$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2b15c9d1-408d-403d-9973-829e5c92c101.roa File: 2b15c9d1-408d-403d-9973-829e5c92c101.roa (raw, json) Hash identifier: kMpVX24Si+hgs02YrSBjbZAluFyBON/UYa7Sc92P14k= Subject key identifier: 76:A9:05:9C:8E:F5:DF:9E:51:78:9A:4E:1C:3C:FF:09:43:73:B8:2D Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 72B907CCA6BCEB0F4889A1E82B237920D285392F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2b15c9d1-408d-403d-9973-829e5c92c101.roa Signing time: Wed 25 Jun 2025 00:40:52 +0000 ROA not before: Wed 25 Jun 2025 00:40:52 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:b9:07:cc:a6:bc:eb:0f:48:89:a1:e8:2b:23:79:20:d2:85:39:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 25 00:40:52 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=9a2039bdeb7626724aa98c07153f478d2bce658d0cda6de25bde18a99b193b09, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ad:81:3c:20:cb:4b:50:11:73:9d:88:85:cd: da:48:3d:f0:b3:85:25:7f:20:27:6c:2a:23:dd:d4: a0:c4:c3:ef:85:08:c3:03:b4:ed:80:a8:98:90:5b: d9:92:21:2d:14:f8:b8:eb:73:a1:ba:51:13:7c:9b: 85:e5:f0:38:05:da:f6:38:cc:b8:bf:0f:b3:89:03: 9a:53:47:65:fa:34:13:d5:03:49:88:3f:a1:93:85: e1:a6:88:aa:51:92:2b:d7:66:29:66:95:f6:11:6b: f8:fe:d7:6d:67:46:bd:d1:2d:36:72:54:f7:6e:8e: ba:74:3b:8a:d1:01:09:e0:65:66:b9:c1:47:3b:03: 5e:f8:80:7d:2d:33:0f:d5:16:fb:a3:b7:75:89:40: 18:d4:01:11:6d:68:f9:b4:be:67:f3:61:73:2a:76: 08:18:00:9b:0e:8e:79:eb:87:cf:d5:31:50:70:7e: 55:e2:0d:aa:f9:08:a7:90:84:0a:42:a7:56:ed:34: 68:30:46:af:1d:0e:7f:cc:0c:fe:76:45:1a:dc:cf: 8c:72:3c:05:28:0b:6d:a2:0b:6c:9b:41:ae:55:b8: 15:d7:f6:15:fd:3f:54:3b:1e:af:d6:5a:d2:83:cb: e6:84:89:5d:a6:eb:d2:fd:9e:99:62:59:e7:79:0d: dc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A9:05:9C:8E:F5:DF:9E:51:78:9A:4E:1C:3C:FF:09:43:73:B8:2D X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2b15c9d1-408d-403d-9973-829e5c92c101.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.26.0/23 Signature Algorithm: sha256WithRSAEncryption 95:7f:6c:b1:c7:56:0a:ef:3b:f2:e3:2f:a1:e3:51:16:72:10: e0:30:a9:aa:47:d2:37:40:f4:ee:28:ac:41:14:49:44:a1:ae: 3f:d0:d2:9b:0c:4b:a2:e0:b8:37:9d:e2:49:9e:19:12:03:3d: 02:f0:89:9a:dd:b9:bc:a8:d3:46:aa:45:b8:a6:15:09:ae:2b: 5b:4a:fe:97:69:0a:3f:76:76:6c:bc:85:81:1a:79:71:90:a4: e5:72:7b:32:c7:03:85:4b:75:d3:42:fa:d7:d5:0a:27:5c:46: ef:7b:9d:93:01:2b:6d:08:8f:f4:12:af:96:13:7d:ba:7e:41: 25:18:a8:48:a6:b1:40:1b:2f:1f:64:bc:28:47:1a:5d:c7:48: 86:82:e7:6a:74:3b:cc:b0:17:c7:03:4c:b6:ad:2e:eb:f3:ad: 45:c8:41:c9:dd:2c:ed:41:95:5d:8c:e9:60:19:12:4b:ad:a3: 71:31:56:09:cc:eb:70:8a:df:2a:eb:31:70:97:c6:c6:e8:5c: a2:fe:07:8e:62:1c:16:3d:c5:63:1b:91:2b:75:ce:c6:68:b4: 88:47:73:03:2a:f2:b7:ec:af:c9:86:39:bb:09:35:b7:e4:1e: 87:e7:c8:e1:98:55:a4:09:84:b4:b5:18:f7:11:d5:50:45:8b: 60:38:c1:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcrkHzKa86w9IiaHoKyN5INKFOS8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI1MDA0MDUyWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTIwMzliZGViNzYyNjcyNGFhOThjMDcxNTNmNDc4ZDJi Y2U2NThkMGNkYTZkZTI1YmRlMThhOTliMTkzYjA5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCerYE8IMtLUBFznYiFzdpIPfCzhSV/ICdsKiPd1KDEw++F CMMDtO2AqJiQW9mSIS0U+Ljrc6G6URN8m4Xl8DgF2vY4zLi/D7OJA5pTR2X6NBPV A0mIP6GTheGmiKpRkivXZilmlfYRa/j+121nRr3RLTZyVPdujrp0O4rRAQngZWa5 wUc7A174gH0tMw/VFvujt3WJQBjUARFtaPm0vmfzYXMqdggYAJsOjnnrh8/VMVBw flXiDar5CKeQhApCp1btNGgwRq8dDn/MDP52RRrcz4xyPAUoC22iC2ybQa5VuBXX 9hX9P1Q7Hq/WWtKDy+aEiV2m69L9npliWed5DdxjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdqkFnI71355ReJpOHDz/CUNzuC0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJiMTVjOWQxLTQwOGQtNDAzZC05OTczLTgyOWU1YzkyYzEwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBowDQYJKoZIhvcNAQELBQADggEBAJV/bLHHVgrvO/LjL6HjURZyEOAw qapH0jdA9O4orEEUSUShrj/Q0psMS6LguDed4kmeGRIDPQLwiZrdubyo00aqRbim FQmuK1tK/pdpCj92dmy8hYEaeXGQpOVyezLHA4VLddNC+tfVCidcRu97nZMBK20I j/QSr5YTfbp+QSUYqEimsUAbLx9kvChHGl3HSIaC52p0O8ywF8cDTLatLuvzrUXI QcndLO1BlV2M6WAZEkuto3ExVgnM63CK3yrrMXCXxsboXKL+B45iHBY9xWMbkSt1 zsZotIhHcwMq8rfsr8mGObsJNbfkHofnyOGYVaQJhLS1GPcR1VBFi2A4wWY= -----END CERTIFICATE-----Generated at Fri Jul 4 13:33:16 2025 by rpki-client