X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption 38:17:98:7c:0a:5b:5a:bb:3d:95:f1:b1:44:b9:6b:c0:c1:c7: ff:2e:13:53:7e:8d:1a:d7:11:d9:da:ef:f9:c3:1d:6d:4b:88: 4f:2d:85:b8:f4:4e:09:33:e4:53:b2:bb:ea:92:73:3f:ec:34: e2:0c:0c:d9:d0:b3:7a:d4:c9:6d:93:0a:77:2b:15:96:9f:5e: 55:2a:f2:f2:43:81:fe:83:68:f3:86:ae:0d:1b:d3:0e:28:6a: 8b:df:e3:0b:72:9c:fc:48:71:0b:d4:63:38:93:e3:a3:88:a1: 48:dc:83:a7:b7:7b:be:77:18:7d:ba:ea:87:59:39:77:7a:be: b5:ee:9c:5a:b9:5c:d2:26:40:2c:52:3a:02:be:cb:07:f2:c4: 8e:43:13:28:de:50:2a:37:ea:81:3a:77:22:37:14:5d:89:42: ed:74:0f:f9:61:d3:4a:55:e6:8f:7a:10:c0:80:46:18:48:7d: 21:7e:59:b4:fd:c6:c4:af:f0:e6:77:a1:b2:0f:7a:a8:aa:cd: 5e:43:6a:f6:be:f3:2c:f4:15:ed:db:18:8b:16:9d:28:58:06: 8d:57:b5:95:95:06:1a:85:e4:d5:d3:1f:6d:5d:fc:1a:c7:74: 7d:eb:ac:71:bb:3c:46:0e:5a:8c:ab:cf:98:67:8b:61:fb:d7: 09:d2:06:a6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKqc8nyXYHIWzFd5EQxTPpJWPj5cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI1MTY0MDI0WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YmYxMzJlNzkyOGY4OGI2YWRhYzBlZjVkYzA1NGUwMTI3 MDBjNWI2NGYxY2U1OWNhMzg0NWVkZjgyMTFkY2M4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/V49jor1owOr7J6tolcCt+0tEIA8GrQ2Hm/NTCmCa4NqF XgtW0BMIJWEfpyXmptG+FNk4+4YzQ/ZC1KgWO/p+ITnKfksiozaEjevbYog7gq0s UoXfQZBPhRKMJxnT+V9r0Z3BZPkQjy2MAjfJmB4kw56YufdT8ggB1higcTFj7n1F ujJo+YvcGaLJkFpzFtEuP0wO6JiaJ0rFrWIoH99qZrsfG/a3+9Qe4aoqti5t3d2J lBV8tQoGGYzes8H8KUBGeaJUvPrknrvv+CYYSYs+JEfzvRPoPMJu6jn1UOqwYHFl 1SGeuB4GEJacGJBp1f0yJm3mVVasuVbSQtOVr7F5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYPwvOUIoi9fzBBGXj3IeEBdqjtwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzI3ZmVlYTFhLTQ5MzMtNDU3Ny1iOWM0LTk0ODhlMmE1NTBmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPQwDQYJKoZIhvcNAQELBQADggEBADgXmHwKW1q7PZXxsUS5a8DBx/8u E1N+jRrXEdna7/nDHW1LiE8thbj0Tgkz5FOyu+qScz/sNOIMDNnQs3rUyW2TCncr FZafXlUq8vJDgf6DaPOGrg0b0w4oaovf4wtynPxIcQvUYziT46OIoUjcg6e3e753 GH266odZOXd6vrXunFq5XNImQCxSOgK+ywfyxI5DEyjeUCo36oE6dyI3FF2JQu10 D/lh00pV5o96EMCARhhIfSF+WbT9xsSv8OZ3obIPeqiqzV5Dava+8yz0Fe3bGIsW nShYBo1XtZWVBhqF5NXTH21d/BrHdH3rrHG7PEYOWoyrz5hni2H71wnSBqY= -----END CERTIFICATE-----Generated at Sat Aug 9 15:16:40 2025 by rpki-client