$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ff893aad-9ed8-41c3-9b48-507fa414885d.roa File: ff893aad-9ed8-41c3-9b48-507fa414885d.roa (raw, json) Hash identifier: dXYK7wlMAQaKPB6WdMnGKTianRAn5E2ACSCRLpquWuc= Subject key identifier: 9C:6F:BE:3A:DA:3B:CE:EB:94:46:54:F9:37:03:28:B7:29:FF:5E:FF Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2327C461CAA21C4BDCFCA5D3CC58428A358DAF20 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ff893aad-9ed8-41c3-9b48-507fa414885d.roa Signing time: Fri 15 Aug 2025 15:30:07 +0000 ROA not before: Fri 15 Aug 2025 15:30:07 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:27:c4:61:ca:a2:1c:4b:dc:fc:a5:d3:cc:58:42:8a:35:8d:af:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 15 15:30:07 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=2bbf0d8dea1cc15f71a2ef3b985dc11d1a57f445b6282859e5fff03dbd3d5d56, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:bd:f7:43:78:5b:5c:ca:cd:6f:16:7b:22:42: d5:a9:11:1c:76:08:fd:85:01:0c:ef:68:ac:ee:fc: 6a:da:26:c7:3d:65:13:c1:48:0b:fb:1c:19:57:eb: 88:5c:e5:09:a6:63:45:0c:88:d7:64:ca:a2:61:a6: 15:16:8d:c5:ed:19:8a:ef:18:5d:71:25:2e:4b:e1: 14:39:5d:0a:41:f7:97:77:56:9a:dc:ab:13:f2:b2: ca:1d:49:9e:d4:9f:bf:c6:14:07:fa:cf:76:96:f9: f9:0b:a7:74:6d:fd:8e:19:b5:19:55:63:7f:e6:77: 7c:ac:8c:fd:3d:2b:b8:98:d7:bb:c3:bc:83:60:a9: 8b:b7:60:0d:52:68:47:1d:fe:71:00:c9:bb:bc:bc: 3f:c5:5c:10:f6:fd:16:3d:25:37:92:14:ad:64:ca: 88:40:60:38:d9:34:67:99:d1:c0:f4:b2:0e:a6:a1: e8:2f:d7:55:70:29:4f:4b:42:bd:8c:f7:22:8f:75: 98:02:73:9f:bf:81:a1:00:4b:a7:9d:1e:43:71:01: 49:68:0e:17:8d:72:37:90:28:63:70:9c:81:ef:27: ed:40:b7:ed:71:7a:5a:4c:2c:8c:ca:f9:56:84:d8: 8b:05:5c:05:d7:f8:96:45:5c:5d:83:36:b7:dc:60: 53:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:6F:BE:3A:DA:3B:CE:EB:94:46:54:F9:37:03:28:B7:29:FF:5E:FF X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ff893aad-9ed8-41c3-9b48-507fa414885d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.247.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:2b:6c:0d:30:79:20:fe:da:7b:9f:7a:6b:54:92:95:90:50: be:7a:62:21:f0:6b:ac:5b:12:2e:1f:59:91:34:56:5f:e9:2a: d8:e2:f9:e3:01:ee:25:b0:05:ff:72:c1:1a:58:31:d8:69:2d: b0:d3:d5:70:da:41:d8:4c:31:ee:46:17:3c:76:d6:ce:c3:17: a1:aa:f3:75:3c:12:4f:4c:90:79:88:61:40:7f:0b:88:64:a7: 85:30:46:a0:93:6b:41:31:19:49:58:bc:14:ba:e6:51:f8:02: 33:42:0c:98:82:73:ee:7e:1b:37:90:32:16:ec:a4:9f:59:fe: 34:7d:88:82:36:5d:f6:a4:7c:34:d3:4d:99:a6:50:f0:4e:4d: e2:e1:e0:99:c2:7c:ce:3d:0d:7c:5f:9d:8e:4e:01:a8:51:57: f4:e8:9a:ac:4f:d2:df:05:3d:e0:0b:69:10:f4:06:aa:c9:25: 44:54:43:f0:40:50:df:98:a8:09:ad:40:0b:91:2d:98:09:82: 55:b8:62:92:82:7c:22:94:a9:e2:54:87:5c:81:fd:6b:9d:c8: ef:e1:c8:dd:ee:b5:f2:0d:52:2d:89:97:e4:a8:eb:76:00:bf: b7:c3:f5:09:f8:ce:ed:64:70:41:9d:6f:f2:35:d5:18:9c:2a: 85:93:94:02 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIyfEYcqiHEvc/KXTzFhCijWNryAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE1MTUzMDA3WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmJmMGQ4ZGVhMWNjMTVmNzFhMmVmM2I5ODVkYzExZDFh NTdmNDQ1YjYyODI4NTllNWZmZjAzZGJkM2Q1ZDU2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYvfdDeFtcys1vFnsiQtWpERx2CP2FAQzvaKzu/GraJsc9 ZRPBSAv7HBlX64hc5QmmY0UMiNdkyqJhphUWjcXtGYrvGF1xJS5L4RQ5XQpB95d3 VprcqxPyssodSZ7Un7/GFAf6z3aW+fkLp3Rt/Y4ZtRlVY3/md3ysjP09K7iY17vD vINgqYu3YA1SaEcd/nEAybu8vD/FXBD2/RY9JTeSFK1kyohAYDjZNGeZ0cD0sg6m oegv11VwKU9LQr2M9yKPdZgCc5+/gaEAS6edHkNxAUloDheNcjeQKGNwnIHvJ+1A t+1xelpMLIzK+VaE2IsFXAXX+JZFXF2DNrfcYFOtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnG++Oto7zuuURlT5NwMotyn/Xv8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2ZmODkzYWFkLTllZDgtNDFjMy05YjQ4LTUwN2ZhNDE0ODg1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPcwDQYJKoZIhvcNAQELBQADggEBAFwrbA0weSD+2nufemtUkpWQUL56 YiHwa6xbEi4fWZE0Vl/pKtji+eMB7iWwBf9ywRpYMdhpLbDT1XDaQdhMMe5GFzx2 1s7DF6Gq83U8Ek9MkHmIYUB/C4hkp4UwRqCTa0ExGUlYvBS65lH4AjNCDJiCc+5+ GzeQMhbspJ9Z/jR9iII2XfakfDTTTZmmUPBOTeLh4JnCfM49DXxfnY5OAahRV/To mqxP0t8FPeALaRD0BqrJJURUQ/BAUN+YqAmtQAuRLZgJglW4YpKCfCKUqeJUh1yB /WudyO/hyN3utfINUi2Jl+So63YAv7fD9Qn4zu1kcEGdb/I11RicKoWTlAI= -----END CERTIFICATE-----Generated at Sat Aug 23 08:34:54 2025 by rpki-client