$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa File: 8b1249ac-b74a-4544-80b2-2b577af731f1.roa (raw, json) Hash identifier: 3JG2b+fhuA3xDeQeMx9ShttbtAnMZZO2caM3X0HZsGM= Subject key identifier: 51:23:85:AD:62:23:2E:35:2C:A0:16:DB:4F:92:96:95:DD:48:11:88 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4F8F516DAD7CE86089B75B2BB009B1655C35BD5D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa Signing time: Fri 15 Aug 2025 15:30:46 +0000 ROA not before: Fri 15 Aug 2025 15:30:46 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:8f:51:6d:ad:7c:e8:60:89:b7:5b:2b:b0:09:b1:65:5c:35:bd:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 15 15:30:46 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=d151f355a5c0cc9d92dad8bc5ccb2a5837d02dbe57dd965be2f98dc3d12437e3, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:44:ef:10:85:13:72:45:61:28:f6:aa:3a:f4: fb:e8:ae:c0:e7:81:af:17:8c:7d:ca:c1:67:65:8f: 95:73:f6:e7:f9:73:3f:39:72:34:67:33:e5:b7:a7: 7a:ea:14:a3:88:48:8a:22:7a:1b:3d:a4:e4:e1:e9: c3:55:5a:fd:bb:17:22:e9:e0:e5:42:f8:1e:29:c9: 2f:0d:fc:95:3b:a7:cc:df:fb:50:d8:ed:8d:fd:ef: 87:8b:36:a2:6d:99:92:17:a8:70:b1:62:07:0b:01: 0b:a7:7c:70:65:f8:1a:2c:94:d0:ca:56:7f:b4:8b: 00:a2:9d:5a:8b:12:d9:4d:6a:eb:d5:92:f3:98:5e: 1d:e9:68:61:1e:6e:08:33:ad:3f:6f:84:bd:bf:01: dc:16:e4:83:6f:33:1a:40:70:0f:03:76:5d:2d:a7: 83:98:b9:2d:9e:15:b1:73:63:83:58:a5:48:25:22: 37:f4:12:49:a7:72:b5:24:2f:ce:9e:8d:6d:29:f4: 2f:4d:01:e4:fe:af:14:11:29:fc:ab:f3:16:32:44: 44:82:f2:57:49:d6:78:16:c8:f7:4d:cb:2e:12:52: 37:7f:71:3a:9c:02:c3:16:81:8a:97:c3:17:c6:75: 5a:07:a5:e2:9c:bc:e7:a4:9b:6e:c7:ad:76:a0:ac: 62:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:23:85:AD:62:23:2E:35:2C:A0:16:DB:4F:92:96:95:DD:48:11:88 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.20.0/23 Signature Algorithm: sha256WithRSAEncryption 74:df:e6:89:98:56:02:bb:79:2a:35:3d:4e:c0:92:94:0d:b6: 33:80:73:81:29:b5:d2:78:4f:2b:1a:98:0c:4a:ff:e2:fa:27: 5a:a4:be:97:27:d1:86:68:55:2f:7c:6b:90:82:6d:53:5b:e3: db:31:41:11:91:80:03:9a:8c:f9:94:40:e3:37:6a:fd:b9:8e: 8c:ac:35:82:11:13:5b:d0:9e:86:c7:14:c3:e2:73:fd:c5:e4: 45:b2:0a:a4:44:af:d7:6e:c3:da:ea:c0:a9:f0:a6:68:c8:35: 88:70:f5:7c:00:0e:42:71:28:66:69:e3:36:02:09:66:bc:88: 99:c9:d3:3a:f5:52:c4:3c:6e:b9:85:89:cd:38:3f:cb:ed:ca: 04:3b:2c:ee:9a:58:12:ce:37:2e:12:6c:84:09:9e:fb:8e:3a: f4:b0:2f:7e:8d:c7:49:a5:0a:20:39:3b:f8:af:86:05:92:26: 91:b1:4a:87:99:5f:89:db:02:44:ae:b0:03:30:9b:ca:61:b2: 67:84:bd:b2:43:55:3c:1c:c5:f9:70:ae:1b:3c:d7:d4:77:eb: 6e:20:c1:65:0a:db:b6:d5:81:af:2e:25:04:f9:e7:83:5f:1e: c2:f4:e4:95:28:04:ed:04:ae:4a:75:94:36:8e:57:0a:18:d1: d5:52:62:c4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT49Rba186GCJt1srsAmxZVw1vV0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE1MTUzMDQ2WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTUxZjM1NWE1YzBjYzlkOTJkYWQ4YmM1Y2NiMmE1ODM3 ZDAyZGJlNTdkZDk2NWJlMmY5OGRjM2QxMjQzN2UzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBRO8QhRNyRWEo9qo69PvorsDnga8XjH3KwWdlj5Vz9uf5 cz85cjRnM+W3p3rqFKOISIoiehs9pOTh6cNVWv27FyLp4OVC+B4pyS8N/JU7p8zf +1DY7Y3974eLNqJtmZIXqHCxYgcLAQunfHBl+BoslNDKVn+0iwCinVqLEtlNauvV kvOYXh3paGEebggzrT9vhL2/AdwW5INvMxpAcA8Ddl0tp4OYuS2eFbFzY4NYpUgl Ijf0EkmncrUkL86ejW0p9C9NAeT+rxQRKfyr8xYyRESC8ldJ1ngWyPdNyy4SUjd/ cTqcAsMWgYqXwxfGdVoHpeKcvOekm27HrXagrGKZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUSOFrWIjLjUsoBbbT5KWld1IEYgwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhiMTI0OWFjLWI3NGEtNDU0NC04MGIyLTJiNTc3YWY3MzFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBQwDQYJKoZIhvcNAQELBQADggEBAHTf5omYVgK7eSo1PU7AkpQNtjOA c4EptdJ4TysamAxK/+L6J1qkvpcn0YZoVS98a5CCbVNb49sxQRGRgAOajPmUQOM3 av25joysNYIRE1vQnobHFMPic/3F5EWyCqREr9duw9rqwKnwpmjINYhw9XwADkJx KGZp4zYCCWa8iJnJ0zr1UsQ8brmFic04P8vtygQ7LO6aWBLONy4SbIQJnvuOOvSw L36Nx0mlCiA5O/ivhgWSJpGxSoeZX4nbAkSusAMwm8phsmeEvbJDVTwcxflwrhs8 19R3624gwWUK27bVga8uJQT554NfHsL05JUoBO0Erkp1lDaOVwoY0dVSYsQ= -----END CERTIFICATE-----Generated at Sat Aug 23 09:10:40 2025 by rpki-client