$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f106bd1f-1175-4eda-af94-f788dab09805.roa File: f106bd1f-1175-4eda-af94-f788dab09805.roa (raw, json) Hash identifier: BCDfqibHVayqsEY7XQ7+lu6wuH9vOHhUFQKGsX076EY= Subject key identifier: FE:04:07:50:11:D2:3A:09:14:05:45:A4:7C:2E:DE:35:0C:EB:55:D7 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 57A205DCF7838720AE1E5A53B4743FBDCF796F86 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f106bd1f-1175-4eda-af94-f788dab09805.roa Signing time: Tue 29 Jul 2025 18:20:14 +0000 ROA not before: Tue 29 Jul 2025 18:20:14 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:a2:05:dc:f7:83:87:20:ae:1e:5a:53:b4:74:3f:bd:cf:79:6f:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 29 18:20:14 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=dc64a84a659b757b8a5efb313039ca8e94582645281e7b6dfe4b21d5d66ce67e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9b:f7:b8:27:22:be:b0:69:99:e8:0a:2f:6b: 6e:d0:54:67:be:7c:ad:60:12:30:f2:75:fb:bf:d3: ad:7e:0c:a6:e1:b5:ca:b1:84:ab:d9:ba:b5:43:1c: 39:5c:05:e1:bb:c5:72:29:29:49:dd:60:bf:18:4d: dc:f4:97:00:56:68:89:7b:fd:3f:1b:73:38:ff:3e: cc:b8:95:56:4c:18:9f:8d:2c:b4:a3:8f:57:98:f7: f9:fe:a1:c6:c2:d2:0b:3b:e5:7d:28:d4:4f:01:38: 75:f1:2c:36:3b:00:f9:b2:71:d3:cf:ac:7f:6f:d1: 96:fc:97:06:a2:63:9c:f2:11:5a:58:3c:c5:cc:e0: 22:32:8a:5d:62:ca:16:c0:2b:9b:62:90:9a:fe:76: 00:6c:9d:c2:e0:86:49:06:86:2b:df:8f:fa:1c:c8: 08:30:21:f2:20:05:7f:4f:db:f6:2e:38:9f:cc:80: 81:37:be:2d:38:b0:7e:47:d4:bb:51:43:b5:0f:1f: 07:b6:c9:a8:cb:b6:dd:57:e8:40:46:75:5d:21:1e: a2:3e:c4:dd:9c:b8:69:7a:d5:7d:2f:26:45:b5:26: bf:8c:be:e8:43:62:63:4f:56:2f:e1:5b:3d:e8:50: 90:d3:6d:5b:35:3f:28:da:1b:f7:e9:f3:f0:2d:f7: e3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:04:07:50:11:D2:3A:09:14:05:45:A4:7C:2E:DE:35:0C:EB:55:D7 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f106bd1f-1175-4eda-af94-f788dab09805.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.37.0/24 Signature Algorithm: sha256WithRSAEncryption 38:6b:a6:df:49:e6:3e:9c:78:0a:13:99:3e:82:bc:5a:a5:d2: aa:d1:6e:d8:f0:29:03:fc:64:54:78:e3:02:57:d7:da:93:80: a4:76:bf:96:a0:ea:dc:58:29:b3:a1:a4:44:b7:12:da:19:c8: 98:d0:ed:60:04:e9:da:eb:55:55:6c:1b:51:ea:8e:dc:cf:af: 7d:fa:81:49:b5:12:cf:da:74:db:b2:49:3f:b4:82:7e:ab:7c: 40:5a:70:d7:7f:f3:b1:47:ce:f4:63:c8:a6:2e:93:c7:a6:c9: c7:9c:ea:10:d9:78:55:51:87:0d:64:0c:c9:34:7c:5d:c0:14: 86:22:f6:e6:4c:f3:67:c2:83:ad:90:df:f4:87:cc:07:1a:3d: 68:1b:6d:9c:03:01:61:c8:05:a5:ea:a7:30:2a:9a:ff:7c:1e: 82:31:4b:4a:46:99:2f:79:6d:81:39:10:1c:12:fd:ad:d2:c4: 20:71:ca:3e:95:ee:59:e4:73:b2:7c:90:ec:b5:6d:6d:75:22: e4:a5:42:49:52:f1:93:8f:ce:f5:8e:0a:08:51:1e:91:b7:a5: 65:01:fc:ec:2b:7c:f5:24:d9:11:cc:fc:42:69:17:8f:70:f3: e9:0c:99:bb:ad:9e:4f:d5:97:1e:24:22:84:1b:b3:58:6c:a7: f9:e2:ab:0c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV6IF3PeDhyCuHlpTtHQ/vc95b4YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzI5MTgyMDE0WhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzY0YTg0YTY1OWI3NTdiOGE1ZWZiMzEzMDM5Y2E4ZTk0 NTgyNjQ1MjgxZTdiNmRmZTRiMjFkNWQ2NmNlNjdlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgm/e4JyK+sGmZ6Aova27QVGe+fK1gEjDydfu/061+DKbh tcqxhKvZurVDHDlcBeG7xXIpKUndYL8YTdz0lwBWaIl7/T8bczj/Psy4lVZMGJ+N LLSjj1eY9/n+ocbC0gs75X0o1E8BOHXxLDY7APmycdPPrH9v0Zb8lwaiY5zyEVpY PMXM4CIyil1iyhbAK5tikJr+dgBsncLghkkGhivfj/ocyAgwIfIgBX9P2/YuOJ/M gIE3vi04sH5H1LtRQ7UPHwe2yajLtt1X6EBGdV0hHqI+xN2cuGl61X0vJkW1Jr+M vuhDYmNPVi/hWz3oUJDTbVs1PyjaG/fp8/At9+O5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/gQHUBHSOgkUBUWkfC7eNQzrVdcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2YxMDZiZDFmLTExNzUtNGVkYS1hZjk0LWY3ODhkYWIwOTgwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCUwDQYJKoZIhvcNAQELBQADggEBADhrpt9J5j6ceAoTmT6CvFql0qrR btjwKQP8ZFR44wJX19qTgKR2v5ag6txYKbOhpES3EtoZyJjQ7WAE6drrVVVsG1Hq jtzPr336gUm1Es/adNuyST+0gn6rfEBacNd/87FHzvRjyKYuk8emycec6hDZeFVR hw1kDMk0fF3AFIYi9uZM82fCg62Q3/SHzAcaPWgbbZwDAWHIBaXqpzAqmv98HoIx S0pGmS95bYE5EBwS/a3SxCBxyj6V7lnkc7J8kOy1bW11IuSlQklS8ZOPzvWOCghR HpG3pWUB/OwrfPUk2RHM/EJpF49w8+kMmbutnk/Vlx4kIoQbs1hsp/niqww= -----END CERTIFICATE-----Generated at Sat Aug 9 03:00:07 2025 by rpki-client