$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa File: a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa (raw, json) Hash identifier: Rz49NtiBu7XriK1wgx0wlmMCTLi00BP5AEQpUvDv7rc= Subject key identifier: 17:A8:85:2F:96:45:58:DC:DD:CF:9F:BD:2D:92:24:C3:58:C9:9F:DD Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3F11BB1AFC1BE23AF51465528AC44D0AE034702A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa Signing time: Fri 15 Aug 2025 15:30:40 +0000 ROA not before: Fri 15 Aug 2025 15:30:40 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:11:bb:1a:fc:1b:e2:3a:f5:14:65:52:8a:c4:4d:0a:e0:34:70:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 15 15:30:40 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=a006f3778d9f67494fa7231e93340fb7abdfad641f7a2af3655c934b723e15af, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b3:7f:7d:45:40:22:97:ce:25:f4:d4:31:fe: 80:b5:b6:c3:a2:ec:f6:9a:e1:37:a1:08:16:fd:2c: 1f:dd:6b:05:1e:1f:5c:68:2b:8b:a3:2d:bb:35:73: 88:32:9b:0c:e1:8b:7d:df:5f:6c:f6:62:e4:c8:4e: 61:b7:fd:2a:f6:f5:ef:0c:64:a0:dc:a9:09:10:28: a6:77:24:e4:96:99:22:45:82:eb:db:65:17:9e:22: 4b:4f:b2:73:2e:98:24:7f:13:8d:31:3a:11:ab:69: 8a:82:10:38:86:62:22:cc:56:19:a6:9c:a1:1e:9b: 52:b8:23:37:b2:97:94:3a:8d:55:28:ed:1e:86:74: 35:82:ba:6c:85:fc:37:b3:70:eb:6c:73:c8:79:a7: 7c:48:be:22:22:4d:e7:d8:48:eb:a7:38:ba:5d:8a: 0e:46:d2:fe:23:d6:b9:4f:9b:a5:9e:cf:fd:b2:68: 69:fa:99:16:bb:cc:4e:f7:f5:de:d7:e2:81:1b:94: c0:19:d3:59:8a:95:60:90:e5:a4:d2:77:46:62:96: 1a:94:5a:93:33:a8:55:d8:03:e7:e0:0e:2f:94:24: 94:5d:26:aa:68:03:16:5c:d4:c4:2d:eb:da:c7:69: dd:27:46:4e:87:7b:45:de:6b:59:56:24:78:e2:8e: 8a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A8:85:2F:96:45:58:DC:DD:CF:9F:BD:2D:92:24:C3:58:C9:9F:DD X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 30:87:0d:c9:8e:e7:b8:45:09:ed:37:9d:db:b6:43:cf:72:85: 3f:a8:58:6f:18:c9:64:c9:8b:e6:27:cf:07:fd:fa:e5:8b:9f: e0:76:e3:6f:7a:3f:ac:6e:ae:ff:62:5b:ad:22:19:ed:9c:a0: 83:4d:c7:84:54:a1:cf:29:88:7e:8f:b1:3d:c0:9c:c7:ce:3a: 7c:68:e7:e6:b7:ba:91:29:b7:2c:1a:48:a9:38:bd:64:b8:14: fa:4e:4a:1a:60:e2:e3:2d:31:b7:be:79:54:d2:e1:3d:30:70: 25:60:d6:8d:b1:54:9a:01:f6:4f:b6:a1:fa:e2:8b:23:2c:b4: 68:12:b4:a6:f4:15:3f:93:26:26:b2:60:82:c3:69:76:ac:8d: ce:c1:e7:ae:9c:dc:12:59:6c:62:cc:25:49:61:46:c0:91:36: 1e:e3:39:23:45:ca:82:3a:75:81:42:10:68:86:f5:0b:10:39: 29:ac:67:80:6d:7d:81:fc:40:e9:68:7d:49:0a:c6:26:6e:fe: 66:78:ac:20:d7:cb:11:b5:d8:07:01:c3:89:d0:5f:31:5c:fd: d1:72:b6:a1:a5:13:45:83:60:63:14:d0:36:c2:cf:7d:2b:15: 3a:54:a4:5e:d5:5e:2c:a3:33:54:6f:fb:85:e4:46:a9:53:3f: ca:ba:98:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPxG7Gvwb4jr1FGVSisRNCuA0cCowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE1MTUzMDQwWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDA2ZjM3NzhkOWY2NzQ5NGZhNzIzMWU5MzM0MGZiN2Fi ZGZhZDY0MWY3YTJhZjM2NTVjOTM0YjcyM2UxNWFmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCus399RUAil84l9NQx/oC1tsOi7Paa4TehCBb9LB/dawUe H1xoK4ujLbs1c4gymwzhi33fX2z2YuTITmG3/Sr29e8MZKDcqQkQKKZ3JOSWmSJF guvbZReeIktPsnMumCR/E40xOhGraYqCEDiGYiLMVhmmnKEem1K4Izeyl5Q6jVUo 7R6GdDWCumyF/DezcOtsc8h5p3xIviIiTefYSOunOLpdig5G0v4j1rlPm6Wez/2y aGn6mRa7zE739d7X4oEblMAZ01mKlWCQ5aTSd0ZilhqUWpMzqFXYA+fgDi+UJJRd JqpoAxZc1MQt69rHad0nRk6He0Xea1lWJHjijoplAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUF6iFL5ZFWNzdz5+9LZIkw1jJn90wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2EyN2NkMTQwLTFkMmItNGU3ZC1hNmMwLTdlM2M4NjE1MGMzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBADCHDcmO57hFCe03ndu2Q89yhT+o WG8YyWTJi+Ynzwf9+uWLn+B24296P6xurv9iW60iGe2coINNx4RUoc8piH6PsT3A nMfOOnxo5+a3upEptywaSKk4vWS4FPpOShpg4uMtMbe+eVTS4T0wcCVg1o2xVJoB 9k+2ofriiyMstGgStKb0FT+TJiayYILDaXasjc7B566c3BJZbGLMJUlhRsCRNh7j OSNFyoI6dYFCEGiG9QsQOSmsZ4BtfYH8QOlofUkKxiZu/mZ4rCDXyxG12AcBw4nQ XzFc/dFytqGlE0WDYGMU0DbCz30rFTpUpF7VXiyjM1Rv+4XkRqlTP8q6mKU= -----END CERTIFICATE-----Generated at Sat Aug 23 10:22:44 2025 by rpki-client