$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa File: 2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa (raw, json) Hash identifier: A/p3+d6FNZlPGyOe7rzRxGsXzbQDUhFR/65arK+DGmk= Subject key identifier: C9:70:F4:C3:1E:DA:13:01:C0:C2:FF:5A:70:81:67:92:58:E9:50:F2 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 39C554F242EECE1B0AE99BCB95B11FCE6564B75D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa Signing time: Wed 25 Jun 2025 00:40:50 +0000 ROA not before: Wed 25 Jun 2025 00:40:50 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:c5:54:f2:42:ee:ce:1b:0a:e9:9b:cb:95:b1:1f:ce:65:64:b7:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 25 00:40:50 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=b1391d947afb7b8d4b5a52ef04a0fc3d94bd1f61c5ae3247d0eca57640b47987, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2d:08:72:fb:f7:b6:24:61:a2:ae:e1:43:71: 7e:2a:a3:e7:3d:7f:c5:2b:07:af:6f:ba:82:66:39: 4c:17:e0:db:a0:6b:13:70:e7:45:cb:18:7a:a7:5d: 38:f8:c2:63:f0:8a:40:2a:71:8b:33:bc:9b:65:a9: 10:23:e5:ad:a2:b2:66:a1:54:ed:1d:6f:df:ed:cf: 70:9a:2e:05:ae:f7:55:d5:ca:6e:ee:53:cc:4d:aa: 0e:38:a7:d4:01:38:a7:b3:3b:d1:5b:e9:b1:39:60: 01:23:8d:e9:b7:46:e7:dc:4d:ca:c2:ee:30:b1:3a: ee:8f:24:03:72:f8:7a:dd:cd:42:60:c9:e3:28:20: 15:1b:c1:5a:cf:cb:66:88:68:3a:6c:01:e9:2d:1d: b9:df:dd:71:6d:df:75:6e:78:4a:ed:47:83:37:81: d9:bb:bf:a0:0a:4d:f1:f8:0b:f1:7b:b5:f4:35:aa: e5:4c:97:73:4f:05:2b:c1:da:1b:86:34:75:81:db: 9f:25:9b:ad:99:7d:10:ae:0c:a5:34:c8:16:50:ba: 37:f2:de:28:4f:e0:0e:1a:43:83:9a:3d:9c:ed:ad: bb:c1:a5:c7:46:91:2f:33:fc:e3:0a:71:e0:36:ea: ee:56:48:16:5b:c2:a3:a0:59:ef:24:93:06:d9:4b: 12:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:70:F4:C3:1E:DA:13:01:C0:C2:FF:5A:70:81:67:92:58:E9:50:F2 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.26.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:5a:dc:44:ee:c5:fb:cd:4b:09:54:49:e1:17:87:39:36:8e: aa:c1:d6:01:54:81:e0:65:24:ce:3d:c0:b3:e2:22:89:ac:0d: 87:f7:da:be:ce:c8:ef:5e:b2:4e:07:b7:b4:45:27:36:85:cc: a8:df:eb:15:15:d1:fb:3f:b9:12:cf:04:38:93:64:9b:e8:be: 62:cb:4d:31:3d:bd:12:d3:38:8a:41:5a:31:8d:7b:25:21:3f: cb:0e:23:a1:40:5b:7e:d9:f7:5e:b5:7d:fd:52:7f:7b:40:66: d0:07:f6:d1:d9:97:90:cc:d3:61:93:2b:86:a3:ae:41:9b:28: 3f:91:ae:37:df:85:2f:a7:e7:69:ec:b7:1c:98:97:ca:c0:93: db:1f:f6:28:3e:3d:6b:be:c4:10:f4:71:4a:e4:b7:38:f8:c0: 60:af:1a:40:23:72:e9:b4:3a:e3:da:0e:a6:03:fa:aa:bf:bc: 5f:cb:d5:18:22:a6:9e:96:5f:6e:cc:f2:b5:38:67:61:27:bd: fa:6a:a1:0a:5d:db:59:91:e8:65:20:f4:fc:3d:bf:2e:89:a8: df:a5:b9:7a:31:75:02:c2:83:c7:8b:40:3c:0d:26:24:fa:35: 29:75:de:62:ba:52:d2:40:6c:02:e5:56:a6:59:42:c1:df:f8: dd:27:e4:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOcVU8kLuzhsK6ZvLlbEfzmVkt10wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI1MDA0MDUwWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTM5MWQ5NDdhZmI3YjhkNGI1YTUyZWYwNGEwZmMzZDk0 YmQxZjYxYzVhZTMyNDdkMGVjYTU3NjQwYjQ3OTg3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0LQhy+/e2JGGiruFDcX4qo+c9f8UrB69vuoJmOUwX4Nug axNw50XLGHqnXTj4wmPwikAqcYszvJtlqRAj5a2ismahVO0db9/tz3CaLgWu91XV ym7uU8xNqg44p9QBOKezO9Fb6bE5YAEjjem3RufcTcrC7jCxOu6PJANy+HrdzUJg yeMoIBUbwVrPy2aIaDpsAektHbnf3XFt33VueErtR4M3gdm7v6AKTfH4C/F7tfQ1 quVMl3NPBSvB2huGNHWB258lm62ZfRCuDKU0yBZQujfy3ihP4A4aQ4OaPZztrbvB pcdGkS8z/OMKceA26u5WSBZbwqOgWe8kkwbZSxJFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyXD0wx7aEwHAwv9acIFnkljpUPIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJmMjU2YzJiLThiY2YtNDdiNS1iMmY1LTZkODRmZjFkNWZlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBowDQYJKoZIhvcNAQELBQADggEBAH5a3ETuxfvNSwlUSeEXhzk2jqrB 1gFUgeBlJM49wLPiIomsDYf32r7OyO9esk4Ht7RFJzaFzKjf6xUV0fs/uRLPBDiT ZJvovmLLTTE9vRLTOIpBWjGNeyUhP8sOI6FAW37Z9161ff1Sf3tAZtAH9tHZl5DM 02GTK4ajrkGbKD+RrjffhS+n52nstxyYl8rAk9sf9ig+PWu+xBD0cUrktzj4wGCv GkAjcum0OuPaDqYD+qq/vF/L1Rgipp6WX27M8rU4Z2EnvfpqoQpd21mR6GUg9Pw9 vy6JqN+luXoxdQLCg8eLQDwNJiT6NSl13mK6UtJAbALlVqZZQsHf+N0n5Jc= -----END CERTIFICATE-----Generated at Tue Jul 1 06:59:08 2025 by rpki-client