$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa File: 2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa (raw, json) Hash identifier: NJpZFVIWAQi1Y9ONV05lYeqEh1+a+5m/3UItnTD6mOo= Subject key identifier: 2B:20:5F:8A:E5:65:C7:4B:16:03:1A:3B:C4:8B:77:FF:44:69:76:42 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 18C1B0488715EF46AB80805B1FC56823260F7E20 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa Signing time: Tue 19 Aug 2025 16:40:56 +0000 ROA not before: Tue 19 Aug 2025 16:40:56 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:c1:b0:48:87:15:ef:46:ab:80:80:5b:1f:c5:68:23:26:0f:7e:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:56 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=1ddfdf9ff59f195f8cacadcdc045e1f892e1dae7a12ae7bf5d8531dc0df584fc, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ed:28:bb:29:38:33:fb:67:65:d4:65:07:57: 78:03:41:e9:b2:70:33:29:9a:e6:17:fc:9f:6b:4c: b0:4d:88:a0:ce:b3:ca:b0:54:9a:62:2c:af:ef:1a: 85:7c:39:06:2b:7d:79:fe:22:57:b5:88:30:7f:cc: 09:d6:16:35:95:f0:89:4a:81:d3:1b:80:95:96:db: f0:6c:55:94:ae:0c:00:f7:f1:bb:55:6d:47:25:02: f9:e3:46:db:68:11:f3:93:4a:6a:c2:b8:77:54:3b: da:a5:3b:ad:a2:01:99:13:fb:a7:c6:fc:fe:77:7a: fd:2c:cf:a5:be:a0:60:ca:e2:45:c5:8b:0e:57:f3: 9c:61:16:77:fb:5c:e7:f4:3a:94:4a:f7:aa:74:71: 72:ca:d8:65:94:22:44:5b:dc:1b:7c:47:32:c2:68: cc:bd:fa:91:c3:5e:b6:27:20:e1:bb:af:81:26:d3: eb:a8:3e:b0:dd:2b:e2:b2:51:e2:c1:26:c6:2e:88: d0:f9:d3:72:e0:62:cf:15:12:9a:94:4b:93:90:94: 65:fe:10:6c:ee:5b:a6:9b:6c:ff:3e:f2:71:d0:76: 3b:99:4a:68:88:c4:d6:2e:ed:06:18:49:ba:03:2e: f1:b6:2f:b3:67:ad:d0:4d:65:de:2c:ce:c6:52:68: 1f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:20:5F:8A:E5:65:C7:4B:16:03:1A:3B:C4:8B:77:FF:44:69:76:42 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.8.0/24 Signature Algorithm: sha256WithRSAEncryption 98:53:60:de:d1:c7:c6:f0:71:be:f7:1d:da:61:6e:f9:18:0c: 67:c1:43:45:b0:df:f7:42:95:41:71:d9:11:87:d9:80:0b:77: eb:49:c2:b0:49:d6:71:d6:ac:67:bc:7e:38:9f:59:29:da:92: 42:2f:ec:92:a3:17:fb:a9:ef:0c:90:33:34:75:fc:41:e8:e1: 01:ef:34:aa:bb:69:db:b9:3a:64:f2:93:96:1f:35:ce:82:a9: c2:31:74:2c:da:b1:e0:1c:aa:f3:48:c6:73:fa:91:78:b6:60: e6:f6:cd:21:de:77:3b:b8:e8:32:61:3b:2d:2e:a9:84:31:fa: fa:6f:97:13:f9:a1:2e:d9:4b:95:d9:d1:01:e6:0d:87:2f:ba: 96:e9:69:94:38:49:3c:1a:e8:df:d8:50:29:9a:66:50:ad:77: 36:76:85:16:4b:54:94:ad:2a:65:d0:28:fe:12:9d:01:f4:7e: a5:a4:61:d6:e1:16:67:1e:29:61:3d:39:62:05:27:56:5d:49: 63:ea:59:c4:9f:8d:5c:da:85:67:65:b2:18:d8:06:44:32:11: 39:ba:1b:4f:27:de:e1:a2:9a:aa:cb:a3:ad:3c:6a:15:01:61: 9a:32:55:9b:e1:0a:bb:eb:19:9a:35:f8:1e:33:d9:e6:f6:30: 15:bb:ae:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGMGwSIcV70argIBbH8VoIyYPfiAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDU2WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZGRmZGY5ZmY1OWYxOTVmOGNhY2FkY2RjMDQ1ZTFmODky ZTFkYWU3YTEyYWU3YmY1ZDg1MzFkYzBkZjU4NGZjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDs7Si7KTgz+2dl1GUHV3gDQemycDMpmuYX/J9rTLBNiKDO s8qwVJpiLK/vGoV8OQYrfXn+Ile1iDB/zAnWFjWV8IlKgdMbgJWW2/BsVZSuDAD3 8btVbUclAvnjRttoEfOTSmrCuHdUO9qlO62iAZkT+6fG/P53ev0sz6W+oGDK4kXF iw5X85xhFnf7XOf0OpRK96p0cXLK2GWUIkRb3Bt8RzLCaMy9+pHDXrYnIOG7r4Em 0+uoPrDdK+KyUeLBJsYuiND503LgYs8VEpqUS5OQlGX+EGzuW6abbP8+8nHQdjuZ SmiIxNYu7QYYSboDLvG2L7NnrdBNZd4szsZSaB8tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKyBfiuVlx0sWAxo7xIt3/0RpdkIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzI4MDBjNzBjLTZlYzEtNGQ4Ni1hOTE2LTQ4NTBkZWIyZGZhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAgwDQYJKoZIhvcNAQELBQADggEBAJhTYN7Rx8bwcb73HdphbvkYDGfB Q0Ww3/dClUFx2RGH2YALd+tJwrBJ1nHWrGe8fjifWSnakkIv7JKjF/up7wyQMzR1 /EHo4QHvNKq7adu5OmTyk5YfNc6CqcIxdCzaseAcqvNIxnP6kXi2YOb2zSHedzu4 6DJhOy0uqYQx+vpvlxP5oS7ZS5XZ0QHmDYcvupbpaZQ4STwa6N/YUCmaZlCtdzZ2 hRZLVJStKmXQKP4SnQH0fqWkYdbhFmceKWE9OWIFJ1ZdSWPqWcSfjVzahWdlshjY BkQyETm6G08n3uGimqrLo608ahUBYZoyVZvhCrvrGZo1+B4z2eb2MBW7rnE= -----END CERTIFICATE-----Generated at Sat Aug 23 08:30:06 2025 by rpki-client