$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6b90b1f9-6b22-4e82-af32-2981da75246a.roa File: 6b90b1f9-6b22-4e82-af32-2981da75246a.roa (raw, json) Hash identifier: bQxqcQeTLX56sqW6GudoNwRxV44cBWJ4aqJQa6Melto= Subject key identifier: C7:EC:6E:DA:70:5F:53:27:4A:0F:13:D6:EF:3C:A3:ED:07:3A:80:96 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7F913BC148FE34EDDE0EB19273D6C3F13D0455F3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6b90b1f9-6b22-4e82-af32-2981da75246a.roa Signing time: Mon 30 Jun 2025 17:40:31 +0000 ROA not before: Mon 30 Jun 2025 17:40:31 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:91:3b:c1:48:fe:34:ed:de:0e:b1:92:73:d6:c3:f1:3d:04:55:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:31 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=ec35aa2e57e2a51a6ade8918049442336f39b363aecf5a973ff0a5cc68c88dc2, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e7:78:83:7f:fa:85:02:90:72:89:db:e7:b3: 9f:d5:6d:c0:97:f2:05:56:e7:1b:cd:73:74:5f:81: ed:6e:a2:65:e9:2d:f2:57:6f:99:3e:98:0c:19:ad: 8b:f7:70:f1:cb:3f:14:db:9c:62:c6:22:1e:a6:63: de:87:02:7b:9c:19:ab:fb:85:77:61:d8:d1:91:6b: a3:cd:25:1b:bb:3b:08:42:ff:81:24:23:d1:49:23: 7d:fe:3c:8f:47:fe:15:11:91:df:c5:7c:fc:00:7a: 71:88:52:3a:08:18:ba:bc:16:5f:b0:56:bb:4c:54: af:f6:fb:be:ee:74:c0:8c:28:f1:51:16:9f:ed:69: 0b:08:ef:b7:10:2f:db:b3:c2:bd:be:89:d0:39:73: f6:f3:0b:6a:f3:a4:02:b3:aa:0e:11:1b:96:2e:ab: c1:15:12:2f:82:ab:48:ad:7d:36:b2:24:0d:08:a9: 23:5f:f8:28:63:2c:9d:c6:c9:84:7b:50:b0:ae:d5: 99:fb:5f:d7:c9:64:73:a4:92:11:b3:3b:ab:a8:37: 44:58:21:3a:b0:d1:38:a1:af:65:4a:61:4d:a8:1d: 9b:e0:4d:92:94:09:4e:03:a6:cc:ac:4b:86:96:f2: 5b:99:bb:fc:6a:72:25:53:8d:0e:5b:83:44:e7:0e: 41:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:EC:6E:DA:70:5F:53:27:4A:0F:13:D6:EF:3C:A3:ED:07:3A:80:96 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6b90b1f9-6b22-4e82-af32-2981da75246a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.33.0/24 Signature Algorithm: sha256WithRSAEncryption 39:0e:87:57:a9:e0:3e:68:9f:2a:45:77:9f:3f:a1:96:b0:ea: ff:5e:b7:b8:d1:55:e2:f8:96:fa:36:ec:02:06:a2:d0:b4:84: bc:12:6e:24:04:41:bd:f8:35:29:2f:36:5b:55:fc:2a:fe:e4: 75:3c:29:62:59:3b:93:c5:fe:ae:03:36:3a:91:4f:08:cc:61: 06:2e:ff:67:b4:0c:40:76:1c:8b:a0:21:76:59:2c:ac:3b:f5: 8e:39:a4:1a:b1:92:f0:6f:dd:ca:36:2c:88:46:fd:1a:c8:06: 94:15:9b:d3:a6:53:14:22:18:d8:60:7f:a2:a2:37:6c:a6:98: f7:da:0c:fd:0b:12:9e:a5:ec:83:1d:b3:2a:fa:6e:ab:74:7c: 86:cf:06:92:c6:61:3d:bd:da:0b:fc:a9:49:71:cb:6e:fe:37: cb:94:3c:10:c0:48:35:5b:ca:9a:f8:6b:fb:1d:d6:fd:2e:ed: f5:cf:af:f0:bd:58:79:8e:aa:a0:eb:69:09:5a:5a:2c:fb:3b: 21:46:b9:44:3a:3f:d5:0e:90:e2:fe:c4:2e:f8:c3:75:69:86: 87:0f:44:3a:b2:e3:25:08:8b:39:3b:7e:78:87:bb:b9:5c:5d: 92:90:01:5a:f0:ff:31:26:73:cc:c4:db:85:86:24:20:1a:29: 7c:72:23:5c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf5E7wUj+NO3eDrGSc9bD8T0EVfMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDMxWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzM1YWEyZTU3ZTJhNTFhNmFkZTg5MTgwNDk0NDIzMzZm MzliMzYzYWVjZjVhOTczZmYwYTVjYzY4Yzg4ZGMyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCg53iDf/qFApByidvns5/VbcCX8gVW5xvNc3Rfge1uomXp LfJXb5k+mAwZrYv3cPHLPxTbnGLGIh6mY96HAnucGav7hXdh2NGRa6PNJRu7OwhC /4EkI9FJI33+PI9H/hURkd/FfPwAenGIUjoIGLq8Fl+wVrtMVK/2+77udMCMKPFR Fp/taQsI77cQL9uzwr2+idA5c/bzC2rzpAKzqg4RG5Yuq8EVEi+Cq0itfTayJA0I qSNf+ChjLJ3GyYR7ULCu1Zn7X9fJZHOkkhGzO6uoN0RYITqw0Tihr2VKYU2oHZvg TZKUCU4DpsysS4aW8luZu/xqciVTjQ5bg0TnDkFPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUx+xu2nBfUydKDxPW7zyj7Qc6gJYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzZiOTBiMWY5LTZiMjItNGU4Mi1hZjMyLTI5ODFkYTc1MjQ2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCEwDQYJKoZIhvcNAQELBQADggEBADkOh1ep4D5onypFd58/oZaw6v9e t7jRVeL4lvo27AIGotC0hLwSbiQEQb34NSkvNltV/Cr+5HU8KWJZO5PF/q4DNjqR TwjMYQYu/2e0DEB2HIugIXZZLKw79Y45pBqxkvBv3co2LIhG/RrIBpQVm9OmUxQi GNhgf6KiN2ymmPfaDP0LEp6l7IMdsyr6bqt0fIbPBpLGYT292gv8qUlxy27+N8uU PBDASDVbypr4a/sd1v0u7fXPr/C9WHmOqqDraQlaWiz7OyFGuUQ6P9UOkOL+xC74 w3VphocPRDqy4yUIizk7fniHu7lcXZKQAVrw/zEmc8zE24WGJCAaKXxyI1w= -----END CERTIFICATE-----Generated at Fri Jul 4 13:45:25 2025 by rpki-client