$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/66fb40d9-76e8-4ce1-9643-8d4c4f968118.roa File: 66fb40d9-76e8-4ce1-9643-8d4c4f968118.roa (raw, json) Hash identifier: pfaAGwYpyABWp0UbYO2hNadOOuoIvNxp3Q3mDHO7gaA= Subject key identifier: BD:F5:8D:0E:1E:45:26:3B:E4:14:2F:D4:D0:4D:0D:4E:F6:CA:12:30 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 014DA9F09E08FD995606DB8CF5DB143529DAFE1E Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/66fb40d9-76e8-4ce1-9643-8d4c4f968118.roa Signing time: Sat 09 Aug 2025 00:10:18 +0000 ROA not before: Sat 09 Aug 2025 00:10:18 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:4d:a9:f0:9e:08:fd:99:56:06:db:8c:f5:db:14:35:29:da:fe:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 9 00:10:18 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=f3312142e94164bb660e12f44af8886b0da28cb548470fe8da12a67c86ebc3d7, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9e:a2:ea:d5:51:d2:3f:8c:92:77:6f:d0:d3: 9b:6a:6e:25:f4:62:16:84:83:6f:9e:e3:f4:b8:ad: 90:c3:6e:ab:47:87:a3:d6:d2:f9:d2:8d:49:48:37: 2d:a6:1c:fb:23:df:03:2d:98:7b:2b:d9:13:f7:97: 43:09:bd:68:fb:db:4f:bf:b9:f9:45:89:61:2b:c5: c4:2a:a6:66:9f:60:90:a6:8b:43:32:f7:3a:1f:f8: 03:37:3a:1e:35:c8:89:95:43:e6:15:3a:aa:f8:e2: 57:6a:62:fb:61:24:fc:57:16:8a:16:ee:f1:55:6a: 4a:5b:25:be:40:91:3c:6c:45:11:ef:43:13:23:ec: 31:66:11:05:c8:95:2d:64:c5:4b:c7:c3:8c:40:9d: 5a:0e:d6:65:38:94:38:77:c1:52:da:2c:78:f1:fa: 5c:fb:3b:66:6c:eb:8e:05:cb:7f:e6:77:87:14:23: 09:1c:d1:5c:e4:30:e9:46:b2:4d:be:8b:73:98:2b: b4:39:ce:09:7c:16:56:68:18:de:f5:79:49:24:aa: e9:53:eb:ca:85:94:ce:19:97:47:ed:2d:9d:b6:fa: cb:74:d3:c7:25:9a:c1:c5:34:18:e8:0f:4f:5d:c8: ef:03:7f:65:22:77:f6:0f:24:79:b5:0d:18:aa:5c: da:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F5:8D:0E:1E:45:26:3B:E4:14:2F:D4:D0:4D:0D:4E:F6:CA:12:30 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/66fb40d9-76e8-4ce1-9643-8d4c4f968118.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.0.0/16 Signature Algorithm: sha256WithRSAEncryption 18:3d:63:bb:ee:24:da:58:43:51:7a:1d:9e:4e:68:ac:69:9c: ee:89:6a:dd:9d:d3:ad:1f:1d:5c:75:a2:67:e2:8f:24:44:ef: 28:6e:20:c2:98:43:91:8a:1e:7b:83:bb:68:95:9b:4a:a7:b4: 87:5b:95:f8:b2:5b:c3:e9:d6:f6:eb:ad:5a:6f:96:42:de:e3: e6:9d:ee:e9:4c:3b:c8:38:8b:99:0e:62:a5:fb:a3:0c:bf:cc: a1:2e:7e:b9:5e:33:27:bd:2c:ff:64:a0:99:88:ac:4b:8c:a8: a8:9a:4c:5b:e4:76:ab:34:bb:86:b4:70:4e:cf:a4:79:a8:b6: e2:31:10:45:3a:13:53:ed:b3:54:2e:2f:85:8d:0a:73:41:80: 12:fd:83:e8:23:27:23:22:04:42:ca:a7:94:a0:e0:00:a0:1d: 55:79:7c:c7:64:7c:25:f9:f7:84:6f:f9:b8:fa:0d:29:42:7c: 0d:c7:cd:a1:e2:be:ac:09:6c:fa:b0:1b:e4:10:75:7e:30:03: 05:83:d9:ee:79:79:a2:4a:76:e0:82:0a:91:31:a9:3d:d2:bd: 79:86:0b:04:93:70:59:ff:54:0d:e5:ad:19:07:eb:90:03:6c: 79:d6:9d:0c:10:92:e2:72:1b:31:8f:77:4f:d1:c0:d9:ee:bd: 39:dd:0c:c8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAU2p8J4I/ZlWBtuM9dsUNSna/h4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODA5MDAxMDE4WhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzMxMjE0MmU5NDE2NGJiNjYwZTEyZjQ0YWY4ODg2YjBk YTI4Y2I1NDg0NzBmZThkYTEyYTY3Yzg2ZWJjM2Q3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUnqLq1VHSP4ySd2/Q05tqbiX0YhaEg2+e4/S4rZDDbqtH h6PW0vnSjUlINy2mHPsj3wMtmHsr2RP3l0MJvWj720+/uflFiWErxcQqpmafYJCm i0My9zof+AM3Oh41yImVQ+YVOqr44ldqYvthJPxXFooW7vFVakpbJb5AkTxsRRHv QxMj7DFmEQXIlS1kxUvHw4xAnVoO1mU4lDh3wVLaLHjx+lz7O2Zs644Fy3/md4cU Iwkc0VzkMOlGsk2+i3OYK7Q5zgl8FlZoGN71eUkkqulT68qFlM4Zl0ftLZ22+st0 08clmsHFNBjoD09dyO8Df2Uid/YPJHm1DRiqXNqzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUvfWNDh5FJjvkFC/U0E0NTvbKEjAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzY2ZmI0MGQ5LTc2ZTgtNGNlMS05NjQzLThkNGM0Zjk2ODExOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjYDANBgkqhkiG9w0BAQsFAAOCAQEAGD1ju+4k2lhDUXodnk5orGmc7olq 3Z3TrR8dXHWiZ+KPJETvKG4gwphDkYoee4O7aJWbSqe0h1uV+LJbw+nW9uutWm+W Qt7j5p3u6Uw7yDiLmQ5ipfujDL/MoS5+uV4zJ70s/2SgmYisS4yoqJpMW+R2qzS7 hrRwTs+keai24jEQRToTU+2zVC4vhY0Kc0GAEv2D6CMnIyIEQsqnlKDgAKAdVXl8 x2R8Jfn3hG/5uPoNKUJ8DcfNoeK+rAls+rAb5BB1fjADBYPZ7nl5okp24IIKkTGp PdK9eYYLBJNwWf9UDeWtGQfrkANsedadDBCS4nIbMY93T9HA2e69Od0MyA== -----END CERTIFICATE-----Generated at Sat Aug 9 22:50:29 2025 by rpki-client