$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa File: 35dd8080-5375-4755-bea9-982f40526ea4.roa (raw, json) Hash identifier: Zu5qg3vp67Rfb/eSnXOp3oDkk1rbRX6nGhisaKiFkl0= Subject key identifier: E9:F9:B6:17:48:11:52:96:F7:25:77:54:C8:45:F8:0B:44:70:48:BF Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 69ABEE09800BE38C72BD9448ADF5DCBCABCF4CDC Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa Signing time: Wed 20 Aug 2025 00:20:17 +0000 ROA not before: Wed 20 Aug 2025 00:20:17 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 7224 IP address blocks: 172.96.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:ab:ee:09:80:0b:e3:8c:72:bd:94:48:ad:f5:dc:bc:ab:cf:4c:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Aug 20 00:20:17 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=80d645a353f673ac175ec66122669a2d67fa58bc1fd68f8d6c39940b1e859a95, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c8:9d:73:36:60:69:af:7b:41:1f:7f:ee:9a: ae:6a:af:47:3a:d8:81:15:30:ce:57:cb:e7:e2:25: fb:08:26:0a:cb:10:a0:c4:6d:9c:4f:80:1d:2b:dc: 5f:24:62:22:c4:9d:14:b4:9a:d7:01:3a:eb:62:fb: d2:f5:09:ab:43:f6:4a:60:a0:8b:49:38:56:57:67: a5:92:59:23:1d:61:d2:f8:e8:d1:cf:6e:80:c1:7c: 17:d9:c2:9f:7c:78:64:f3:d4:3e:27:d1:bc:c2:e7: e8:22:57:e3:d0:67:25:b4:5d:c1:04:76:62:94:91: 78:64:b4:b8:f0:f7:f2:24:07:57:8e:05:9a:4a:75: 99:15:76:a8:d7:f3:f8:5b:16:9b:00:a0:3e:7c:93: 75:ce:a3:62:2c:87:b4:e5:a7:b4:a5:bd:ce:1f:bf: ec:87:b8:c1:46:71:ca:30:f5:9b:2f:35:a2:d8:89: 67:d3:91:4b:9c:5a:72:03:e0:f9:36:9b:dd:80:83: 7f:5d:5a:9f:da:b7:ea:09:a3:d0:b4:16:5d:7d:82: 2b:db:58:a9:4c:50:d0:9d:84:83:b6:48:9c:8a:62: b2:ca:ef:37:17:99:97:df:6a:33:d6:80:b3:04:e8: 0a:60:86:52:81:94:53:58:8f:b6:da:35:db:3f:59: d8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F9:B6:17:48:11:52:96:F7:25:77:54:C8:45:F8:0B:44:70:48:BF X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/35dd8080-5375-4755-bea9-982f40526ea4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 39:06:8f:73:67:b6:40:26:a6:c8:21:a0:30:6e:98:8a:2a:2a: 2b:a0:ab:92:43:ba:48:fc:ed:28:57:2e:e5:23:fd:98:30:5a: 08:27:b9:8a:b4:3b:68:22:c7:52:fd:ce:6b:80:7d:ba:b2:be: 47:a3:37:9f:5e:7f:82:25:45:97:01:f5:8c:bd:fa:19:5c:29: 9d:c7:f9:18:e1:13:bb:04:d8:c1:41:8f:c8:3b:0e:ac:de:2c: 65:b7:57:a9:5d:bf:04:f0:80:9f:4d:ea:56:2a:89:3a:2e:c5: e7:e6:33:b4:dd:a5:75:b5:cd:a5:de:bc:d4:a6:45:6e:e5:b9: 4c:8b:50:9f:3b:44:bf:0b:b7:66:b2:8c:97:b9:6e:dd:ad:55: e6:1d:48:03:ac:c9:78:9e:f4:13:8a:bf:2c:5f:c1:1f:b1:9b: ed:99:26:f2:fa:c4:d1:bb:50:12:5c:62:66:d2:f0:65:4c:ff: e5:ea:dc:35:ff:3f:6f:75:1c:0e:97:4c:c9:93:0d:24:aa:48: 1b:31:ee:28:d5:60:39:27:fe:93:04:90:ae:83:29:b0:c0:08: 8a:30:0f:e1:06:7a:ab:21:b2:91:45:dd:c4:dd:a1:ae:c3:f0: 42:34:78:80:0f:f6:8b:52:94:69:49:e4:8a:b6:96:a3:17:0b: e6:6e:37:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaavuCYAL44xyvZRIrfXcvKvPTNwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwODIwMDAyMDE3WhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MGQ2NDVhMzUzZjY3M2FjMTc1ZWM2NjEyMjY2OWEyZDY3 ZmE1OGJjMWZkNjhmOGQ2YzM5OTQwYjFlODU5YTk1MS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGyJ1zNmBpr3tBH3/umq5qr0c62IEVMM5Xy+fiJfsIJgrL EKDEbZxPgB0r3F8kYiLEnRS0mtcBOuti+9L1CatD9kpgoItJOFZXZ6WSWSMdYdL4 6NHPboDBfBfZwp98eGTz1D4n0bzC5+giV+PQZyW0XcEEdmKUkXhktLjw9/IkB1eO BZpKdZkVdqjX8/hbFpsAoD58k3XOo2Ish7Tlp7Slvc4fv+yHuMFGccow9ZsvNaLY iWfTkUucWnID4Pk2m92Ag39dWp/at+oJo9C0Fl19givbWKlMUNCdhIO2SJyKYrLK 7zcXmZffajPWgLME6ApghlKBlFNYj7baNds/WdizAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6fm2F0gRUpb3JXdUyEX4C0RwSL8wHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzM1ZGQ4MDgwLTUzNzUtNDc1NS1iZWE5LTk4MmY0MDUyNmVhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASsYGAwDQYJKoZIhvcNAQELBQADggEBADkGj3NntkAmpsghoDBumIoqKiug q5JDukj87ShXLuUj/ZgwWggnuYq0O2gix1L9zmuAfbqyvkejN59ef4IlRZcB9Yy9 +hlcKZ3H+RjhE7sE2MFBj8g7DqzeLGW3V6ldvwTwgJ9N6lYqiTouxefmM7TdpXW1 zaXevNSmRW7luUyLUJ87RL8Lt2ayjJe5bt2tVeYdSAOsyXie9BOKvyxfwR+xm+2Z JvL6xNG7UBJcYmbS8GVM/+Xq3DX/P291HA6XTMmTDSSqSBsx7ijVYDkn/pMEkK6D KbDACIowD+EGeqshspFF3cTdoa7D8EI0eIAP9otSlGlJ5Iq2lqMXC+ZuN1g= -----END CERTIFICATE-----Generated at Sat Aug 23 21:22:51 2025 by rpki-client