$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9ca597d5-e2d7-4ff2-96a9-3ceaba019064.roa File: 9ca597d5-e2d7-4ff2-96a9-3ceaba019064.roa (raw, json) Hash identifier: 15NvebYHeUWm3sY4CfhOBlvNOEVzbiVfFidLQcUvka8= Subject key identifier: F3:75:5F:C1:3F:3C:BF:63:E3:BB:41:37:08:03:4D:EC:16:A4:99:2A Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2C7459BFA31E0368ADE6ADE3B11EDCD815D7A2A9 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9ca597d5-e2d7-4ff2-96a9-3ceaba019064.roa Signing time: Tue 29 Jul 2025 18:20:18 +0000 ROA not before: Tue 29 Jul 2025 18:20:18 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:74:59:bf:a3:1e:03:68:ad:e6:ad:e3:b1:1e:dc:d8:15:d7:a2:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 29 18:20:18 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=e74a3d53a93bb4061f99d2da09575b8edc777f21ddbdfb6c00959d3b08edab35, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f1:9f:0b:89:85:6e:e3:c0:f4:90:f3:98:e8: 2a:64:bf:ca:98:4f:bd:d0:79:aa:be:55:77:a8:b4: 70:9c:e5:c0:0d:df:07:f9:68:2c:4d:dd:af:ae:58: 58:57:27:64:7c:7d:f9:53:30:4e:1b:5c:6c:42:63: 44:27:87:e7:ff:ae:f4:16:bd:51:e4:57:d6:0a:73: 0d:e2:cb:58:fe:cf:f1:16:0e:17:f8:08:2f:13:19: 19:21:18:de:c7:59:c8:45:9d:27:2c:02:53:35:e6: 2e:91:29:1d:d0:36:69:e6:d4:21:a3:fe:cf:f8:57: 63:9d:59:48:ed:c3:9d:a6:59:0a:87:26:f3:08:09: a3:8b:f1:a1:c9:62:3a:d1:52:b7:01:30:bc:3c:44: fd:64:ca:81:33:52:ba:06:de:8a:cc:e1:6b:cd:4b: 84:7f:c7:b4:fa:36:eb:3d:7b:ad:d8:fc:a9:df:02: f1:02:d7:fb:ce:ef:5e:10:4e:a3:44:c6:3e:e0:59: a0:f6:8b:7b:32:d6:71:d0:c1:c7:21:72:50:46:ac: 8c:e5:d1:bf:3d:5b:44:37:11:1c:6a:e1:1c:58:0e: 7d:70:4b:c7:80:c3:23:1c:bf:e2:cf:de:a5:22:f3: 47:47:7f:e6:87:5b:21:35:36:ee:44:e0:c2:b0:fa: 4a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:75:5F:C1:3F:3C:BF:63:E3:BB:41:37:08:03:4D:EC:16:A4:99:2A X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9ca597d5-e2d7-4ff2-96a9-3ceaba019064.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.44.0/24 Signature Algorithm: sha256WithRSAEncryption 81:c3:e1:bb:0b:ac:0b:d6:0d:c2:69:0d:0c:d8:77:f7:10:da: b3:4a:27:f0:e2:10:85:86:f4:b1:c5:9e:d5:52:51:d9:ea:d6: e1:f2:7b:7a:e0:7e:e1:c2:8c:89:e7:b7:30:b4:99:5c:a5:60: 88:7a:7b:dd:60:ae:23:b0:5e:7f:7a:0e:a3:78:18:ef:89:87: bd:be:da:e5:dd:36:9d:26:c5:b6:f5:a3:59:29:a6:f3:39:4e: 71:22:45:49:e1:30:b1:3e:2c:e8:bd:f4:01:40:3b:b9:55:be: 38:90:15:96:c6:44:38:50:78:7a:6e:ec:6c:39:64:fb:cd:62: 9d:d4:ba:66:83:b3:5c:7f:1a:6f:24:21:1f:95:69:bc:ae:35: 6a:88:b7:28:ba:08:49:a1:1a:ab:5e:25:e0:89:4b:39:0d:d8: a3:a2:26:4b:2c:17:e6:f3:5f:7b:48:a3:4b:b9:ec:58:72:88: 22:e5:e6:ab:a1:27:70:96:ca:1f:77:0f:92:41:a4:da:70:07: e4:1c:92:0d:09:bc:82:16:d5:83:dd:bb:4d:51:28:d1:64:09: bd:43:fb:cd:25:a0:1d:9e:30:5c:99:3c:a3:2b:4f:fa:98:a7: a7:50:0d:b2:b5:5b:17:13:3e:d0:c5:4f:d9:ab:f2:28:f5:e9: f7:84:fa:5d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULHRZv6MeA2it5q3jsR7c2BXXoqkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI5MTgyMDE4WhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzRhM2Q1M2E5M2JiNDA2MWY5OWQyZGEwOTU3NWI4ZWRj Nzc3ZjIxZGRiZGZiNmMwMDk1OWQzYjA4ZWRhYjM1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC28Z8LiYVu48D0kPOY6Cpkv8qYT73Qeaq+VXeotHCc5cAN 3wf5aCxN3a+uWFhXJ2R8fflTME4bXGxCY0Qnh+f/rvQWvVHkV9YKcw3iy1j+z/EW Dhf4CC8TGRkhGN7HWchFnScsAlM15i6RKR3QNmnm1CGj/s/4V2OdWUjtw52mWQqH JvMICaOL8aHJYjrRUrcBMLw8RP1kyoEzUroG3orM4WvNS4R/x7T6Nus9e63Y/Knf AvEC1/vO714QTqNExj7gWaD2i3sy1nHQwcchclBGrIzl0b89W0Q3ERxq4RxYDn1w S8eAwyMcv+LP3qUi80dHf+aHWyE1Nu5E4MKw+ko/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU83VfwT88v2Pju0E3CANN7BakmSowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzljYTU5N2Q1LWUyZDctNGZmMi05NmE5LTNjZWFiYTAxOTA2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCwwDQYJKoZIhvcNAQELBQADggEBAIHD4bsLrAvWDcJpDQzYd/cQ2rNK J/DiEIWG9LHFntVSUdnq1uHye3rgfuHCjInntzC0mVylYIh6e91griOwXn96DqN4 GO+Jh72+2uXdNp0mxbb1o1kppvM5TnEiRUnhMLE+LOi99AFAO7lVvjiQFZbGRDhQ eHpu7Gw5ZPvNYp3UumaDs1x/Gm8kIR+VabyuNWqItyi6CEmhGqteJeCJSzkN2KOi JkssF+bzX3tIo0u57FhyiCLl5quhJ3CWyh93D5JBpNpwB+Qckg0JvIIW1YPdu01R KNFkCb1D+80loB2eMFyZPKMrT/qYp6dQDbK1WxcTPtDFT9mr8ij16feE+l0= -----END CERTIFICATE-----Generated at Fri Aug 8 19:30:51 2025 by rpki-client