$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa File: 3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa (raw, json) Hash identifier: sWzW9KrDPbW829CAuQg5XglouJqGD6vrqvDNyNj2gRg= Subject key identifier: 9B:9C:46:BD:6A:7F:23:C4:E7:F3:9C:FE:23:12:B9:9D:7E:81:72:C8 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 52263056D56096E0B70B1080E4D0F5BD580E30B2 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa Signing time: Fri 25 Jul 2025 16:40:54 +0000 ROA not before: Fri 25 Jul 2025 16:40:54 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:26:30:56:d5:60:96:e0:b7:0b:10:80:e4:d0:f5:bd:58:0e:30:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 25 16:40:54 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=ed225745ee5ae7223f08b80942a3ebaa5627304e2d18fedf736a250522de0c46, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:cc:a5:19:ef:2f:0c:cc:0a:99:d0:38:be:1f: ca:97:67:c1:52:11:91:cb:33:03:e4:59:c3:4d:dc: d8:86:b7:4f:ea:49:c1:99:fa:85:76:b1:7e:8a:32: 90:4e:03:3c:a0:c5:56:c1:a1:e7:08:a2:5e:0f:86: e3:0f:e5:6e:92:cf:b6:51:fc:4c:8f:ad:f9:60:dd: ef:7c:e4:2e:da:1d:37:06:16:b0:47:16:17:1b:59: 83:20:d7:a4:5a:8b:70:d0:06:59:96:d7:22:ec:fe: 48:77:0b:f1:5d:fd:26:0f:c8:21:5c:f0:40:5c:de: a7:8b:38:15:24:c7:61:7d:dc:8f:f7:05:4e:2e:72: b9:f5:f2:c8:2a:e2:73:14:83:16:61:b6:dd:f4:3c: f8:05:79:ad:84:a4:90:6b:76:bf:26:78:22:23:e4: bb:c6:b3:46:59:cd:60:fb:7e:6a:b8:f7:22:64:fb: 4a:49:d5:7a:2c:30:a3:0e:04:35:4b:73:6c:a7:59: c4:f5:86:00:67:7c:10:9b:9d:04:f9:34:5e:17:27: df:c2:b8:ce:e6:3f:f6:ec:d7:28:4f:d8:6b:ce:65: 07:9c:e8:0f:d8:82:26:bc:4e:2c:78:19:2b:6a:dc: ae:0f:16:0c:9c:e6:f3:46:41:35:ea:c0:ac:a3:7e: 1e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:9C:46:BD:6A:7F:23:C4:E7:F3:9C:FE:23:12:B9:9D:7E:81:72:C8 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.245.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:0d:f2:ec:d6:66:90:54:8d:dd:d4:14:9e:d4:34:a3:b3:b3: 24:1d:95:77:08:3f:f1:0f:8c:c2:ef:aa:48:72:02:b9:05:ff: 67:a6:e9:75:d0:34:94:9c:80:d9:dd:32:0f:48:8d:60:67:84: 0a:1d:1a:33:b1:58:ab:72:92:06:21:85:03:b8:b5:cd:f3:bb: 8e:2a:56:e7:1a:f0:9c:43:8b:e3:a0:cc:8a:a8:b4:9c:0b:f9: a5:e4:e7:83:c1:bd:39:46:e6:07:1b:03:44:c4:48:5b:b6:cf: eb:ea:d0:84:c9:8d:5b:9d:77:22:1f:ae:ee:fd:8c:cb:04:24: 0c:b9:21:a4:08:ca:dc:2d:fc:48:bf:c9:65:36:31:16:1c:ff: f8:d5:00:24:48:fe:2c:c2:a7:24:b1:75:8c:1e:7b:59:5d:59: a0:e8:d9:2a:11:7d:73:6e:7e:14:79:2a:61:4a:34:4a:02:12: b8:b8:3a:64:e6:0c:dd:db:52:e0:7d:9f:23:3b:97:48:0b:7d: 34:5a:53:29:4b:3f:2f:60:26:c1:79:6e:f8:29:21:fb:7e:48: 8d:c2:5c:fa:61:5a:6f:f6:d1:13:01:5e:70:63:5b:9f:6b:c6: 06:ed:40:74:36:75:0f:2a:66:00:7c:e6:c2:ab:a0:ad:58:58: 80:ed:d8:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUiYwVtVgluC3CxCA5ND1vVgOMLIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI1MTY0MDU0WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDIyNTc0NWVlNWFlNzIyM2YwOGI4MDk0MmEzZWJhYTU2 MjczMDRlMmQxOGZlZGY3MzZhMjUwNTIyZGUwYzQ2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDizKUZ7y8MzAqZ0Di+H8qXZ8FSEZHLMwPkWcNN3NiGt0/q ScGZ+oV2sX6KMpBOAzygxVbBoecIol4PhuMP5W6Sz7ZR/EyPrflg3e985C7aHTcG FrBHFhcbWYMg16Rai3DQBlmW1yLs/kh3C/Fd/SYPyCFc8EBc3qeLOBUkx2F93I/3 BU4ucrn18sgq4nMUgxZhtt30PPgFea2EpJBrdr8meCIj5LvGs0ZZzWD7fmq49yJk +0pJ1XosMKMOBDVLc2ynWcT1hgBnfBCbnQT5NF4XJ9/CuM7mP/bs1yhP2GvOZQec 6A/Ygia8Tix4GStq3K4PFgyc5vNGQTXqwKyjfh4JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm5xGvWp/I8Tn85z+IxK5nX6BcsgwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzNiOGJmMjMxLTJiMGUtNDZmOC04ZGIwLWEwYWYxNTAzZDc4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPUwDQYJKoZIhvcNAQELBQADggEBADoN8uzWZpBUjd3UFJ7UNKOzsyQd lXcIP/EPjMLvqkhyArkF/2em6XXQNJScgNndMg9IjWBnhAodGjOxWKtykgYhhQO4 tc3zu44qVuca8JxDi+OgzIqotJwL+aXk54PBvTlG5gcbA0TESFu2z+vq0ITJjVud dyIfru79jMsEJAy5IaQIytwt/Ei/yWU2MRYc//jVACRI/izCpySxdYwee1ldWaDo 2SoRfXNufhR5KmFKNEoCEri4OmTmDN3bUuB9nyM7l0gLfTRaUylLPy9gJsF5bvgp Ift+SI3CXPphWm/20RMBXnBjW59rxgbtQHQ2dQ8qZgB85sKroK1YWIDt2J0= -----END CERTIFICATE-----Generated at Fri Aug 8 10:15:21 2025 by rpki-client