$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bfd96660-29cf-4054-a14e-cd48975d08b4.roa File: bfd96660-29cf-4054-a14e-cd48975d08b4.roa (raw, json) Hash identifier: PrZ+pADhV504o1RXCLcvEp9r2C3ywbcFLxmRJw5R9Xc= Subject key identifier: 97:47:A5:1E:11:26:A1:A4:FB:C6:4C:AD:F1:60:86:FA:5C:0E:43:34 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4675B84995A6655135B99CED27B9539BF16B5F3F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bfd96660-29cf-4054-a14e-cd48975d08b4.roa Signing time: Fri 15 Aug 2025 15:30:19 +0000 ROA not before: Fri 15 Aug 2025 15:30:19 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:75:b8:49:95:a6:65:51:35:b9:9c:ed:27:b9:53:9b:f1:6b:5f:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 15 15:30:19 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=6abcdf7007387737724c8fe8f73f82dfe6f7401c28cfd75246875651e6e8dc50, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:77:89:81:90:21:94:71:01:f8:b3:1c:ad:d6: 53:47:cc:11:fa:e9:15:2a:31:2f:53:9b:84:c1:ad: a4:e0:44:7b:73:d2:b7:12:61:5c:d1:8d:50:ee:6a: a4:92:3b:c5:85:a2:25:b3:47:e8:59:5e:1c:57:24: 5b:f9:48:80:c3:d1:88:47:18:c9:7b:6b:e2:c3:31: 6d:ba:b2:5e:5d:d2:06:86:ae:93:a2:fa:c1:14:6b: 3e:83:ae:40:d7:47:93:38:37:44:c6:2f:f1:73:37: 03:ba:cf:8d:bc:bf:53:b2:b4:42:5b:60:2a:09:1e: 24:6d:84:75:fa:9b:18:23:14:4b:86:74:06:62:b5: 55:84:c3:9c:50:3f:11:69:e2:3c:13:eb:71:bf:d5: d3:f0:e3:d5:b9:51:4d:ce:6a:6f:08:d2:f9:bf:51: 06:b9:00:1b:ba:70:58:f2:54:09:1c:dc:4f:e5:2a: ce:36:c2:d1:57:54:a2:56:31:65:8c:2d:40:be:1d: 10:22:bd:e7:90:77:b9:5b:21:71:44:9c:07:35:12: 13:0c:30:2a:b8:3d:56:24:7a:76:59:82:63:a7:da: 67:53:40:be:e7:f8:97:2d:12:9d:ec:4f:19:29:8f: 98:3d:3f:0a:d4:88:e0:03:0d:59:45:77:5b:b7:c6: 46:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:47:A5:1E:11:26:A1:A4:FB:C6:4C:AD:F1:60:86:FA:5C:0E:43:34 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bfd96660-29cf-4054-a14e-cd48975d08b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.24.0/23 Signature Algorithm: sha256WithRSAEncryption 68:5a:b6:a4:88:cb:84:18:42:d7:d9:c9:b7:85:f5:47:42:2d: c7:34:13:f4:8e:49:8b:0b:cb:d7:75:3a:86:45:1e:47:df:c2: 9f:0e:13:b5:8e:80:4e:2b:dd:16:1e:3e:be:85:54:d1:3c:5f: 87:9f:66:6b:f7:ce:a5:ee:6d:9d:10:d1:3f:9c:79:c9:ed:7d: 69:2a:b8:d9:ec:2c:78:65:33:15:c4:ee:85:8f:93:c1:3b:4a: 1a:c6:8c:85:b1:61:40:0c:27:61:17:28:6f:ba:e4:30:21:05: 79:5f:af:51:89:bf:57:aa:7a:ad:e3:ec:13:01:01:71:d0:7d: 9f:cd:b4:df:ad:6a:fb:41:fc:5e:79:19:3d:95:f1:ea:00:b1: 64:71:52:c7:59:1d:bc:1a:b7:8b:67:d6:08:38:cf:82:4e:fc: da:1d:ce:1e:1c:0e:e2:ba:b9:13:f2:18:2f:0b:0e:20:e9:0b: 2f:3b:79:1b:c3:ef:aa:dc:2b:18:9c:b2:db:50:b1:33:8c:f5: 5e:b3:f7:ae:07:84:be:2c:9e:b9:3a:2d:cf:ca:d2:8b:9c:8d: 40:78:af:77:94:f2:20:da:e8:36:98:06:0b:63:ec:97:c9:6a: 3c:a2:c7:3f:d4:d8:41:91:dc:b8:88:5d:fc:58:4d:f4:0b:94: c9:f0:43:83 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURnW4SZWmZVE1uZztJ7lTm/FrXz8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE1MTUzMDE5WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YWJjZGY3MDA3Mzg3NzM3NzI0YzhmZThmNzNmODJkZmU2 Zjc0MDFjMjhjZmQ3NTI0Njg3NTY1MWU2ZThkYzUwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgd4mBkCGUcQH4sxyt1lNHzBH66RUqMS9Tm4TBraTgRHtz 0rcSYVzRjVDuaqSSO8WFoiWzR+hZXhxXJFv5SIDD0YhHGMl7a+LDMW26sl5d0gaG rpOi+sEUaz6DrkDXR5M4N0TGL/FzNwO6z428v1OytEJbYCoJHiRthHX6mxgjFEuG dAZitVWEw5xQPxFp4jwT63G/1dPw49W5UU3Oam8I0vm/UQa5ABu6cFjyVAkc3E/l Ks42wtFXVKJWMWWMLUC+HRAiveeQd7lbIXFEnAc1EhMMMCq4PVYkenZZgmOn2mdT QL7n+JctEp3sTxkpj5g9PwrUiOADDVlFd1u3xkYLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUl0elHhEmoaT7xkyt8WCG+lwOQzQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2JmZDk2NjYwLTI5Y2YtNDA1NC1hMTRlLWNkNDg5NzVkMDhiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBgwDQYJKoZIhvcNAQELBQADggEBAGhatqSIy4QYQtfZybeF9UdCLcc0 E/SOSYsLy9d1OoZFHkffwp8OE7WOgE4r3RYePr6FVNE8X4efZmv3zqXubZ0Q0T+c ecntfWkquNnsLHhlMxXE7oWPk8E7ShrGjIWxYUAMJ2EXKG+65DAhBXlfr1GJv1eq eq3j7BMBAXHQfZ/NtN+tavtB/F55GT2V8eoAsWRxUsdZHbwat4tn1gg4z4JO/Nod zh4cDuK6uRPyGC8LDiDpCy87eRvD76rcKxicsttQsTOM9V6z964HhL4snrk6Lc/K 0oucjUB4r3eU8iDa6DaYBgtj7JfJajyixz/U2EGR3LiIXfxYTfQLlMnwQ4M= -----END CERTIFICATE-----Generated at Sat Aug 23 08:31:14 2025 by rpki-client