$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a831197c-8b82-49b5-9fa5-fb2277e6850c.roa File: a831197c-8b82-49b5-9fa5-fb2277e6850c.roa (raw, json) Hash identifier: mg3uRco/aY8viP/xa6NHSW0BNDi+XmZgv2U4oxqa0Is= Subject key identifier: 59:64:92:26:5F:53:19:03:7A:E9:A8:EB:B9:61:8E:DA:90:46:1B:04 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7977D78594A2EBADD80A6D92FC120304F6BDFBA2 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a831197c-8b82-49b5-9fa5-fb2277e6850c.roa Signing time: Tue 29 Jul 2025 18:20:25 +0000 ROA not before: Tue 29 Jul 2025 18:20:25 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 12 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:77:d7:85:94:a2:eb:ad:d8:0a:6d:92:fc:12:03:04:f6:bd:fb:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 29 18:20:25 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=73250c0fcc4653808277339920633b378837cfd7b8b047374f0cc37288dd8681, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:04:8b:f8:cf:c6:85:fc:28:cf:f1:5f:ef:80: d0:cb:56:0e:b7:a9:21:c6:bd:59:bb:7a:6f:22:04: ed:61:f5:e2:78:4f:2f:fa:22:61:d5:c3:25:be:ad: 76:70:22:ae:83:90:9a:0f:d7:ed:64:a3:a0:71:d3: be:f7:25:74:6e:85:44:ee:e6:5e:16:dd:31:b5:8d: db:bb:11:5d:41:3b:b9:60:df:69:df:57:47:31:37: 02:9d:fd:f9:8f:6c:0a:4a:48:01:2c:3d:18:f9:45: 77:1d:43:ab:43:04:ec:a9:cf:a8:cb:24:76:90:ce: 27:5f:23:07:95:d5:e9:2d:4d:f1:7c:77:63:d2:7f: bb:91:62:d5:d8:18:1f:7e:4a:8e:28:fc:05:23:37: b3:d4:00:cd:17:0d:fd:e4:73:6f:c4:01:16:71:b7: 59:1c:53:b4:63:75:c8:ff:de:23:3c:a5:a7:27:82: d9:10:b3:6d:57:22:95:72:ab:6a:5a:4b:a0:10:f4: b6:46:d6:d7:73:1a:22:09:ce:42:21:89:85:8b:1d: 0c:be:10:05:14:9b:69:ec:66:64:c1:8e:d9:94:8c: 06:38:a9:a4:6a:57:97:ce:da:1a:54:ad:e9:09:a7: 38:7f:d5:d1:87:e3:97:36:aa:27:e8:1b:84:dd:fa: 7a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:64:92:26:5F:53:19:03:7A:E9:A8:EB:B9:61:8E:DA:90:46:1B:04 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a831197c-8b82-49b5-9fa5-fb2277e6850c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.38.0/24 Signature Algorithm: sha256WithRSAEncryption 19:60:d4:8a:c4:e6:95:5b:24:77:29:80:05:24:13:84:2b:32: 84:34:58:e7:5c:c3:36:01:2b:e9:54:6d:d0:5e:38:67:b3:d4: e0:f4:7d:c1:d7:ce:56:89:54:8a:d5:cb:47:b4:88:03:1d:57: 75:56:90:88:07:42:59:a3:8c:c2:b8:f3:5f:f7:d6:6a:70:91: 62:41:e3:6a:0c:c7:7d:d2:5d:44:d8:59:93:11:bc:dc:71:2c: 5c:86:3c:72:00:36:97:b8:52:2f:ea:79:9e:b9:18:9e:90:3c: 49:c3:65:85:32:a6:14:52:24:58:06:8f:0e:51:90:67:6e:db: 9f:7c:9d:3e:21:ff:54:42:bb:92:f8:70:ea:5b:e3:67:97:e7: 8c:c5:76:19:eb:64:fa:af:3e:76:7c:6e:fe:24:bc:ae:22:85: ec:24:27:80:5e:e7:67:a6:e3:21:5c:79:eb:57:0b:97:20:63: 93:0a:98:7a:47:6f:00:b8:cd:4f:07:bd:51:73:f7:37:26:4c: 1e:7c:41:f4:0c:e3:d1:96:e3:e3:45:1c:74:09:a1:1a:9a:07: 2d:ff:bd:60:60:ea:81:68:b2:5c:c8:4a:16:ef:a3:c6:93:95: 4f:18:ae:c1:80:b7:02:a6:48:0c:ea:53:96:ec:28:04:92:3f: 68:67:9d:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeXfXhZSi663YCm2S/BIDBPa9+6IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI5MTgyMDI1WhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzI1MGMwZmNjNDY1MzgwODI3NzMzOTkyMDYzM2IzNzg4 MzdjZmQ3YjhiMDQ3Mzc0ZjBjYzM3Mjg4ZGQ4NjgxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLBIv4z8aF/CjP8V/vgNDLVg63qSHGvVm7em8iBO1h9eJ4 Ty/6ImHVwyW+rXZwIq6DkJoP1+1ko6Bx0773JXRuhUTu5l4W3TG1jdu7EV1BO7lg 32nfV0cxNwKd/fmPbApKSAEsPRj5RXcdQ6tDBOypz6jLJHaQzidfIweV1ektTfF8 d2PSf7uRYtXYGB9+So4o/AUjN7PUAM0XDf3kc2/EARZxt1kcU7Rjdcj/3iM8pacn gtkQs21XIpVyq2paS6AQ9LZG1tdzGiIJzkIhiYWLHQy+EAUUm2nsZmTBjtmUjAY4 qaRqV5fO2hpUrekJpzh/1dGH45c2qifoG4Td+nq7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWWSSJl9TGQN66ajruWGO2pBGGwQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2E4MzExOTdjLThiODItNDliNS05ZmE1LWZiMjI3N2U2ODUwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCYwDQYJKoZIhvcNAQELBQADggEBABlg1IrE5pVbJHcpgAUkE4QrMoQ0 WOdcwzYBK+lUbdBeOGez1OD0fcHXzlaJVIrVy0e0iAMdV3VWkIgHQlmjjMK481/3 1mpwkWJB42oMx33SXUTYWZMRvNxxLFyGPHIANpe4Ui/qeZ65GJ6QPEnDZYUyphRS JFgGjw5RkGdu2598nT4h/1RCu5L4cOpb42eX54zFdhnrZPqvPnZ8bv4kvK4ihewk J4Be52em4yFceetXC5cgY5MKmHpHbwC4zU8HvVFz9zcmTB58QfQM49GW4+NFHHQJ oRqaBy3/vWBg6oFoslzIShbvo8aTlU8YrsGAtwKmSAzqU5bsKASSP2hnnew= -----END CERTIFICATE-----Generated at Mon Aug 11 07:25:01 2025 by rpki-client