$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa File: ecc15691-9732-4fda-b2d1-5ad157c2818e.roa (raw, json) Hash identifier: 07PllUIh2hKbS4U+zd4QaCtrVjt55AeHwEUASfr/6rE= Subject key identifier: 76:CD:A7:1D:15:91:E9:01:8E:50:9A:B3:CB:B4:02:B5:26:4C:D7:37 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0D16A70C0FC9A7E725625CA63E0C445A3EE10202 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa Signing time: Tue 19 Aug 2025 16:40:53 +0000 ROA not before: Tue 19 Aug 2025 16:40:53 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:16:a7:0c:0f:c9:a7:e7:25:62:5c:a6:3e:0c:44:5a:3e:e1:02:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:53 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=d3e8da4f4d244193759dfc9268b2a1159b389f9ff85b8fd5d186d7c69c1d07ac, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:4a:87:46:00:df:00:e1:ed:2b:13:92:c2:7f: e7:f7:7f:f1:30:1a:51:2f:07:45:34:86:30:a2:44: 9e:a9:65:46:96:62:04:79:f5:76:61:c4:94:59:18: e7:ed:96:cc:6e:04:c4:4b:61:f1:30:2d:c1:ef:ed: ba:87:a8:34:52:4b:96:d3:fa:15:cb:97:ac:4f:1d: 04:b5:38:e7:64:32:cc:67:ef:30:e8:92:49:87:19: af:2c:e8:c4:7f:e2:bb:a8:04:04:6b:a7:98:1c:c7: 4e:b6:c5:27:4d:53:96:52:c0:7f:8e:6b:0a:e9:e5: 15:d7:b1:01:aa:75:ac:e5:fe:45:59:73:10:de:2b: 66:91:cb:a6:1c:b6:d0:e2:01:37:29:06:1f:f5:ed: b5:55:be:d7:7c:9b:5a:bb:24:95:ec:b0:e2:54:e9: d7:24:2a:bf:9e:9f:ec:1d:5d:df:3d:4c:20:a3:82: d3:90:bd:79:89:0a:fb:3a:73:93:db:cf:bd:1a:c2: b6:dc:60:c4:7a:c4:55:3d:12:8b:f7:19:2f:9a:d8: 98:07:cd:31:ea:19:31:69:2c:5e:c9:34:2a:0b:1b: 1c:fa:94:bf:23:bc:08:14:40:bf:79:d3:fb:83:85: ec:6f:c8:9b:ff:36:18:b5:d3:a8:54:a6:dc:f9:9d: 23:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:CD:A7:1D:15:91:E9:01:8E:50:9A:B3:CB:B4:02:B5:26:4C:D7:37 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.3.0/24 Signature Algorithm: sha256WithRSAEncryption 87:c3:ec:c8:77:c0:d1:5f:32:a2:e7:7c:28:ef:6c:46:8b:91: 04:aa:1c:bc:73:1d:57:20:5b:25:e1:26:ef:e6:4b:bc:a4:d3: e6:8a:fa:97:59:31:d4:bf:4f:68:e0:ed:52:0c:02:b7:ad:06: 7f:67:27:ba:74:00:48:3e:32:58:06:7f:75:52:ce:5c:71:9d: 14:0e:fc:49:37:88:30:56:be:27:61:a1:e3:30:c8:3c:a3:cb: e7:5c:80:e8:ba:6a:68:86:84:ff:e1:3d:17:38:dc:88:0f:5c: d5:cc:21:67:a7:82:f3:50:0c:c4:14:a3:9f:30:6c:68:37:d2: e7:67:61:9a:d2:7a:16:39:01:14:6d:43:36:40:5f:f1:b6:cf: 08:3a:48:8c:98:c7:46:a2:0e:52:e4:ee:cb:f7:4b:a9:81:dd: a6:3f:54:c3:6f:03:85:33:5b:37:79:6f:10:b0:b3:d3:99:71: f1:c7:04:be:dc:13:c0:b5:5b:b5:d5:e3:7c:22:2d:2a:1e:ea: b0:bd:14:29:a2:61:0d:9a:bd:17:bb:8b:54:ad:93:eb:bc:bb: 29:9a:6b:88:c8:95:14:85:e8:af:19:94:c5:ff:bf:cd:ef:d9: b5:ba:6d:fa:dc:b6:ed:2c:cd:fc:ce:4e:c8:7c:f0:0b:cd:eb: c9:e9:66:9a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDRanDA/Jp+clYlymPgxEWj7hAgIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDUzWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkM2U4ZGE0ZjRkMjQ0MTkzNzU5ZGZjOTI2OGIyYTExNTli Mzg5ZjlmZjg1YjhmZDVkMTg2ZDdjNjljMWQwN2FjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtSodGAN8A4e0rE5LCf+f3f/EwGlEvB0U0hjCiRJ6pZUaW YgR59XZhxJRZGOftlsxuBMRLYfEwLcHv7bqHqDRSS5bT+hXLl6xPHQS1OOdkMsxn 7zDokkmHGa8s6MR/4ruoBARrp5gcx062xSdNU5ZSwH+Oawrp5RXXsQGqdazl/kVZ cxDeK2aRy6YcttDiATcpBh/17bVVvtd8m1q7JJXssOJU6dckKr+en+wdXd89TCCj gtOQvXmJCvs6c5Pbz70awrbcYMR6xFU9Eov3GS+a2JgHzTHqGTFpLF7JNCoLGxz6 lL8jvAgUQL950/uDhexvyJv/Nhi106hUptz5nSPVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUds2nHRWR6QGOUJqzy7QCtSZM1zcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2VjYzE1NjkxLTk3MzItNGZkYS1iMmQxLTVhZDE1N2MyODE4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAMwDQYJKoZIhvcNAQELBQADggEBAIfD7Mh3wNFfMqLnfCjvbEaLkQSq HLxzHVcgWyXhJu/mS7yk0+aK+pdZMdS/T2jg7VIMAretBn9nJ7p0AEg+MlgGf3VS zlxxnRQO/Ek3iDBWvidhoeMwyDyjy+dcgOi6amiGhP/hPRc43IgPXNXMIWengvNQ DMQUo58wbGg30udnYZrSehY5ARRtQzZAX/G2zwg6SIyYx0aiDlLk7sv3S6mB3aY/ VMNvA4UzWzd5bxCws9OZcfHHBL7cE8C1W7XV43wiLSoe6rC9FCmiYQ2avRe7i1St k+u8uymaa4jIlRSF6K8ZlMX/v83v2bW6bfrctu0szfzOTsh88AvN68npZpo= -----END CERTIFICATE-----Generated at Sat Aug 23 07:04:39 2025 by rpki-client