$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6b90b1f9-6b22-4e82-af32-2981da75246a.roa File: 6b90b1f9-6b22-4e82-af32-2981da75246a.roa (raw, json) Hash identifier: SQfGhEsNh8AkQ117rGTaVkgWaSVUPjCYPwl4MoodaJM= Subject key identifier: 44:BF:9F:CA:20:15:2F:09:93:FE:28:9D:B5:78:65:C1:7C:67:C2:96 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 07068DC385C8446BB7DC3C0A73C2C8D2BAFF01CB Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6b90b1f9-6b22-4e82-af32-2981da75246a.roa Signing time: Tue 19 Aug 2025 16:40:12 +0000 ROA not before: Tue 19 Aug 2025 16:40:12 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:06:8d:c3:85:c8:44:6b:b7:dc:3c:0a:73:c2:c8:d2:ba:ff:01:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:12 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=35429c401d6d371bccaf29dec0568d977b451778dc1ec52037a7542c15a608b0, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e7:54:24:81:eb:29:4e:3e:20:08:1f:8b:f8: b5:9c:2b:b2:ee:d5:9c:60:78:c9:c9:a8:87:f7:69: 42:f5:b2:d9:8f:d2:6c:d3:3e:01:a9:27:69:35:b7: 37:99:ae:98:f5:24:33:62:c9:b6:d9:95:82:1a:37: be:b1:f6:a9:8b:15:4c:5c:fe:72:07:f0:7f:40:cb: 14:a3:d8:64:79:c5:3c:6a:64:17:d3:21:da:e4:4c: 43:34:d9:5f:d5:31:b6:13:fd:2d:d9:63:e9:c8:db: 6a:1a:a3:89:09:48:cc:e8:2f:ba:10:e1:f8:a3:b0: 14:f1:8c:ea:43:d3:9f:ab:03:d3:51:36:00:b1:65: 19:4c:03:b7:0e:30:c7:58:b5:db:33:d1:1a:c4:f7: ef:5a:bf:3e:fa:95:2e:c0:b4:6c:df:6a:aa:1f:fc: c3:76:b9:31:5d:94:96:57:75:35:da:4c:14:a8:c1: 93:91:1d:8d:40:15:4b:33:2b:c7:fa:5e:19:19:02: c0:67:e6:3a:75:c5:40:57:cb:8f:ca:eb:56:4d:df: 16:92:64:2c:53:98:77:78:91:09:30:9a:35:41:f7: 94:23:ca:ac:a9:53:13:2a:f7:5d:29:30:76:8c:9b: f5:bf:fb:8b:19:ef:3e:cf:c1:2a:f0:08:be:36:ce: 05:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:BF:9F:CA:20:15:2F:09:93:FE:28:9D:B5:78:65:C1:7C:67:C2:96 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6b90b1f9-6b22-4e82-af32-2981da75246a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.33.0/24 Signature Algorithm: sha256WithRSAEncryption 46:ef:33:19:0f:9b:ae:88:e4:b6:2e:33:1e:f7:6e:92:11:da: d2:89:0f:57:d2:27:3c:84:7f:ba:06:1b:4b:98:ce:94:a6:89: 93:4c:77:1b:d4:14:01:06:b9:78:0e:df:77:32:f9:43:ba:44: 3a:c5:a3:b5:9e:77:1f:2a:29:44:12:cf:0e:af:83:4b:8a:51: ff:ec:9b:bb:bf:c2:f9:56:c0:33:96:f2:e8:d5:5d:91:64:09: 8c:4e:61:26:27:da:31:b9:e0:e4:47:bf:eb:f8:d9:8d:35:59: 8d:38:05:de:f8:5a:5d:79:d1:e8:cd:73:09:2e:b5:be:66:5e: a1:38:d9:4a:b0:46:81:db:d6:88:21:e4:cb:06:a3:66:89:d1: 4a:29:d0:8c:48:c9:15:4a:42:85:6f:fe:64:8a:5a:99:72:08: 6d:24:e1:6f:d4:a9:6e:57:fc:5f:9f:67:83:b4:a1:e0:c0:44: f9:44:0c:14:9b:81:ee:45:02:b9:29:b1:2a:f1:99:36:c3:bc: 99:e2:f0:9c:b2:4d:39:d4:aa:e5:3f:22:81:6b:1b:f3:47:07: e7:a0:b8:d0:74:d6:bc:c7:fe:39:d3:ab:12:3a:ac:54:f8:df: 2d:4c:44:8f:bc:6c:73:d3:e0:62:1c:c1:ae:f3:11:77:59:22: 48:38:3b:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBwaNw4XIRGu33DwKc8LI0rr/AcswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDEyWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTQyOWM0MDFkNmQzNzFiY2NhZjI5ZGVjMDU2OGQ5Nzdi NDUxNzc4ZGMxZWM1MjAzN2E3NTQyYzE1YTYwOGIwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI51QkgespTj4gCB+L+LWcK7Lu1ZxgeMnJqIf3aUL1stmP 0mzTPgGpJ2k1tzeZrpj1JDNiybbZlYIaN76x9qmLFUxc/nIH8H9AyxSj2GR5xTxq ZBfTIdrkTEM02V/VMbYT/S3ZY+nI22oao4kJSMzoL7oQ4fijsBTxjOpD05+rA9NR NgCxZRlMA7cOMMdYtdsz0RrE9+9avz76lS7AtGzfaqof/MN2uTFdlJZXdTXaTBSo wZORHY1AFUszK8f6XhkZAsBn5jp1xUBXy4/K61ZN3xaSZCxTmHd4kQkwmjVB95Qj yqypUxMq910pMHaMm/W/+4sZ7z7PwSrwCL42zgWTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURL+fyiAVLwmT/iidtXhlwXxnwpYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzZiOTBiMWY5LTZiMjItNGU4Mi1hZjMyLTI5ODFkYTc1MjQ2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCEwDQYJKoZIhvcNAQELBQADggEBAEbvMxkPm66I5LYuMx73bpIR2tKJ D1fSJzyEf7oGG0uYzpSmiZNMdxvUFAEGuXgO33cy+UO6RDrFo7Wedx8qKUQSzw6v g0uKUf/sm7u/wvlWwDOW8ujVXZFkCYxOYSYn2jG54ORHv+v42Y01WY04Bd74Wl15 0ejNcwkutb5mXqE42UqwRoHb1ogh5MsGo2aJ0Uop0IxIyRVKQoVv/mSKWplyCG0k 4W/UqW5X/F+fZ4O0oeDARPlEDBSbge5FArkpsSrxmTbDvJni8JyyTTnUquU/IoFr G/NHB+eguNB01rzH/jnTqxI6rFT43y1MRI+8bHPT4GIcwa7zEXdZIkg4O4E= -----END CERTIFICATE-----Generated at Sat Aug 23 15:17:25 2025 by rpki-client