$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa File: 8b1249ac-b74a-4544-80b2-2b577af731f1.roa (raw, json) Hash identifier: SZX1F0K5Ivc5FSc6rpyXx4VD4egm+okg8WooEX6phvk= Subject key identifier: E6:0B:36:68:FD:14:E1:F3:C9:6D:AE:99:9D:B7:5E:8A:32:F5:53:40 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 44F20C824515B2DA4831F0C90A3BFA259809100A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa Signing time: Wed 25 Jun 2025 00:40:23 +0000 ROA not before: Wed 25 Jun 2025 00:40:23 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:f2:0c:82:45:15:b2:da:48:31:f0:c9:0a:3b:fa:25:98:09:10:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 25 00:40:23 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=51359c4c765295267f0b8f05125f464bc41db1a1fdbe054c6133c42d28c9d83e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:37:1c:83:be:89:7f:06:f8:19:b0:e8:8b:57: c7:89:6a:aa:13:2c:d2:8d:ff:df:e4:e5:67:70:45: e7:7a:ac:f2:8f:82:4e:6e:fb:ac:f1:3c:7b:ad:3b: 5c:98:d4:b9:f0:f9:7d:43:11:75:99:b3:01:e9:12: ce:19:17:1c:85:d9:7e:1c:bf:a6:f7:80:fa:d0:26: 0c:bc:ef:6d:17:d4:16:4d:d9:42:99:82:bd:33:0c: 83:12:6d:1f:30:85:38:2f:18:e5:eb:50:7e:8a:23: b1:26:5d:7d:f2:07:5b:f9:16:be:31:4e:8f:34:db: 7a:85:3d:e4:9f:2e:e2:9a:21:b1:7f:2e:ec:fe:bc: eb:65:ad:b3:eb:4f:20:7c:0d:13:b0:c6:9f:87:a0: 12:17:7c:9b:99:8f:a2:cd:3c:84:44:39:b5:18:47: ab:ac:41:89:e2:85:87:33:cc:ca:0e:04:10:5d:ad: 68:06:6e:d0:31:28:1a:16:df:fd:2d:0b:fb:61:1c: bb:0b:53:81:f0:ba:c5:c5:a7:20:d4:b5:3d:9e:03: 73:45:c2:d7:cb:19:3b:8e:85:9e:c2:6c:d0:71:d5: 06:51:df:ab:4d:ae:95:d0:c9:ab:44:fb:2d:7d:c2: d9:5b:f7:54:49:98:8b:06:30:f0:57:b8:ae:34:03: af:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:0B:36:68:FD:14:E1:F3:C9:6D:AE:99:9D:B7:5E:8A:32:F5:53:40 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.20.0/23 Signature Algorithm: sha256WithRSAEncryption 62:a1:74:e0:43:04:88:1d:de:a7:c3:e1:f4:d6:12:dd:90:3d: 0e:f6:0e:eb:1d:4b:70:b9:42:a8:54:b1:91:f9:67:59:61:02: 25:07:d0:bb:86:5e:c1:d7:73:c5:fd:b7:83:d0:34:d4:34:93: 8a:84:c0:86:0d:f1:05:e2:28:48:b2:5d:9a:cb:eb:52:77:de: 4b:a8:36:f7:41:84:e7:1f:13:76:0e:da:54:32:ff:bd:ce:28: 4c:fa:20:64:eb:c5:72:72:aa:ca:f5:32:35:58:f3:4a:75:3f: c8:70:0b:68:45:dc:19:86:a4:be:5b:92:38:d1:71:4a:f2:2e: cd:9b:75:80:0b:b6:ec:fd:7a:f0:63:7f:8a:43:18:27:24:39: fb:13:3d:e5:49:90:a3:f3:26:23:d9:dd:7f:91:7f:17:bb:f4: 69:82:e5:f6:ae:20:38:79:35:0b:7f:91:fa:7f:c7:88:ee:58: 05:e0:a9:8b:7a:01:36:fe:58:4f:d3:24:d2:e9:7b:a7:37:07: 21:a2:e5:7f:f1:d2:33:65:94:fa:65:f8:56:89:98:69:52:11: e6:50:29:37:3d:a9:7e:fe:f1:50:7b:60:10:54:ba:39:ea:2c: c9:df:b2:f0:07:4f:03:3b:99:27:4f:5a:9f:25:89:21:3b:ce: 54:3b:8c:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURPIMgkUVstpIMfDJCjv6JZgJEAowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI1MDA0MDIzWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTM1OWM0Yzc2NTI5NTI2N2YwYjhmMDUxMjVmNDY0YmM0 MWRiMWExZmRiZTA1NGM2MTMzYzQyZDI4YzlkODNlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgNxyDvol/BvgZsOiLV8eJaqoTLNKN/9/k5WdwRed6rPKP gk5u+6zxPHutO1yY1Lnw+X1DEXWZswHpEs4ZFxyF2X4cv6b3gPrQJgy8720X1BZN 2UKZgr0zDIMSbR8whTgvGOXrUH6KI7EmXX3yB1v5Fr4xTo8023qFPeSfLuKaIbF/ Luz+vOtlrbPrTyB8DROwxp+HoBIXfJuZj6LNPIREObUYR6usQYnihYczzMoOBBBd rWgGbtAxKBoW3/0tC/thHLsLU4HwusXFpyDUtT2eA3NFwtfLGTuOhZ7CbNBx1QZR 36tNrpXQyatE+y19wtlb91RJmIsGMPBXuK40A69ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5gs2aP0U4fPJba6ZnbdeijL1U0AwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhiMTI0OWFjLWI3NGEtNDU0NC04MGIyLTJiNTc3YWY3MzFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBQwDQYJKoZIhvcNAQELBQADggEBAGKhdOBDBIgd3qfD4fTWEt2QPQ72 DusdS3C5QqhUsZH5Z1lhAiUH0LuGXsHXc8X9t4PQNNQ0k4qEwIYN8QXiKEiyXZrL 61J33kuoNvdBhOcfE3YO2lQy/73OKEz6IGTrxXJyqsr1MjVY80p1P8hwC2hF3BmG pL5bkjjRcUryLs2bdYALtuz9evBjf4pDGCckOfsTPeVJkKPzJiPZ3X+Rfxe79GmC 5fauIDh5NQt/kfp/x4juWAXgqYt6ATb+WE/TJNLpe6c3ByGi5X/x0jNllPpl+FaJ mGlSEeZQKTc9qX7+8VB7YBBUujnqLMnfsvAHTwM7mSdPWp8liSE7zlQ7jEI= -----END CERTIFICATE-----Generated at Wed Jul 2 20:41:18 2025 by rpki-client