$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b525483-36f2-4848-833e-c43050341141.roa File: 8b525483-36f2-4848-833e-c43050341141.roa (raw, json) Hash identifier: Yie593v/xzfL8cKxQmv5eaMl2UgLMglYBzEhz7nTk94= Subject key identifier: AC:F0:D4:47:CD:DE:CD:7B:AA:37:1C:1D:21:6F:A3:A7:C4:39:C9:D7 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2AB721E3E524477209856042D9CCC38E80D012EA Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b525483-36f2-4848-833e-c43050341141.roa Signing time: Fri 25 Jul 2025 16:41:22 +0000 ROA not before: Fri 25 Jul 2025 16:41:22 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 12 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:b7:21:e3:e5:24:47:72:09:85:60:42:d9:cc:c3:8e:80:d0:12:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 25 16:41:22 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=0da19181c8bcf5c430f94ba7b9912adeacebc5b2579da3314bb5f917ea480293, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:dc:41:b6:72:79:e1:2a:e1:57:ca:9c:a8:ac: 97:5b:af:30:45:c4:89:b5:3a:db:c0:df:12:8d:48: 47:5b:14:15:4c:50:00:f4:78:5f:e8:1a:97:00:d2: 66:f0:51:58:1c:fd:6b:88:02:69:07:9f:dc:03:27: 2b:21:d7:fb:48:b5:bd:7c:83:d3:63:60:9b:72:37: c5:c9:33:be:c1:c7:75:00:5a:87:3e:06:fa:7e:1d: 28:02:ab:f9:d1:5e:79:fe:75:ab:56:fa:f6:f5:11: 4d:c8:2a:dd:10:c2:82:85:09:4e:ed:5b:51:2e:af: 13:69:22:c5:fc:a9:d8:92:71:2c:7d:70:ef:e8:dc: 3d:00:76:3b:d5:b0:1c:5c:98:f9:75:eb:43:7a:77: c6:6a:74:bf:7c:de:b5:17:59:d7:63:e1:55:cb:70: 0d:59:89:72:d0:75:20:6c:70:fb:6a:e4:e6:b4:c0: 33:cb:48:cd:da:ca:5f:48:41:b9:93:8d:79:78:7f: d4:0f:e8:7d:04:54:21:ec:12:fb:56:e0:4a:5b:ef: a4:d9:4d:13:82:0b:53:13:c9:7b:33:b4:3f:c1:68: c9:4d:87:e0:cc:97:be:41:0c:cb:d5:95:7f:0a:57: 65:21:76:3c:b8:1e:93:10:d0:0c:f8:d5:2b:f7:ff: 68:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:F0:D4:47:CD:DE:CD:7B:AA:37:1C:1D:21:6F:A3:A7:C4:39:C9:D7 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b525483-36f2-4848-833e-c43050341141.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.52.0/22 Signature Algorithm: sha256WithRSAEncryption 78:47:fd:fe:56:b5:09:f3:c9:21:28:ab:f5:a0:c1:8e:e0:2c: 40:5e:fa:15:a3:5a:32:6f:ac:43:36:13:1c:8a:2b:e4:1c:68: a2:fe:32:d5:af:c3:43:20:8e:83:10:60:1f:78:1d:e7:38:0e: b8:81:c4:62:34:f3:72:a5:db:5c:99:cb:31:4e:43:c7:11:47: 5a:ca:19:44:6a:b2:2c:93:5f:32:33:33:06:6a:6b:83:69:b6: 30:04:69:1a:d4:67:f8:f3:66:46:b3:1c:51:e1:43:4e:88:0b: b5:c7:74:68:07:99:bc:fa:47:47:88:47:c3:a5:80:12:d1:46: bd:f2:da:21:22:75:40:77:36:f2:a7:66:82:6b:65:4c:54:2a: 02:b5:ae:1d:3c:2d:fc:c9:4a:fe:7b:8a:8c:79:9c:f4:1e:41: 8e:38:73:ce:42:26:2a:3d:5b:1e:d2:33:15:71:52:30:50:77: 03:77:c6:c9:4e:93:ae:05:bb:25:91:dc:e7:dd:f6:f9:3a:0f: 54:d0:5d:0a:6f:d5:ed:0f:99:f3:4d:c7:62:f8:3c:3c:b0:36: 6b:bb:19:8d:1d:85:dc:0c:50:fb:69:99:a4:69:ee:fe:bd:be: cb:5a:e5:ab:7a:50:71:37:83:e5:3f:8f:f3:ae:7a:2a:dc:03: 7f:fe:41:25 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKrch4+UkR3IJhWBC2czDjoDQEuowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI1MTY0MTIyWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZGExOTE4MWM4YmNmNWM0MzBmOTRiYTdiOTkxMmFkZWFj ZWJjNWIyNTc5ZGEzMzE0YmI1ZjkxN2VhNDgwMjkzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw3EG2cnnhKuFXypyorJdbrzBFxIm1OtvA3xKNSEdbFBVM UAD0eF/oGpcA0mbwUVgc/WuIAmkHn9wDJysh1/tItb18g9NjYJtyN8XJM77Bx3UA Woc+Bvp+HSgCq/nRXnn+datW+vb1EU3IKt0QwoKFCU7tW1EurxNpIsX8qdiScSx9 cO/o3D0AdjvVsBxcmPl160N6d8ZqdL983rUXWddj4VXLcA1ZiXLQdSBscPtq5Oa0 wDPLSM3ayl9IQbmTjXl4f9QP6H0EVCHsEvtW4Epb76TZTROCC1MTyXsztD/BaMlN h+DMl75BDMvVlX8KV2Uhdjy4HpMQ0Az41Sv3/2ipAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrPDUR83ezXuqNxwdIW+jp8Q5ydcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhiNTI1NDgzLTM2ZjItNDg0OC04MzNlLWM0MzA1MDM0MTE0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYDQwDQYJKoZIhvcNAQELBQADggEBAHhH/f5WtQnzySEoq/WgwY7gLEBe +hWjWjJvrEM2ExyKK+QcaKL+MtWvw0MgjoMQYB94Hec4DriBxGI083Kl21yZyzFO Q8cRR1rKGURqsiyTXzIzMwZqa4NptjAEaRrUZ/jzZkazHFHhQ06IC7XHdGgHmbz6 R0eIR8OlgBLRRr3y2iEidUB3NvKnZoJrZUxUKgK1rh08LfzJSv57iox5nPQeQY44 c85CJio9Wx7SMxVxUjBQdwN3xslOk64FuyWR3Ofd9vk6D1TQXQpv1e0PmfNNx2L4 PDywNmu7GY0dhdwMUPtpmaRp7v69vsta5at6UHE3g+U/j/OueircA3/+QSU= -----END CERTIFICATE-----Generated at Sun Aug 10 18:49:05 2025 by rpki-client