$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa File: e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa (raw, json) Hash identifier: XRkSVm5WbB7kFYP/8y1LhNViAIzG9UmFgRvl3MqM19o= Subject key identifier: A5:47:CF:14:28:9E:3E:3E:D4:F8:BB:C4:DC:C8:E2:08:2F:85:A8:87 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 08A7B3119D47898A69268CF7639565155F814C29 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa Signing time: Wed 25 Jun 2025 00:40:21 +0000 ROA not before: Wed 25 Jun 2025 00:40:21 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:a7:b3:11:9d:47:89:8a:69:26:8c:f7:63:95:65:15:5f:81:4c:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 25 00:40:21 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=cbc28c890477da0db529aab69bfc61d0ec8f51107422b737587286a09a4add63, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ed:88:8c:71:5c:d2:34:a2:23:57:63:29:72: 54:91:09:61:9a:35:03:b2:2d:2b:09:71:83:a7:c0: 22:5c:51:64:bd:a7:4a:85:7b:33:4b:00:3f:02:9e: 15:f9:0b:3e:df:80:5f:4d:ae:32:39:1e:e5:06:77: 05:eb:8a:a5:06:d8:09:32:29:af:af:76:31:25:6c: fd:b4:02:e6:2d:0f:9a:31:7f:5e:db:50:5c:69:41: e1:26:18:8b:0a:6c:31:5d:0e:91:d7:b3:c0:8f:01: 1b:be:20:7c:16:61:35:1e:98:51:e0:bf:6a:3d:54: bd:c6:7a:aa:81:c7:a9:93:24:2d:c9:37:af:49:ed: 1a:df:bd:a9:bf:b7:18:5e:b7:32:3a:c9:1a:7c:75: 0f:c1:55:73:16:13:59:fe:0b:de:55:f9:74:79:04: 33:0c:36:27:cc:1a:f9:1e:77:4b:f1:68:68:e7:d1: 7a:40:bb:a1:37:17:c9:2e:a4:8a:89:90:5d:16:82: 55:40:4b:9f:f6:cf:fb:67:6c:61:6c:c4:e0:97:95: 04:46:a4:8d:8c:46:e9:66:ce:4f:0a:46:4d:92:11: 6e:36:d1:40:0e:c4:65:44:0d:4d:83:90:4c:36:f5: 4b:d6:b6:db:c9:e9:e0:f0:b2:b6:ea:76:b7:70:35: 18:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:47:CF:14:28:9E:3E:3E:D4:F8:BB:C4:DC:C8:E2:08:2F:85:A8:87 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e2b8a763-83e4-408e-854a-a2e9f68ca99e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:81:34:4c:f5:fd:1f:f0:c9:b9:28:cf:fa:6d:b9:26:8f:03: 6f:0b:98:4c:b4:37:7d:fd:7a:b1:a1:81:0d:79:b6:10:1f:71: 3d:31:f5:70:b0:a4:56:96:7a:ca:11:1b:5c:36:17:ac:26:5a: 50:18:d6:5d:dd:f7:8b:f6:b0:2e:71:b1:72:c2:7a:56:b4:93: c0:13:c0:af:51:9c:2b:d8:8c:66:c5:01:ed:39:1b:1c:10:87: 63:3f:50:42:89:cc:ba:09:dc:16:00:06:42:b7:9c:a1:07:98: e8:bd:fb:c1:c5:4d:21:5a:d1:48:d8:69:86:85:ae:c9:ff:8f: 30:d0:1b:93:ea:f5:8d:95:17:e4:3d:54:00:fc:d2:b7:8c:ec: 23:ba:b8:3d:0a:8b:18:30:96:31:13:ab:1f:02:56:bc:53:af: ac:1f:5d:fd:9f:4c:10:92:9c:14:db:0e:fa:d8:26:a9:d4:e9: 9c:7c:a9:cc:2f:3a:ea:54:3f:df:d2:dc:c2:53:60:0b:f5:ad: 58:f2:99:0a:3d:20:c8:ed:6d:aa:8c:b7:67:f4:bd:98:17:95: 49:ad:99:43:0c:4d:9a:0e:0e:ce:7e:7a:60:20:b3:36:7d:c4: f2:2c:19:0b:a2:31:30:5c:65:13:63:15:a3:aa:43:54:47:e3: 36:6f:4a:75 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCKezEZ1HiYppJoz3Y5VlFV+BTCkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI1MDA0MDIxWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYmMyOGM4OTA0NzdkYTBkYjUyOWFhYjY5YmZjNjFkMGVj OGY1MTEwNzQyMmI3Mzc1ODcyODZhMDlhNGFkZDYzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo7YiMcVzSNKIjV2MpclSRCWGaNQOyLSsJcYOnwCJcUWS9 p0qFezNLAD8CnhX5Cz7fgF9NrjI5HuUGdwXriqUG2AkyKa+vdjElbP20AuYtD5ox f17bUFxpQeEmGIsKbDFdDpHXs8CPARu+IHwWYTUemFHgv2o9VL3GeqqBx6mTJC3J N69J7Rrfvam/txhetzI6yRp8dQ/BVXMWE1n+C95V+XR5BDMMNifMGvked0vxaGjn 0XpAu6E3F8kupIqJkF0WglVAS5/2z/tnbGFsxOCXlQRGpI2MRulmzk8KRk2SEW42 0UAOxGVEDU2DkEw29UvWttvJ6eDwsrbqdrdwNRgXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpUfPFCiePj7U+LvE3MjiCC+FqIcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2UyYjhhNzYzLTgzZTQtNDA4ZS04NTRhLWEyZTlmNjhjYTk5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBAIuBNEz1/R/wybkoz/ptuSaPA28L mEy0N339erGhgQ15thAfcT0x9XCwpFaWesoRG1w2F6wmWlAY1l3d94v2sC5xsXLC ela0k8ATwK9RnCvYjGbFAe05GxwQh2M/UEKJzLoJ3BYABkK3nKEHmOi9+8HFTSFa 0UjYaYaFrsn/jzDQG5Pq9Y2VF+Q9VAD80reM7CO6uD0KixgwljETqx8CVrxTr6wf Xf2fTBCSnBTbDvrYJqnU6Zx8qcwvOupUP9/S3MJTYAv1rVjymQo9IMjtbaqMt2f0 vZgXlUmtmUMMTZoODs5+emAgszZ9xPIsGQuiMTBcZRNjFaOqQ1RH4zZvSnU= -----END CERTIFICATE-----Generated at Fri Jul 4 13:33:20 2025 by rpki-client