$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa File: e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa (raw, json) Hash identifier: +hnIyXRpWT1OKGzPN74qrscfehbGyiZBDZObelNdxyc= Subject key identifier: 83:7B:CF:9A:93:CC:9E:E0:62:CD:9D:74:6A:24:D6:5A:E7:82:41:32 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1F7BBD8780E7B2BF6741287BF0288463A04F4897 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa Signing time: Fri 15 Aug 2025 15:30:42 +0000 ROA not before: Fri 15 Aug 2025 15:30:42 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:7b:bd:87:80:e7:b2:bf:67:41:28:7b:f0:28:84:63:a0:4f:48:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 15 15:30:42 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=b2763bbb4e21f821c72ae7eb69c8f528ac3c10b35a1a294d462a44bdc10487cb, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ea:d2:d3:d0:f3:63:0f:5f:94:23:19:a9:7a: 79:89:38:25:cc:b7:60:75:4a:75:7e:15:a6:65:db: 15:b1:20:11:08:4e:2d:13:8b:dd:ac:ef:28:68:d7: f0:88:10:ea:cf:fc:51:96:f7:ac:e6:4a:d6:fe:d7: e2:95:87:b2:34:89:7d:a1:15:e7:06:bb:7b:28:31: 09:56:23:b0:ec:af:6d:41:e4:91:d6:b3:ba:2a:2b: 28:83:5b:03:ff:38:e0:14:4f:7c:1f:48:62:e3:bd: b6:f4:d1:d3:f5:41:71:fa:1e:e2:54:a7:49:20:88: a7:1d:4a:c7:47:42:0d:34:d4:ce:e3:57:19:ed:2c: ca:78:91:c6:b2:cc:11:5d:cb:48:8e:c1:f0:e6:6a: fd:d5:16:8c:b3:51:92:49:86:f3:53:2e:58:e3:f8: 97:4d:a9:e8:85:2c:94:1e:7f:95:95:76:ff:11:c8: 41:e9:b0:4e:1c:af:c4:50:73:6f:a4:68:94:fd:45: 15:b0:00:11:bd:43:2c:c9:4f:6a:6a:36:0c:33:17: 91:54:97:6b:53:b5:0f:b0:5e:37:e7:90:bc:45:a7: b0:a6:b1:d4:74:38:ba:9b:22:80:37:dc:47:b6:a2: ba:fb:ab:2e:c1:17:02:da:ee:f1:a9:2f:b8:5f:a5: 65:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:7B:CF:9A:93:CC:9E:E0:62:CD:9D:74:6A:24:D6:5A:E7:82:41:32 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 68:ca:dd:00:92:6d:2f:09:be:ae:77:3d:b9:92:4f:28:66:c5: c5:b2:29:af:57:09:8a:78:b7:d4:db:0b:f8:ee:dc:ca:41:5d: e1:f8:c8:89:0b:ba:34:85:58:f9:69:1e:5a:3d:d9:47:e7:15: b8:77:da:9e:88:76:40:b9:35:a1:6f:54:43:ad:35:ba:c4:c2: d9:73:0a:34:2e:65:3d:a5:1d:ae:af:5a:d0:1a:3c:8e:51:22: 02:ed:e8:d0:a1:ec:e3:3e:4a:ea:04:8a:4c:fe:9c:37:91:78: dc:53:19:f3:5b:42:4d:dc:91:c3:ca:1d:18:f2:32:c3:d7:5b: d0:cd:ec:b4:54:b3:6f:9c:75:0f:15:81:3c:01:41:8c:65:83: e6:5f:15:54:fb:50:03:1a:ee:1a:1b:a0:4f:45:9c:ba:7c:77: 20:2a:dd:2e:cd:0f:72:60:64:67:ce:fa:d2:6d:c4:42:54:a3: 03:4a:b5:7e:93:fe:55:65:42:5e:4e:c9:cd:ff:e3:bc:98:8c: 79:52:c2:5f:1c:e4:8b:ee:43:81:90:5e:99:dc:76:ee:de:e6: a9:b5:ae:9f:5a:90:32:3a:18:e4:29:9d:f9:eb:e8:dd:c1:59: d9:71:5a:21:b6:60:7e:48:60:fa:fb:3d:93:5c:5a:5e:d9:bc: 7b:9f:de:d5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH3u9h4Dnsr9nQSh78CiEY6BPSJcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE1MTUzMDQyWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjc2M2JiYjRlMjFmODIxYzcyYWU3ZWI2OWM4ZjUyOGFj M2MxMGIzNWExYTI5NGQ0NjJhNDRiZGMxMDQ4N2NiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX6tLT0PNjD1+UIxmpenmJOCXMt2B1SnV+FaZl2xWxIBEI Ti0Ti92s7yho1/CIEOrP/FGW96zmStb+1+KVh7I0iX2hFecGu3soMQlWI7Dsr21B 5JHWs7oqKyiDWwP/OOAUT3wfSGLjvbb00dP1QXH6HuJUp0kgiKcdSsdHQg001M7j VxntLMp4kcayzBFdy0iOwfDmav3VFoyzUZJJhvNTLljj+JdNqeiFLJQef5WVdv8R yEHpsE4cr8RQc2+kaJT9RRWwABG9QyzJT2pqNgwzF5FUl2tTtQ+wXjfnkLxFp7Cm sdR0OLqbIoA33Ee2orr7qy7BFwLa7vGpL7hfpWXRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg3vPmpPMnuBizZ10aiTWWueCQTIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2UyYjhhNzYzLTgzZTQtNDA4ZS04NTRhLWEyZTlmNjhjYTk5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBAGjK3QCSbS8Jvq53PbmSTyhmxcWy Ka9XCYp4t9TbC/ju3MpBXeH4yIkLujSFWPlpHlo92UfnFbh32p6IdkC5NaFvVEOt NbrEwtlzCjQuZT2lHa6vWtAaPI5RIgLt6NCh7OM+SuoEikz+nDeReNxTGfNbQk3c kcPKHRjyMsPXW9DN7LRUs2+cdQ8VgTwBQYxlg+ZfFVT7UAMa7hoboE9FnLp8dyAq 3S7ND3JgZGfO+tJtxEJUowNKtX6T/lVlQl5Oyc3/47yYjHlSwl8c5IvuQ4GQXpnc du7e5qm1rp9akDI6GOQpnfnr6N3BWdlxWiG2YH5IYPr7PZNcWl7ZvHuf3tU= -----END CERTIFICATE-----Generated at Sat Aug 23 15:55:52 2025 by rpki-client