$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa File: 22f66e2d-2753-44a1-9aec-16b69cdffad1.roa (raw, json) Hash identifier: naSidY4Zm40CpBhmml9MoI8ne2ZaE0SuvWhswg1WfeE= Subject key identifier: 60:CD:E1:06:EB:D5:2F:F4:4B:B2:34:0B:FE:CE:5E:74:0D:11:34:51 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 04C1F1995AABA71DFB6793234AA7B9C815B10CCC Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa Signing time: Wed 18 Jun 2025 00:30:07 +0000 ROA not before: Wed 18 Jun 2025 00:30:07 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:c1:f1:99:5a:ab:a7:1d:fb:67:93:23:4a:a7:b9:c8:15:b1:0c:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 18 00:30:07 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=34519ab30c0e77245f260a836b531d20ce970cc98d02ee86fc8cc4afb3324d2d, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:64:a9:ca:ef:5a:a6:0b:76:66:d1:ed:5e:59: 44:43:9c:9a:3e:df:ef:3c:4a:6e:ec:4c:72:cb:e2: b6:c8:04:f8:b6:57:be:a5:c0:bc:da:95:7a:3d:66: 3d:80:6f:6a:26:58:16:98:4a:fb:e0:06:79:2f:8b: 35:c8:7b:ed:4a:b8:55:f9:04:02:50:21:64:5d:89: 73:f6:40:0c:49:fe:31:c8:8c:ee:83:16:83:52:3c: 1d:f0:4e:f3:c2:fc:59:87:56:45:84:60:52:18:9d: 45:b7:5d:a2:28:d9:30:a1:31:f2:e0:9f:90:3b:d5: c1:b6:eb:4c:6d:8e:47:83:c7:a6:59:63:4b:4d:ac: 93:50:e7:16:e0:96:a7:ba:68:a5:cf:62:19:ce:7f: 11:d2:b2:47:e8:37:20:5b:dd:a4:6c:b8:7b:66:6c: 00:ea:19:3d:16:98:32:8d:18:49:6f:c0:0f:42:34: 59:0e:6d:54:26:bf:9d:73:3d:9f:4b:41:e0:f9:49: c8:38:85:f5:06:19:42:f9:79:9e:40:df:5f:d9:7b: 6c:1a:38:83:69:73:7f:85:d6:61:4c:f2:ea:47:55: c3:0b:d8:63:47:a1:4f:a4:3b:c7:bf:5e:5c:3b:8d: 3e:b1:fd:e5:f6:7a:94:51:a5:7f:98:ff:28:93:f7: b5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:CD:E1:06:EB:D5:2F:F4:4B:B2:34:0B:FE:CE:5E:74:0D:11:34:51 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.1.0/24 Signature Algorithm: sha256WithRSAEncryption 23:db:ad:2f:9d:dc:87:15:14:08:59:e5:b2:74:17:27:5d:fb: fa:31:da:53:c6:5d:48:32:47:5a:87:a7:b2:05:27:45:3c:f9: 2c:5a:a1:84:d5:f9:85:07:85:bb:99:6c:e7:11:bc:eb:37:dc: e2:6c:44:9b:d5:f6:26:1a:0b:e0:db:3f:a2:15:23:23:d6:1b: 65:a9:01:69:25:71:0e:97:af:a0:93:60:73:70:4b:9c:4f:eb: 60:b7:60:db:cf:93:fa:fd:32:fd:de:0c:c5:83:25:a0:9a:eb: 11:a1:5a:22:75:c0:36:6f:01:44:23:0e:4d:1b:ef:e6:cc:d5: 90:2c:e1:2d:ad:56:3c:e0:5b:f8:b3:5a:52:44:1c:80:1c:6f: 5b:89:b2:84:2d:ec:37:d8:dc:2a:11:2c:ca:e7:1e:6e:87:d6: 0e:87:4f:17:68:bd:6a:99:99:bd:d0:af:1a:9f:76:56:21:66: d0:1f:04:1e:9d:20:31:16:ba:aa:67:b3:16:31:6e:b6:ab:cd: 41:0d:4f:8e:9c:23:44:4e:c7:6a:5b:73:a3:da:24:5b:3b:60: 19:78:6a:5c:b9:18:76:66:e7:af:38:75:99:42:77:e3:86:44: 2c:cb:c1:3c:58:bc:7d:ee:2c:de:eb:3f:dd:5d:8e:2b:78:19: 4c:5a:a2:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBMHxmVqrpx37Z5MjSqe5yBWxDMwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjE4MDAzMDA3WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDUxOWFiMzBjMGU3NzI0NWYyNjBhODM2YjUzMWQyMGNl OTcwY2M5OGQwMmVlODZmYzhjYzRhZmIzMzI0ZDJkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4ZKnK71qmC3Zm0e1eWURDnJo+3+88Sm7sTHLL4rbIBPi2 V76lwLzalXo9Zj2Ab2omWBaYSvvgBnkvizXIe+1KuFX5BAJQIWRdiXP2QAxJ/jHI jO6DFoNSPB3wTvPC/FmHVkWEYFIYnUW3XaIo2TChMfLgn5A71cG260xtjkeDx6ZZ Y0tNrJNQ5xbglqe6aKXPYhnOfxHSskfoNyBb3aRsuHtmbADqGT0WmDKNGElvwA9C NFkObVQmv51zPZ9LQeD5Scg4hfUGGUL5eZ5A31/Ze2waOINpc3+F1mFM8upHVcML 2GNHoU+kO8e/Xlw7jT6x/eX2epRRpX+Y/yiT97VvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYM3hBuvVL/RLsjQL/s5edA0RNFEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzIyZjY2ZTJkLTI3NTMtNDRhMS05YWVjLTE2YjY5Y2RmZmFkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAEwDQYJKoZIhvcNAQELBQADggEBACPbrS+d3IcVFAhZ5bJ0Fydd+/ox 2lPGXUgyR1qHp7IFJ0U8+SxaoYTV+YUHhbuZbOcRvOs33OJsRJvV9iYaC+DbP6IV IyPWG2WpAWklcQ6Xr6CTYHNwS5xP62C3YNvPk/r9Mv3eDMWDJaCa6xGhWiJ1wDZv AUQjDk0b7+bM1ZAs4S2tVjzgW/izWlJEHIAcb1uJsoQt7DfY3CoRLMrnHm6H1g6H TxdovWqZmb3QrxqfdlYhZtAfBB6dIDEWuqpnsxYxbrarzUENT46cI0ROx2pbc6Pa JFs7YBl4aly5GHZm5684dZlCd+OGRCzLwTxYvH3uLN7rP91djit4GUxaoqg= -----END CERTIFICATE-----Generated at Tue Jul 1 05:58:36 2025 by rpki-client