$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c20cef01-d6c4-4442-8fcc-76bc24a7afa2.roa File: c20cef01-d6c4-4442-8fcc-76bc24a7afa2.roa (raw, json) Hash identifier: WNTWmUmX3dv7jTHPzj1Ds+ZVNeJMBDGtxETc9MeGt+Y= Subject key identifier: A3:19:34:E5:D2:E1:86:24:49:31:09:D1:EC:E8:F3:2A:3D:E1:DE:C6 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 40FB1BE9E59E07DA240A4872D008FC8C1A8C1328 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c20cef01-d6c4-4442-8fcc-76bc24a7afa2.roa Signing time: Mon 18 Aug 2025 23:07:07 +0000 ROA not before: Mon 18 Aug 2025 23:07:07 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:fb:1b:e9:e5:9e:07:da:24:0a:48:72:d0:08:fc:8c:1a:8c:13:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 18 23:07:07 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=5e7a8836cd1da4ead802dc47f2df967f7350a82e59d389a3b918cc7a90647813, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d6:26:ce:b1:ff:7f:ee:7d:6a:3b:e4:10:6d: 83:5e:0f:5f:07:57:52:ee:96:c4:2a:50:2c:b3:28: 8c:58:df:f6:08:03:1e:07:60:84:71:0d:0c:81:3e: c2:78:60:61:8f:8e:a7:d4:f5:f7:d3:41:2e:cb:b9: 0a:5a:80:eb:9f:64:40:36:97:4c:a8:66:9b:51:37: 93:00:f7:2d:f1:0d:6b:82:f6:e2:d6:32:5d:d3:3d: 6e:56:c3:dd:0e:97:5c:d7:d9:a3:09:a7:71:33:8f: 76:f6:a6:12:f9:21:08:0b:97:89:ee:7f:0d:07:d0: 39:0b:d6:53:d8:61:2e:94:39:6b:89:16:4d:2e:1e: 91:8c:9d:73:dc:42:90:2f:7b:e0:1f:e9:9d:86:4e: 3e:d7:fe:2e:57:32:cc:b4:84:18:a2:06:4d:c1:30: 57:88:ef:c2:ef:ac:a1:a5:59:62:f9:d2:b3:3e:05: 43:f3:ed:68:67:63:17:93:ca:b7:69:4c:39:8f:4c: 94:e5:26:e5:70:5a:20:02:15:83:80:a1:22:0d:f5: 71:23:b2:b5:37:4f:b3:c7:3d:0c:c4:ff:db:a5:8a: f2:8d:a2:43:11:ea:7b:f8:af:e9:c1:9b:11:14:54: 8b:05:3f:5f:95:a1:a7:83:3b:95:f2:9a:da:39:78: fc:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:19:34:E5:D2:E1:86:24:49:31:09:D1:EC:E8:F3:2A:3D:E1:DE:C6 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c20cef01-d6c4-4442-8fcc-76bc24a7afa2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.5.0/24 Signature Algorithm: sha256WithRSAEncryption 08:51:c1:84:7a:10:aa:1a:e5:82:34:72:7f:3b:a1:ad:28:b7: 0f:4e:e0:c4:08:35:88:3c:a9:6b:4a:64:90:a3:d4:1c:6f:8b: de:88:ac:a2:99:53:94:8a:a8:7d:bf:83:ea:f3:ce:05:29:80: dd:df:10:c6:45:61:f6:94:d4:aa:58:46:56:7d:eb:3d:13:7d: df:a3:8b:bc:57:9d:45:64:42:57:87:58:4d:45:a7:8c:37:da: dc:97:5e:17:c5:15:3d:3d:aa:d5:b2:f9:cd:a7:c6:c2:c4:90: 72:9b:13:2a:a5:9b:2b:61:ad:6b:e7:38:ca:a8:4f:39:c6:08: a1:9f:76:18:10:25:b4:81:0c:2b:75:24:09:ab:47:97:c7:ec: 3f:6b:3d:a5:51:fe:4b:70:bc:64:ea:da:07:96:72:db:d7:0e: 7d:05:5d:7c:e0:4e:88:7c:98:cf:0a:47:39:ce:ac:bf:bb:40: a2:c5:70:09:13:23:2b:f1:c3:4e:63:8f:df:44:93:ec:34:2a: b6:00:72:9c:c6:df:14:7f:ab:01:f4:ed:75:49:74:dc:31:eb: c9:06:90:94:5b:42:b3:94:ec:bc:5e:9a:8a:1b:74:9a:d9:75: 6f:15:f7:e8:70:9d:ea:bb:51:91:4e:f7:bd:b6:1e:48:48:28: 45:bb:cf:d3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQPsb6eWeB9okCkhy0Aj8jBqMEygwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE4MjMwNzA3WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZTdhODgzNmNkMWRhNGVhZDgwMmRjNDdmMmRmOTY3Zjcz NTBhODJlNTlkMzg5YTNiOTE4Y2M3YTkwNjQ3ODEzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDE1ibOsf9/7n1qO+QQbYNeD18HV1LulsQqUCyzKIxY3/YI Ax4HYIRxDQyBPsJ4YGGPjqfU9ffTQS7LuQpagOufZEA2l0yoZptRN5MA9y3xDWuC 9uLWMl3TPW5Ww90Ol1zX2aMJp3Ezj3b2phL5IQgLl4nufw0H0DkL1lPYYS6UOWuJ Fk0uHpGMnXPcQpAve+Af6Z2GTj7X/i5XMsy0hBiiBk3BMFeI78LvrKGlWWL50rM+ BUPz7WhnYxeTyrdpTDmPTJTlJuVwWiACFYOAoSIN9XEjsrU3T7PHPQzE/9ulivKN okMR6nv4r+nBmxEUVIsFP1+VoaeDO5Xymto5ePxNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoxk05dLhhiRJMQnR7OjzKj3h3sYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2MyMGNlZjAxLWQ2YzQtNDQ0Mi04ZmNjLTc2YmMyNGE3YWZhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAUwDQYJKoZIhvcNAQELBQADggEBAAhRwYR6EKoa5YI0cn87oa0otw9O 4MQINYg8qWtKZJCj1Bxvi96IrKKZU5SKqH2/g+rzzgUpgN3fEMZFYfaU1KpYRlZ9 6z0Tfd+ji7xXnUVkQleHWE1Fp4w32tyXXhfFFT09qtWy+c2nxsLEkHKbEyqlmyth rWvnOMqoTznGCKGfdhgQJbSBDCt1JAmrR5fH7D9rPaVR/ktwvGTq2geWctvXDn0F XXzgToh8mM8KRznOrL+7QKLFcAkTIyvxw05jj99Ek+w0KrYAcpzG3xR/qwH07XVJ dNwx68kGkJRbQrOU7LxemoobdJrZdW8V9+hwneq7UZFO9722HkhIKEW7z9M= -----END CERTIFICATE-----Generated at Sat Aug 23 08:17:55 2025 by rpki-client