$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa File: 9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa (raw, json) Hash identifier: 5NwgZbRDLYCJRx46Tp/u49bZ+HQ0RU1YOuwevxGPdH4= Subject key identifier: 76:5E:4A:74:A2:71:0C:A4:9E:D1:46:A2:CE:37:73:E8:96:4A:A8:A2 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 29A071671FD1747B9ABABD91F32FE962F9044F4A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa Signing time: Tue 19 Aug 2025 16:40:24 +0000 ROA not before: Tue 19 Aug 2025 16:40:24 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:a0:71:67:1f:d1:74:7b:9a:ba:bd:91:f3:2f:e9:62:f9:04:4f:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:24 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=55ae28bae50acaa12e8e6ebbc4534e2fefc6ff1bde7599a6d3b44838a464ee27, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:57:63:03:25:a9:b4:75:8d:21:56:ae:10:50: 1c:df:dc:a8:7a:80:aa:60:3e:ad:85:ef:ad:d3:6f: 61:64:8f:42:38:b6:07:01:0d:0a:3b:62:5c:83:79: c8:18:2c:e0:28:41:dc:da:cf:1a:49:ad:b5:b8:dd: 93:ee:cb:2a:38:21:f4:64:d8:1a:c2:a1:94:e9:52: 1b:07:6e:81:8e:0f:fa:1f:1e:a2:d2:22:8c:5f:c9: ea:c8:f4:87:e3:04:2c:d6:03:ff:ad:a1:b5:2d:95: 46:cf:a6:56:37:7e:22:66:93:ec:eb:ec:ef:b1:25: 07:ef:a6:04:76:f0:a3:5f:7a:03:75:f8:7d:98:f3: 0d:41:57:3d:46:08:16:5e:42:48:89:d1:5c:5e:f9: ef:54:fb:9d:30:ad:60:dd:ab:23:02:b7:e5:05:13: e1:4d:1b:9b:31:0d:6e:bf:1a:1c:35:32:2e:a7:f6: 18:86:3b:6b:7f:00:ff:77:95:1c:5c:93:d4:72:d2: 0f:c1:6f:30:d4:c7:8a:d8:9b:61:84:ec:fc:29:0c: 76:1f:8a:b4:aa:ee:52:7c:c2:b0:7a:a1:28:bb:0c: 18:02:8a:10:2d:64:2b:ac:1e:40:c7:fc:26:a6:b5: 92:9a:f1:99:c9:a2:44:87:e1:50:5a:a6:f9:78:58: 10:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:5E:4A:74:A2:71:0C:A4:9E:D1:46:A2:CE:37:73:E8:96:4A:A8:A2 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 95:b9:61:8e:d8:67:66:f3:62:02:0e:75:c3:71:2c:48:d1:24: 35:9e:29:1d:b0:34:e1:71:0e:6b:64:3c:27:11:f0:bf:91:11: 9e:09:1b:fb:1b:77:71:8e:23:00:70:cd:85:41:2b:fc:63:56: 4b:9e:c0:71:de:7e:51:5f:b4:33:8b:8e:63:25:d8:72:1c:40: 5b:50:34:a1:46:98:12:cd:ef:81:c3:f6:02:51:87:86:27:28: c5:1b:d2:f4:6a:d7:d1:e0:b1:88:85:dd:7e:62:eb:82:c7:2b: e8:27:0b:40:9b:db:82:6f:b9:2f:59:e6:cf:6c:49:eb:f3:a3: 2d:5d:2b:f6:76:75:d9:bb:ac:da:35:11:9d:e5:af:99:1c:c6: 5d:63:b4:3b:56:43:22:83:1e:12:f1:08:6d:c7:21:24:77:e2: e5:1e:4d:41:ad:b5:e0:b2:59:dd:b7:03:bc:a5:65:b5:b8:e7: 13:a8:9e:61:c3:64:23:c9:d8:f6:a3:ae:8e:28:53:89:3b:70: 1a:8f:aa:e7:4d:c3:35:44:85:53:94:41:30:49:45:a0:be:ae: 7c:02:dc:65:34:bb:02:89:4b:51:a8:14:ba:56:e2:c7:bd:b7: 76:0b:19:cf:a4:a6:43:12:25:ca:03:6b:d4:09:73:66:cc:65: d0:5f:5f:07 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKaBxZx/RdHuaur2R8y/pYvkET0owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDI0WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NWFlMjhiYWU1MGFjYWExMmU4ZTZlYmJjNDUzNGUyZmVm YzZmZjFiZGU3NTk5YTZkM2I0NDgzOGE0NjRlZTI3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbV2MDJam0dY0hVq4QUBzf3Kh6gKpgPq2F763Tb2Fkj0I4 tgcBDQo7YlyDecgYLOAoQdzazxpJrbW43ZPuyyo4IfRk2BrCoZTpUhsHboGOD/of HqLSIoxfyerI9IfjBCzWA/+tobUtlUbPplY3fiJmk+zr7O+xJQfvpgR28KNfegN1 +H2Y8w1BVz1GCBZeQkiJ0Vxe+e9U+50wrWDdqyMCt+UFE+FNG5sxDW6/Ghw1Mi6n 9hiGO2t/AP93lRxck9Ry0g/BbzDUx4rYm2GE7PwpDHYfirSq7lJ8wrB6oSi7DBgC ihAtZCusHkDH/CamtZKa8ZnJokSH4VBapvl4WBDJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdl5KdKJxDKSe0Uaizjdz6JZKqKIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzliODA0ZmEwLWY3MjctNGZhYi1hNzFhLTljNWY4NDg2ZWE3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAswDQYJKoZIhvcNAQELBQADggEBAJW5YY7YZ2bzYgIOdcNxLEjRJDWe KR2wNOFxDmtkPCcR8L+REZ4JG/sbd3GOIwBwzYVBK/xjVkuewHHeflFftDOLjmMl 2HIcQFtQNKFGmBLN74HD9gJRh4YnKMUb0vRq19HgsYiF3X5i64LHK+gnC0Cb24Jv uS9Z5s9sSevzoy1dK/Z2ddm7rNo1EZ3lr5kcxl1jtDtWQyKDHhLxCG3HISR34uUe TUGtteCyWd23A7ylZbW45xOonmHDZCPJ2Pajro4oU4k7cBqPqudNwzVEhVOUQTBJ RaC+rnwC3GU0uwKJS1GoFLpW4se9t3YLGc+kpkMSJcoDa9QJc2bMZdBfXwc= -----END CERTIFICATE-----Generated at Sat Aug 23 09:08:59 2025 by rpki-client