$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa File: 27feea1a-4933-4577-b9c4-9488e2a550f0.roa (raw, json) Hash identifier: dLbrSD/gnmSniK0RHhHLXxCjxXRaCESYC67R8xke9qY= Subject key identifier: FB:58:84:DB:25:15:6F:3A:47:8C:FA:DE:3E:EF:CA:F2:46:59:91:32 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7B35E2519572956331042F2F02EB8B8228276C47 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa Signing time: Tue 19 Aug 2025 16:40:27 +0000 ROA not before: Tue 19 Aug 2025 16:40:27 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:35:e2:51:95:72:95:63:31:04:2f:2f:02:eb:8b:82:28:27:6c:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:27 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=db56b2ccce39b4f9bab35f0e42ba4d9de30d22edf1fe6e5e03c4eb3b1ee8b713, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:44:41:76:bb:0a:f6:71:fd:da:81:f3:8c:03: 50:6e:54:62:2c:35:46:b5:4f:0d:ab:8d:99:da:4c: aa:bb:10:fa:df:8c:70:97:dc:06:38:5b:ba:fe:72: a4:c9:15:45:2b:20:01:32:ee:15:62:75:25:61:4b: c6:09:9a:3b:a3:75:87:e7:22:3a:7c:6b:b4:30:93: e9:ba:e8:11:4a:9d:65:a9:06:60:2c:e0:15:6a:50: a8:72:c0:0e:ae:3e:09:f1:53:17:7d:45:b3:4c:20: 40:32:65:9f:c6:7f:78:d1:4e:66:43:e4:a9:69:04: fb:9e:c5:0d:98:bf:f7:b0:6e:dc:6f:6b:f5:88:79: 08:a8:34:7c:75:36:51:79:73:3a:fa:2a:09:b2:3d: 0f:a0:77:17:ab:25:08:c7:36:a0:9b:af:49:46:2a: 1a:94:af:4a:e0:22:3a:77:63:cb:7d:4b:d9:4d:fd: c5:f7:d6:6b:4c:c0:98:a0:31:4d:6e:9b:7a:8a:12: f9:9c:c6:5f:34:dd:77:51:cd:2b:92:20:60:1c:d8: 23:7f:e5:6c:d5:67:95:fe:de:33:08:5e:38:2d:92: 48:a4:96:6c:08:a8:b6:97:27:5f:48:69:41:91:38: 31:92:d4:55:5a:2e:5a:12:63:a9:b8:91:4e:7c:36: 7e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:58:84:DB:25:15:6F:3A:47:8C:FA:DE:3E:EF:CA:F2:46:59:91:32 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption 05:aa:79:32:31:ac:c1:14:87:e3:04:0a:fd:6b:b4:01:9e:f0: e3:ef:15:62:31:35:c2:be:60:ca:e0:57:b4:ba:d0:9f:9f:ab: 93:c8:57:ad:37:4e:8e:c1:86:a7:62:ca:dc:cc:41:96:ef:e9: 36:ed:21:46:b4:94:b7:68:b7:08:0a:6a:1b:c0:9c:07:bb:b8: 95:c6:25:41:0c:77:0f:56:b7:58:3d:9f:a6:d9:5e:b3:8c:87: 10:51:8d:e1:fb:a4:f0:28:96:84:30:66:1c:b9:a1:6b:2b:ce: 17:68:3f:a7:33:2e:42:22:e5:63:bd:2f:c3:11:02:9b:22:4f: bf:cd:97:99:ab:33:05:07:d0:36:00:7c:0d:82:b0:6d:f8:f8: d8:39:55:ee:b8:af:0b:08:6b:53:bd:4d:65:4f:b8:00:a8:ac: 75:43:37:68:da:a2:c7:9b:1f:e9:bb:ee:c8:47:5f:1d:5a:b6: c6:13:56:3f:0a:5b:1c:bc:a6:4d:5a:f7:bf:6b:4c:37:3a:bd: b2:ae:49:db:c9:29:e9:2f:39:f3:03:5f:02:25:d5:87:67:7d: 97:6a:72:4f:4c:92:5c:c8:42:34:90:ae:7a:3d:e7:7d:d4:46: 06:ec:1a:cc:92:93:0c:44:38:a7:55:a1:f7:d7:bb:81:22:a3: 28:e1:dd:24 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUezXiUZVylWMxBC8vAuuLgignbEcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDI3WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjU2YjJjY2NlMzliNGY5YmFiMzVmMGU0MmJhNGQ5ZGUz MGQyMmVkZjFmZTZlNWUwM2M0ZWIzYjFlZThiNzEzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZREF2uwr2cf3agfOMA1BuVGIsNUa1Tw2rjZnaTKq7EPrf jHCX3AY4W7r+cqTJFUUrIAEy7hVidSVhS8YJmjujdYfnIjp8a7Qwk+m66BFKnWWp BmAs4BVqUKhywA6uPgnxUxd9RbNMIEAyZZ/Gf3jRTmZD5KlpBPuexQ2Yv/ewbtxv a/WIeQioNHx1NlF5czr6KgmyPQ+gdxerJQjHNqCbr0lGKhqUr0rgIjp3Y8t9S9lN /cX31mtMwJigMU1um3qKEvmcxl803XdRzSuSIGAc2CN/5WzVZ5X+3jMIXjgtkkik lmwIqLaXJ19IaUGRODGS1FVaLloSY6m4kU58Nn7VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+1iE2yUVbzpHjPrePu/K8kZZkTIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzI3ZmVlYTFhLTQ5MzMtNDU3Ny1iOWM0LTk0ODhlMmE1NTBmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPQwDQYJKoZIhvcNAQELBQADggEBAAWqeTIxrMEUh+MECv1rtAGe8OPv FWIxNcK+YMrgV7S60J+fq5PIV603To7BhqdiytzMQZbv6TbtIUa0lLdotwgKahvA nAe7uJXGJUEMdw9Wt1g9n6bZXrOMhxBRjeH7pPAoloQwZhy5oWsrzhdoP6czLkIi 5WO9L8MRApsiT7/Nl5mrMwUH0DYAfA2CsG34+Ng5Ve64rwsIa1O9TWVPuACorHVD N2jaosebH+m77shHXx1atsYTVj8KWxy8pk1a979rTDc6vbKuSdvJKekvOfMDXwIl 1YdnfZdqck9MklzIQjSQrno9533URgbsGsySkwxEOKdVoffXu4Eioyjh3SQ= -----END CERTIFICATE-----Generated at Sat Aug 23 07:00:38 2025 by rpki-client