$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/85bd9bca-c692-4bac-9212-6cc968f995d7.roa File: 85bd9bca-c692-4bac-9212-6cc968f995d7.roa (raw, json) Hash identifier: gXRt68XAfdd3+AxprVdqkG3qXl7l8zCXobuXsoz3Gzo= Subject key identifier: 1B:FC:29:40:C3:9E:22:67:0E:68:14:15:88:28:93:EB:A4:38:2E:5B Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4709865919F0C84634B3B8BF073CC4AC0DCD9FB6 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/85bd9bca-c692-4bac-9212-6cc968f995d7.roa Signing time: Fri 25 Jul 2025 16:40:51 +0000 ROA not before: Fri 25 Jul 2025 16:40:51 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:09:86:59:19:f0:c8:46:34:b3:b8:bf:07:3c:c4:ac:0d:cd:9f:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 25 16:40:51 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=97c96af9e53f1d30a3b964d6ec5e0d0179d4330cd392b39e1a87c681d11b4a6c, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fe:4c:20:e9:56:a0:2a:45:e0:cc:75:d3:4a: d0:16:d5:31:55:cc:c8:66:d3:7d:41:9d:21:4a:9d: 0e:5e:01:d0:31:67:5b:9b:c6:7c:83:b1:e0:8d:42: d8:f8:19:5d:0a:f3:70:3c:2c:b9:07:8e:af:d0:16: 55:b5:14:74:bc:6f:d9:18:35:90:b9:1c:a5:56:2a: 7c:83:58:a0:ed:65:9b:9c:53:82:69:22:a5:f6:3c: c8:5c:24:c0:0f:a3:e0:a2:40:3e:15:26:a4:b5:c5: 46:e6:78:65:a7:d7:e8:1b:68:9b:bc:8e:d7:83:d7: 2d:68:64:11:76:16:48:e2:c7:9a:3d:3c:ff:9f:e3: cc:62:95:f0:4e:81:4a:35:4f:b7:97:05:54:6a:cf: bf:e8:14:fb:6b:45:e1:e6:07:cf:a1:0d:63:ba:25: ac:3c:9f:0a:c0:75:a6:c3:f2:f6:93:00:4f:18:31: ee:a2:66:d2:08:43:69:0e:9f:1d:d6:e9:34:09:0d: a3:53:b4:15:6d:14:14:d9:df:b9:0f:1d:38:46:1d: 22:98:38:3e:e8:9d:37:41:04:b4:d2:25:b8:3e:b1: e5:ed:c2:98:00:57:3f:92:ab:96:51:b6:c7:b3:78: aa:45:e3:4f:8d:ae:35:fb:db:c9:cd:74:f4:52:7b: af:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:FC:29:40:C3:9E:22:67:0E:68:14:15:88:28:93:EB:A4:38:2E:5B X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/85bd9bca-c692-4bac-9212-6cc968f995d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.250.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:7a:45:2b:f1:d7:79:1d:ee:45:c0:03:a0:d7:4a:fd:5c:e4: fc:fa:72:65:c2:a6:ef:37:9f:fa:a4:cd:b2:1c:ee:0a:75:5a: f2:93:c1:c3:9f:77:91:c3:06:91:ef:8f:ad:54:3b:29:4c:c1: ec:3d:ae:91:e9:22:b2:54:ea:7c:3e:04:dc:cc:9d:ce:9a:59: 0f:7e:78:cc:07:d8:c2:96:b8:7e:88:b8:9d:15:85:56:7c:0f: 36:c6:ef:3c:a7:33:c9:b6:62:8b:eb:18:bb:0d:1f:4f:99:66: e8:af:6d:62:a1:f4:b6:d3:57:0b:8f:e6:f9:a7:b2:f5:79:07: b3:85:fb:34:f8:d4:fa:c6:8e:f3:86:9c:9e:de:25:ca:a7:a9: ce:ff:f5:53:b6:78:7c:8c:0f:00:e4:97:66:73:d5:17:eb:b6: 9c:f8:36:b8:7b:b1:76:71:06:e2:31:4a:4f:55:dd:d8:75:2f: ea:af:2c:b3:ea:28:47:fe:bf:b4:b7:2d:2e:93:52:81:fb:91: 37:1c:37:91:27:25:72:d7:82:1f:26:8c:08:5e:2a:48:11:b5: 9c:66:a5:ff:ba:a4:a5:60:8e:8e:44:09:be:41:b5:4f:db:2c: 21:a8:e3:f0:57:ef:0c:53:85:c9:c7:ca:4e:2f:9b:9c:45:98: 3b:66:55:fc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURwmGWRnwyEY0s7i/BzzErA3Nn7YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI1MTY0MDUxWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2M5NmFmOWU1M2YxZDMwYTNiOTY0ZDZlYzVlMGQwMTc5 ZDQzMzBjZDM5MmIzOWUxYTg3YzY4MWQxMWI0YTZjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCe/kwg6VagKkXgzHXTStAW1TFVzMhm031BnSFKnQ5eAdAx Z1ubxnyDseCNQtj4GV0K83A8LLkHjq/QFlW1FHS8b9kYNZC5HKVWKnyDWKDtZZuc U4JpIqX2PMhcJMAPo+CiQD4VJqS1xUbmeGWn1+gbaJu8jteD1y1oZBF2Fkjix5o9 PP+f48xilfBOgUo1T7eXBVRqz7/oFPtrReHmB8+hDWO6Jaw8nwrAdabD8vaTAE8Y Me6iZtIIQ2kOnx3W6TQJDaNTtBVtFBTZ37kPHThGHSKYOD7onTdBBLTSJbg+seXt wpgAVz+Sq5ZRtsezeKpF40+NrjX728nNdPRSe6/lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG/wpQMOeImcOaBQViCiT66Q4LlswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzg1YmQ5YmNhLWM2OTItNGJhYy05MjEyLTZjYzk2OGY5OTVkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPowDQYJKoZIhvcNAQELBQADggEBAI96RSvx13kd7kXAA6DXSv1c5Pz6 cmXCpu83n/qkzbIc7gp1WvKTwcOfd5HDBpHvj61UOylMwew9rpHpIrJU6nw+BNzM nc6aWQ9+eMwH2MKWuH6IuJ0VhVZ8DzbG7zynM8m2YovrGLsNH0+ZZuivbWKh9LbT VwuP5vmnsvV5B7OF+zT41PrGjvOGnJ7eJcqnqc7/9VO2eHyMDwDkl2Zz1Rfrtpz4 Nrh7sXZxBuIxSk9V3dh1L+qvLLPqKEf+v7S3LS6TUoH7kTccN5EnJXLXgh8mjAhe KkgRtZxmpf+6pKVgjo5ECb5BtU/bLCGo4/BX7wxThcnHyk4vm5xFmDtmVfw= -----END CERTIFICATE-----Generated at Sun Aug 10 04:28:08 2025 by rpki-client