$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8ac8d230-2c50-472b-aaac-384834352fef.roa File: 8ac8d230-2c50-472b-aaac-384834352fef.roa (raw, json) Hash identifier: bhm/NcnT/mzEfKLkokXte8xkSaPuVN/yWtUrV1t/3N8= Subject key identifier: 4F:95:23:BE:11:64:79:00:CC:8B:CD:FC:C5:35:E7:22:1C:92:C1:3C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6B186533F151256381C314FA7CFCEFD602B697FF Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8ac8d230-2c50-472b-aaac-384834352fef.roa Signing time: Tue 29 Jul 2025 18:30:20 +0000 ROA not before: Tue 29 Jul 2025 18:30:20 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 12 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:18:65:33:f1:51:25:63:81:c3:14:fa:7c:fc:ef:d6:02:b6:97:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 29 18:30:20 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=8acb3bb06f0b01840e1352a4ce3aee424e013a8d8ad1783ff5f2b5f4912287ad, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6a:f4:a9:be:c9:0a:8f:82:5a:94:ab:03:10: 70:28:f6:ec:f0:4b:73:bb:2c:59:dc:31:78:62:20: aa:9a:25:ab:f4:d3:38:92:b1:2a:16:81:ed:88:08: ec:34:e4:82:6d:35:f5:55:c4:f5:f8:71:f8:69:2c: e2:3f:67:67:2f:42:3e:49:25:7a:7e:d7:9a:d6:28: ec:5d:1d:47:9a:53:0a:60:bf:bc:34:c1:44:2e:31: b0:30:10:44:e0:e6:08:17:35:80:07:11:72:70:09: 0c:6f:f5:76:43:84:60:9b:c7:12:17:8f:56:5d:b3: 2f:4b:1c:9b:d7:bd:0e:6a:41:39:fd:11:a2:fa:11: b4:70:a0:85:e6:ea:d3:26:8f:9c:0b:90:4a:37:bb: 48:34:66:75:20:79:bb:8a:36:c2:b2:55:5a:e6:d4: 98:29:61:6a:ec:3c:09:f0:1f:78:8f:97:eb:f2:4c: c1:e9:0e:47:88:5b:26:42:bd:11:3d:ae:98:e7:b8: 64:d0:94:6a:1c:11:ab:59:ca:ca:59:13:ca:f8:e6: b8:5d:97:2e:bd:38:e2:43:8a:f3:ee:7a:b7:87:1d: 2b:3c:6b:c7:0b:16:84:4e:7f:38:d0:ae:5b:14:84: bc:57:4a:15:6a:7d:f7:53:13:38:c0:64:53:1f:d4: 8f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:95:23:BE:11:64:79:00:CC:8B:CD:FC:C5:35:E7:22:1C:92:C1:3C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8ac8d230-2c50-472b-aaac-384834352fef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.36.0/24 Signature Algorithm: sha256WithRSAEncryption 67:08:bd:a5:ef:ed:2c:b5:9a:a5:44:ed:89:d1:d5:45:36:f3: b0:db:46:5d:01:60:52:80:5c:a3:1f:99:0c:74:46:64:07:1b: 14:b6:a1:7b:da:25:61:ae:91:2e:f7:88:28:7a:ed:0c:5b:11: 9c:64:d9:e8:bd:db:43:81:bd:e0:bb:c1:f4:62:16:d5:0c:cb: 3f:b8:6e:3f:eb:f3:b7:0d:87:d5:5a:14:da:32:7b:1d:87:d6: 5a:e1:2a:59:a7:71:36:1f:01:ed:f0:a0:04:1e:85:c9:21:27: 55:b7:44:f8:75:5a:95:1e:64:a7:3d:4b:1f:0f:94:4c:5a:2c: 84:89:94:f0:c6:54:16:d4:57:e6:5c:92:7a:0a:96:fb:cf:ee: 76:bb:3c:81:36:87:e0:43:76:e8:c1:fe:40:04:20:9a:33:90: 95:a9:55:df:b8:e8:6f:ce:db:6b:04:25:9c:81:65:6d:b1:fd: 56:11:4c:42:da:ae:f0:12:1c:25:b6:6e:5e:b7:79:da:5d:db: eb:f2:cf:92:fb:34:f1:9e:31:e5:78:bd:e5:b8:07:7f:dd:01: 10:43:52:3c:d6:47:36:7a:b2:7f:44:e9:54:a5:b8:d4:22:c2: 18:1e:22:7d:ad:7b:71:2e:16:9a:6b:e9:fe:ba:4d:ea:c2:8f: 5b:b4:5c:0c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaxhlM/FRJWOBwxT6fPzv1gK2l/8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI5MTgzMDIwWhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YWNiM2JiMDZmMGIwMTg0MGUxMzUyYTRjZTNhZWU0MjRl MDEzYThkOGFkMTc4M2ZmNWYyYjVmNDkxMjI4N2FkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtavSpvskKj4JalKsDEHAo9uzwS3O7LFncMXhiIKqaJav0 0ziSsSoWge2ICOw05IJtNfVVxPX4cfhpLOI/Z2cvQj5JJXp+15rWKOxdHUeaUwpg v7w0wUQuMbAwEETg5ggXNYAHEXJwCQxv9XZDhGCbxxIXj1Zdsy9LHJvXvQ5qQTn9 EaL6EbRwoIXm6tMmj5wLkEo3u0g0ZnUgebuKNsKyVVrm1JgpYWrsPAnwH3iPl+vy TMHpDkeIWyZCvRE9rpjnuGTQlGocEatZyspZE8r45rhdly69OOJDivPuereHHSs8 a8cLFoROfzjQrlsUhLxXShVqffdTEzjAZFMf1I+rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUT5UjvhFkeQDMi838xTXnIhySwTwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhhYzhkMjMwLTJjNTAtNDcyYi1hYWFjLTM4NDgzNDM1MmZlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCQwDQYJKoZIhvcNAQELBQADggEBAGcIvaXv7Sy1mqVE7YnR1UU287Db Rl0BYFKAXKMfmQx0RmQHGxS2oXvaJWGukS73iCh67QxbEZxk2ei920OBveC7wfRi FtUMyz+4bj/r87cNh9VaFNoyex2H1lrhKlmncTYfAe3woAQehckhJ1W3RPh1WpUe ZKc9Sx8PlExaLISJlPDGVBbUV+ZcknoKlvvP7na7PIE2h+BDdujB/kAEIJozkJWp Vd+46G/O22sEJZyBZW2x/VYRTELarvASHCW2bl63edpd2+vyz5L7NPGeMeV4veW4 B3/dARBDUjzWRzZ6sn9E6VSluNQiwhgeIn2te3EuFppr6f66TerCj1u0XAw= -----END CERTIFICATE-----Generated at Sun Aug 10 18:19:48 2025 by rpki-client