$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa File: 6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa (raw, json) Hash identifier: XKPJroO4IRH9XnIwH87APrhGwvaas2Vani8CHyDh6fg= Subject key identifier: 6B:C2:A5:B5:A6:5A:3F:32:6D:71:CB:E3:4F:1E:F6:28:B7:72:CB:67 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 60276CA29455313D3964D1BFD031C4EFE492DFD1 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa Signing time: Fri 25 Jul 2025 16:40:55 +0000 ROA not before: Fri 25 Jul 2025 16:40:55 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:27:6c:a2:94:55:31:3d:39:64:d1:bf:d0:31:c4:ef:e4:92:df:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 25 16:40:55 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=03bbab5d59fdca2cfa5fff153e3a454ce4c8cd42fe4cfca77573ea57b72b5686, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7f:9a:d0:2c:e0:18:b3:a3:f0:89:ca:31:09: d4:4d:29:58:38:b7:cf:8f:dd:42:ee:d0:04:f3:fa: 2c:7b:87:96:a0:07:4d:53:c1:fa:f1:25:cc:96:df: dd:1d:fa:90:b2:23:47:9e:fb:e7:f9:74:9d:dd:d6: 89:fd:1e:b0:cf:f3:fd:08:20:e8:6d:6c:b4:c2:bc: 63:c4:af:83:5b:83:65:3e:85:94:1d:bf:e0:4e:18: 28:4e:4a:dd:c4:f8:56:a8:50:80:73:a3:e4:99:aa: 4d:b8:06:90:b2:5c:48:7f:ed:3c:58:55:34:39:29: c0:e4:fb:4e:cf:a4:bd:e9:18:e0:76:c7:64:fa:f5: 66:c8:77:a9:b1:87:0f:7a:8b:10:19:dc:4e:06:98: ac:a0:94:3a:5e:e8:07:c9:21:01:8c:dc:76:21:bd: ed:3d:e0:b4:60:1f:6f:22:e4:63:a2:9a:17:01:96: 67:8e:8d:10:26:92:c3:be:d3:70:cd:1d:d5:66:74: f8:cc:25:b8:af:fd:16:82:63:ce:41:ec:7d:8f:65: 75:ca:af:2c:32:69:dd:1a:b0:c6:df:dd:b4:8f:09: f7:90:dd:6b:35:8d:8a:65:60:2f:f2:bf:5e:68:9b: 39:9c:92:be:fd:be:8f:8c:59:b0:f4:ee:c7:3f:c9: 28:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C2:A5:B5:A6:5A:3F:32:6D:71:CB:E3:4F:1E:F6:28:B7:72:CB:67 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.240.0/24 Signature Algorithm: sha256WithRSAEncryption 67:f7:82:7f:25:c0:04:4b:e0:76:6a:17:c3:00:89:1e:7e:be: 09:10:b9:6a:56:94:78:69:b9:7b:d6:98:90:8e:01:6d:77:34: 4e:e2:e8:00:fd:f1:0c:20:c2:06:d4:9e:7e:97:b0:b3:6b:9a: 32:89:a0:42:72:0c:ba:7e:51:97:6b:c7:55:00:c1:bc:49:36: a0:e7:b0:87:2a:b5:0e:c0:3e:2a:b8:d6:f7:69:a7:ad:48:ef: 15:a7:2e:c1:78:46:ab:e9:b0:4b:1e:bc:11:16:27:2c:5f:c5: a7:72:ec:ae:3d:e2:0f:27:6c:fe:9f:ff:fd:95:6e:28:32:fc: 07:03:43:d1:b3:85:2b:6c:a4:4a:f7:b6:5e:21:ff:c2:e1:73: a4:1a:5c:d6:e2:fc:4d:6e:5c:a2:16:42:74:48:12:bb:52:4f: 92:91:cf:49:60:db:26:e1:61:09:62:c9:bb:e8:c3:6e:9f:4a: 64:1f:af:66:35:29:34:2a:82:6f:11:4e:9a:6b:c1:ef:47:fd: 75:f7:ae:8d:a0:59:cb:2f:37:80:56:4f:ac:43:89:b9:ab:fc: a8:3b:f9:de:78:73:dc:cb:d4:f8:ee:8b:19:c5:ee:3f:a7:fe: ca:c5:ff:4d:0a:ac:e9:2c:b7:b5:db:e6:90:a4:81:4f:46:98: 3c:75:1a:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYCdsopRVMT05ZNG/0DHE7+SS39EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI1MTY0MDU1WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwM2JiYWI1ZDU5ZmRjYTJjZmE1ZmZmMTUzZTNhNDU0Y2U0 YzhjZDQyZmU0Y2ZjYTc3NTczZWE1N2I3MmI1Njg2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/f5rQLOAYs6PwicoxCdRNKVg4t8+P3ULu0ATz+ix7h5ag B01TwfrxJcyW390d+pCyI0ee++f5dJ3d1on9HrDP8/0IIOhtbLTCvGPEr4Nbg2U+ hZQdv+BOGChOSt3E+FaoUIBzo+SZqk24BpCyXEh/7TxYVTQ5KcDk+07PpL3pGOB2 x2T69WbId6mxhw96ixAZ3E4GmKyglDpe6AfJIQGM3HYhve094LRgH28i5GOimhcB lmeOjRAmksO+03DNHdVmdPjMJbiv/RaCY85B7H2PZXXKrywyad0asMbf3bSPCfeQ 3Ws1jYplYC/yv15omzmckr79vo+MWbD07sc/ySjHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUa8KltaZaPzJtccvjTx72KLdyy2cwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzZhZDNhMThhLTkzZmUtNGZhZS1hYWZkLTE2MWQ0NjhhMzJlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPAwDQYJKoZIhvcNAQELBQADggEBAGf3gn8lwARL4HZqF8MAiR5+vgkQ uWpWlHhpuXvWmJCOAW13NE7i6AD98QwgwgbUnn6XsLNrmjKJoEJyDLp+UZdrx1UA wbxJNqDnsIcqtQ7APiq41vdpp61I7xWnLsF4RqvpsEsevBEWJyxfxady7K494g8n bP6f//2Vbigy/AcDQ9GzhStspEr3tl4h/8Lhc6QaXNbi/E1uXKIWQnRIErtST5KR z0lg2ybhYQliybvow26fSmQfr2Y1KTQqgm8RTpprwe9H/XX3ro2gWcsvN4BWT6xD ibmr/Kg7+d54c9zL1PjuixnF7j+n/srF/00KrOkst7Xb5pCkgU9GmDx1Gso= -----END CERTIFICATE-----Generated at Fri Aug 8 20:42:44 2025 by rpki-client