$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa File: 9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa (raw, json) Hash identifier: ZJLiUhr6PEK5sZDLTEIDb5Y5ep8WbtAfj7bSVJslbcA= Subject key identifier: 85:F5:F6:23:FC:C0:0E:4B:B1:9C:5C:C7:B1:DE:74:D1:09:9E:77:DD Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 75B09FC5CB2CA65DF1E550E18DF65F7EEE435A29 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa Signing time: Mon 30 Jun 2025 17:40:12 +0000 ROA not before: Mon 30 Jun 2025 17:40:12 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:b0:9f:c5:cb:2c:a6:5d:f1:e5:50:e1:8d:f6:5f:7e:ee:43:5a:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:12 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=68e92fe7d1945ba141e39c2389450f11141cef1aab35fb1aab09d0421dc132a4, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:95:96:eb:b9:94:32:99:ae:e3:10:91:e5:4e: 12:3b:49:29:d3:b7:81:1f:25:5b:2a:78:c2:11:50: 26:24:e3:ca:fb:09:60:d7:eb:99:74:29:1c:2a:97: e5:0a:dd:55:e9:63:d3:6f:b9:d5:2e:79:b0:2c:9e: bd:f2:00:64:b1:d6:1e:ac:bc:e4:44:1b:39:d5:69: 97:91:2c:f9:5c:c9:8c:9b:1d:ee:0e:5e:d5:9e:16: 19:7c:a1:49:dd:78:80:70:ad:51:ec:61:b2:be:3b: e3:d1:90:da:fd:cc:3c:fb:cd:f6:f9:40:bf:ed:92: 1d:23:6a:f5:10:91:f4:f2:11:f9:f8:d1:dc:ba:d9: 69:d2:24:8e:cb:01:5c:d8:7f:72:98:bd:81:51:d1: 59:b5:02:a8:b6:1e:3c:50:f1:56:56:28:23:60:a2: 90:2a:52:c4:fb:6c:84:f3:ad:cf:63:73:34:66:c2: db:a6:a3:26:ce:ba:b0:46:19:10:63:9a:75:d2:bc: 01:09:ee:9e:fa:ca:9e:71:b5:4e:b5:d8:7f:7d:60: 16:b5:da:94:17:ad:46:86:d5:f7:40:bb:88:ce:c0: 15:b2:f6:8f:fc:8c:97:78:9c:ba:69:cc:68:f0:f6: 52:9e:d3:c5:0d:63:6c:1e:ec:3d:49:b5:ae:20:75: 41:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F5:F6:23:FC:C0:0E:4B:B1:9C:5C:C7:B1:DE:74:D1:09:9E:77:DD X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 20:e7:61:b8:11:b1:89:70:0d:21:48:69:01:a3:c7:d8:79:7f: 39:b6:d5:0c:af:b7:67:ad:ad:f7:88:6b:e8:96:a5:d8:df:a1: 1c:f0:c6:a0:23:5d:20:de:04:cc:ef:49:57:77:cb:65:52:0a: 33:36:9f:48:bf:7a:c8:ac:7c:8d:2d:d4:1a:68:d3:bf:d5:3e: 96:98:cc:ae:04:67:6b:21:e8:78:17:56:78:3e:61:aa:c9:16: 38:77:b1:ed:b5:c3:85:a8:5f:1a:e8:6c:13:3e:4b:e7:75:32: e4:e3:bd:bc:63:50:46:48:43:9a:95:92:1f:68:b4:90:aa:a4: 45:b7:d3:93:79:e8:d1:d9:84:98:5c:78:1f:98:fb:ae:9e:0c: bb:8c:b6:15:a0:8c:c9:72:08:51:77:43:e1:b3:50:86:64:85: 3f:e1:dd:08:87:aa:6e:05:29:5d:ee:78:dc:5d:1f:4a:a6:17: 44:b3:f7:1a:cc:00:8a:f9:39:6e:7a:89:13:c5:03:47:47:12: 7f:84:b6:2b:3d:e2:14:94:a1:ba:1b:71:b2:fd:fd:b3:eb:19: ab:04:d3:36:57:60:04:44:21:2e:2c:8a:b2:11:0d:6e:14:d2: d9:3c:f4:cb:ca:1d:62:82:c1:c3:18:72:17:b0:6a:c5:58:45: 51:e8:6e:3c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdbCfxcsspl3x5VDhjfZffu5DWikwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDEyWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OGU5MmZlN2QxOTQ1YmExNDFlMzljMjM4OTQ1MGYxMTE0 MWNlZjFhYWIzNWZiMWFhYjA5ZDA0MjFkYzEzMmE0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCalZbruZQyma7jEJHlThI7SSnTt4EfJVsqeMIRUCYk48r7 CWDX65l0KRwql+UK3VXpY9NvudUuebAsnr3yAGSx1h6svOREGznVaZeRLPlcyYyb He4OXtWeFhl8oUndeIBwrVHsYbK+O+PRkNr9zDz7zfb5QL/tkh0javUQkfTyEfn4 0dy62WnSJI7LAVzYf3KYvYFR0Vm1Aqi2HjxQ8VZWKCNgopAqUsT7bITzrc9jczRm wtumoybOurBGGRBjmnXSvAEJ7p76yp5xtU612H99YBa12pQXrUaG1fdAu4jOwBWy 9o/8jJd4nLppzGjw9lKe08UNY2we7D1Jta4gdUE/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhfX2I/zADkuxnFzHsd500Qmed90wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzliODA0ZmEwLWY3MjctNGZhYi1hNzFhLTljNWY4NDg2ZWE3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAswDQYJKoZIhvcNAQELBQADggEBACDnYbgRsYlwDSFIaQGjx9h5fzm2 1Qyvt2etrfeIa+iWpdjfoRzwxqAjXSDeBMzvSVd3y2VSCjM2n0i/esisfI0t1Bpo 07/VPpaYzK4EZ2sh6HgXVng+YarJFjh3se21w4WoXxrobBM+S+d1MuTjvbxjUEZI Q5qVkh9otJCqpEW305N56NHZhJhceB+Y+66eDLuMthWgjMlyCFF3Q+GzUIZkhT/h 3QiHqm4FKV3ueNxdH0qmF0Sz9xrMAIr5OW56iRPFA0dHEn+Etis94hSUobobcbL9 /bPrGasE0zZXYAREIS4sirIRDW4U0tk89MvKHWKCwcMYchewasVYRVHobjw= -----END CERTIFICATE-----Generated at Wed Jul 2 07:27:51 2025 by rpki-client