$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa File: dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa (raw, json) Hash identifier: AoWEwF78nO0mpe97Xv81zjMIoQjGB//vSkCKPpHXoJc= Subject key identifier: F1:F7:1C:63:34:20:DB:8E:7D:B2:06:AD:2A:28:F6:6D:69:9C:90:8B Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4B47D39225B6CEFCF236320024FD1BEBA05CCF38 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa Signing time: Mon 30 Jun 2025 17:40:13 +0000 ROA not before: Mon 30 Jun 2025 17:40:13 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:47:d3:92:25:b6:ce:fc:f2:36:32:00:24:fd:1b:eb:a0:5c:cf:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:13 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=c79414e4020f9466934166df0f8641603a842312eebe553817a36271dc450fcf, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:04:31:6c:9f:7f:13:83:8e:9e:76:97:20:21: c4:cb:94:3a:2d:4f:f9:41:86:78:32:65:5e:7d:5f: ee:bf:e1:8c:f2:af:e9:9c:e4:c2:b9:ab:5d:bb:f1: 7c:0c:54:3c:5b:84:c0:26:2a:86:fe:78:c1:22:fc: 2f:65:fd:45:54:8a:60:7f:6a:ac:c7:6d:7c:6f:04: 74:39:40:3a:87:0b:fe:76:b1:62:31:62:3b:b5:cf: b4:22:da:e4:76:37:21:58:7a:96:cb:0c:32:95:46: 18:a1:86:e1:26:c3:40:3c:52:34:82:7a:3e:0b:9d: c4:3f:45:bf:22:6d:f3:9a:cc:a1:2f:29:74:e6:8a: 8c:21:86:61:ad:b1:07:b8:98:49:dd:41:f8:ed:1c: 23:71:66:fa:27:e6:e2:6a:f2:36:93:05:e3:21:5b: 3c:c4:22:db:fe:37:49:74:d2:50:cb:25:e7:49:74: 83:63:4d:cb:c4:4f:87:63:eb:2a:09:00:dd:76:f0: 50:a3:51:40:0f:e1:16:7d:3f:56:ee:f6:51:62:ed: e1:7d:b4:5d:d3:2d:fa:73:d1:ae:a9:e1:6e:81:03: 86:8b:53:34:3b:53:82:15:c8:00:bc:78:39:af:68: db:7d:2e:a8:12:a8:31:09:33:a9:a8:db:0b:8a:de: 97:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F7:1C:63:34:20:DB:8E:7D:B2:06:AD:2A:28:F6:6D:69:9C:90:8B X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 66:22:32:8b:6f:c7:27:b8:3f:8f:c2:91:ba:3c:7f:70:68:3b: 60:6c:61:6d:4d:c9:5f:73:c4:8b:02:15:85:4f:a2:b8:05:70: 87:d9:ab:ff:76:cc:c8:50:f8:8c:c7:45:2d:97:b5:92:3f:0b: ce:25:50:8e:05:de:26:1a:c3:bf:f9:8a:ea:39:eb:7a:2f:2d: c4:0b:14:a9:94:55:d0:60:61:e9:78:5e:c1:4d:77:72:d5:b0: f8:67:3c:e7:26:3f:78:25:12:63:fa:8a:5d:ae:1e:4c:0f:21: 23:87:f2:d7:00:44:24:8d:a3:7a:28:ae:ed:34:ed:d5:06:b8: ce:ec:92:e6:d8:bc:b9:55:21:b8:85:b2:5f:d2:99:e7:f4:79: 37:b0:54:0d:ad:78:a6:da:07:80:58:28:a2:d1:7a:21:b9:15: b9:3b:a9:73:57:da:44:f1:66:53:02:aa:a0:18:79:9b:88:a1: d4:f9:a2:f8:44:48:64:26:df:1a:de:72:95:03:2d:e4:a7:b9: 52:ce:3c:6d:03:87:14:cc:b3:e8:4a:d7:3a:97:ec:db:fb:53: 38:a7:6a:59:7a:a4:66:fb:5e:da:59:ba:03:f6:7c:e2:37:ae: aa:51:0c:d5:f4:18:25:fe:e9:2d:bf:61:0f:fe:01:56:2b:b8: 40:70:c5:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS0fTkiW2zvzyNjIAJP0b66BczzgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDEzWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzk0MTRlNDAyMGY5NDY2OTM0MTY2ZGYwZjg2NDE2MDNh ODQyMzEyZWViZTU1MzgxN2EzNjI3MWRjNDUwZmNmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnBDFsn38Tg46edpcgIcTLlDotT/lBhngyZV59X+6/4Yzy r+mc5MK5q1278XwMVDxbhMAmKob+eMEi/C9l/UVUimB/aqzHbXxvBHQ5QDqHC/52 sWIxYju1z7Qi2uR2NyFYepbLDDKVRhihhuEmw0A8UjSCej4LncQ/Rb8ibfOazKEv KXTmiowhhmGtsQe4mEndQfjtHCNxZvon5uJq8jaTBeMhWzzEItv+N0l00lDLJedJ dINjTcvET4dj6yoJAN128FCjUUAP4RZ9P1bu9lFi7eF9tF3TLfpz0a6p4W6BA4aL UzQ7U4IVyAC8eDmvaNt9LqgSqDEJM6mo2wuK3pfbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8fccYzQg2459sgatKij2bWmckIswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RjODIyYzAxLTE3MTctNGU0NS1hNWE4LTNhNWRjOTE2Yzc2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAswDQYJKoZIhvcNAQELBQADggEBAGYiMotvxye4P4/Ckbo8f3BoO2Bs YW1NyV9zxIsCFYVPorgFcIfZq/92zMhQ+IzHRS2XtZI/C84lUI4F3iYaw7/5iuo5 63ovLcQLFKmUVdBgYel4XsFNd3LVsPhnPOcmP3glEmP6il2uHkwPISOH8tcARCSN o3ooru007dUGuM7skubYvLlVIbiFsl/Smef0eTewVA2teKbaB4BYKKLReiG5Fbk7 qXNX2kTxZlMCqqAYeZuIodT5ovhESGQm3xrecpUDLeSnuVLOPG0DhxTMs+hK1zqX 7Nv7Uzinall6pGb7XtpZugP2fOI3rqpRDNX0GCX+6S2/YQ/+AVYruEBwxXo= -----END CERTIFICATE-----Generated at Fri Jul 4 13:35:21 2025 by rpki-client