$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa File: 98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa (raw, json) Hash identifier: zGkpo41aqCHC3cxdc4aTVuPbt9Ut8l2/QQQDNLITpWM= Subject key identifier: DE:58:04:16:E2:91:F5:B6:05:C6:04:67:FB:0B:A6:BA:DB:D2:B5:1E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: D1CFEEBA381F99D4A25B6424B151EA4849F0C3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa Signing time: Fri 15 Aug 2025 15:30:08 +0000 ROA not before: Fri 15 Aug 2025 15:30:08 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: d1:cf:ee:ba:38:1f:99:d4:a2:5b:64:24:b1:51:ea:48:49:f0:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 15 15:30:08 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=92463ac1bd64d3b902697bf02fb4d807f6f39ec8924cee798b83ce7365f71288, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:81:e7:ad:d1:d1:f3:c1:34:d9:03:c4:7b:2d: df:e8:6e:5b:fe:7f:9e:cd:34:21:5a:ba:7c:96:47: 4b:f6:c8:d8:03:04:ec:2e:19:ab:82:9d:0b:c8:d6: a8:20:af:e9:38:38:f6:6d:e3:05:d7:74:67:a0:ce: 19:02:95:87:1b:54:96:d5:ff:04:19:5a:fd:1c:35: 11:0e:40:d9:7c:77:81:ee:3e:ea:97:b4:44:4d:3a: e7:b2:a6:b5:b7:67:9e:f8:18:26:9b:1a:60:b8:c5: 7b:32:2c:f9:27:e8:9c:1f:d8:d8:7f:05:28:3c:81: ba:0b:04:6d:c1:26:a6:07:0c:30:08:f7:a5:87:0b: 55:eb:b3:6e:56:d5:c6:19:01:95:91:6d:72:14:b5: 31:58:77:c9:6b:b8:20:ba:57:8f:62:08:ce:d4:32: eb:1e:9a:ca:b3:d7:0b:a3:fc:04:86:21:4b:4e:32: a3:e3:df:56:bc:7e:58:be:1f:20:4b:81:9e:35:68: 8e:6a:89:d3:38:90:a1:fa:92:be:e9:46:0d:5d:8a: 40:5e:4d:d5:a9:22:83:8c:6e:4e:7f:4a:32:25:b4: c2:9f:d1:b3:19:cb:0e:15:ab:66:1f:cb:8c:26:58: d0:58:2a:f2:15:58:1e:b9:48:8a:6f:bf:53:d3:81: 14:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:58:04:16:E2:91:F5:B6:05:C6:04:67:FB:0B:A6:BA:DB:D2:B5:1E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.247.0/24 Signature Algorithm: sha256WithRSAEncryption 94:c1:77:66:cb:ac:e7:85:df:c6:4d:6f:d7:91:47:08:f1:4a: 93:40:77:0f:43:e4:cc:38:c4:42:33:a9:72:95:1f:57:8f:42: d8:01:b3:10:91:49:55:2f:09:20:92:c8:15:25:27:c3:26:35: de:7d:0a:b9:1c:da:6e:15:a1:14:f8:f5:22:5f:8b:a1:42:d3: 3a:b4:a1:21:04:93:69:26:d7:d9:29:77:5e:06:d3:f6:38:55: 1f:1d:db:dd:dd:bf:54:8b:63:15:8d:6d:39:6b:c5:b3:57:e5: bf:7e:22:b7:bd:7e:95:b5:f8:98:05:93:47:b8:21:a3:37:44: 8c:0d:41:be:95:67:f0:e8:cc:dd:46:31:13:5b:70:fe:f1:83: f8:9e:33:56:ab:fb:ae:6e:42:60:f9:98:19:83:07:26:f6:f5: de:e1:fb:52:17:e9:74:43:d7:9f:f6:cc:7c:6d:bf:17:41:51: 36:d9:04:ed:b9:7a:97:56:95:e6:01:ba:82:95:f6:17:8b:ed: 7b:e2:65:a7:ba:22:d7:19:68:e5:fe:a5:e6:08:f9:b6:1b:fe: f3:10:bd:81:5e:f2:f8:0c:3e:ee:53:22:97:98:a2:91:2c:c4: 49:8e:67:a1:50:07:5b:64:14:5b:5e:6e:83:83:26:51:64:0d: 7b:37:90:6c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUANHP7ro4H5nUoltkJLFR6khJ8MMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE1MTUzMDA4WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjQ2M2FjMWJkNjRkM2I5MDI2OTdiZjAyZmI0ZDgwN2Y2 ZjM5ZWM4OTI0Y2VlNzk4YjgzY2U3MzY1ZjcxMjg4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRgeet0dHzwTTZA8R7Ld/oblv+f57NNCFaunyWR0v2yNgD BOwuGauCnQvI1qggr+k4OPZt4wXXdGegzhkClYcbVJbV/wQZWv0cNREOQNl8d4Hu PuqXtERNOueyprW3Z574GCabGmC4xXsyLPkn6Jwf2Nh/BSg8gboLBG3BJqYHDDAI 96WHC1Xrs25W1cYZAZWRbXIUtTFYd8lruCC6V49iCM7UMusemsqz1wuj/ASGIUtO MqPj31a8fli+HyBLgZ41aI5qidM4kKH6kr7pRg1dikBeTdWpIoOMbk5/SjIltMKf 0bMZyw4Vq2Yfy4wmWNBYKvIVWB65SIpvv1PTgRS7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3lgEFuKR9bYFxgRn+wumutvStR4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzk4YjVjODkwLTQ3ZjEtNGY3Zi1hOWRkLTMyMjg5NTU0ZjFkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPcwDQYJKoZIhvcNAQELBQADggEBAJTBd2bLrOeF38ZNb9eRRwjxSpNA dw9D5Mw4xEIzqXKVH1ePQtgBsxCRSVUvCSCSyBUlJ8MmNd59Crkc2m4VoRT49SJf i6FC0zq0oSEEk2km19kpd14G0/Y4VR8d293dv1SLYxWNbTlrxbNX5b9+Ire9fpW1 +JgFk0e4IaM3RIwNQb6VZ/DozN1GMRNbcP7xg/ieM1ar+65uQmD5mBmDByb29d7h +1IX6XRD15/2zHxtvxdBUTbZBO25epdWleYBuoKV9heL7XviZae6ItcZaOX+peYI +bYb/vMQvYFe8vgMPu5TIpeYopEsxEmOZ6FQB1tkFFteboODJlFkDXs3kGw= -----END CERTIFICATE-----Generated at Sat Aug 23 10:23:18 2025 by rpki-client