$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa File: c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa (raw, json) Hash identifier: JZYvo5GVxIEguJEylE7hbQFP9LrGPumaSob2yXvicMA= Subject key identifier: 89:57:54:DD:8E:DA:35:82:AD:61:EA:42:BA:4C:FD:B5:63:05:74:91 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 53300F326C2BE13D07A5BCF420615E49F67E02B7 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa Signing time: Tue 29 Jul 2025 18:20:08 +0000 ROA not before: Tue 29 Jul 2025 18:20:08 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 12 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:30:0f:32:6c:2b:e1:3d:07:a5:bc:f4:20:61:5e:49:f6:7e:02:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 29 18:20:08 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=2ed1dee4da3268d656db89b11ba8116170f5e538128febc47ae7cce81a0b6066, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:57:6c:2d:9c:0c:11:a6:5a:f4:0f:90:64:91: de:4f:a7:60:e8:14:d4:05:6f:a1:f8:f6:eb:6f:f3: 05:7c:f5:54:c9:32:e3:e3:28:f9:23:6e:e6:44:f9: 2b:66:17:76:8b:d2:62:84:ed:8e:79:da:1e:4a:7f: b4:a1:1a:e2:bd:a6:e4:6c:36:a5:89:2a:ba:d0:e1: a6:a0:e7:9b:c0:ab:87:00:55:f0:8a:3b:ec:f1:31: 67:76:c3:40:60:5b:0c:23:12:34:58:68:57:da:c7: 93:fc:32:80:cf:d8:18:62:c0:0a:ab:e7:6b:83:3f: bf:57:f9:97:aa:8e:4c:91:24:e9:45:15:2a:f6:18: 77:e7:fb:77:af:f9:b2:c2:0f:73:4b:87:37:3c:21: ff:40:d8:27:c6:f1:78:b4:40:88:87:73:01:d3:52: 08:d6:a3:b6:28:19:80:35:ac:47:04:0d:3d:d1:74: 91:c1:e0:86:8c:9f:2a:08:67:cd:5d:75:6d:51:6a: 01:33:b0:e5:fa:c5:69:db:05:3c:94:f2:f3:cf:20: 1a:5f:a6:89:d4:99:42:26:a7:05:e1:ff:26:c7:18: 39:ef:ec:6a:28:61:77:54:ef:52:10:0f:ea:5c:0b: 97:1e:71:6a:16:24:e2:5e:a2:a9:36:e3:57:01:b4: f9:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:57:54:DD:8E:DA:35:82:AD:61:EA:42:BA:4C:FD:B5:63:05:74:91 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.43.0/24 Signature Algorithm: sha256WithRSAEncryption 15:af:ee:4c:7a:52:1b:45:8d:2b:4d:79:fb:32:ad:69:d1:3a: b0:a4:39:3c:a5:33:55:33:28:d7:e8:00:67:7b:72:ac:83:b1: 1d:d7:72:26:cb:a4:e4:4b:0e:4d:4a:80:43:b5:10:8a:0e:c0: 43:b7:5f:b8:e0:c1:59:1a:6f:50:9f:77:11:f1:c0:9d:0d:38: cc:d2:4a:31:19:9e:fe:c8:59:e8:b9:67:a2:18:2b:eb:8a:98: b0:af:d6:82:b0:5b:d9:fd:55:59:54:bd:09:de:2b:ea:03:8f: df:30:8f:01:8f:b2:3b:c4:30:b9:37:f0:42:43:2e:c0:0f:3e: 75:b2:e0:57:9d:6f:28:40:9c:59:ba:c2:13:32:df:20:ce:59: e5:55:e2:bf:52:fa:8e:4a:26:de:86:b9:44:fc:44:be:3d:9d: 13:37:05:85:5e:c8:35:42:1d:59:0b:60:8a:6b:c1:91:de:f9: 2d:83:ca:5b:b4:2f:e6:ab:5c:08:bd:5d:8a:42:de:a8:e4:9b: 0e:98:ac:35:ae:d8:d0:06:09:e2:b9:9a:9d:d5:9b:dd:8f:0b: d9:e2:a7:33:ea:a7:9b:31:06:1f:07:39:46:0a:fc:d4:50:9a: e5:60:d0:95:38:8f:9b:9f:91:d6:c9:a8:36:16:58:ef:19:e6: 7b:fc:4f:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUzAPMmwr4T0Hpbz0IGFeSfZ+ArcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI5MTgyMDA4WhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZWQxZGVlNGRhMzI2OGQ2NTZkYjg5YjExYmE4MTE2MTcw ZjVlNTM4MTI4ZmViYzQ3YWU3Y2NlODFhMGI2MDY2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQV2wtnAwRplr0D5Bkkd5Pp2DoFNQFb6H49utv8wV89VTJ MuPjKPkjbuZE+StmF3aL0mKE7Y552h5Kf7ShGuK9puRsNqWJKrrQ4aag55vAq4cA VfCKO+zxMWd2w0BgWwwjEjRYaFfax5P8MoDP2BhiwAqr52uDP79X+ZeqjkyRJOlF FSr2GHfn+3ev+bLCD3NLhzc8If9A2CfG8Xi0QIiHcwHTUgjWo7YoGYA1rEcEDT3R dJHB4IaMnyoIZ81ddW1RagEzsOX6xWnbBTyU8vPPIBpfponUmUImpwXh/ybHGDnv 7GooYXdU71IQD+pcC5cecWoWJOJeoqk241cBtPm9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiVdU3Y7aNYKtYepCukz9tWMFdJEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2MyMjE3MDhiLTJmYjMtNDBkNy05ZDkxLWEyNzNjNTdiYjNjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCswDQYJKoZIhvcNAQELBQADggEBABWv7kx6UhtFjStNefsyrWnROrCk OTylM1UzKNfoAGd7cqyDsR3XcibLpORLDk1KgEO1EIoOwEO3X7jgwVkab1CfdxHx wJ0NOMzSSjEZnv7IWei5Z6IYK+uKmLCv1oKwW9n9VVlUvQneK+oDj98wjwGPsjvE MLk38EJDLsAPPnWy4FedbyhAnFm6whMy3yDOWeVV4r9S+o5KJt6GuUT8RL49nRM3 BYVeyDVCHVkLYIprwZHe+S2Dylu0L+arXAi9XYpC3qjkmw6YrDWu2NAGCeK5mp3V m92PC9nipzPqp5sxBh8HOUYK/NRQmuVg0JU4j5ufkdbJqDYWWO8Z5nv8T3Q= -----END CERTIFICATE-----Generated at Mon Aug 11 04:10:11 2025 by rpki-client