$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d4483609-fc6a-4bef-acf0-d2cead48822d.roa File: d4483609-fc6a-4bef-acf0-d2cead48822d.roa (raw, json) Hash identifier: 5exS6eBMFuohPABViWQdFnGi3VAtC0yHdZu3Khk0oII= Subject key identifier: 32:00:50:B5:30:F1:07:4F:49:92:AA:83:E3:4D:87:B0:D9:3D:4F:1E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0E362EDE96885B0BE2D219EBB43D0EDB462D2767 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d4483609-fc6a-4bef-acf0-d2cead48822d.roa Signing time: Tue 29 Jul 2025 18:30:17 +0000 ROA not before: Tue 29 Jul 2025 18:30:17 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:36:2e:de:96:88:5b:0b:e2:d2:19:eb:b4:3d:0e:db:46:2d:27:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 29 18:30:17 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=7986fe4394891a471005cae516c761a73db5d1c62d5a6898632b3718126d3714, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:06:61:0a:42:9b:73:f6:43:64:4d:db:27:3b: 0e:d7:5a:d7:1a:39:ee:d3:71:fc:85:51:09:08:d5: 2f:4c:5d:a2:6e:b3:6a:f0:cc:84:a1:4c:3b:c0:91: c7:86:c5:5c:55:d7:3a:97:f4:d4:c2:e0:29:10:c5: dc:92:c3:2b:65:33:cf:7e:04:fd:98:cf:35:74:7c: 52:20:7c:6e:47:9e:9e:f7:ba:fc:ec:9c:1a:50:f2: 34:2f:e1:48:c1:f0:61:c8:be:62:2c:fc:ad:63:7a: 0b:8b:f9:65:37:e6:83:39:ae:84:27:ff:d6:95:6b: 6f:5a:de:b8:6f:ce:74:eb:5f:16:37:4e:2e:c9:e9: 16:00:63:e4:8f:25:83:8d:9f:ec:22:a6:57:60:b3: bd:c0:4f:b5:97:3b:12:b2:68:a1:17:72:b0:d9:0a: 3e:30:5b:5a:0f:dc:5f:d9:74:e9:88:08:98:dd:b0: c7:55:fd:7a:85:ca:5a:05:4d:ab:1c:cb:36:5c:5f: ad:10:b1:a5:19:0b:ea:85:cc:df:76:0c:60:e1:63: 16:5d:68:31:1e:3f:d0:d8:59:cb:d0:60:58:ca:42: 8d:47:6f:bf:c1:8d:8e:52:ce:e4:f1:f1:6a:b8:fc: 4c:e2:23:a6:ec:33:18:3a:53:14:b1:43:fd:0c:85: b4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:00:50:B5:30:F1:07:4F:49:92:AA:83:E3:4D:87:B0:D9:3D:4F:1E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d4483609-fc6a-4bef-acf0-d2cead48822d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.39.0/24 Signature Algorithm: sha256WithRSAEncryption 90:f4:78:2d:af:63:c0:b1:cb:b6:79:14:48:29:a3:d5:f5:de: 28:28:44:f2:b4:9e:1b:56:9c:1e:6f:99:87:69:25:c4:32:24: ee:be:00:a8:83:99:a2:fc:ff:9f:e6:3f:67:b6:c8:d3:23:c5: 29:e3:90:ab:78:4b:a4:b2:01:cb:d1:0f:94:83:25:d4:e6:a7: 13:60:d8:7b:63:30:33:ef:73:5a:51:2f:02:35:c2:54:94:af: bd:71:63:c9:6e:62:32:71:1c:bd:fb:e0:16:5e:e5:05:66:bf: 26:da:07:1d:f1:99:5e:ac:f7:a5:83:7d:29:d3:3f:47:24:ac: ff:d7:ca:7c:4b:a5:e5:64:72:d1:d9:cf:8b:a6:92:1d:f2:62: 56:c7:53:03:dd:10:91:8b:87:c9:0d:2c:1f:bc:97:c5:2a:e3: 61:e1:8b:5d:57:96:7e:ee:cc:82:58:f7:da:d9:82:ec:6d:f5: c2:35:56:fd:ae:57:8f:fd:7b:a0:56:f7:44:8c:4c:f5:0c:cd: 15:83:85:e7:98:10:70:3d:c0:02:4c:21:11:a6:f4:fe:12:a5: 69:7f:bf:dc:fb:f3:06:cd:a9:69:75:a8:6c:77:97:35:de:82: 72:9a:d2:39:d2:65:14:61:59:e8:b8:72:65:25:62:73:cd:88: 0a:56:1c:34 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDjYu3paIWwvi0hnrtD0O20YtJ2cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI5MTgzMDE3WhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTg2ZmU0Mzk0ODkxYTQ3MTAwNWNhZTUxNmM3NjFhNzNk YjVkMWM2MmQ1YTY4OTg2MzJiMzcxODEyNmQzNzE0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZBmEKQptz9kNkTdsnOw7XWtcaOe7TcfyFUQkI1S9MXaJu s2rwzIShTDvAkceGxVxV1zqX9NTC4CkQxdySwytlM89+BP2YzzV0fFIgfG5Hnp73 uvzsnBpQ8jQv4UjB8GHIvmIs/K1jeguL+WU35oM5roQn/9aVa29a3rhvznTrXxY3 Ti7J6RYAY+SPJYONn+wipldgs73AT7WXOxKyaKEXcrDZCj4wW1oP3F/ZdOmICJjd sMdV/XqFyloFTascyzZcX60QsaUZC+qFzN92DGDhYxZdaDEeP9DYWcvQYFjKQo1H b7/BjY5SzuTx8Wq4/EziI6bsMxg6UxSxQ/0MhbRnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMgBQtTDxB09JkqqD402HsNk9Tx4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2Q0NDgzNjA5LWZjNmEtNGJlZi1hY2YwLWQyY2VhZDQ4ODIyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCcwDQYJKoZIhvcNAQELBQADggEBAJD0eC2vY8Cxy7Z5FEgpo9X13igo RPK0nhtWnB5vmYdpJcQyJO6+AKiDmaL8/5/mP2e2yNMjxSnjkKt4S6SyAcvRD5SD JdTmpxNg2HtjMDPvc1pRLwI1wlSUr71xY8luYjJxHL374BZe5QVmvybaBx3xmV6s 96WDfSnTP0ckrP/XynxLpeVkctHZz4umkh3yYlbHUwPdEJGLh8kNLB+8l8Uq42Hh i11Xln7uzIJY99rZguxt9cI1Vv2uV4/9e6BW90SMTPUMzRWDheeYEHA9wAJMIRGm 9P4SpWl/v9z78wbNqWl1qGx3lzXegnKa0jnSZRRhWei4cmUlYnPNiApWHDQ= -----END CERTIFICATE-----Generated at Sat Aug 9 10:39:35 2025 by rpki-client