$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/93da312c-9a87-4802-ae6d-e784f74c131d.roa File: 93da312c-9a87-4802-ae6d-e784f74c131d.roa (raw, json) Hash identifier: zWQf2X7T8jjCs83W5n445a17UPa4yXJb8b6gjTYegv4= Subject key identifier: 77:10:31:F3:A8:A2:50:B6:58:19:DD:A9:7A:D2:11:89:3E:AA:E0:51 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6B5E6939586BBE680450F792E82DC38427573724 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/93da312c-9a87-4802-ae6d-e784f74c131d.roa Signing time: Wed 06 Aug 2025 00:40:42 +0000 ROA not before: Wed 06 Aug 2025 00:40:42 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:5e:69:39:58:6b:be:68:04:50:f7:92:e8:2d:c3:84:27:57:37:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 6 00:40:42 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=e93153b9c0099210c953495a409cffca7a275461bcc7be38ab34968ab058f60b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8e:71:c9:7d:62:49:aa:5c:eb:4c:8b:8a:ca: de:b2:11:d2:7c:b2:14:21:06:e6:b0:c9:fc:6d:40: 46:c4:df:36:99:0b:4b:ca:bf:dc:52:94:03:a6:4b: da:fb:19:37:e8:3c:44:ca:6c:62:2f:5b:ce:2e:d6: 31:c0:f8:d8:2e:19:25:5d:f7:f9:56:20:0c:8d:b2: df:ed:ec:6b:a1:82:c6:91:42:23:d1:b6:21:d2:f4: 7a:ef:f1:e1:b1:ad:ce:de:ee:14:b4:3d:5e:df:0e: 4e:bd:51:8e:2a:3a:4e:8e:f8:5e:59:bb:5c:15:63: 78:b1:46:9e:c5:44:de:06:f5:a1:06:c8:0d:2f:ac: 40:04:f7:cb:fe:8d:2f:98:5c:83:2c:80:87:7d:6b: ac:7a:57:03:5f:8c:92:55:e9:34:82:f6:4a:7e:da: 96:22:99:8c:ab:50:1e:d5:2a:44:ce:ff:7c:4a:31: 12:d3:dd:50:d6:92:c2:9e:cb:eb:3c:58:e6:f7:35: 23:98:87:3f:7f:db:ab:c6:ac:32:dc:43:47:58:28: 65:52:9e:a8:e6:1d:17:e4:70:c2:30:1a:97:a7:eb: 5a:56:02:87:4f:d3:4b:9b:7a:7b:86:7d:06:00:d6: 0e:ee:e3:27:2a:1d:53:7d:1b:75:b9:65:df:bf:65: 3f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:10:31:F3:A8:A2:50:B6:58:19:DD:A9:7A:D2:11:89:3E:AA:E0:51 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/93da312c-9a87-4802-ae6d-e784f74c131d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.4.0/24 Signature Algorithm: sha256WithRSAEncryption 61:82:08:09:40:90:ed:33:c1:c6:6d:49:f7:30:d9:df:8c:c8: ff:28:95:b4:24:c3:5e:60:db:df:35:7e:60:22:82:1a:d9:72: 67:1f:8f:a3:a4:3b:ef:6f:d3:ad:72:22:ce:30:13:b9:46:60: d7:a1:c2:f3:7b:42:40:46:12:32:18:c1:7a:67:82:4a:bc:46: 97:fc:7c:ef:de:de:a5:8c:72:b5:a6:a1:98:ec:aa:54:9b:25: 3d:3a:b1:51:25:f2:08:e6:a4:96:1a:89:f3:91:87:7a:39:7f: 12:c8:0d:6f:e1:0a:31:19:df:1b:b6:12:11:63:3d:74:fe:14: 86:6b:86:4c:fb:06:94:44:20:b1:5c:f0:91:82:09:69:5f:ed: 4b:14:bb:36:50:2a:99:03:00:b8:11:c8:3a:dc:18:2e:11:0c: 35:1a:c3:e5:13:fa:c2:68:7d:ad:b2:f0:43:5e:12:96:79:b7: 17:26:ff:9f:43:a6:48:15:91:b5:c3:32:11:9b:6e:30:00:25: 22:7c:84:ad:4a:98:72:e5:c2:28:9b:d5:0c:82:88:69:44:92: 0b:2c:26:83:5c:fa:78:c8:59:e1:b9:cf:00:96:17:63:fb:ae: 31:83:60:ff:2e:c5:f5:27:e4:08:5e:a3:8f:21:ab:f8:7f:92: 71:65:65:2e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa15pOVhrvmgEUPeS6C3DhCdXNyQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODA2MDA0MDQyWhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTMxNTNiOWMwMDk5MjEwYzk1MzQ5NWE0MDljZmZjYTdh Mjc1NDYxYmNjN2JlMzhhYjM0OTY4YWIwNThmNjBiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+jnHJfWJJqlzrTIuKyt6yEdJ8shQhBuawyfxtQEbE3zaZ C0vKv9xSlAOmS9r7GTfoPETKbGIvW84u1jHA+NguGSVd9/lWIAyNst/t7GuhgsaR QiPRtiHS9Hrv8eGxrc7e7hS0PV7fDk69UY4qOk6O+F5Zu1wVY3ixRp7FRN4G9aEG yA0vrEAE98v+jS+YXIMsgId9a6x6VwNfjJJV6TSC9kp+2pYimYyrUB7VKkTO/3xK MRLT3VDWksKey+s8WOb3NSOYhz9/26vGrDLcQ0dYKGVSnqjmHRfkcMIwGpen61pW AodP00ubenuGfQYA1g7u4ycqHVN9G3W5Zd+/ZT/JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdxAx86iiULZYGd2petIRiT6q4FEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzkzZGEzMTJjLTlhODctNDgwMi1hZTZkLWU3ODRmNzRjMTMxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAQwDQYJKoZIhvcNAQELBQADggEBAGGCCAlAkO0zwcZtSfcw2d+MyP8o lbQkw15g2981fmAighrZcmcfj6OkO+9v061yIs4wE7lGYNehwvN7QkBGEjIYwXpn gkq8Rpf8fO/e3qWMcrWmoZjsqlSbJT06sVEl8gjmpJYaifORh3o5fxLIDW/hCjEZ 3xu2EhFjPXT+FIZrhkz7BpREILFc8JGCCWlf7UsUuzZQKpkDALgRyDrcGC4RDDUa w+UT+sJofa2y8ENeEpZ5txcm/59DpkgVkbXDMhGbbjAAJSJ8hK1KmHLlwiib1QyC iGlEkgssJoNc+njIWeG5zwCWF2P7rjGDYP8uxfUn5Aheo48hq/h/knFlZS4= -----END CERTIFICATE-----Generated at Sat Aug 9 14:29:15 2025 by rpki-client