$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1abc2a38-5fb6-406f-aa0c-a0c43202bad5.roa File: 1abc2a38-5fb6-406f-aa0c-a0c43202bad5.roa (raw, json) Hash identifier: hqvciD5r8QEDtpSIHfY23kAmJw7O0n6YhV2IqQDvmn4= Subject key identifier: 55:FE:8E:D4:DB:5A:A7:3A:C2:B7:08:93:1F:C0:95:C0:EB:80:2E:A4 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1D430EE71A853A148EEE4D6BEC5EF4460688DE91 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1abc2a38-5fb6-406f-aa0c-a0c43202bad5.roa Signing time: Fri 15 Aug 2025 15:30:53 +0000 ROA not before: Fri 15 Aug 2025 15:30:53 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:43:0e:e7:1a:85:3a:14:8e:ee:4d:6b:ec:5e:f4:46:06:88:de:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 15 15:30:53 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=96bdd4cd04278290b97f0d3dd03a59038524fadd0c46320127b9ac36dbd026c2, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:dc:ab:a7:03:5c:0e:62:6d:f8:e0:1f:8c:bd: cb:26:3e:da:91:51:52:29:82:b6:ed:45:09:49:8e: da:7a:64:66:f8:b5:b5:59:63:c1:0f:72:50:13:88: 33:1d:5b:4d:f5:3a:5d:5e:d9:c1:53:ac:2a:b7:2c: 15:5b:a3:22:8c:87:4e:e8:a6:cc:f8:78:da:e3:ff: b0:37:2c:4b:5d:6e:1a:d3:6d:7b:9c:d9:e8:b5:55: 97:a0:2b:34:5d:66:cb:c4:69:9c:a3:77:d7:c6:ce: 58:6f:b5:e7:2d:bf:09:f2:1b:54:fb:47:ca:92:89: bf:e3:50:85:7b:b0:bd:cb:00:d6:a2:42:1e:64:5b: e8:96:3a:8c:8b:bf:e6:32:26:a3:ae:aa:41:51:80: fb:d1:51:70:06:f2:6c:ff:0a:13:5f:07:9b:5e:4c: 32:32:6f:cb:e9:e6:3b:4b:20:5f:89:9f:ac:a9:ba: 3f:31:2a:72:3a:ef:10:c3:34:2f:ab:88:13:ae:dd: 48:5e:ad:6b:8a:84:67:62:7c:6f:2d:88:41:7f:30: a2:8d:15:17:4a:29:61:83:9c:78:99:93:e0:08:e3: d0:69:46:c5:4a:03:5b:a6:f4:d2:8d:12:ed:1d:8c: cd:da:1c:c1:37:5d:43:20:f2:97:55:5b:ed:da:6d: b7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:FE:8E:D4:DB:5A:A7:3A:C2:B7:08:93:1F:C0:95:C0:EB:80:2E:A4 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1abc2a38-5fb6-406f-aa0c-a0c43202bad5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.30.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:09:ed:18:81:47:dc:b5:45:7e:e1:a9:a5:f2:c3:bd:3d:39: 46:4e:61:24:be:f2:4c:e0:32:ef:26:b8:69:5d:00:62:82:3d: e5:9e:50:a0:95:f8:c9:83:d0:f7:f4:93:7f:b1:da:8c:1e:45: 9c:0a:c3:d0:20:4a:52:bc:c1:c5:62:b0:a1:88:c4:56:d4:03: 12:5f:e1:4f:86:64:b4:76:0f:13:eb:c7:64:05:7f:21:fc:3e: 25:4f:c5:6b:92:3c:78:c7:68:bb:0a:a9:48:7b:a5:d0:6d:f0: cd:2b:64:b7:75:ef:9d:43:24:ac:31:69:85:22:d7:e7:f5:a4: 45:14:7c:2d:3c:87:1e:67:83:2f:b3:1c:df:63:c7:37:b5:eb: 97:d1:7c:5e:a3:b6:fd:ad:a3:f2:94:69:fc:c2:dc:a2:8f:96: 81:dc:1d:f6:c9:f7:9a:19:75:e0:dc:48:5f:99:df:e5:8f:26: 1c:0e:a1:b9:ec:86:1d:fa:72:6c:9d:8f:be:6c:69:ce:33:f5: ae:00:ff:a4:ec:36:4e:3a:d8:bc:9e:53:f0:66:5b:ad:04:13: 0c:c4:8d:73:ec:aa:9f:2a:c7:56:72:0a:dc:bc:c7:e3:bc:2d: 2b:df:28:ab:bd:58:8f:f0:26:5d:f7:88:4c:04:ba:f3:cc:99: 07:36:af:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHUMO5xqFOhSO7k1r7F70RgaI3pEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE1MTUzMDUzWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NmJkZDRjZDA0Mjc4MjkwYjk3ZjBkM2RkMDNhNTkwMzg1 MjRmYWRkMGM0NjMyMDEyN2I5YWMzNmRiZDAyNmMyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC33KunA1wOYm344B+MvcsmPtqRUVIpgrbtRQlJjtp6ZGb4 tbVZY8EPclATiDMdW031Ol1e2cFTrCq3LBVboyKMh07opsz4eNrj/7A3LEtdbhrT bXuc2ei1VZegKzRdZsvEaZyjd9fGzlhvtectvwnyG1T7R8qSib/jUIV7sL3LANai Qh5kW+iWOoyLv+YyJqOuqkFRgPvRUXAG8mz/ChNfB5teTDIyb8vp5jtLIF+Jn6yp uj8xKnI67xDDNC+riBOu3UherWuKhGdifG8tiEF/MKKNFRdKKWGDnHiZk+AI49Bp RsVKA1um9NKNEu0djM3aHME3XUMg8pdVW+3abbdHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVf6O1NtapzrCtwiTH8CVwOuALqQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzFhYmMyYTM4LTVmYjYtNDA2Zi1hYTBjLWEwYzQzMjAyYmFkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYB4wDQYJKoZIhvcNAQELBQADggEBAD0J7RiBR9y1RX7hqaXyw709OUZO YSS+8kzgMu8muGldAGKCPeWeUKCV+MmD0Pf0k3+x2oweRZwKw9AgSlK8wcVisKGI xFbUAxJf4U+GZLR2DxPrx2QFfyH8PiVPxWuSPHjHaLsKqUh7pdBt8M0rZLd1751D JKwxaYUi1+f1pEUUfC08hx5ngy+zHN9jxze165fRfF6jtv2to/KUafzC3KKPloHc HfbJ95oZdeDcSF+Z3+WPJhwOobnshh36cmydj75sac4z9a4A/6TsNk462LyeU/Bm W60EEwzEjXPsqp8qx1ZyCty8x+O8LSvfKKu9WI/wJl33iEwEuvPMmQc2r6U= -----END CERTIFICATE-----Generated at Sat Aug 23 12:14:37 2025 by rpki-client