$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa File: 2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa (raw, json) Hash identifier: ZjlGiaC7FwLQSWKNfp5inakx1k7F103WCkUHX2JNtEw= Subject key identifier: 95:F6:AD:39:F3:C8:0A:F4:76:D5:32:55:4A:5B:82:13:B3:F7:EE:8A Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 26D898C38A402F24961B55B031FDEE1EB04C398B Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa Signing time: Tue 19 Aug 2025 16:40:27 +0000 ROA not before: Tue 19 Aug 2025 16:40:27 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:d8:98:c3:8a:40:2f:24:96:1b:55:b0:31:fd:ee:1e:b0:4c:39:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:27 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=e229cb0de80d352fbb3c685c96b76d808a73e6815d6190fb0bfe514ebc43e349, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:06:01:7a:4b:54:a6:13:db:a0:81:41:52:9f: aa:67:62:ba:09:43:a5:66:75:68:1c:97:f4:de:50: e3:e0:3f:d0:b3:17:80:e5:2b:1c:fa:d9:01:08:e6: a1:f1:23:9c:bb:a1:ee:f7:45:6b:fe:5d:d8:f8:0e: 9f:59:31:7e:23:59:18:87:cd:81:da:42:06:ac:eb: 07:36:55:2c:11:b7:db:7b:13:d1:a5:6e:19:fc:05: 70:90:f5:89:82:57:6a:68:da:6b:e5:1e:f9:fd:25: 2d:01:37:c3:67:2a:7e:c5:a8:9f:d3:f6:9c:d3:62: 2a:65:1f:7e:bb:ca:cb:1e:6b:0c:9c:66:9c:c6:2a: 83:de:24:ba:fc:01:e7:74:8f:c4:2a:f5:42:ed:1b: 75:7b:a9:1c:8e:4a:15:12:cc:79:34:94:ba:3c:b2: 59:f9:6c:21:7d:de:18:6f:e1:10:3f:a5:45:d9:b4: ed:6c:e8:ab:e7:54:4a:aa:74:f5:60:e3:cd:f5:01: f8:9d:ef:0e:e5:b5:9e:b2:dd:d8:38:9a:17:36:96: 3d:31:36:ec:5e:51:36:26:04:35:88:b5:ad:35:1e: 47:20:15:9b:a1:f5:bf:a7:db:de:41:7f:89:48:ca: db:5c:cf:77:9b:d0:25:09:33:7a:52:56:58:5f:15: 9b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F6:AD:39:F3:C8:0A:F4:76:D5:32:55:4A:5B:82:13:B3:F7:EE:8A X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption 25:52:69:26:32:fa:91:e6:a7:93:ca:70:05:a5:1a:e3:e5:88: 60:43:fc:37:8f:cb:74:c6:eb:b7:12:33:37:dc:87:b4:f2:a9: 29:8c:b4:e5:70:60:67:d5:fe:35:f6:db:71:8b:0b:a0:ad:ba: fd:e8:f7:7d:02:2f:06:b9:c5:b3:3b:77:ec:d7:a2:d5:a1:b0: b5:43:5d:e7:0b:05:64:1a:2e:ae:97:26:ce:53:45:da:15:61: 03:e9:09:82:84:e1:a9:3d:40:78:b3:4b:c3:9a:33:bc:bc:67: 2f:fb:88:df:7b:7d:fc:49:41:0d:3e:7d:29:88:2b:96:74:16: 16:e0:9a:25:a4:dd:61:eb:33:ee:25:18:2c:72:6e:a5:0f:ae: 14:62:a1:83:7d:d0:e6:9d:6a:72:65:81:2b:bb:a6:5e:13:c4: 66:2d:40:da:30:63:f0:62:24:0d:71:53:89:c0:1f:19:af:04: 44:83:16:b1:3c:20:7d:86:40:0e:88:40:ba:43:4e:fc:3e:90: aa:33:45:6d:0d:07:96:bd:96:7c:12:b1:e9:0f:2e:3c:54:92: 78:e8:58:0c:de:94:94:9e:20:54:34:b8:67:04:49:d0:02:a3: f8:83:e4:1c:50:da:d3:41:ec:fc:db:0a:19:03:a3:80:fc:6c: 97:67:b5:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJtiYw4pALySWG1WwMf3uHrBMOYswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDI3WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjI5Y2IwZGU4MGQzNTJmYmIzYzY4NWM5NmI3NmQ4MDhh NzNlNjgxNWQ2MTkwZmIwYmZlNTE0ZWJjNDNlMzQ5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxBgF6S1SmE9uggUFSn6pnYroJQ6VmdWgcl/TeUOPgP9Cz F4DlKxz62QEI5qHxI5y7oe73RWv+Xdj4Dp9ZMX4jWRiHzYHaQgas6wc2VSwRt9t7 E9Glbhn8BXCQ9YmCV2po2mvlHvn9JS0BN8NnKn7FqJ/T9pzTYiplH367ysseawyc ZpzGKoPeJLr8Aed0j8Qq9ULtG3V7qRyOShUSzHk0lLo8sln5bCF93hhv4RA/pUXZ tO1s6KvnVEqqdPVg4831Afid7w7ltZ6y3dg4mhc2lj0xNuxeUTYmBDWIta01Hkcg FZuh9b+n295Bf4lIyttcz3eb0CUJM3pSVlhfFZupAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlfatOfPICvR21TJVSluCE7P37oowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJjYTUyNjRjLTdiZjUtNDI0OC1iNmFkLWRkOWNmNTdhMmJlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPQwDQYJKoZIhvcNAQELBQADggEBACVSaSYy+pHmp5PKcAWlGuPliGBD /DePy3TG67cSMzfch7TyqSmMtOVwYGfV/jX223GLC6Ctuv3o930CLwa5xbM7d+zX otWhsLVDXecLBWQaLq6XJs5TRdoVYQPpCYKE4ak9QHizS8OaM7y8Zy/7iN97ffxJ QQ0+fSmIK5Z0FhbgmiWk3WHrM+4lGCxybqUPrhRioYN90OadanJlgSu7pl4TxGYt QNowY/BiJA1xU4nAHxmvBESDFrE8IH2GQA6IQLpDTvw+kKozRW0NB5a9lnwSsekP LjxUknjoWAzelJSeIFQ0uGcESdACo/iD5BxQ2tNB7PzbChkDo4D8bJdntaQ= -----END CERTIFICATE-----Generated at Sat Aug 23 10:22:29 2025 by rpki-client