$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa File: 3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa (raw, json) Hash identifier: Tr0NMp//U/gUrq3PO2cP+ctaOoF5g0y3XddNMm3B3EA= Subject key identifier: 1D:54:6B:2E:21:DD:86:42:A3:82:FD:80:4B:4A:A9:5E:18:22:B3:46 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5F7EE1E85B8DA77BD628D5A48A57A60AF8298ECF Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa Signing time: Fri 25 Jul 2025 16:40:56 +0000 ROA not before: Fri 25 Jul 2025 16:40:56 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:7e:e1:e8:5b:8d:a7:7b:d6:28:d5:a4:8a:57:a6:0a:f8:29:8e:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 25 16:40:56 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=95d3989b5fbd03338dc51ba18b978bba05aa6762cc751b8c99f9318cf23b0213, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d5:39:50:6a:2d:44:a9:bb:2b:81:3a:77:31: 62:02:ec:bd:ab:68:78:7c:d5:50:7e:0d:d9:44:b2: d2:30:cb:d8:b5:40:cf:bf:97:d6:81:95:88:bc:ea: 5b:85:0c:04:34:45:21:77:60:78:d7:c5:ef:c8:4d: 83:41:10:57:51:89:0e:b8:fc:e9:5b:91:3f:c4:a1: 2a:97:30:89:5e:b5:60:9d:8b:48:66:b6:5e:f7:18: 4c:b3:dd:06:53:90:6e:d0:00:21:2c:58:09:52:a6: f4:3e:64:db:88:3f:9c:a2:dd:f1:49:6d:c0:63:a1: eb:53:8d:93:4a:d3:2f:43:32:6c:89:48:7e:13:bf: 76:50:ad:33:0f:ed:1a:42:0e:f0:e0:e0:2e:cd:26: 1d:e0:a8:36:da:9b:d6:aa:47:00:6c:da:6d:d1:7d: 43:08:79:b7:eb:0e:c3:12:60:c3:3f:b1:00:ee:39: df:61:58:34:b8:e3:dd:bb:f7:de:75:14:5c:23:fe: 67:92:f6:1e:20:87:0d:2d:db:ee:24:e9:53:7f:e6: a6:2c:f3:5f:53:d9:d5:a3:e5:2f:bc:b2:bf:4a:35: 07:f7:37:81:d4:90:ac:4e:c9:9b:8e:ae:21:20:2e: 52:cb:0b:71:76:f8:45:95:0c:37:33:0c:b9:a3:be: 96:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:54:6B:2E:21:DD:86:42:A3:82:FD:80:4B:4A:A9:5E:18:22:B3:46 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.254.0/24 Signature Algorithm: sha256WithRSAEncryption 43:9c:8c:f7:8c:96:02:8f:8e:8f:3b:c3:ee:45:cd:1c:69:b4: b5:01:41:5b:cc:fe:1d:de:88:bb:a4:c2:89:b9:20:d8:e8:82: 32:cf:9e:73:f9:bb:8f:ea:f6:29:8b:0e:43:35:45:f1:f3:22: 6c:0e:54:28:87:dc:60:b8:03:ec:cb:5d:10:9f:5b:73:89:f9: 26:09:72:33:7f:d6:e2:6b:c1:74:70:84:e3:b9:89:13:6c:b7: f0:e8:f9:9b:c3:f2:af:53:d9:dc:6d:35:e2:a6:80:78:fd:fb: b8:f8:0a:f7:9e:32:ee:42:ec:01:69:b8:0f:cc:73:84:94:04: 51:92:ec:3f:cc:08:26:95:1c:2f:71:ad:e4:9a:f0:b6:f4:e4: 4b:ca:35:ed:57:01:5a:9b:1d:29:95:37:7e:07:cf:8a:7b:c0: 5c:aa:73:9f:72:42:71:06:62:b4:0c:42:97:40:96:e1:d6:ad: f4:98:99:07:ad:f2:f8:1d:6c:83:b6:d5:40:22:b1:de:c1:9b: a6:2c:8e:78:53:b3:1a:44:f6:0b:00:6c:eb:52:99:b2:3f:33: 51:a4:40:a1:06:bf:84:7e:3d:65:fe:5d:87:0e:70:d6:5d:4d: 7f:3c:8e:18:71:b6:79:2f:3b:74:b5:a5:a0:45:8d:bf:b6:09: f2:5b:aa:61 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX37h6FuNp3vWKNWkilemCvgpjs8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI1MTY0MDU2WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWQzOTg5YjVmYmQwMzMzOGRjNTFiYTE4Yjk3OGJiYTA1 YWE2NzYyY2M3NTFiOGM5OWY5MzE4Y2YyM2IwMjEzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx1TlQai1EqbsrgTp3MWIC7L2raHh81VB+DdlEstIwy9i1 QM+/l9aBlYi86luFDAQ0RSF3YHjXxe/ITYNBEFdRiQ64/OlbkT/EoSqXMIletWCd i0hmtl73GEyz3QZTkG7QACEsWAlSpvQ+ZNuIP5yi3fFJbcBjoetTjZNK0y9DMmyJ SH4Tv3ZQrTMP7RpCDvDg4C7NJh3gqDbam9aqRwBs2m3RfUMIebfrDsMSYMM/sQDu Od9hWDS449279951FFwj/meS9h4ghw0t2+4k6VN/5qYs819T2dWj5S+8sr9KNQf3 N4HUkKxOyZuOriEgLlLLC3F2+EWVDDczDLmjvpYrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHVRrLiHdhkKjgv2AS0qpXhgis0YwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzNlMGFhYjhlLTc4YTEtNGI0YS1iODdjLTRhNzkyOTRmYzBhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYP4wDQYJKoZIhvcNAQELBQADggEBAEOcjPeMlgKPjo87w+5FzRxptLUB QVvM/h3eiLukwom5INjogjLPnnP5u4/q9imLDkM1RfHzImwOVCiH3GC4A+zLXRCf W3OJ+SYJcjN/1uJrwXRwhOO5iRNst/Do+ZvD8q9T2dxtNeKmgHj9+7j4CveeMu5C 7AFpuA/Mc4SUBFGS7D/MCCaVHC9xreSa8Lb05EvKNe1XAVqbHSmVN34Hz4p7wFyq c59yQnEGYrQMQpdAluHWrfSYmQet8vgdbIO21UAisd7Bm6YsjnhTsxpE9gsAbOtS mbI/M1GkQKEGv4R+PWX+XYcOcNZdTX88jhhxtnkvO3S1paBFjb+2CfJbqmE= -----END CERTIFICATE-----Generated at Wed Aug 6 10:09:35 2025 by rpki-client