$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa File: 27feea1a-4933-4577-b9c4-9488e2a550f0.roa (raw, json) Hash identifier: EpVKDW0aCENwV11pOQ/dj1zmIOnQMly9Z5TaEoJ/nm4= Subject key identifier: 80:8D:D2:19:68:44:E9:84:D0:1C:A9:62:E6:25:92:97:05:09:F3:CF Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 08DA8498E5F71A8BC8747900DBC4169F18C2DA2D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa Signing time: Mon 30 Jun 2025 17:40:20 +0000 ROA not before: Mon 30 Jun 2025 17:40:20 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:da:84:98:e5:f7:1a:8b:c8:74:79:00:db:c4:16:9f:18:c2:da:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:20 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=239812a843651f495f19e97e5b22d9a56d068b7828897ab14506f8d67a9613d7, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:25:a3:8e:92:ab:6d:de:bc:cb:9b:bc:0f:8b: 0f:2e:04:62:6b:82:c1:4e:56:3c:8b:4b:b5:ad:93: 3f:f3:f4:0c:8e:17:2f:5b:d2:91:ff:9b:88:70:87: 2e:f5:ab:e9:50:72:81:8f:27:3d:94:64:31:8e:66: 2a:12:4f:a9:99:93:50:36:a9:39:e2:b3:35:b5:59: 8a:7e:39:92:59:d3:85:20:3a:9a:9e:09:f1:2b:87: 81:22:d1:38:4f:22:32:6f:05:fa:09:9d:ca:bb:79: 0f:13:f8:da:d3:dc:fa:c2:72:0b:05:1f:d7:94:88: 35:54:1d:b2:18:1d:80:b7:52:e1:95:ed:72:6b:d6: 77:5e:a8:62:05:6d:45:68:dc:b1:18:73:1c:7e:ac: 33:62:d5:8d:3a:26:b3:cb:fb:eb:49:f2:2b:03:a4: 28:92:b7:cd:7f:23:d1:1a:0f:6c:86:75:f1:51:3a: 5e:cb:f1:6d:ae:5d:4a:da:58:e9:93:b4:7c:bd:63: ed:87:59:29:22:a5:7b:b4:6c:a0:ad:a5:c5:74:d4: 62:77:90:d4:89:e0:8c:3e:ec:3d:01:7a:9d:63:c9: b1:c6:17:13:90:e9:81:41:75:3b:0f:23:75:b4:7a: e8:e6:18:22:3d:55:30:f2:ec:b3:80:90:2a:78:71: 2f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:8D:D2:19:68:44:E9:84:D0:1C:A9:62:E6:25:92:97:05:09:F3:CF X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:79:8b:e0:27:fc:2f:b5:52:4c:25:d1:c7:0e:ef:16:ec:f2: d8:64:03:86:b3:06:42:d9:50:7d:e7:48:37:22:d7:a6:87:c2: 27:8d:6f:37:3b:22:72:ac:89:39:a6:e5:da:3c:2b:a4:3c:7f: 02:47:26:4d:4f:f0:45:1f:59:fb:5d:c5:d8:b6:5d:42:09:b2: 13:c1:4a:63:01:21:50:fb:26:f5:5e:ad:fe:c5:8c:fd:d7:66: 33:09:ab:18:fd:81:ca:e8:26:b7:6e:07:1d:63:e8:30:4e:60: ff:89:e8:a8:f3:79:7e:59:c5:fb:dd:10:9c:e0:e6:ed:d5:27: b6:46:a9:99:bf:34:5c:d2:58:24:20:ad:b0:53:4c:14:e9:50: 79:74:9b:88:82:92:fc:46:4f:65:07:0c:86:5e:d1:83:f1:ca: f5:2c:e0:8f:91:62:1d:78:a3:76:91:29:6a:8f:fa:eb:53:af: 66:67:25:7b:8c:96:3c:89:5c:af:5d:84:52:28:f8:0b:ad:0c: c3:3d:a4:01:a1:c7:91:7f:f5:13:59:5c:e4:a4:48:46:ad:dc: 2f:db:b6:56:5c:25:41:4b:59:9b:5f:d9:05:fe:f3:c9:20:b7: 8f:8e:68:15:ea:05:bf:f3:5a:91:0c:3b:ae:8a:05:0a:19:b2: fe:c2:86:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCNqEmOX3GovIdHkA28QWnxjC2i0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDIwWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzk4MTJhODQzNjUxZjQ5NWYxOWU5N2U1YjIyZDlhNTZk MDY4Yjc4Mjg4OTdhYjE0NTA2ZjhkNjdhOTYxM2Q3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7JaOOkqtt3rzLm7wPiw8uBGJrgsFOVjyLS7Wtkz/z9AyO Fy9b0pH/m4hwhy71q+lQcoGPJz2UZDGOZioST6mZk1A2qTniszW1WYp+OZJZ04Ug OpqeCfErh4Ei0ThPIjJvBfoJncq7eQ8T+NrT3PrCcgsFH9eUiDVUHbIYHYC3UuGV 7XJr1ndeqGIFbUVo3LEYcxx+rDNi1Y06JrPL++tJ8isDpCiSt81/I9EaD2yGdfFR Ol7L8W2uXUraWOmTtHy9Y+2HWSkipXu0bKCtpcV01GJ3kNSJ4Iw+7D0Bep1jybHG FxOQ6YFBdTsPI3W0eujmGCI9VTDy7LOAkCp4cS+BAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgI3SGWhE6YTQHKli5iWSlwUJ888wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzI3ZmVlYTFhLTQ5MzMtNDU3Ny1iOWM0LTk0ODhlMmE1NTBmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPQwDQYJKoZIhvcNAQELBQADggEBAJ95i+An/C+1Ukwl0ccO7xbs8thk A4azBkLZUH3nSDci16aHwieNbzc7InKsiTmm5do8K6Q8fwJHJk1P8EUfWftdxdi2 XUIJshPBSmMBIVD7JvVerf7FjP3XZjMJqxj9gcroJrduBx1j6DBOYP+J6KjzeX5Z xfvdEJzg5u3VJ7ZGqZm/NFzSWCQgrbBTTBTpUHl0m4iCkvxGT2UHDIZe0YPxyvUs 4I+RYh14o3aRKWqP+utTr2ZnJXuMljyJXK9dhFIo+AutDMM9pAGhx5F/9RNZXOSk SEat3C/btlZcJUFLWZtf2QX+88kgt4+OaBXqBb/zWpEMO66KBQoZsv7Chv0= -----END CERTIFICATE-----Generated at Thu Jul 3 07:13:16 2025 by rpki-client