$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd032031-9fc2-4a6b-8d1d-6eb21a5f8258.roa File: dd032031-9fc2-4a6b-8d1d-6eb21a5f8258.roa (raw, json) Hash identifier: zilA3NYTXHG7JYSf4fgDItPZJLSi0xLQnWzoMSLfFUA= Subject key identifier: 26:BB:EB:1A:19:36:11:B4:C5:90:7F:62:06:E9:B3:DC:24:3E:EE:87 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5039F7BEA6181C9A7A0455C7985D8D724FC82E9A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd032031-9fc2-4a6b-8d1d-6eb21a5f8258.roa Signing time: Mon 16 Jun 2025 20:22:03 +0000 ROA not before: Mon 16 Jun 2025 20:22:03 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:39:f7:be:a6:18:1c:9a:7a:04:55:c7:98:5d:8d:72:4f:c8:2e:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 16 20:22:03 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=d1827c2fd52906535134ce46de4b763760dc7dd70498de8705c70aafc78e7258, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a8:a0:74:7e:45:b8:1f:09:42:94:d4:6c:5f: 83:92:d2:2f:98:2e:c2:a5:73:ed:ec:37:95:60:07: 11:87:24:a5:13:2e:b6:d4:89:9a:bc:5e:3f:10:0d: 6b:59:fa:1c:af:c2:52:9e:e8:36:7d:3a:33:1a:4c: e8:27:88:4a:0c:d4:3c:f7:81:17:6f:9d:2d:e1:39: 6a:54:e7:ac:fa:50:f8:d5:95:77:b9:19:90:cf:fc: 05:c6:18:13:dc:bd:0e:d6:1a:52:eb:07:fc:eb:86: 24:e0:c5:01:55:25:02:3a:23:19:55:05:ed:de:0c: 30:de:ad:01:52:72:a3:88:23:46:3d:2e:d2:73:1a: 28:1f:40:6b:9e:07:22:7b:c3:cd:cb:fe:a8:dc:e8: 7d:99:3d:5b:3a:80:c3:4a:17:bf:99:ce:42:b9:bc: c9:c5:bc:a1:c2:fb:e4:bb:4a:f9:1b:a0:24:fc:93: a6:7a:39:67:7c:6f:94:93:10:4c:e9:b2:d1:55:1e: 52:21:58:90:d3:a7:14:ee:18:31:65:66:89:e6:a7: 5c:08:ca:82:bc:8e:b7:2a:c1:19:96:07:4b:30:25: 5d:89:1f:03:02:8a:4b:98:cf:bd:b4:5b:47:b1:e1: 58:18:65:ff:0e:6e:ac:4a:46:70:af:ff:b1:c6:c3: 0a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:BB:EB:1A:19:36:11:B4:C5:90:7F:62:06:E9:B3:DC:24:3E:EE:87 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd032031-9fc2-4a6b-8d1d-6eb21a5f8258.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.35.0/24 Signature Algorithm: sha256WithRSAEncryption 58:02:d4:45:d9:6f:bd:1a:1d:68:e9:1c:a8:58:51:68:35:58: f7:f7:f1:39:db:af:89:63:94:e5:0a:99:48:26:43:78:a6:3c: 06:5c:40:60:8d:e0:03:37:fc:23:76:ae:61:d8:d7:3e:a8:af: 03:85:cf:4e:c8:28:0d:91:6e:d2:3f:3a:fd:47:95:27:d4:83: d0:e4:b6:5d:03:dd:d4:b9:10:08:8b:19:e0:67:25:ec:49:f5: ed:0e:b3:fa:6d:ac:ff:1f:0c:bc:69:ea:41:cb:ca:24:2a:b3: 3a:db:c6:56:c1:fe:d9:be:ae:ef:03:5f:f8:16:58:e6:35:71: a1:ee:a1:2c:b8:71:e5:bb:35:01:1f:ef:9a:ab:d7:c2:11:78: d8:21:4a:09:5c:63:3f:25:aa:02:a5:fa:6b:6a:2d:a8:5e:c9: 1d:3a:bb:b2:ff:ea:82:fc:b3:30:03:7c:d7:14:ce:9a:e0:eb: 47:aa:ce:97:cc:aa:eb:ed:70:37:89:99:0c:7f:d9:f9:43:a4: 5e:b2:d7:0d:77:85:26:d1:e6:55:c9:ae:63:dd:8b:0b:d9:ce: f4:f6:75:8d:20:e9:9a:ad:94:de:70:96:72:5b:72:f5:44:db: 56:75:26:98:5e:d2:56:60:e9:52:3f:fc:86:08:05:69:ce:9c: 67:79:c7:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUDn3vqYYHJp6BFXHmF2Nck/ILpowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjE2MjAyMjAzWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTgyN2MyZmQ1MjkwNjUzNTEzNGNlNDZkZTRiNzYzNzYw ZGM3ZGQ3MDQ5OGRlODcwNWM3MGFhZmM3OGU3MjU4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8qKB0fkW4HwlClNRsX4OS0i+YLsKlc+3sN5VgBxGHJKUT LrbUiZq8Xj8QDWtZ+hyvwlKe6DZ9OjMaTOgniEoM1Dz3gRdvnS3hOWpU56z6UPjV lXe5GZDP/AXGGBPcvQ7WGlLrB/zrhiTgxQFVJQI6IxlVBe3eDDDerQFScqOII0Y9 LtJzGigfQGueByJ7w83L/qjc6H2ZPVs6gMNKF7+ZzkK5vMnFvKHC++S7SvkboCT8 k6Z6OWd8b5STEEzpstFVHlIhWJDTpxTuGDFlZonmp1wIyoK8jrcqwRmWB0swJV2J HwMCikuYz720W0ex4VgYZf8ObqxKRnCv/7HGwwpxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJrvrGhk2EbTFkH9iBumz3CQ+7ocwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RkMDMyMDMxLTlmYzItNGE2Yi04ZDFkLTZlYjIxYTVmODI1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCMwDQYJKoZIhvcNAQELBQADggEBAFgC1EXZb70aHWjpHKhYUWg1WPf3 8Tnbr4ljlOUKmUgmQ3imPAZcQGCN4AM3/CN2rmHY1z6orwOFz07IKA2RbtI/Ov1H lSfUg9Dktl0D3dS5EAiLGeBnJexJ9e0Os/ptrP8fDLxp6kHLyiQqszrbxlbB/tm+ ru8DX/gWWOY1caHuoSy4ceW7NQEf75qr18IReNghSglcYz8lqgKl+mtqLaheyR06 u7L/6oL8szADfNcUzprg60eqzpfMquvtcDeJmQx/2flDpF6y1w13hSbR5lXJrmPd iwvZzvT2dY0g6ZqtlN5wlnJbcvVE21Z1Jphe0lZg6VI//IYIBWnOnGd5x6o= -----END CERTIFICATE-----Generated at Wed Jul 2 13:28:32 2025 by rpki-client