$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa File: 0169813a-bb63-4d7c-af7c-621b7522e549.roa (raw, json) Hash identifier: 12oSMSvj79WrhmXC7wjUZoatrhDnPra0NmiBoCi4Bw4= Subject key identifier: 32:FD:B9:05:66:74:E2:F9:4C:40:3F:17:49:09:19:B8:CB:BF:68:E0 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 48AD6CB621B1EC7EDC267E97C9852E77AA55DACE Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa Signing time: Fri 15 Aug 2025 15:30:18 +0000 ROA not before: Fri 15 Aug 2025 15:30:18 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:ad:6c:b6:21:b1:ec:7e:dc:26:7e:97:c9:85:2e:77:aa:55:da:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 15 15:30:18 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=5830ab1d3383cfc36383425b907841c5a363ea58eb61461b6d86e1612ff60202, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b8:0b:d8:0f:18:6f:2c:1f:13:2f:9f:00:4e: d6:19:c4:0e:0d:b7:9f:b7:3b:2e:01:c2:5f:74:f4: cf:f6:c5:dd:0f:26:6d:82:c3:5a:9d:12:5f:94:26: e6:6e:5b:cd:c8:77:ff:6d:06:5d:73:94:57:53:12: 3a:3b:81:28:f5:e4:22:b5:7c:ed:72:d3:ef:be:b1: e2:e5:17:61:4d:21:2c:02:df:6d:15:4d:8f:69:53: 25:99:61:e4:46:5d:15:c5:23:01:51:33:ef:ee:c4: 0b:d4:ae:bc:6b:f2:ed:b2:94:eb:b7:39:4e:e3:f2: f3:7f:df:eb:8d:e0:85:b6:89:46:52:ff:d2:ca:57: af:66:bf:ad:df:70:0c:a1:76:13:f5:75:15:ac:1f: 7e:ad:80:70:7d:9f:81:e2:66:75:24:86:d3:ae:1c: a8:29:bb:9b:2c:91:fa:15:5c:b3:20:c7:8d:b7:52: d6:fc:0a:eb:b0:ac:80:2e:af:25:be:44:6b:bd:7d: dc:c3:20:8a:42:46:b9:ca:b3:15:cc:cc:88:40:ee: f0:05:cb:78:cf:38:b5:ce:1e:42:85:a1:29:9a:fc: 05:03:5d:a7:b1:d0:25:50:18:6c:d9:9e:e0:dd:61: 92:39:5c:a6:48:1d:3a:7a:7b:ed:9b:09:de:27:aa: 36:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:FD:B9:05:66:74:E2:F9:4C:40:3F:17:49:09:19:B8:CB:BF:68:E0 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.24.0/23 Signature Algorithm: sha256WithRSAEncryption 79:39:99:66:d2:42:51:4e:98:ff:b7:d7:4a:b0:6c:d5:46:9b: 01:45:ee:8f:82:e0:7c:16:99:ae:10:89:d2:dd:0e:6a:b9:f9: 59:c9:03:e8:d8:b5:b5:ea:4d:d7:94:42:8c:39:e9:3e:8d:09: e9:0e:25:9f:b3:b1:f5:95:78:99:cd:eb:98:80:c9:aa:fa:1a: ee:67:2d:5c:83:0e:54:18:c3:20:9b:97:9b:99:50:16:67:6c: c3:ce:d6:80:da:24:f2:0a:18:e8:8f:b2:b8:fc:2e:4e:b9:62: 53:a5:52:8a:68:94:69:63:02:67:56:aa:ed:8b:2c:77:58:e3: 6f:2c:9f:06:d3:eb:2c:5f:ce:9e:7e:8c:1e:38:50:28:db:4f: cc:1b:03:3f:f5:4c:d0:f6:6a:6a:f4:10:60:97:83:8b:4a:d1: 3c:d1:89:7e:26:ba:ed:18:81:4f:45:d6:ae:17:9a:68:d7:51: e0:c5:d7:58:65:6e:cc:99:38:54:cc:cf:4c:38:d6:c2:6d:38: 96:6f:02:f9:57:18:97:c0:34:62:a5:d7:d1:54:ab:c5:43:5d: c5:7e:2b:be:55:1e:5f:a5:2f:80:88:3b:d4:ba:b1:4a:6a:da: aa:6a:56:52:d9:1b:ad:f9:cc:83:37:65:c3:14:6d:2f:4b:05: 87:a9:09:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSK1stiGx7H7cJn6XyYUud6pV2s4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE1MTUzMDE4WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODMwYWIxZDMzODNjZmMzNjM4MzQyNWI5MDc4NDFjNWEz NjNlYTU4ZWI2MTQ2MWI2ZDg2ZTE2MTJmZjYwMjAyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9uAvYDxhvLB8TL58ATtYZxA4Nt5+3Oy4Bwl909M/2xd0P Jm2Cw1qdEl+UJuZuW83Id/9tBl1zlFdTEjo7gSj15CK1fO1y0+++seLlF2FNISwC 320VTY9pUyWZYeRGXRXFIwFRM+/uxAvUrrxr8u2ylOu3OU7j8vN/3+uN4IW2iUZS /9LKV69mv63fcAyhdhP1dRWsH36tgHB9n4HiZnUkhtOuHKgpu5sskfoVXLMgx423 Utb8CuuwrIAuryW+RGu9fdzDIIpCRrnKsxXMzIhA7vAFy3jPOLXOHkKFoSma/AUD Xaex0CVQGGzZnuDdYZI5XKZIHTp6e+2bCd4nqjanAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMv25BWZ04vlMQD8XSQkZuMu/aOAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzAxNjk4MTNhLWJiNjMtNGQ3Yy1hZjdjLTYyMWI3NTIyZTU0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBgwDQYJKoZIhvcNAQELBQADggEBAHk5mWbSQlFOmP+310qwbNVGmwFF 7o+C4HwWma4QidLdDmq5+VnJA+jYtbXqTdeUQow56T6NCekOJZ+zsfWVeJnN65iA yar6Gu5nLVyDDlQYwyCbl5uZUBZnbMPO1oDaJPIKGOiPsrj8Lk65YlOlUopolGlj AmdWqu2LLHdY428snwbT6yxfzp5+jB44UCjbT8wbAz/1TND2amr0EGCXg4tK0TzR iX4muu0YgU9F1q4XmmjXUeDF11hlbsyZOFTMz0w41sJtOJZvAvlXGJfANGKl19FU q8VDXcV+K75VHl+lL4CIO9S6sUpq2qpqVlLZG635zIM3ZcMUbS9LBYepCdA= -----END CERTIFICATE-----Generated at Sat Aug 23 10:22:17 2025 by rpki-client