$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/44f47a87-fa5e-4db0-bb12-60c873b8710c.roa File: 44f47a87-fa5e-4db0-bb12-60c873b8710c.roa (raw, json) Hash identifier: HL9/xGwbXDsVlyvjUdUqb2hxpYuPjxuBr5cZCr6k3rY= Subject key identifier: 9C:C8:59:70:8A:97:6A:F1:76:2A:72:4E:BE:49:F6:7D:A5:F7:B9:11 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0881D5223E47F3B1368DA2BB383AE93A9D124D52 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/44f47a87-fa5e-4db0-bb12-60c873b8710c.roa Signing time: Tue 19 Aug 2025 16:40:19 +0000 ROA not before: Tue 19 Aug 2025 16:40:19 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:81:d5:22:3e:47:f3:b1:36:8d:a2:bb:38:3a:e9:3a:9d:12:4d:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:19 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=0afe3f7a75d6a4c5cb1d8e8fad640ab6ca4a6ed038515721746f2f9e52cc980b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8d:00:d4:0f:ed:48:07:97:6c:f3:7a:3f:b3: 02:0c:34:bc:db:51:83:3a:e5:59:20:1e:96:46:65: 25:4e:25:77:6a:ec:91:a9:0f:09:41:1c:63:e8:9e: 62:9c:52:38:9c:56:9b:0c:21:1b:41:cc:73:0a:6b: 43:60:8f:f8:32:f5:07:86:97:0d:f0:93:38:a3:9c: 47:5d:5b:04:5e:19:61:84:19:5d:a8:88:7f:fb:3c: a0:dd:3c:34:2d:1a:3d:d8:b9:72:75:78:9d:ce:0c: ad:8f:b4:ce:02:9d:23:61:ba:04:12:87:40:64:81: 01:a7:d6:c4:25:2e:13:00:84:1b:12:93:1e:e4:53: 99:33:21:e8:24:89:f4:ec:4b:50:ae:c0:ee:8e:84: f7:8e:48:a9:a9:f1:3f:47:ec:d2:12:bd:7a:2c:9a: 50:01:96:7b:a6:b1:2e:a5:a8:25:3f:6a:5c:76:94: d0:95:9f:fb:ec:25:52:75:af:49:14:4b:52:1b:05: d9:d1:47:f4:ff:54:81:4c:26:a1:61:8c:61:30:f5: 1e:1c:cf:c4:25:2e:df:c0:43:95:1c:3e:fd:72:cf: 8a:6d:d5:97:03:79:ff:bd:be:82:ca:47:1a:de:9e: 70:fb:4c:8b:c9:a9:bf:11:6d:42:b7:88:13:74:96: 19:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:C8:59:70:8A:97:6A:F1:76:2A:72:4E:BE:49:F6:7D:A5:F7:B9:11 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/44f47a87-fa5e-4db0-bb12-60c873b8710c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.32.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:f1:f0:06:6d:97:38:fe:81:27:23:b1:d2:09:5e:fd:20:90: 96:2e:07:53:2a:a8:71:ad:e6:8d:3f:cb:f7:65:08:54:54:27: 09:8c:8e:a9:54:1f:3f:0d:0b:f0:14:67:c1:3c:e1:1d:7b:92: 14:10:6e:83:74:51:f6:9d:c5:5c:2c:80:25:37:1a:e5:19:93: e2:33:54:7a:ac:54:6c:8f:83:35:40:cb:b0:73:1d:fe:3d:0e: f7:20:42:01:84:60:c1:70:25:81:20:5c:a3:05:0a:3d:14:a1: e7:62:27:f0:05:ef:2a:af:9a:50:d0:17:d5:1a:bd:e8:39:64: 9f:52:b5:81:b1:02:7f:4e:ce:c1:e4:75:7f:5b:e3:f0:10:cd: 64:79:fa:8c:f0:b0:bd:d0:61:e5:a3:9c:4b:2e:e5:d9:5c:d1: b2:40:4c:9e:d5:22:2f:f1:86:c8:e2:81:99:8d:de:ef:80:07: 89:33:20:a3:ed:b1:e6:e3:48:41:4f:61:f8:f9:ce:73:3f:59: 40:38:65:2d:3d:57:34:8c:2e:fd:82:fa:0c:ce:4c:82:28:d3: 2e:f7:f3:ec:be:71:c2:13:11:fc:8d:b3:92:ca:ac:50:0e:d3: 89:f1:c4:36:dd:fe:32:98:2b:e9:62:fa:b3:4c:8e:01:f7:36: 99:87:62:bf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCIHVIj5H87E2jaK7ODrpOp0STVIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDE5WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYWZlM2Y3YTc1ZDZhNGM1Y2IxZDhlOGZhZDY0MGFiNmNh NGE2ZWQwMzg1MTU3MjE3NDZmMmY5ZTUyY2M5ODBiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQjQDUD+1IB5ds83o/swIMNLzbUYM65VkgHpZGZSVOJXdq 7JGpDwlBHGPonmKcUjicVpsMIRtBzHMKa0Ngj/gy9QeGlw3wkzijnEddWwReGWGE GV2oiH/7PKDdPDQtGj3YuXJ1eJ3ODK2PtM4CnSNhugQSh0BkgQGn1sQlLhMAhBsS kx7kU5kzIegkifTsS1CuwO6OhPeOSKmp8T9H7NISvXosmlABlnumsS6lqCU/alx2 lNCVn/vsJVJ1r0kUS1IbBdnRR/T/VIFMJqFhjGEw9R4cz8QlLt/AQ5UcPv1yz4pt 1ZcDef+9voLKRxrennD7TIvJqb8RbUK3iBN0lhklAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnMhZcIqXavF2KnJOvkn2faX3uREwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzQ0ZjQ3YTg3LWZhNWUtNGRiMC1iYjEyLTYwYzg3M2I4NzEwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCAwDQYJKoZIhvcNAQELBQADggEBAGvx8AZtlzj+gScjsdIJXv0gkJYu B1MqqHGt5o0/y/dlCFRUJwmMjqlUHz8NC/AUZ8E84R17khQQboN0UfadxVwsgCU3 GuUZk+IzVHqsVGyPgzVAy7BzHf49DvcgQgGEYMFwJYEgXKMFCj0UoediJ/AF7yqv mlDQF9Uaveg5ZJ9StYGxAn9OzsHkdX9b4/AQzWR5+ozwsL3QYeWjnEsu5dlc0bJA TJ7VIi/xhsjigZmN3u+AB4kzIKPtsebjSEFPYfj5znM/WUA4ZS09VzSMLv2C+gzO TIIo0y738+y+ccITEfyNs5LKrFAO04nxxDbd/jKYK+li+rNMjgH3NpmHYr8= -----END CERTIFICATE-----Generated at Sat Aug 23 06:51:11 2025 by rpki-client