$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa File: dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa (raw, json) Hash identifier: ln6MIagf76Q8ZvjQwGTn8uQnenqUXfXxHHkc5GPS6ng= Subject key identifier: B2:64:22:87:DB:52:D8:14:71:36:33:37:8B:24:6F:FF:B4:17:D8:CB Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0A4BB61663D5341721679B0D53164CA4DDD4C255 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa Signing time: Tue 19 Aug 2025 16:40:26 +0000 ROA not before: Tue 19 Aug 2025 16:40:26 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:4b:b6:16:63:d5:34:17:21:67:9b:0d:53:16:4c:a4:dd:d4:c2:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:26 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=bd89a1bcf710ba9d0d24d9f4a0e4e7a9ec074495e9b9abffde19f703264838f8, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:9d:d9:ef:bb:88:28:8d:01:7f:11:e0:9d:a9: 07:b5:62:ce:6d:9f:10:41:70:3a:f7:a8:23:00:42: 64:5e:d7:c9:1c:9b:fb:05:74:d9:14:da:0b:d4:81: 98:e3:27:e9:19:d9:a0:a7:2d:5f:1a:ab:34:e8:f6: fb:49:f1:e8:f2:15:f1:ad:34:cc:13:5d:43:00:9d: e0:a5:d1:9b:9d:e0:f7:5a:36:91:40:22:e0:1d:3a: 2b:19:ad:64:f8:9b:eb:29:a0:b4:58:7d:72:cc:fc: 41:75:46:0e:f4:b6:a4:61:35:2a:84:c6:64:b5:80: f1:e0:d4:67:eb:32:ca:a8:4c:2d:fb:81:7e:ef:6b: 1a:bc:e5:ff:6e:3b:6b:2e:42:53:ca:04:c0:23:8e: 2f:9e:6e:79:13:47:36:54:cd:9d:d8:dc:14:c4:1b: ff:22:d0:63:91:14:8d:ae:f5:67:f0:9f:5b:f4:99: 54:df:95:48:bd:af:1e:57:8b:20:de:54:98:7f:33: 8a:a4:c6:6f:f4:d7:d6:e8:58:62:de:a6:89:46:35: 34:e6:54:ef:48:d5:c8:26:42:fd:0e:89:0a:98:b6: 81:5f:71:f0:47:e1:25:ce:93:18:b3:79:15:d1:12: 9c:ef:95:e7:e7:20:47:23:87:c9:a2:8a:ac:33:45: c2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:64:22:87:DB:52:D8:14:71:36:33:37:8B:24:6F:FF:B4:17:D8:CB X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 54:3a:56:5a:3e:42:62:6c:b5:d2:64:69:e5:58:85:14:f1:3b: b9:80:a3:9d:61:d7:8b:87:12:36:5c:9c:f7:24:cb:20:4e:20: 07:9b:93:75:4d:d7:c9:4a:e0:96:c4:85:1b:3e:20:37:95:d0: a5:20:6c:3c:04:54:f8:59:56:7b:18:f9:05:6d:6a:89:d4:a9: e7:1e:fb:ae:10:2c:5f:bb:2e:69:37:89:52:06:7e:28:61:9e: 29:85:4b:06:c6:76:47:60:32:a8:b5:bd:44:a5:2d:e5:12:6a: c0:f5:2d:59:a4:65:1d:90:ca:b2:ff:af:c6:7d:ef:d2:d7:5c: d6:7e:f0:5b:54:67:dc:60:cc:72:42:e9:a7:18:87:59:0b:36: d6:a1:81:27:ed:b8:87:8b:37:05:87:01:25:a2:f1:b4:ec:1e: 1f:a0:3a:f6:24:2b:13:ab:97:fa:49:c5:02:fa:b7:3d:e5:03: d3:76:7f:d4:d9:28:78:b2:57:56:f9:d2:49:d0:ac:07:5c:4a: 26:84:a7:45:90:da:bc:82:00:34:2b:1c:94:c3:73:6c:ab:fb: 8b:81:db:a0:65:c2:97:17:8b:e0:f1:c5:ac:0a:af:4c:c9:b9: 65:36:b3:1b:58:43:44:3a:f4:de:1d:84:6b:90:70:40:71:8e: bc:71:09:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCku2FmPVNBchZ5sNUxZMpN3UwlUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDI2WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDg5YTFiY2Y3MTBiYTlkMGQyNGQ5ZjRhMGU0ZTdhOWVj MDc0NDk1ZTliOWFiZmZkZTE5ZjcwMzI2NDgzOGY4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUndnvu4gojQF/EeCdqQe1Ys5tnxBBcDr3qCMAQmRe18kc m/sFdNkU2gvUgZjjJ+kZ2aCnLV8aqzTo9vtJ8ejyFfGtNMwTXUMAneCl0Zud4Pda NpFAIuAdOisZrWT4m+spoLRYfXLM/EF1Rg70tqRhNSqExmS1gPHg1GfrMsqoTC37 gX7vaxq85f9uO2suQlPKBMAjji+ebnkTRzZUzZ3Y3BTEG/8i0GORFI2u9Wfwn1v0 mVTflUi9rx5XiyDeVJh/M4qkxm/019boWGLepolGNTTmVO9I1cgmQv0OiQqYtoFf cfBH4SXOkxizeRXREpzvlefnIEcjh8miiqwzRcJHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsmQih9tS2BRxNjM3iyRv/7QX2MswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RjODIyYzAxLTE3MTctNGU0NS1hNWE4LTNhNWRjOTE2Yzc2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAswDQYJKoZIhvcNAQELBQADggEBAFQ6Vlo+QmJstdJkaeVYhRTxO7mA o51h14uHEjZcnPckyyBOIAebk3VN18lK4JbEhRs+IDeV0KUgbDwEVPhZVnsY+QVt aonUqece+64QLF+7Lmk3iVIGfihhnimFSwbGdkdgMqi1vUSlLeUSasD1LVmkZR2Q yrL/r8Z979LXXNZ+8FtUZ9xgzHJC6acYh1kLNtahgSftuIeLNwWHASWi8bTsHh+g OvYkKxOrl/pJxQL6tz3lA9N2f9TZKHiyV1b50knQrAdcSiaEp0WQ2ryCADQrHJTD c2yr+4uB26BlwpcXi+DxxawKr0zJuWU2sxtYQ0Q69N4dhGuQcEBxjrxxCQM= -----END CERTIFICATE-----Generated at Sat Aug 23 14:08:50 2025 by rpki-client