$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6df93fb2-679f-4247-81c7-fd108c812488.roa File: 6df93fb2-679f-4247-81c7-fd108c812488.roa (raw, json) Hash identifier: q9E449DIwtHdTz5mSfCpvCVQZpv6pu7cG78IHCjMqVc= Subject key identifier: DD:FD:E2:EA:99:22:A1:E7:E1:31:66:2C:A3:7B:42:34:E4:09:4C:67 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6D76F4C1B9AB081A694990C2242F218C9244003B Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6df93fb2-679f-4247-81c7-fd108c812488.roa Signing time: Fri 25 Jul 2025 16:41:15 +0000 ROA not before: Fri 25 Jul 2025 16:41:15 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:76:f4:c1:b9:ab:08:1a:69:49:90:c2:24:2f:21:8c:92:44:00:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 25 16:41:15 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=df131dff0f87c8356a2270b7baa87c1f928627175d7100c9bc859ce649c42f31, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:35:84:b7:e2:f4:e3:d9:21:93:b0:34:5a:06: 85:38:39:3a:d0:74:35:15:ca:e7:40:f6:9f:25:1a: 57:d7:c7:8e:ae:4a:0b:79:88:7b:f4:6f:77:6e:23: da:79:8c:bc:f8:17:ea:b7:8c:5f:48:be:7f:9b:88: 25:5c:da:9d:35:09:7b:c7:a9:4b:cc:c5:23:32:20: c2:72:27:34:66:68:4e:23:48:f9:6a:f5:88:64:31: e2:11:ac:c9:10:56:ac:c4:07:6b:aa:c5:c7:4d:1d: 0e:35:d9:cc:08:ff:8a:35:e9:5c:72:59:62:86:db: 73:fd:71:51:d0:e0:e0:b9:7b:92:a3:17:b2:9f:5f: 4a:45:09:7c:8f:21:7a:ab:75:4f:37:9d:60:7a:3a: 84:0c:10:6b:6f:26:b1:a5:e2:82:a9:1f:39:d9:70: 1e:82:44:c2:ea:8a:aa:da:7a:97:ed:33:3e:f6:67: f5:e3:b8:1b:ff:10:dc:c4:f4:48:f7:80:4f:95:b2: 49:b7:f8:17:a2:2c:86:7a:32:f8:9a:22:49:71:86: c0:bb:a3:7c:bd:94:c9:33:28:61:46:2d:f4:4f:f3: c0:a1:62:f3:79:c2:8a:d5:9d:da:4c:18:bf:04:fd: df:1a:25:37:3e:a4:3e:61:b9:df:1d:c0:e0:29:d5: aa:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:FD:E2:EA:99:22:A1:E7:E1:31:66:2C:A3:7B:42:34:E4:09:4C:67 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6df93fb2-679f-4247-81c7-fd108c812488.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.128.0/20 Signature Algorithm: sha256WithRSAEncryption 01:c9:1b:d3:b6:2a:ba:72:f8:31:25:91:34:4c:51:6e:c1:b5: ce:8c:1b:c3:44:54:94:2d:ae:82:d3:b5:6f:68:ef:59:8e:cd: 6f:88:3e:74:ba:ec:45:53:ce:94:b0:ae:20:6e:9a:f2:4e:37: bc:81:2a:d0:02:ef:53:11:9b:51:38:97:27:d7:13:0e:d4:c9: 55:45:41:42:72:03:37:7d:ea:a0:f8:36:9b:b3:ac:ce:16:07: f5:53:33:95:f2:8a:c5:54:ea:b4:69:a6:0d:e5:1b:17:1c:03: a6:77:5a:51:2b:78:e7:68:da:bc:bd:58:0e:56:c5:4a:27:cd: 17:e9:dc:97:bd:f3:b3:24:00:f1:32:f6:8b:f8:56:4c:a2:a7: 80:d0:c6:63:06:47:b1:f1:49:d5:1f:ea:ab:23:48:fe:96:12: 76:8f:0c:be:ae:13:8a:ea:4a:25:3e:d5:6e:3b:fd:96:5e:7b: 41:84:07:7d:29:df:be:9a:31:bc:f9:5f:2c:1c:c7:0c:f8:28: 47:1c:ae:bf:b5:1e:aa:c6:13:a2:62:ed:20:0a:d8:3e:43:00: a1:4c:39:cf:5e:fa:32:9a:dd:65:1d:be:47:d9:10:ef:11:7b: 3c:c1:d0:4b:f6:3d:ee:d2:00:8e:48:75:f3:04:6b:12:46:13: 32:db:21:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbXb0wbmrCBppSZDCJC8hjJJEADswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI1MTY0MTE1WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjEzMWRmZjBmODdjODM1NmEyMjcwYjdiYWE4N2MxZjky ODYyNzE3NWQ3MTAwYzliYzg1OWNlNjQ5YzQyZjMxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKNYS34vTj2SGTsDRaBoU4OTrQdDUVyudA9p8lGlfXx46u Sgt5iHv0b3duI9p5jLz4F+q3jF9Ivn+biCVc2p01CXvHqUvMxSMyIMJyJzRmaE4j SPlq9YhkMeIRrMkQVqzEB2uqxcdNHQ412cwI/4o16VxyWWKG23P9cVHQ4OC5e5Kj F7KfX0pFCXyPIXqrdU83nWB6OoQMEGtvJrGl4oKpHznZcB6CRMLqiqraepftMz72 Z/XjuBv/ENzE9Ej3gE+Vskm3+BeiLIZ6MviaIklxhsC7o3y9lMkzKGFGLfRP88Ch YvN5worVndpMGL8E/d8aJTc+pD5hud8dwOAp1aqnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3f3i6pkioefhMWYso3tCNOQJTGcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzZkZjkzZmIyLTY3OWYtNDI0Ny04MWM3LWZkMTA4YzgxMjQ4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYIAwDQYJKoZIhvcNAQELBQADggEBAAHJG9O2Krpy+DElkTRMUW7Btc6M G8NEVJQtroLTtW9o71mOzW+IPnS67EVTzpSwriBumvJON7yBKtAC71MRm1E4lyfX Ew7UyVVFQUJyAzd96qD4NpuzrM4WB/VTM5XyisVU6rRppg3lGxccA6Z3WlEreOdo 2ry9WA5WxUonzRfp3Je987MkAPEy9ov4Vkyip4DQxmMGR7HxSdUf6qsjSP6WEnaP DL6uE4rqSiU+1W47/ZZee0GEB30p376aMbz5Xywcxwz4KEccrr+1HqrGE6Ji7SAK 2D5DAKFMOc9e+jKa3WUdvkfZEO8RezzB0Ev2Pe7SAI5IdfMEaxJGEzLbIdw= -----END CERTIFICATE-----Generated at Fri Aug 8 13:07:33 2025 by rpki-client