$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5892d34-8457-485d-a5bb-33dc03a2e607.roa File: e5892d34-8457-485d-a5bb-33dc03a2e607.roa (raw, json) Hash identifier: KHJRStvOFc+4gpgCXJYJXqtCVIdC4HOnAmz8qhY6LtA= Subject key identifier: 74:C7:50:56:98:82:05:12:65:39:15:4C:BF:D9:84:05:68:ED:71:66 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3E23D0C7A64CEA2B6579CEA77FAFA9881E0D443D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5892d34-8457-485d-a5bb-33dc03a2e607.roa Signing time: Tue 19 Aug 2025 16:40:18 +0000 ROA not before: Tue 19 Aug 2025 16:40:18 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:23:d0:c7:a6:4c:ea:2b:65:79:ce:a7:7f:af:a9:88:1e:0d:44:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:18 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=070a3c8c4a2950f78a2957c2d3f1524214825ae1905b9993dd9a7ed672b29913, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:72:73:7a:2b:2a:19:04:d9:8f:21:b1:e9:1b: 3d:0a:cf:2d:94:c5:ee:96:c3:ea:42:04:c0:e8:67: 6b:c2:cf:63:81:36:2f:26:30:4c:61:01:a4:77:91: 18:be:8f:87:8a:42:0d:7e:2f:bb:94:14:5c:14:19: 18:54:a9:34:3b:d4:ae:69:ba:6e:c0:a1:4a:3d:d2: af:63:53:aa:13:f6:ea:5c:5a:8e:e1:4d:67:c7:09: 44:08:e4:41:5a:05:4d:2b:d4:a8:d0:00:63:e2:e8: 8e:02:23:24:25:18:dd:55:73:ac:05:50:db:41:df: 6b:f5:73:30:9f:f7:57:db:03:c6:cf:92:bf:9c:df: 26:65:e6:95:f0:82:e1:e3:de:ab:8c:53:71:19:9a: 94:73:9b:a7:54:59:91:03:d9:a4:ba:08:08:a8:8d: 1f:8c:ab:1d:16:9e:4e:78:eb:5d:e5:72:49:65:f9: fc:25:bb:bf:48:9b:89:3c:b9:90:b8:27:54:32:b6: c1:8c:67:07:f8:a8:6e:34:eb:9b:eb:71:a8:e8:8a: 26:8b:f5:85:a1:f8:da:70:0e:47:4c:fa:57:80:41: f6:42:d2:93:32:b0:7f:9f:83:f2:81:af:85:20:48: 96:72:47:e6:0b:51:68:f1:0e:50:6f:93:5b:89:24: 25:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C7:50:56:98:82:05:12:65:39:15:4C:BF:D9:84:05:68:ED:71:66 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5892d34-8457-485d-a5bb-33dc03a2e607.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.32.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:4d:32:71:fa:90:e5:9a:8b:0f:32:f4:28:ba:d6:23:df:38: 5a:75:7a:7b:ca:fa:a8:33:12:15:fd:7f:3f:f6:ff:17:59:eb: d2:c3:6c:0c:b6:55:1b:dc:b3:f6:ed:97:4b:e9:f6:bf:22:5e: 0e:c9:06:1a:c7:b2:33:0c:ae:ae:cf:e4:2d:18:8b:11:d6:90: 87:ef:ca:aa:eb:03:24:31:2b:e6:f8:3b:e0:60:33:4a:49:c6: 5d:dc:b1:a0:81:91:69:8d:31:a5:40:b9:66:86:0c:25:ac:e8: 5a:82:7b:e5:dc:b7:f8:ba:92:5a:b2:70:d0:13:db:74:35:16: 6a:9b:0e:8c:6d:03:28:13:04:ac:de:80:51:53:b8:37:8b:b5: d5:f7:e0:7e:3f:af:11:e4:bd:4a:22:d2:54:f8:77:90:cc:8a: eb:09:70:5f:a4:68:09:a7:4e:92:a2:18:c2:b7:42:b6:ce:8f: a3:7a:02:e6:7a:e4:db:67:79:f0:c4:61:ee:53:3d:25:4f:59: b3:a7:be:47:ea:82:e5:96:a9:74:78:75:48:20:3f:5c:55:2c: fa:78:5a:0a:d2:b2:4e:cf:36:35:e6:fb:ab:69:b3:ab:75:28: 15:3b:5b:99:c8:7a:42:ab:49:fc:31:ea:de:8c:5b:d3:2b:93: 3a:f2:56:f0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPiPQx6ZM6itlec6nf6+piB4NRD0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDE4WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzBhM2M4YzRhMjk1MGY3OGEyOTU3YzJkM2YxNTI0MjE0 ODI1YWUxOTA1Yjk5OTNkZDlhN2VkNjcyYjI5OTEzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4cnN6KyoZBNmPIbHpGz0Kzy2Uxe6Ww+pCBMDoZ2vCz2OB Ni8mMExhAaR3kRi+j4eKQg1+L7uUFFwUGRhUqTQ71K5pum7AoUo90q9jU6oT9upc Wo7hTWfHCUQI5EFaBU0r1KjQAGPi6I4CIyQlGN1Vc6wFUNtB32v1czCf91fbA8bP kr+c3yZl5pXwguHj3quMU3EZmpRzm6dUWZED2aS6CAiojR+Mqx0Wnk54613lckll +fwlu79Im4k8uZC4J1QytsGMZwf4qG4065vrcajoiiaL9YWh+NpwDkdM+leAQfZC 0pMysH+fg/KBr4UgSJZyR+YLUWjxDlBvk1uJJCVRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdMdQVpiCBRJlORVMv9mEBWjtcWYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2U1ODkyZDM0LTg0NTctNDg1ZC1hNWJiLTMzZGMwM2EyZTYwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCAwDQYJKoZIhvcNAQELBQADggEBAC5NMnH6kOWaiw8y9Ci61iPfOFp1 envK+qgzEhX9fz/2/xdZ69LDbAy2VRvcs/btl0vp9r8iXg7JBhrHsjMMrq7P5C0Y ixHWkIfvyqrrAyQxK+b4O+BgM0pJxl3csaCBkWmNMaVAuWaGDCWs6FqCe+Xct/i6 klqycNAT23Q1FmqbDoxtAygTBKzegFFTuDeLtdX34H4/rxHkvUoi0lT4d5DMiusJ cF+kaAmnTpKiGMK3QrbOj6N6AuZ65NtnefDEYe5TPSVPWbOnvkfqguWWqXR4dUgg P1xVLPp4WgrSsk7PNjXm+6tps6t1KBU7W5nIekKrSfwx6t6MW9MrkzryVvA= -----END CERTIFICATE-----Generated at Sat Aug 23 07:01:44 2025 by rpki-client