$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1bbf117d-2531-42a6-b595-4c38287c1d36.roa File: 1bbf117d-2531-42a6-b595-4c38287c1d36.roa (raw, json) Hash identifier: +0VAOsn9e2kyt6KWHcT6eWLPW8+pHod6Mo6+Mxqp7fI= Subject key identifier: 92:9B:E2:14:C9:E1:A3:B2:8E:98:5B:CA:22:63:05:0D:59:15:96:04 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2C7FF3F477C2AEA27FD7294FEEB5853DE082AA54 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1bbf117d-2531-42a6-b595-4c38287c1d36.roa Signing time: Mon 18 Aug 2025 23:07:08 +0000 ROA not before: Mon 18 Aug 2025 23:07:08 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:7f:f3:f4:77:c2:ae:a2:7f:d7:29:4f:ee:b5:85:3d:e0:82:aa:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 18 23:07:08 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=11034c08911268c8d930995edc7598dee860230489253e7304277f35c0de2a0f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ff:93:a9:66:c2:1c:99:d0:4f:3a:66:3e:8d: 2d:e0:78:d1:71:2d:07:4b:18:84:72:5d:16:a3:60: dd:0e:61:87:ba:30:a1:e2:22:fa:14:c8:9f:e6:e9: 49:d1:91:3f:27:12:fa:4f:50:03:9a:a5:7a:67:16: 86:e2:01:3f:a4:85:05:c9:cd:f7:3b:14:01:b9:9f: 42:65:51:7e:c1:63:96:27:1d:5f:db:15:47:aa:d7: 0c:2c:06:a9:d5:06:99:7b:fd:a0:af:c5:1a:0d:20: 08:12:af:da:05:93:ee:b7:1d:2b:36:c2:9d:46:e6: e0:24:55:6d:1d:8c:ef:99:27:74:6e:c5:6e:d6:a1: c2:c2:b2:5d:21:40:41:7c:88:cf:28:1e:fb:a4:a1: 18:2c:f8:da:b7:24:cf:8a:6e:46:1e:a0:10:b2:15: 38:b1:1f:1f:dc:b2:01:13:71:fa:88:88:60:e2:87: 1f:77:15:07:7e:e8:a7:39:9b:8f:a2:45:4b:09:98: 34:0d:11:aa:8e:ad:fe:5d:dc:12:50:7d:5a:3e:62: 15:5c:82:b7:0c:d6:21:67:e2:e0:75:2b:eb:75:03: 4c:d5:32:4c:97:ce:fa:90:32:e9:67:de:50:e8:ac: ce:04:d1:ae:b6:d3:ef:60:9e:db:d0:3c:28:7f:a8: 2a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:9B:E2:14:C9:E1:A3:B2:8E:98:5B:CA:22:63:05:0D:59:15:96:04 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1bbf117d-2531-42a6-b595-4c38287c1d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.5.0/24 Signature Algorithm: sha256WithRSAEncryption 97:e2:82:8b:36:3e:8e:62:4a:51:af:6c:ae:03:20:f0:49:87: d7:3f:d5:6f:b7:29:8c:ef:b4:5d:82:ce:f2:5c:da:a8:df:a2: a8:cd:76:27:46:27:57:02:84:c7:db:8d:e1:14:0f:0d:2d:54: 13:e7:c8:87:51:83:d0:ea:1b:d3:92:47:cf:08:e6:3d:ff:06: 3f:f4:cc:9b:bc:91:b3:c0:af:5a:56:12:44:52:70:10:78:11: 37:e0:75:d2:68:ef:66:ce:67:d8:90:11:06:53:2f:f8:db:78: bd:11:81:a5:4d:95:0c:e1:30:5b:78:d2:9b:8d:cc:ff:e7:fa: fc:6d:4b:d2:dc:1a:aa:52:f2:31:b8:fc:e3:c7:ef:2b:04:78: 29:f2:8d:65:8b:c8:7c:10:67:12:2c:dc:e4:dd:09:5a:2d:fb: bd:69:7a:9d:b7:72:cf:cd:fe:2c:ea:49:af:46:5d:81:12:18: a2:d5:24:50:09:a2:98:07:e8:e6:31:03:3c:8d:4b:70:08:9f: 28:ba:0a:be:71:c1:ea:d0:6a:58:04:90:25:ce:bb:79:af:f0: ff:99:2d:e5:4a:6c:11:b9:c3:b8:1e:65:0f:0d:c7:28:c9:37: ee:d2:56:b3:62:c0:3c:3b:71:5e:c5:64:ea:55:bf:88:35:df: bc:c7:ca:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULH/z9HfCrqJ/1ylP7rWFPeCCqlQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE4MjMwNzA4WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMTAzNGMwODkxMTI2OGM4ZDkzMDk5NWVkYzc1OThkZWU4 NjAyMzA0ODkyNTNlNzMwNDI3N2YzNWMwZGUyYTBmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs/5OpZsIcmdBPOmY+jS3geNFxLQdLGIRyXRajYN0OYYe6 MKHiIvoUyJ/m6UnRkT8nEvpPUAOapXpnFobiAT+khQXJzfc7FAG5n0JlUX7BY5Yn HV/bFUeq1wwsBqnVBpl7/aCvxRoNIAgSr9oFk+63HSs2wp1G5uAkVW0djO+ZJ3Ru xW7WocLCsl0hQEF8iM8oHvukoRgs+Nq3JM+KbkYeoBCyFTixHx/csgETcfqIiGDi hx93FQd+6Kc5m4+iRUsJmDQNEaqOrf5d3BJQfVo+YhVcgrcM1iFn4uB1K+t1A0zV MkyXzvqQMuln3lDorM4E0a620+9gntvQPCh/qCoBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkpviFMnho7KOmFvKImMFDVkVlgQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzFiYmYxMTdkLTI1MzEtNDJhNi1iNTk1LTRjMzgyODdjMWQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAUwDQYJKoZIhvcNAQELBQADggEBAJfigos2Po5iSlGvbK4DIPBJh9c/ 1W+3KYzvtF2CzvJc2qjfoqjNdidGJ1cChMfbjeEUDw0tVBPnyIdRg9DqG9OSR88I 5j3/Bj/0zJu8kbPAr1pWEkRScBB4ETfgddJo72bOZ9iQEQZTL/jbeL0RgaVNlQzh MFt40puNzP/n+vxtS9LcGqpS8jG4/OPH7ysEeCnyjWWLyHwQZxIs3OTdCVot+71p ep23cs/N/izqSa9GXYESGKLVJFAJopgH6OYxAzyNS3AInyi6Cr5xwerQalgEkCXO u3mv8P+ZLeVKbBG5w7geZQ8NxyjJN+7SVrNiwDw7cV7FZOpVv4g137zHyp8= -----END CERTIFICATE-----Generated at Sun Aug 24 03:07:40 2025 by rpki-client