$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa File: 5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa (raw, json) Hash identifier: V8I6iPKmKcvewhFk6IezsTrV/jepGJNOGZc7sbcu3io= Subject key identifier: 5F:61:8A:AF:A3:FE:90:DB:AC:AA:04:56:AB:F9:0B:CE:92:0F:AD:07 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0F72F4FF2316D030BA93D1BD38A6E838BA80D753 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa Signing time: Fri 15 Aug 2025 15:30:16 +0000 ROA not before: Fri 15 Aug 2025 15:30:16 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:72:f4:ff:23:16:d0:30:ba:93:d1:bd:38:a6:e8:38:ba:80:d7:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 15 15:30:16 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=df2e38a8d6c9c5c199272b3a8607f630a2e81b6b055560a8acf75ff1595c7502, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:58:c8:c0:90:6e:4d:5f:bf:2e:ee:84:c8:0a: 22:36:35:02:47:35:78:3c:c0:0b:48:74:6a:60:6a: f0:dd:4d:34:8e:8b:5f:5f:55:da:d5:d3:51:4e:c2: bd:18:fb:c8:6f:d9:88:15:b6:9e:7b:9b:4a:10:10: ef:55:26:39:a2:05:d9:08:6f:a4:26:eb:b2:ca:07: 3f:79:a1:eb:03:c3:da:69:42:30:5a:18:cd:f4:9c: 0f:f7:d0:2c:47:73:f9:ca:fb:89:9d:db:c8:15:80: 3d:75:cd:d0:6b:99:75:b0:25:0b:d0:5c:b1:3e:51: df:72:24:17:12:d4:5f:2d:ed:a5:cf:a7:73:4e:84: 22:6a:bb:90:29:87:8b:69:08:ac:05:90:d6:9c:2f: da:3a:50:d7:28:8f:5f:27:92:42:9f:8e:b4:5c:0a: ad:b7:85:c3:d7:2f:37:e1:8d:26:9e:15:b4:7b:2e: 77:03:d6:13:4c:5d:f7:4c:41:7f:66:e9:54:26:18: c6:d7:a2:9b:44:b2:48:4c:38:b8:cd:be:91:6b:45: 63:37:2d:64:8b:b8:c0:fe:cc:96:72:7f:4f:e2:a3: e8:40:3c:c4:ba:b3:46:08:95:3f:7c:19:d7:95:ab: 4a:70:02:af:54:ff:e2:62:b3:6c:11:7c:aa:2f:57: 57:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:61:8A:AF:A3:FE:90:DB:AC:AA:04:56:AB:F9:0B:CE:92:0F:AD:07 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.253.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:09:2b:2c:ea:1b:9f:fa:16:25:bb:59:eb:3f:2a:f5:8f:82: e2:85:70:61:37:c2:cc:b8:15:0a:cd:1e:42:b1:73:cf:77:b6: 77:aa:8b:46:f8:79:ab:a6:cd:b7:79:52:a6:f6:77:2e:11:9f: c6:4e:bc:77:d6:2a:6a:7e:f2:02:b5:89:30:47:38:bd:3f:ab: ec:9c:28:94:53:d1:44:6d:cf:ca:c0:eb:7a:12:35:e5:18:b0: 0a:44:86:56:86:9d:b0:0e:c5:b5:41:d9:06:d1:e9:40:3f:4a: 6c:08:69:ff:cb:be:3e:3f:13:d7:7b:fb:bf:33:13:72:82:c5: 74:45:a7:71:25:09:1b:f3:9a:d5:2f:a2:db:4e:31:34:59:11: 73:0d:63:ba:b3:50:c2:28:69:68:03:c2:7e:66:29:fc:e6:16: 30:36:a6:eb:94:82:8b:7a:fd:46:c3:cb:04:93:5d:74:32:1b: 5d:29:9e:a8:a0:8f:fc:5e:51:54:0c:77:e8:33:5a:6c:8b:2a: 78:4c:ed:8f:1c:c5:66:d5:d7:13:93:6b:71:bf:96:fa:6a:66: a0:5a:b9:db:0e:bb:a2:89:49:ae:0f:97:22:3b:12:16:49:f0: 1a:de:a7:61:d4:53:ee:20:4a:2b:b6:c7:04:16:05:55:bd:95: 69:5e:fe:64 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD3L0/yMW0DC6k9G9OKboOLqA11MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE1MTUzMDE2WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjJlMzhhOGQ2YzljNWMxOTkyNzJiM2E4NjA3ZjYzMGEy ZTgxYjZiMDU1NTYwYThhY2Y3NWZmMTU5NWM3NTAyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5WMjAkG5NX78u7oTICiI2NQJHNXg8wAtIdGpgavDdTTSO i19fVdrV01FOwr0Y+8hv2YgVtp57m0oQEO9VJjmiBdkIb6Qm67LKBz95oesDw9pp QjBaGM30nA/30CxHc/nK+4md28gVgD11zdBrmXWwJQvQXLE+Ud9yJBcS1F8t7aXP p3NOhCJqu5Aph4tpCKwFkNacL9o6UNcoj18nkkKfjrRcCq23hcPXLzfhjSaeFbR7 LncD1hNMXfdMQX9m6VQmGMbXoptEskhMOLjNvpFrRWM3LWSLuMD+zJZyf0/io+hA PMS6s0YIlT98GdeVq0pwAq9U/+Jis2wRfKovV1fZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUX2GKr6P+kNusqgRWq/kLzpIPrQcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzVkM2E3MWNkLTllMGYtNDdkMS1iZmVmLWJiMjk5MGZhOTk2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYP0wDQYJKoZIhvcNAQELBQADggEBAGsJKyzqG5/6FiW7Wes/KvWPguKF cGE3wsy4FQrNHkKxc893tneqi0b4eaumzbd5Uqb2dy4Rn8ZOvHfWKmp+8gK1iTBH OL0/q+ycKJRT0URtz8rA63oSNeUYsApEhlaGnbAOxbVB2QbR6UA/SmwIaf/Lvj4/ E9d7+78zE3KCxXRFp3ElCRvzmtUvottOMTRZEXMNY7qzUMIoaWgDwn5mKfzmFjA2 puuUgot6/UbDywSTXXQyG10pnqigj/xeUVQMd+gzWmyLKnhM7Y8cxWbV1xOTa3G/ lvpqZqBaudsOu6KJSa4PlyI7EhZJ8Brep2HUU+4gSiu2xwQWBVW9lWle/mQ= -----END CERTIFICATE-----Generated at Sat Aug 23 08:33:09 2025 by rpki-client