$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa File: 22f66e2d-2753-44a1-9aec-16b69cdffad1.roa (raw, json) Hash identifier: mDM5kf8r8q3GJ4ADdZw6hIw0BaRew/GIJWtMt33sH/w= Subject key identifier: 3E:25:06:E3:96:70:F6:8C:38:5C:7E:AE:AE:9E:65:9D:31:3C:01:12 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 64B501C96DE59B8D38CB98F7030FE2DA0AAF295A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa Signing time: Fri 08 Aug 2025 00:31:01 +0000 ROA not before: Fri 08 Aug 2025 00:31:01 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:b5:01:c9:6d:e5:9b:8d:38:cb:98:f7:03:0f:e2:da:0a:af:29:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 8 00:31:01 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=82b9b8beeb4e66b58ba56a9e42c124a4d9a9be89f132bf1943cd27be39dc1c94, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2b:d2:1b:5d:9b:8b:ee:df:d8:29:e4:72:53: 6d:04:f2:0a:90:e2:21:56:0c:0f:9c:c1:5e:8f:7c: df:2e:a6:79:70:b2:40:ee:bf:30:38:50:b3:d7:02: 11:03:5a:ff:78:9d:6d:cc:d5:07:39:c0:3f:6e:c4: 54:25:87:7a:db:d0:54:cf:bd:e9:d2:10:61:4f:ba: b7:4d:32:ef:53:21:94:4f:ba:d6:4f:c3:0e:d1:c0: 67:dd:a3:cc:d6:c1:21:8a:5e:c4:41:1a:67:18:a9: d7:52:a4:8f:b4:d1:e5:b0:d7:3c:74:c2:56:e0:dd: cf:52:90:2c:cd:3b:6d:45:35:26:16:02:f9:83:b2: 77:3e:28:9a:97:7e:7a:96:39:43:8d:94:b7:f6:14: 2b:38:aa:fd:d1:ae:04:a0:05:8e:e8:53:33:71:fd: da:8d:15:36:62:61:72:69:79:bf:6b:5d:81:b1:50: 40:4c:3e:15:b0:a2:ba:7e:d3:27:20:95:8a:91:2b: c2:22:24:1f:01:90:7b:b1:98:84:f0:4e:86:ba:4d: 07:99:6c:23:30:2d:a3:89:db:d4:32:4a:da:b9:4d: ca:3f:ca:bc:d8:92:ce:a9:45:5c:b1:c6:5a:a6:dc: aa:68:1d:4e:b4:f0:41:0a:2e:27:5d:24:09:78:b2: 6d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:25:06:E3:96:70:F6:8C:38:5C:7E:AE:AE:9E:65:9D:31:3C:01:12 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.1.0/24 Signature Algorithm: sha256WithRSAEncryption 49:5f:f3:d4:9f:3c:18:9b:dc:14:d2:d2:8b:68:95:6a:99:97: 6f:ab:ca:9f:2b:6f:4b:b2:27:44:ed:be:6c:e4:13:9f:74:35: f1:f0:f1:66:b3:2b:02:a4:57:19:76:66:1d:8f:84:9e:66:96: df:fb:a8:90:5e:e8:59:16:f8:96:4b:c9:46:13:8a:7b:6e:99: c7:d4:90:ea:ff:e4:bd:d7:ae:0f:78:fa:66:67:f1:6b:e5:31: 9d:19:95:a2:6d:a5:24:9c:2b:65:30:0f:44:ef:a0:f7:bb:15: a0:d0:fd:99:3b:8f:a6:23:7b:0f:78:2d:4f:cd:dc:2d:ce:6f: 35:f2:0a:b6:5e:db:6a:60:fd:28:14:5b:25:22:7b:42:c4:77: 7c:68:c5:29:d5:5c:10:43:86:69:d4:47:27:dd:f8:97:94:19: 1a:85:df:ec:b8:cb:cb:d1:b6:28:91:91:72:0c:0a:32:18:a9: b9:1e:22:c7:52:9e:94:0a:0a:97:7d:99:92:ad:f6:84:98:05: 84:c8:50:69:41:ed:98:6a:fa:a1:51:ff:c2:35:50:6b:34:9c: a0:b2:2c:dd:d8:63:d6:4a:ea:0d:52:77:1a:d1:e1:ca:8e:5e: ba:51:43:5a:af:74:e1:c9:7e:3f:fc:27:4c:55:aa:c7:d3:4a: 42:39:78:18 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZLUByW3lm404y5j3Aw/i2gqvKVowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODA4MDAzMTAxWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MmI5YjhiZWViNGU2NmI1OGJhNTZhOWU0MmMxMjRhNGQ5 YTliZTg5ZjEzMmJmMTk0M2NkMjdiZTM5ZGMxYzk0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLK9IbXZuL7t/YKeRyU20E8gqQ4iFWDA+cwV6PfN8upnlw skDuvzA4ULPXAhEDWv94nW3M1Qc5wD9uxFQlh3rb0FTPvenSEGFPurdNMu9TIZRP utZPww7RwGfdo8zWwSGKXsRBGmcYqddSpI+00eWw1zx0wlbg3c9SkCzNO21FNSYW AvmDsnc+KJqXfnqWOUONlLf2FCs4qv3RrgSgBY7oUzNx/dqNFTZiYXJpeb9rXYGx UEBMPhWworp+0ycglYqRK8IiJB8BkHuxmITwToa6TQeZbCMwLaOJ29QyStq5Tco/ yrzYks6pRVyxxlqm3KpoHU608EEKLiddJAl4sm1PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPiUG45Zw9ow4XH6urp5lnTE8ARIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzIyZjY2ZTJkLTI3NTMtNDRhMS05YWVjLTE2YjY5Y2RmZmFkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAEwDQYJKoZIhvcNAQELBQADggEBAElf89SfPBib3BTS0otolWqZl2+r yp8rb0uyJ0TtvmzkE590NfHw8WazKwKkVxl2Zh2PhJ5mlt/7qJBe6FkW+JZLyUYT intumcfUkOr/5L3Xrg94+mZn8WvlMZ0ZlaJtpSScK2UwD0TvoPe7FaDQ/Zk7j6Yj ew94LU/N3C3ObzXyCrZe22pg/SgUWyUie0LEd3xoxSnVXBBDhmnURyfd+JeUGRqF 3+y4y8vRtiiRkXIMCjIYqbkeIsdSnpQKCpd9mZKt9oSYBYTIUGlB7Zhq+qFR/8I1 UGs0nKCyLN3YY9ZK6g1SdxrR4cqOXrpRQ1qvdOHJfj/8J0xVqsfTSkI5eBg= -----END CERTIFICATE-----Generated at Sat Aug 23 08:20:56 2025 by rpki-client