$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/898b4557-ed43-42cb-99fe-3cd21033edf4.roa File: 898b4557-ed43-42cb-99fe-3cd21033edf4.roa (raw, json) Hash identifier: iAOqCB0t43swe1GKz91bbFQMC1surZ3OzQ4UV0ZayM4= Subject key identifier: D7:8A:97:13:44:50:F5:CE:E6:C3:C0:D7:2B:86:5B:48:52:B9:BA:7B Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1C421D41F5AE58D79B4680D3BE68D0807B1DB6BC Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/898b4557-ed43-42cb-99fe-3cd21033edf4.roa Signing time: Tue 29 Jul 2025 18:20:17 +0000 ROA not before: Tue 29 Jul 2025 18:20:17 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 12 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:42:1d:41:f5:ae:58:d7:9b:46:80:d3:be:68:d0:80:7b:1d:b6:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 29 18:20:17 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=a646c1307e20fd213869f0a709b3ef7a3288a5f2ee7274382fcab047c883a224, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:19:1e:f2:9e:4b:7e:a8:fd:df:94:e6:15:24: c3:b1:60:33:bb:13:99:7e:aa:09:3b:13:17:9e:46: ed:b3:d3:a4:e2:cc:4b:bb:52:37:3e:83:e2:a6:de: f1:0f:da:3e:73:b2:64:5d:73:5c:58:30:51:27:54: d6:77:dc:6e:f9:66:dc:00:e8:f7:cc:22:f4:4a:b7: 99:51:e7:de:be:a6:74:4d:69:64:70:fa:d4:8d:36: 42:ef:7d:22:0b:b7:1d:3e:00:63:00:a7:c3:6d:89: a1:a8:7f:05:80:ab:6a:62:b7:44:39:9f:fa:59:c5: 8f:d5:ec:24:df:41:07:69:23:2d:09:fe:2f:35:e7: 52:44:35:51:15:28:ab:dc:d6:a5:cb:54:97:d1:a0: 71:d1:51:a6:8d:c5:dd:6f:92:e7:3e:ac:61:29:f8: fa:f7:4e:bc:cb:24:64:c4:19:02:7e:11:06:28:2e: ff:a2:f5:18:dc:58:fd:26:1a:a8:14:18:ea:19:9a: 3c:a2:3b:09:8f:a7:38:e5:21:c6:ce:9d:2a:e6:07: d4:e2:10:33:a2:f2:10:38:2e:a2:31:ef:b2:df:af: 96:9e:c3:60:7b:55:07:39:b7:23:7d:73:75:73:1e: 74:e9:4e:fe:c5:38:36:47:1e:f7:a0:59:33:d1:6a: f8:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8A:97:13:44:50:F5:CE:E6:C3:C0:D7:2B:86:5B:48:52:B9:BA:7B X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/898b4557-ed43-42cb-99fe-3cd21033edf4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.37.0/24 Signature Algorithm: sha256WithRSAEncryption 23:a7:9a:c2:45:f3:9a:c1:ad:9e:6b:45:55:42:53:7c:dc:a1: d6:37:57:da:84:be:53:ef:03:c8:ab:99:af:2a:6c:7d:2e:1d: 11:c5:80:c2:b2:15:50:ac:c7:f9:9e:4d:87:d8:fe:03:7d:55: 50:45:41:72:56:d0:bd:1b:71:2e:1a:c5:52:8f:82:ff:fc:df: b0:68:22:f6:a6:1f:a7:7e:1d:0e:7c:65:3e:65:c3:79:bc:46: 6e:1f:d5:26:1b:81:0f:a1:9c:84:13:42:e1:78:94:48:48:e0: ba:4f:b8:a7:3f:59:d5:ad:9c:0b:c2:a1:7f:98:b5:97:aa:3b: de:35:aa:a2:f7:d9:38:eb:38:59:a7:42:9e:96:b5:d2:6e:69: 82:57:57:61:6a:64:33:f9:cc:f8:70:e3:ff:7c:df:3d:aa:af: 46:11:02:eb:a0:44:42:6a:56:4a:35:4a:1e:20:95:7b:c0:bc: 55:0a:4b:17:41:cd:41:19:27:da:a9:ab:9b:9f:a1:a0:8a:44: dc:7d:85:64:55:c7:5f:c6:44:9b:1f:03:43:45:e2:91:13:ef: 00:8a:c7:cf:cd:9c:ff:5f:01:18:e7:fe:30:6b:ce:fa:9d:e3: 97:cc:94:94:5f:ea:91:39:60:34:14:5b:3b:45:9a:9d:8f:4d: ab:dd:f9:df -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHEIdQfWuWNebRoDTvmjQgHsdtrwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI5MTgyMDE3WhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjQ2YzEzMDdlMjBmZDIxMzg2OWYwYTcwOWIzZWY3YTMy ODhhNWYyZWU3Mjc0MzgyZmNhYjA0N2M4ODNhMjI0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVGR7ynkt+qP3flOYVJMOxYDO7E5l+qgk7ExeeRu2z06Ti zEu7Ujc+g+Km3vEP2j5zsmRdc1xYMFEnVNZ33G75ZtwA6PfMIvRKt5lR596+pnRN aWRw+tSNNkLvfSILtx0+AGMAp8NtiaGofwWAq2pit0Q5n/pZxY/V7CTfQQdpIy0J /i8151JENVEVKKvc1qXLVJfRoHHRUaaNxd1vkuc+rGEp+Pr3TrzLJGTEGQJ+EQYo Lv+i9RjcWP0mGqgUGOoZmjyiOwmPpzjlIcbOnSrmB9TiEDOi8hA4LqIx77Lfr5ae w2B7VQc5tyN9c3VzHnTpTv7FODZHHvegWTPRavhLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU14qXE0RQ9c7mw8DXK4ZbSFK5unswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzg5OGI0NTU3LWVkNDMtNDJjYi05OWZlLTNjZDIxMDMzZWRmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCUwDQYJKoZIhvcNAQELBQADggEBACOnmsJF85rBrZ5rRVVCU3zcodY3 V9qEvlPvA8irma8qbH0uHRHFgMKyFVCsx/meTYfY/gN9VVBFQXJW0L0bcS4axVKP gv/837BoIvamH6d+HQ58ZT5lw3m8Rm4f1SYbgQ+hnIQTQuF4lEhI4LpPuKc/WdWt nAvCoX+YtZeqO941qqL32TjrOFmnQp6WtdJuaYJXV2FqZDP5zPhw4/983z2qr0YR AuugREJqVko1Sh4glXvAvFUKSxdBzUEZJ9qpq5ufoaCKRNx9hWRVx1/GRJsfA0NF 4pET7wCKx8/NnP9fARjn/jBrzvqd45fMlJRf6pE5YDQUWztFmp2PTavd+d8= -----END CERTIFICATE-----Generated at Mon Aug 11 04:09:21 2025 by rpki-client