$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa File: e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa (raw, json) Hash identifier: x9PaDTH9bwjU63fPovsiVy76nih7DvbKUI2pCNEuwhg= Subject key identifier: 20:96:25:7B:89:A7:F1:78:A6:2A:61:17:E0:C0:C0:64:BB:23:88:05 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7685339B9A3530B147B54B021465196A59D8C4A7 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa Signing time: Wed 06 Aug 2025 00:40:43 +0000 ROA not before: Wed 06 Aug 2025 00:40:43 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 12 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:85:33:9b:9a:35:30:b1:47:b5:4b:02:14:65:19:6a:59:d8:c4:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 6 00:40:43 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=43a9b80e39dc32ff99a45aed858496838efdecb63413360ff18be2d4fba13a2b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:61:b1:f1:cf:a6:18:85:da:f6:89:fa:cd:af: f5:70:e9:dc:cb:e0:3c:40:22:3d:bb:b6:1b:5b:1d: 6b:fc:53:e3:71:03:e7:b1:64:37:d3:13:d1:25:9e: e1:64:55:94:f7:f3:5f:b7:9e:e8:19:65:01:d7:61: bd:47:1d:c4:63:a6:a8:96:f7:5a:08:cd:39:8d:0c: 43:4e:b7:2d:a8:94:87:10:96:58:88:36:fd:e0:dd: 17:16:6a:08:b8:ba:f9:71:3e:91:25:20:c8:19:b5: d8:62:16:46:a2:7a:de:50:57:99:f6:38:79:dc:47: 3f:e4:7a:fc:e1:6c:be:89:55:96:06:a4:98:bd:ca: 15:2b:7f:26:4c:64:2c:6c:43:1a:ff:94:9d:f0:da: f8:e5:fc:49:21:3c:b0:08:c8:3d:4b:73:85:df:e4: c1:57:e9:77:83:c9:0e:d8:76:85:b0:a9:1a:d0:ed: 73:dc:43:35:00:08:95:ce:96:4c:98:3d:f8:d2:3c: be:69:03:36:21:7a:72:c1:94:ff:69:5b:0c:28:d8: 8a:0c:93:09:ef:c3:12:c3:a9:ad:b0:ea:9f:a4:b4: d1:36:90:db:69:bb:5a:48:c0:e0:f2:98:e7:2c:64: ef:91:2c:5f:af:73:c3:61:af:34:a7:55:42:2d:c1: 70:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:96:25:7B:89:A7:F1:78:A6:2A:61:17:E0:C0:C0:64:BB:23:88:05 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.4.0/24 Signature Algorithm: sha256WithRSAEncryption 45:b1:54:93:a5:a6:39:2a:0c:6c:ce:44:93:f6:11:05:dd:9c: a7:98:9b:29:f3:d8:6c:90:09:07:5e:cb:8b:01:4c:08:89:6c: 08:62:7f:3a:1f:66:c3:b6:95:fe:4f:ad:d2:03:1b:29:34:e3: 93:7e:7d:c6:37:c0:bc:2f:55:10:6b:a7:dc:67:38:d0:a3:12: 73:fa:9c:bf:1f:aa:30:e1:6b:5b:cb:23:b0:86:11:29:7a:66: 35:7b:c7:b3:38:e7:0a:43:89:a2:ff:bc:47:ec:3f:ce:5c:65: 5a:e8:88:e2:87:46:93:60:dc:10:c9:a8:48:e7:06:59:8b:f1: c7:38:55:1a:50:ed:ce:f5:eb:d2:16:67:b0:97:bf:de:2c:ac: b7:b0:42:38:1a:29:d4:07:d5:0e:37:d4:c4:17:3b:05:c7:c2: ed:81:6a:85:1a:25:25:db:88:c5:de:52:60:77:ab:3a:c9:20: 97:79:dd:ad:ea:84:05:02:fe:4d:3a:8b:8b:06:6a:6c:ce:58: 7a:31:03:97:68:14:27:94:a1:20:80:eb:37:19:d1:af:ba:a3: 84:23:c5:db:be:15:e1:9d:3d:59:ae:88:fa:1a:07:4f:30:ae: 15:fe:b9:b0:2f:7c:42:9f:f4:82:8c:e7:3f:8c:3f:c5:2c:f4: ba:71:e5:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdoUzm5o1MLFHtUsCFGUZalnYxKcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODA2MDA0MDQzWhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0M2E5YjgwZTM5ZGMzMmZmOTlhNDVhZWQ4NTg0OTY4Mzhl ZmRlY2I2MzQxMzM2MGZmMThiZTJkNGZiYTEzYTJiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeYbHxz6YYhdr2ifrNr/Vw6dzL4DxAIj27thtbHWv8U+Nx A+exZDfTE9ElnuFkVZT381+3nugZZQHXYb1HHcRjpqiW91oIzTmNDENOty2olIcQ lliINv3g3RcWagi4uvlxPpElIMgZtdhiFkaiet5QV5n2OHncRz/kevzhbL6JVZYG pJi9yhUrfyZMZCxsQxr/lJ3w2vjl/EkhPLAIyD1Lc4Xf5MFX6XeDyQ7YdoWwqRrQ 7XPcQzUACJXOlkyYPfjSPL5pAzYhenLBlP9pWwwo2IoMkwnvwxLDqa2w6p+ktNE2 kNtpu1pIwODymOcsZO+RLF+vc8NhrzSnVUItwXB5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIJYle4mn8XimKmEX4MDAZLsjiAUwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2U1YzFiOWI4LTk3ZjAtNDRlMC1hNGI1LTJmNmMyYTI1MzFjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAQwDQYJKoZIhvcNAQELBQADggEBAEWxVJOlpjkqDGzORJP2EQXdnKeY mynz2GyQCQdey4sBTAiJbAhifzofZsO2lf5PrdIDGyk045N+fcY3wLwvVRBrp9xn ONCjEnP6nL8fqjDha1vLI7CGESl6ZjV7x7M45wpDiaL/vEfsP85cZVroiOKHRpNg 3BDJqEjnBlmL8cc4VRpQ7c7169IWZ7CXv94srLewQjgaKdQH1Q431MQXOwXHwu2B aoUaJSXbiMXeUmB3qzrJIJd53a3qhAUC/k06i4sGamzOWHoxA5doFCeUoSCA6zcZ 0a+6o4Qjxdu+FeGdPVmuiPoaB08wrhX+ubAvfEKf9IKM5z+MP8Us9Lpx5Rw= -----END CERTIFICATE-----Generated at Mon Aug 11 01:45:37 2025 by rpki-client