$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa File: 5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa (raw, json) Hash identifier: Z97A7fSTJ4xZaFshFXciiVkJWcMPgKu5NZrZM9bx4g4= Subject key identifier: 1C:F4:B7:6C:F1:F1:17:7D:AD:CB:8A:BB:1F:84:46:A8:D7:A6:D5:92 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5D481BDD7F3050303C92EA4DDDDD9D689A864E82 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa Signing time: Tue 05 Aug 2025 18:20:11 +0000 ROA not before: Tue 05 Aug 2025 18:20:11 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:48:1b:dd:7f:30:50:30:3c:92:ea:4d:dd:dd:9d:68:9a:86:4e:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 5 18:20:11 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=6aaa010eeb9f709564d76d6da800acec451f3bfb78010a65a973b435b23d9f0a, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:10:dd:86:11:60:15:e2:42:df:84:ad:f0:0c: 2b:f8:96:08:e2:cf:ae:71:93:56:74:77:13:9f:02: 19:e7:96:0f:a9:a7:03:98:21:33:65:5d:18:aa:85: 3c:51:1e:9f:86:31:8f:fd:96:d4:33:44:9e:f8:f3: 33:4a:3c:19:87:4b:0f:77:e8:12:3b:4c:4d:86:b6: ce:03:20:8a:c7:de:05:a3:6b:99:0c:1f:90:b4:37: c0:e5:3a:ca:23:49:6e:26:a8:33:88:49:d6:39:3a: 8c:5f:f2:60:72:86:b3:6f:e8:34:21:59:07:70:7f: d1:89:35:3d:bb:04:39:74:c2:8d:71:3f:d6:f4:dc: 39:de:2f:f3:04:d8:53:e3:7b:48:9b:4c:5c:25:c7: 12:52:39:3b:ba:29:71:4f:9b:cc:23:8e:dd:91:01: 2e:5c:11:42:e2:b5:50:89:21:ec:02:7d:f6:3f:ba: 2f:fc:c9:d6:b9:3d:62:be:61:c6:67:75:5a:dc:8c: 63:84:2b:cc:3b:ee:3d:82:00:ed:11:a9:bc:38:4c: 0e:b9:4c:76:f8:a1:77:97:0e:be:9f:b7:cd:00:67: 2d:24:29:54:1a:2c:27:f8:f9:9e:ad:7a:6c:79:b9: 62:7c:ac:75:00:22:ad:00:81:9a:1f:58:c4:41:63: 1a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:F4:B7:6C:F1:F1:17:7D:AD:CB:8A:BB:1F:84:46:A8:D7:A6:D5:92 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.14.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:77:a1:6a:f8:b5:98:44:6f:fd:88:3c:11:ed:26:5a:f7:70: b6:c5:41:a8:80:63:39:0d:2e:37:da:bb:cf:06:df:be:31:36: 6a:ca:a6:4c:f3:f7:dc:4f:92:e1:47:b1:38:d4:a0:c5:1b:2d: 82:5e:1f:92:29:70:ec:b6:d6:ec:57:3b:ab:74:95:57:0d:a2: a9:2d:96:e9:40:c2:5f:48:8d:8c:40:43:0e:b7:56:00:89:6c: fc:68:70:78:e5:b5:a3:b2:37:78:44:ff:eb:2f:6d:b8:ba:11: e6:3b:23:d6:26:f1:be:d6:27:37:b2:29:d8:ce:75:b2:4a:21: 82:d4:5d:db:3e:2c:38:82:67:c9:14:63:7a:f5:11:e1:20:3a: dd:ea:de:91:75:99:f6:db:dc:64:4a:fb:e5:db:02:31:26:72: 7f:fd:1f:da:f5:0f:09:6e:cf:73:ab:1f:e0:f2:5d:ce:7a:21: dc:66:dc:b6:3a:04:f8:cd:d0:aa:88:2a:d1:8a:4c:bf:f9:f1: ec:3c:16:e8:2e:44:41:8d:38:57:27:2b:6c:72:06:da:cc:fd: 4f:61:98:a7:d0:24:3d:3f:95:84:10:c6:6a:41:f5:35:e1:de: 3d:37:d4:6a:01:fb:63:d9:c3:17:af:12:ea:7c:be:ff:80:2d: a1:bb:c4:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXUgb3X8wUDA8kupN3d2daJqGToIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODA1MTgyMDExWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YWFhMDEwZWViOWY3MDk1NjRkNzZkNmRhODAwYWNlYzQ1 MWYzYmZiNzgwMTBhNjVhOTczYjQzNWIyM2Q5ZjBhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoEN2GEWAV4kLfhK3wDCv4lgjiz65xk1Z0dxOfAhnnlg+p pwOYITNlXRiqhTxRHp+GMY/9ltQzRJ748zNKPBmHSw936BI7TE2Gts4DIIrH3gWj a5kMH5C0N8DlOsojSW4mqDOISdY5Ooxf8mByhrNv6DQhWQdwf9GJNT27BDl0wo1x P9b03DneL/ME2FPje0ibTFwlxxJSOTu6KXFPm8wjjt2RAS5cEULitVCJIewCffY/ ui/8yda5PWK+YcZndVrcjGOEK8w77j2CAO0Rqbw4TA65THb4oXeXDr6ft80AZy0k KVQaLCf4+Z6temx5uWJ8rHUAIq0AgZofWMRBYxrdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHPS3bPHxF32ty4q7H4RGqNem1ZIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzVkNjUwOGNlLTQ3YTEtNDAwMi1iMDNiLTljZTIxYjE2Y2Y2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYA4wDQYJKoZIhvcNAQELBQADggEBAG13oWr4tZhEb/2IPBHtJlr3cLbF QaiAYzkNLjfau88G374xNmrKpkzz99xPkuFHsTjUoMUbLYJeH5IpcOy21uxXO6t0 lVcNoqktlulAwl9IjYxAQw63VgCJbPxocHjltaOyN3hE/+svbbi6EeY7I9Ym8b7W JzeyKdjOdbJKIYLUXds+LDiCZ8kUY3r1EeEgOt3q3pF1mfbb3GRK++XbAjEmcn/9 H9r1Dwluz3OrH+DyXc56Idxm3LY6BPjN0KqIKtGKTL/58ew8FuguREGNOFcnK2xy BtrM/U9hmKfQJD0/lYQQxmpB9TXh3j031GoB+2PZwxevEup8vv+ALaG7xPc= -----END CERTIFICATE-----Generated at Sun Aug 10 16:14:42 2025 by rpki-client