$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa File: 95808009-fbc3-494a-8fba-ce3cf5711341.roa (raw, json) Hash identifier: EEvVTC75GNN+qn+ieO81ryfRbF8QsyAZcx/1Uwo8m30= Subject key identifier: 10:20:A3:2C:23:64:16:7F:9D:22:FE:FB:11:7B:49:0B:23:8F:C7:72 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 169F65F826D9CC505E3301C87D913500172E3205 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa Signing time: Wed 25 Jun 2025 00:40:21 +0000 ROA not before: Wed 25 Jun 2025 00:40:21 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:9f:65:f8:26:d9:cc:50:5e:33:01:c8:7d:91:35:00:17:2e:32:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 25 00:40:21 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=bae480bb86b8cf287f932c991da8387b1740893261119d41274d061f19ac9554, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a8:1a:9d:83:e8:6a:e2:5b:5e:ed:d5:26:3b: 0b:74:3b:bb:53:a0:2a:af:69:25:bb:83:8f:1e:0c: 16:e7:df:67:b5:32:65:99:97:bd:8e:82:da:2d:cb: 04:04:b7:13:2d:56:65:41:da:d4:1f:cc:89:68:b4: 03:bc:75:46:38:ca:69:5e:9b:1a:52:37:97:1e:97: 80:a0:19:67:c4:ce:1c:92:45:b6:ed:7b:e1:9b:34: b1:ff:ed:e2:2a:c9:67:4a:58:21:26:54:79:81:f7: 90:84:bb:0a:55:01:cc:e8:2e:ab:65:cf:d1:49:14: 87:5a:d5:6b:97:86:d9:6b:2b:30:af:d7:39:ed:34: a9:11:6e:21:40:0b:6f:a2:ef:44:8f:e7:dc:88:5e: b4:c8:a4:21:91:7e:03:07:51:63:1d:64:91:cd:ec: 04:41:2e:80:cf:d7:4d:b3:8b:07:4b:39:50:c1:34: 83:85:c3:9b:bb:fd:94:c6:c5:84:3a:21:68:3e:70: 69:79:4a:85:28:09:92:5a:6a:74:5c:f4:7f:3d:f6: 36:ec:d8:0e:03:b6:3e:f1:e8:c9:35:4c:1c:27:af: d1:94:ef:1d:73:cd:b7:85:09:32:3a:6f:6c:b0:74: 5c:53:a7:7f:3a:59:4b:4e:67:76:84:11:f6:7e:d0: ed:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:20:A3:2C:23:64:16:7F:9D:22:FE:FB:11:7B:49:0B:23:8F:C7:72 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:eb:d4:b7:87:03:ed:fb:4d:89:49:68:8c:bd:57:9f:6a:ab: c5:7c:6f:5b:f3:20:ef:e7:f8:f1:04:16:a1:d1:8c:29:ae:6a: 0d:fa:52:80:73:f5:4b:4b:e2:76:e8:c1:ec:55:e3:f5:76:1b: f8:7d:8e:34:de:14:59:79:81:1a:4f:14:1c:53:99:d0:fd:6c: f8:6a:23:8d:76:fc:33:9a:99:f4:0e:77:eb:9e:67:56:da:34: e3:03:49:cb:71:5f:d1:3e:1b:4a:2a:41:a2:e1:08:30:41:bb: b3:0c:2e:fd:88:05:e2:33:db:89:c6:54:64:e1:76:f5:1d:18: 61:1b:69:a5:a0:79:de:11:ef:a2:fa:18:7e:35:01:26:bb:5b: a5:c9:c4:18:19:7d:a0:68:bd:e4:ba:ec:cb:3a:b2:64:15:33: 17:c2:76:9b:6b:34:2c:4a:61:73:cc:cf:4b:2f:d2:e2:94:3d: 2e:f6:db:94:ab:11:55:cd:2b:dc:17:c8:d9:7d:16:0e:be:a1: b0:d5:8c:da:a0:b4:3a:51:8e:6d:4e:54:65:20:47:46:76:31: 0c:fc:a4:e1:b3:1b:42:2c:82:d5:fb:45:3d:5c:b7:4e:83:47: c6:53:58:fc:fb:99:51:be:65:20:a8:30:41:0a:93:c9:71:bf: 35:a7:e9:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFp9l+CbZzFBeMwHIfZE1ABcuMgUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI1MDA0MDIxWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWU0ODBiYjg2YjhjZjI4N2Y5MzJjOTkxZGE4Mzg3YjE3 NDA4OTMyNjExMTlkNDEyNzRkMDYxZjE5YWM5NTU0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKqBqdg+hq4lte7dUmOwt0O7tToCqvaSW7g48eDBbn32e1 MmWZl72OgtotywQEtxMtVmVB2tQfzIlotAO8dUY4ymlemxpSN5cel4CgGWfEzhyS Rbbte+GbNLH/7eIqyWdKWCEmVHmB95CEuwpVAczoLqtlz9FJFIda1WuXhtlrKzCv 1zntNKkRbiFAC2+i70SP59yIXrTIpCGRfgMHUWMdZJHN7ARBLoDP102ziwdLOVDB NIOFw5u7/ZTGxYQ6IWg+cGl5SoUoCZJaanRc9H899jbs2A4Dtj7x6Mk1TBwnr9GU 7x1zzbeFCTI6b2ywdFxTp386WUtOZ3aEEfZ+0O2lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUECCjLCNkFn+dIv77EXtJCyOPx3IwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzk1ODA4MDA5LWZiYzMtNDk0YS04ZmJhLWNlM2NmNTcxMTM0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBAIvr1LeHA+37TYlJaIy9V59qq8V8 b1vzIO/n+PEEFqHRjCmuag36UoBz9UtL4nbowexV4/V2G/h9jjTeFFl5gRpPFBxT mdD9bPhqI412/DOamfQOd+ueZ1baNOMDSctxX9E+G0oqQaLhCDBBu7MMLv2IBeIz 24nGVGThdvUdGGEbaaWged4R76L6GH41ASa7W6XJxBgZfaBoveS67Ms6smQVMxfC dptrNCxKYXPMz0sv0uKUPS7225SrEVXNK9wXyNl9Fg6+obDVjNqgtDpRjm1OVGUg R0Z2MQz8pOGzG0IsgtX7RT1ct06DR8ZTWPz7mVG+ZSCoMEEKk8lxvzWn6eA= -----END CERTIFICATE-----Generated at Fri Jul 4 14:58:52 2025 by rpki-client