$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa File: ecc15691-9732-4fda-b2d1-5ad157c2818e.roa (raw, json) Hash identifier: qtA5hEQBJ6RWar9/zkvHRA4DTXGM81s9E4oYyz5P/qI= Subject key identifier: 60:FF:1A:FE:01:49:77:35:DF:5B:62:46:5B:2A:49:D8:3E:14:A8:E7 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4EBB8C8ED8979B4E5216E14DE6A1404F79D13BCB Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa Signing time: Fri 25 Jul 2025 16:40:49 +0000 ROA not before: Fri 25 Jul 2025 16:40:49 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:bb:8c:8e:d8:97:9b:4e:52:16:e1:4d:e6:a1:40:4f:79:d1:3b:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 25 16:40:49 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=95911e4714430c0ed7a4a89b905fb2cf7e5ec0926d524eb84b21711cdc9c9b9d, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:80:d5:8e:81:2e:d8:8c:4c:fc:c1:1f:ee:c7: cf:28:d9:6d:ae:97:14:ef:fc:74:f3:65:4d:f4:67: dd:12:59:34:0f:08:c4:cc:7f:e6:6a:dd:99:cc:8e: 22:1f:40:58:06:30:26:ed:de:04:68:52:8f:d8:63: 7c:d2:fe:1d:49:ed:2d:b5:29:94:f5:d2:8f:f8:d0: 0f:f2:cb:38:95:19:3d:fb:c2:20:4c:fd:d7:44:91: e4:80:33:4b:c1:71:f1:a0:2d:b0:f3:5b:9a:15:b9: a9:b2:32:57:29:7b:5d:a4:73:16:70:a7:6c:de:f9: 9f:e6:3e:ad:6c:63:15:83:c8:81:04:72:90:2b:77: e7:a2:f4:e2:fe:d8:d1:f1:62:f7:af:ac:b4:67:e1: 22:28:90:62:07:90:07:49:f6:ce:2b:12:ba:fb:58: c7:33:c0:7a:ef:a5:3e:95:c7:83:80:40:74:9a:40: 26:f8:65:34:bd:bb:23:6c:f0:ea:9a:84:dc:1f:73: 29:d1:66:5f:af:ff:96:9b:01:d4:46:37:a8:2c:b2: 6b:91:50:c9:00:d8:22:42:ac:15:b3:14:fe:ba:72: df:88:4a:11:06:dc:2e:bc:9a:fc:72:25:5d:f4:81: 73:b5:28:d4:13:47:39:f9:7b:09:39:45:1e:b6:f6: d5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:FF:1A:FE:01:49:77:35:DF:5B:62:46:5B:2A:49:D8:3E:14:A8:E7 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.3.0/24 Signature Algorithm: sha256WithRSAEncryption 95:ab:cd:8c:02:76:98:02:88:34:eb:47:f0:2c:d7:15:10:2b: 01:7b:10:95:92:49:bc:0a:64:d8:19:ee:25:20:aa:11:65:f0: f6:b1:19:22:97:aa:b1:a2:d3:72:ff:69:da:e6:20:cf:d3:fb: f7:7f:e9:2e:dc:62:18:84:dc:f0:af:8a:55:78:20:a3:a0:c4: d1:17:28:ee:fb:d1:ff:6b:70:d3:7f:f9:4f:88:64:bc:87:8c: 12:53:c4:36:1f:68:5d:f1:50:00:ac:b8:cd:e3:90:6b:3f:d2: 27:e1:96:a3:94:5a:33:fc:61:bb:96:58:85:5a:3d:1c:26:a2: 7b:1e:6e:d7:81:cb:8b:10:14:2d:bf:0a:fe:4b:b6:e9:c3:73: bf:39:d1:22:a5:5e:66:25:c2:68:4d:11:72:e4:c4:ad:84:7e: be:78:a8:a7:b4:cd:1c:29:af:b5:8f:ec:d2:56:1b:49:27:67: 0e:90:7a:f8:8d:98:7a:45:25:02:a3:a9:b6:2c:44:7f:62:67: c3:00:aa:ac:3c:1c:06:c8:25:41:43:2a:23:25:da:48:55:81: c4:18:15:00:ad:e1:a7:70:34:ee:d9:dd:ae:d0:d6:c2:1a:8e: 7a:55:9f:81:f3:d9:a0:30:ea:08:7e:a0:33:12:33:55:28:f1: 4d:08:f3:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTruMjtiXm05SFuFN5qFAT3nRO8swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI1MTY0MDQ5WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTkxMWU0NzE0NDMwYzBlZDdhNGE4OWI5MDVmYjJjZjdl NWVjMDkyNmQ1MjRlYjg0YjIxNzExY2RjOWM5YjlkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4gNWOgS7YjEz8wR/ux88o2W2ulxTv/HTzZU30Z90SWTQP CMTMf+Zq3ZnMjiIfQFgGMCbt3gRoUo/YY3zS/h1J7S21KZT10o/40A/yyziVGT37 wiBM/ddEkeSAM0vBcfGgLbDzW5oVuamyMlcpe12kcxZwp2ze+Z/mPq1sYxWDyIEE cpArd+ei9OL+2NHxYvevrLRn4SIokGIHkAdJ9s4rErr7WMczwHrvpT6Vx4OAQHSa QCb4ZTS9uyNs8OqahNwfcynRZl+v/5abAdRGN6gssmuRUMkA2CJCrBWzFP66ct+I ShEG3C68mvxyJV30gXO1KNQTRzn5ewk5RR629tVdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYP8a/gFJdzXfW2JGWypJ2D4UqOcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2VjYzE1NjkxLTk3MzItNGZkYS1iMmQxLTVhZDE1N2MyODE4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAMwDQYJKoZIhvcNAQELBQADggEBAJWrzYwCdpgCiDTrR/As1xUQKwF7 EJWSSbwKZNgZ7iUgqhFl8PaxGSKXqrGi03L/adrmIM/T+/d/6S7cYhiE3PCvilV4 IKOgxNEXKO770f9rcNN/+U+IZLyHjBJTxDYfaF3xUACsuM3jkGs/0ifhlqOUWjP8 YbuWWIVaPRwmonsebteBy4sQFC2/Cv5LtunDc7850SKlXmYlwmhNEXLkxK2Efr54 qKe0zRwpr7WP7NJWG0knZw6QeviNmHpFJQKjqbYsRH9iZ8MAqqw8HAbIJUFDKiMl 2khVgcQYFQCt4adwNO7Z3a7Q1sIajnpVn4Hz2aAw6gh+oDMSM1Uo8U0I8+I= -----END CERTIFICATE-----Generated at Sun Aug 10 16:13:54 2025 by rpki-client