$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa File: 95808009-fbc3-494a-8fba-ce3cf5711341.roa (raw, json) Hash identifier: 0PGjR20EyscEP0C8OuZ8PEkQJb4akSAnXSVfxX+AKLo= Subject key identifier: C9:FC:CC:88:A0:EC:CB:52:3B:43:05:C5:85:7B:37:F8:08:77:15:BA Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1EAC34F981E32B5538BA1CB7965EBD72CDFA71C1 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa Signing time: Fri 15 Aug 2025 15:30:41 +0000 ROA not before: Fri 15 Aug 2025 15:30:41 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:ac:34:f9:81:e3:2b:55:38:ba:1c:b7:96:5e:bd:72:cd:fa:71:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 15 15:30:41 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=5c6a77f7d288edbc96c967053812f01f8651718a4619af682a04244ad202c726, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:07:60:ea:f1:8b:77:3f:bf:f3:ed:a7:24:bd: 63:68:0d:8d:00:fe:89:de:7a:9e:7c:9a:f3:0f:4a: 46:66:20:12:95:a8:54:18:3f:ae:a5:aa:54:3f:68: bf:63:da:55:53:5c:9f:ad:f1:49:7b:e5:74:3c:21: 0c:4f:40:8f:e4:9b:a5:08:70:2e:72:c7:02:58:d7: 8d:5f:92:07:67:e4:29:78:97:8e:63:ec:6b:c7:11: 5c:c7:63:55:6d:76:cc:8f:7b:eb:3a:b5:6d:54:0d: ef:a4:30:da:de:28:55:cf:e6:ba:6d:9c:56:25:f1: f8:c3:a0:f9:52:3e:8e:c1:19:a5:8e:39:63:2a:30: 93:10:6e:5f:88:d4:14:fb:39:31:3b:e0:e3:f9:c9: 1f:d4:5e:88:78:f0:99:22:ed:0e:85:72:6f:60:45: 47:83:c7:0f:fc:19:8c:29:67:8a:05:06:a1:7e:84: 81:de:24:04:c2:b6:d8:50:00:4b:ae:43:bc:f8:2b: be:ca:32:08:5a:83:a6:1d:4f:58:a1:d6:42:67:5d: 58:d0:d7:e9:4a:6c:3c:1f:5c:40:94:45:e6:24:f5: 0a:f0:54:e9:8d:b7:ea:09:67:b4:e4:7e:19:35:13: f8:2d:81:b9:60:57:9c:d7:b5:88:ad:bd:c0:b1:ea: 0f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:FC:CC:88:A0:EC:CB:52:3B:43:05:C5:85:7B:37:F8:08:77:15:BA X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:49:1b:08:7e:b4:fa:fa:e4:0a:ff:d3:c6:9d:a3:68:79:8f: dd:a6:fe:b2:36:09:b2:1f:d0:41:a5:d2:e8:43:89:3f:da:5f: 43:f9:8b:0b:55:2b:95:1c:03:f3:a9:59:2c:e3:17:a2:e4:22: c0:9d:41:6a:02:c3:5b:90:a5:28:6b:40:5d:8c:46:70:6a:aa: 77:a7:37:e3:02:ff:e0:28:33:96:46:33:44:a0:4c:4e:0c:be: a9:4a:1d:c4:3b:53:1f:da:14:d5:16:f2:51:59:07:c6:ca:89: e1:50:62:cc:ba:8c:58:94:7c:d6:9a:5c:e5:9e:19:1f:8e:98: f4:d2:b2:56:0d:6e:2d:c6:29:2f:49:a0:1b:ca:1d:35:85:52: 3b:7f:41:5c:a9:9b:a7:77:12:6b:9b:04:5d:5e:de:e1:9f:56: a0:29:c8:8b:b8:d4:6a:05:2d:83:f0:2f:c5:24:29:d1:e9:c5: 27:87:27:86:f8:58:eb:53:2e:7c:16:50:63:e1:cf:ea:1d:41: 12:2f:b5:d6:12:ac:fd:38:a6:99:32:44:65:4c:c4:44:87:8e: 97:af:fb:0f:63:87:37:8c:d8:6b:f5:4a:f6:f1:a7:47:10:5d: ff:63:9e:1c:c4:74:c7:e5:30:41:44:11:fa:cf:1b:83:8f:96: 24:8c:4c:6c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHqw0+YHjK1U4uhy3ll69cs36ccEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE1MTUzMDQxWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzZhNzdmN2QyODhlZGJjOTZjOTY3MDUzODEyZjAxZjg2 NTE3MThhNDYxOWFmNjgyYTA0MjQ0YWQyMDJjNzI2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwB2Dq8Yt3P7/z7ackvWNoDY0A/oneep58mvMPSkZmIBKV qFQYP66lqlQ/aL9j2lVTXJ+t8Ul75XQ8IQxPQI/km6UIcC5yxwJY141fkgdn5Cl4 l45j7GvHEVzHY1VtdsyPe+s6tW1UDe+kMNreKFXP5rptnFYl8fjDoPlSPo7BGaWO OWMqMJMQbl+I1BT7OTE74OP5yR/UXoh48Jki7Q6Fcm9gRUeDxw/8GYwpZ4oFBqF+ hIHeJATCtthQAEuuQ7z4K77KMghag6YdT1ih1kJnXVjQ1+lKbDwfXECUReYk9Qrw VOmNt+oJZ7Tkfhk1E/gtgblgV5zXtYitvcCx6g8FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyfzMiKDsy1I7QwXFhXs3+Ah3FbowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzk1ODA4MDA5LWZiYzMtNDk0YS04ZmJhLWNlM2NmNTcxMTM0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBAHtJGwh+tPr65Ar/08ado2h5j92m /rI2CbIf0EGl0uhDiT/aX0P5iwtVK5UcA/OpWSzjF6LkIsCdQWoCw1uQpShrQF2M RnBqqnenN+MC/+AoM5ZGM0SgTE4MvqlKHcQ7Ux/aFNUW8lFZB8bKieFQYsy6jFiU fNaaXOWeGR+OmPTSslYNbi3GKS9JoBvKHTWFUjt/QVypm6d3EmubBF1e3uGfVqAp yIu41GoFLYPwL8UkKdHpxSeHJ4b4WOtTLnwWUGPhz+odQRIvtdYSrP04ppkyRGVM xESHjpev+w9jhzeM2Gv1Svbxp0cQXf9jnhzEdMflMEFEEfrPG4OPliSMTGw= -----END CERTIFICATE-----Generated at Sat Aug 23 07:10:33 2025 by rpki-client