$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa File: 87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa (raw, json) Hash identifier: nS0ZIqNmKF1q7ytPhYdvlPsZToiR9+IGYJpLeNcsxlE= Subject key identifier: 2A:B8:5F:77:AD:C6:0A:09:5C:54:6E:38:EB:40:10:88:75:D4:8C:CA Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 464DABFE26EDBAA6472C0962F1563C65AF4EBFB4 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa Signing time: Fri 25 Jul 2025 16:41:25 +0000 ROA not before: Fri 25 Jul 2025 16:41:25 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:4d:ab:fe:26:ed:ba:a6:47:2c:09:62:f1:56:3c:65:af:4e:bf:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 25 16:41:25 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=fa2a17e41306fdcf281df0e6b89f97c2a1e43d072e5af529d1c98f843d5ebd5d, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:50:d4:1e:55:5b:32:ce:b9:78:17:fd:6b:93: fd:29:2b:62:c3:fc:a8:d7:0d:a2:c6:41:8d:f0:fa: a9:b0:3a:fe:27:81:c2:7b:e8:09:b0:74:b1:cd:84: 44:e5:4d:35:cc:d8:aa:61:d1:6f:fe:51:e5:e6:a6: ab:4a:21:c9:9c:f6:f4:21:ef:50:fa:51:05:e9:72: 8c:6a:e1:00:dc:ab:a8:3f:3c:80:ce:d1:73:ec:cb: 93:e7:91:76:4c:9c:fc:fe:42:ae:be:4b:1f:42:0b: 9c:6c:b0:9e:74:17:2c:fe:8e:dd:48:88:fd:dc:fe: 03:cc:71:f7:ec:29:01:45:cc:43:f6:6d:4b:7c:f0: b9:90:0f:24:23:60:d6:cb:f6:fd:4a:c6:71:b1:92: c8:34:a4:04:1f:54:9d:fe:d7:ea:8c:12:e9:77:33: 97:a0:e6:bf:ee:88:3b:a7:f7:15:71:9b:3e:fd:e9: d6:25:6f:93:65:18:eb:76:37:21:c0:9f:47:dc:59: 01:b1:d4:27:f6:2a:4e:e6:b9:3e:3e:e1:47:58:06: 86:40:5b:f2:f8:c4:59:a2:ba:db:70:eb:4d:8e:aa: 6e:8e:54:38:0f:f5:31:19:33:81:bc:18:3e:b5:5a: cc:3b:b5:78:45:03:77:17:50:0e:77:7e:08:87:e2: 4d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B8:5F:77:AD:C6:0A:09:5C:54:6E:38:EB:40:10:88:75:D4:8C:CA X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.112.0/20 Signature Algorithm: sha256WithRSAEncryption 56:56:04:58:6d:8f:48:97:0a:c3:d4:ce:a8:35:27:43:c1:d9: b8:70:b3:47:1f:3a:14:80:4a:e9:40:1b:30:0c:c9:e7:1f:f9: 20:53:65:f1:9e:6e:b5:51:71:6c:8e:af:fa:04:9e:95:52:90: f6:62:04:ce:7a:c1:4f:ba:aa:e7:97:6f:69:85:8d:db:8b:62: 74:90:68:32:56:93:77:51:aa:bb:ac:80:b1:3b:88:dc:f9:4f: 41:c4:d9:cc:a1:c7:b3:23:8d:40:1e:df:00:50:c6:2a:51:85: ce:66:fa:1a:67:db:b9:d9:78:cc:1a:ae:d9:68:7f:86:2d:71: 7f:86:bd:b5:52:79:54:05:14:eb:0b:63:c2:29:d0:ac:06:59: 2b:48:d3:9d:4d:61:3e:7f:03:e5:9b:98:d0:7c:0d:00:d3:29: 8c:99:3a:10:96:f6:7f:e6:e5:0b:97:94:d7:a9:6f:81:0d:6c: 1e:26:4b:11:4d:ca:cb:e5:73:30:e2:5b:0b:31:76:6f:c7:7e: e6:e0:de:09:4e:95:12:d3:d6:02:f1:94:af:b1:07:e9:4d:3f: 8d:69:04:87:e0:ad:2b:ee:56:ed:6a:70:f3:f1:64:87:42:f6: 73:a1:99:76:72:72:bb:cb:1c:71:ee:4c:d9:96:56:f2:2a:48: e0:e8:95:94 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURk2r/ibtuqZHLAli8VY8Za9Ov7QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI1MTY0MTI1WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTJhMTdlNDEzMDZmZGNmMjgxZGYwZTZiODlmOTdjMmEx ZTQzZDA3MmU1YWY1MjlkMWM5OGY4NDNkNWViZDVkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQUNQeVVsyzrl4F/1rk/0pK2LD/KjXDaLGQY3w+qmwOv4n gcJ76AmwdLHNhETlTTXM2Kph0W/+UeXmpqtKIcmc9vQh71D6UQXpcoxq4QDcq6g/ PIDO0XPsy5PnkXZMnPz+Qq6+Sx9CC5xssJ50Fyz+jt1IiP3c/gPMcffsKQFFzEP2 bUt88LmQDyQjYNbL9v1KxnGxksg0pAQfVJ3+1+qMEul3M5eg5r/uiDun9xVxmz79 6dYlb5NlGOt2NyHAn0fcWQGx1Cf2Kk7muT4+4UdYBoZAW/L4xFmiuttw602Oqm6O VDgP9TEZM4G8GD61Wsw7tXhFA3cXUA53fgiH4k09AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKrhfd63GCglcVG4460AQiHXUjMowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzg3ZTQwY2E3LTRiZDUtNGE4ZS1iYWJjLWVmNDUwZDI1YTBjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYHAwDQYJKoZIhvcNAQELBQADggEBAFZWBFhtj0iXCsPUzqg1J0PB2bhw s0cfOhSASulAGzAMyecf+SBTZfGebrVRcWyOr/oEnpVSkPZiBM56wU+6queXb2mF jduLYnSQaDJWk3dRqrusgLE7iNz5T0HE2cyhx7MjjUAe3wBQxipRhc5m+hpn27nZ eMwartlof4YtcX+GvbVSeVQFFOsLY8Ip0KwGWStI051NYT5/A+WbmNB8DQDTKYyZ OhCW9n/m5QuXlNepb4ENbB4mSxFNysvlczDiWwsxdm/Hfubg3glOlRLT1gLxlK+x B+lNP41pBIfgrSvuVu1qcPPxZIdC9nOhmXZycrvLHHHuTNmWVvIqSODolZQ= -----END CERTIFICATE-----Generated at Wed Aug 6 05:29:39 2025 by rpki-client