$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ff893aad-9ed8-41c3-9b48-507fa414885d.roa File: ff893aad-9ed8-41c3-9b48-507fa414885d.roa (raw, json) Hash identifier: qwKWvaGVKxu+Qj/2shIg2BgDmv0NfBJCxgLxPEhCm0k= Subject key identifier: 69:E3:B5:3B:FE:A9:65:FF:0B:F1:ED:CA:D6:96:D4:90:36:8D:14:84 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6B9DAD9C39DAEB279E10B1A6F99760B4168CDFF8 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ff893aad-9ed8-41c3-9b48-507fa414885d.roa Signing time: Wed 25 Jun 2025 00:40:05 +0000 ROA not before: Wed 25 Jun 2025 00:40:05 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:9d:ad:9c:39:da:eb:27:9e:10:b1:a6:f9:97:60:b4:16:8c:df:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 25 00:40:05 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=ace3d5956d209a8a3b044af3b7e96de1e8d30948d37b633889a36687edd62926, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c1:fe:e6:5a:3b:66:25:50:a9:55:7c:9e:87: 79:eb:7a:1d:fa:75:24:3b:cb:2d:fa:5f:c9:2c:90: 2d:ab:7e:c2:61:58:53:bc:2a:d7:51:be:58:8b:bd: bb:49:fc:fa:ce:fa:f8:3b:1e:e0:dd:2f:54:f1:96: fa:c1:2e:80:db:ad:72:46:46:37:65:d6:2f:ae:e3: 16:5a:bb:fe:2e:a4:96:d5:df:0a:d4:51:fe:5b:1f: b1:81:6d:a2:91:8c:c8:f1:31:2e:b5:76:15:be:eb: 53:80:1f:e9:73:ec:22:21:3b:35:58:3f:97:7f:89: 70:a5:51:64:49:db:e7:5b:b9:b0:7d:d8:0f:2d:5b: c5:35:7e:cd:3a:8b:05:02:9e:f7:fb:9a:98:9a:e4: a9:a2:4b:fe:f1:a8:b3:5f:37:da:6f:b9:51:30:7c: 40:88:cf:3d:0a:cf:23:c7:51:83:dc:cd:e9:0d:d2: e7:80:1b:35:6c:ae:a3:3e:e3:2b:2b:75:e6:2e:ae: 15:5e:55:53:16:00:b2:d7:17:e9:07:29:62:9a:50: c8:e9:56:88:10:27:2d:ac:66:d0:48:87:38:04:33: 0c:13:e8:43:80:2b:68:67:fc:74:16:26:d9:cc:82: b4:2b:46:32:4c:37:a3:e4:2b:63:48:8a:5a:48:78: d1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E3:B5:3B:FE:A9:65:FF:0B:F1:ED:CA:D6:96:D4:90:36:8D:14:84 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ff893aad-9ed8-41c3-9b48-507fa414885d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.247.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:b7:67:29:38:21:0c:eb:82:79:5b:65:b1:71:7f:68:8a:3c: c6:1a:56:14:ec:a8:50:63:09:de:4a:28:52:87:e1:4f:eb:54: 2e:e1:9b:bd:62:58:ca:e8:a5:b6:bf:c8:2a:fb:f2:53:7c:d3: b3:e9:8d:58:a8:52:a0:1c:5f:6b:18:15:b5:5b:63:5d:ba:c8: 63:b6:d8:04:5e:61:87:a1:a9:74:01:bd:ed:6f:90:6f:9a:ce: 15:c7:6c:42:2f:10:e9:d3:0c:ef:61:01:0b:fd:1b:e3:f4:98: 16:e3:2e:af:2f:1b:73:c7:17:c1:c3:0a:b8:e9:05:53:a5:d4: 9e:5c:da:ca:30:2d:70:60:69:f2:50:bb:40:7e:35:a2:45:38: 58:3f:42:3d:9e:2c:4f:a3:fd:c2:71:fd:ea:0e:57:60:01:c5: 32:ea:3a:1e:69:a9:c8:1d:07:21:65:98:09:b2:ee:f5:9f:d4: d3:92:5d:4c:e4:6f:07:cb:48:e0:8d:a0:a6:6d:fb:8d:d1:b2: 99:79:4a:0f:07:29:c7:c6:56:20:ed:d3:19:d9:c9:fd:11:c3: a2:a0:9e:7b:96:94:86:c7:03:c0:52:90:3f:01:73:36:8f:c4: 92:8d:d5:a3:eb:a6:79:3d:8c:1e:5d:1d:e2:3a:2b:4c:c5:08: fb:6a:dd:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa52tnDna6yeeELGm+ZdgtBaM3/gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI1MDA0MDA1WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhY2UzZDU5NTZkMjA5YThhM2IwNDRhZjNiN2U5NmRlMWU4 ZDMwOTQ4ZDM3YjYzMzg4OWEzNjY4N2VkZDYyOTI2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxwf7mWjtmJVCpVXyeh3nreh36dSQ7yy36X8kskC2rfsJh WFO8KtdRvliLvbtJ/PrO+vg7HuDdL1TxlvrBLoDbrXJGRjdl1i+u4xZau/4upJbV 3wrUUf5bH7GBbaKRjMjxMS61dhW+61OAH+lz7CIhOzVYP5d/iXClUWRJ2+dbubB9 2A8tW8U1fs06iwUCnvf7mpia5KmiS/7xqLNfN9pvuVEwfECIzz0KzyPHUYPczekN 0ueAGzVsrqM+4ysrdeYurhVeVVMWALLXF+kHKWKaUMjpVogQJy2sZtBIhzgEMwwT 6EOAK2hn/HQWJtnMgrQrRjJMN6PkK2NIilpIeNHZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaeO1O/6pZf8L8e3K1pbUkDaNFIQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2ZmODkzYWFkLTllZDgtNDFjMy05YjQ4LTUwN2ZhNDE0ODg1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPcwDQYJKoZIhvcNAQELBQADggEBAC23Zyk4IQzrgnlbZbFxf2iKPMYa VhTsqFBjCd5KKFKH4U/rVC7hm71iWMropba/yCr78lN807PpjVioUqAcX2sYFbVb Y126yGO22AReYYehqXQBve1vkG+azhXHbEIvEOnTDO9hAQv9G+P0mBbjLq8vG3PH F8HDCrjpBVOl1J5c2sowLXBgafJQu0B+NaJFOFg/Qj2eLE+j/cJx/eoOV2ABxTLq Oh5pqcgdByFlmAmy7vWf1NOSXUzkbwfLSOCNoKZt+43Rspl5Sg8HKcfGViDt0xnZ yf0Rw6KgnnuWlIbHA8BSkD8BczaPxJKN1aPrpnk9jB5dHeI6K0zFCPtq3ds= -----END CERTIFICATE-----Generated at Wed Jul 2 05:46:20 2025 by rpki-client