$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/07bd3aac-7c97-429a-9a81-6751e4001f6d.roa File: 07bd3aac-7c97-429a-9a81-6751e4001f6d.roa (raw, json) Hash identifier: TqDHIpDsta4og61mQexgn9Vk7DXaEwUNEvAJoyUZFlA= Subject key identifier: CD:98:FB:F2:0F:9C:D1:5A:80:6C:D4:13:E8:F6:82:16:38:DC:CF:A2 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 104833C9330CF8B6985461A3A8EC31B4FD46A997 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/07bd3aac-7c97-429a-9a81-6751e4001f6d.roa Signing time: Wed 02 Apr 2025 00:30:05 +0000 ROA not before: Wed 02 Apr 2025 00:30:05 +0000 ROA not after: Wed 07 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:48:33:c9:33:0c:f8:b6:98:54:61:a3:a8:ec:31:b4:fd:46:a9:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 2 00:30:05 2025 GMT Not After : May 7 23:59:59 2025 GMT Subject: CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d2:67:e6:2e:c9:0c:54:60:70:f0:c3:60:cb: ec:38:98:91:13:d8:82:92:2e:33:3a:2a:1f:8c:b7: cb:bf:f8:bf:b6:65:90:4e:9c:18:2e:fa:db:8c:d4: 3f:37:0d:84:50:e6:4e:c0:7a:07:36:7e:0e:b0:9f: 9e:d1:48:22:02:7c:11:ea:57:b1:27:1a:f4:45:5d: 9e:db:d9:8e:2d:e1:20:c6:79:62:ab:c0:8d:fa:70: 4a:08:47:0c:de:4e:99:23:5c:89:04:ed:29:d4:10: 13:c9:de:fd:a9:41:07:88:23:26:36:33:ab:91:61: f8:1a:84:aa:3e:d1:17:3c:76:86:66:ee:55:60:59: 20:9f:59:23:2d:3c:22:e9:f0:e7:20:c1:53:57:64: 9c:fd:5b:90:8e:0e:20:0a:0b:06:92:7a:ac:46:12: a6:55:68:65:5e:ce:ba:72:72:cc:14:21:7a:aa:17: ed:a6:45:f4:58:f3:c2:5f:ff:49:d8:9e:34:0b:c5: bb:fe:10:a5:2a:11:c7:c3:7b:54:a0:64:1b:1f:7e: 49:ec:c5:ae:27:4b:27:d0:68:a2:15:0e:65:0e:ae: 51:a0:b7:b1:fc:3a:64:a3:71:1f:2c:57:7d:4a:3b: e1:8c:40:9b:cd:7a:92:ea:7a:c7:f0:ac:b9:73:e8: cc:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:98:FB:F2:0F:9C:D1:5A:80:6C:D4:13:E8:F6:82:16:38:DC:CF:A2 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/07bd3aac-7c97-429a-9a81-6751e4001f6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.6.0/24 Signature Algorithm: sha256WithRSAEncryption 61:e5:d9:a5:c4:d7:11:c5:b6:c1:6b:38:17:5f:5f:e3:97:2f: e0:7c:55:e6:f8:f1:eb:bd:ad:81:7d:72:8c:a1:d0:42:68:c1: 23:88:11:60:03:c5:d0:84:c5:61:aa:35:bc:d2:75:00:6f:15: 28:bb:40:68:91:c2:91:0b:7f:13:92:57:d0:ad:de:2a:87:bc: 05:65:91:07:27:f8:d4:6f:d6:0d:93:63:d5:bc:c0:c1:af:3b: e7:b1:25:db:bd:36:3b:ca:24:b6:05:8f:b3:87:7e:ef:60:5c: 73:a4:74:b9:39:57:b4:05:43:9e:fb:71:9d:4e:70:04:de:33: 24:bd:63:21:2b:68:b1:5e:2f:df:df:52:58:cc:84:17:78:17: 9a:b2:ac:64:89:cf:71:db:42:01:26:81:a4:75:17:ff:43:30: c2:45:da:26:1d:a9:48:27:86:a2:be:97:53:5f:52:31:57:49: de:25:2e:09:2a:4a:f0:94:7f:dc:dd:81:40:12:35:77:40:41: eb:e5:f3:92:1b:3c:b9:6f:eb:51:1f:a4:65:d9:8b:20:df:e1: 7c:66:2a:fe:77:7d:97:cc:89:31:4d:3e:15:cd:b6:3d:29:e9: 4a:96:2b:98:fa:4a:ca:f9:01:0f:15:0f:e8:a2:6c:c0:1c:37: 0d:55:5e:d3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEEgzyTMM+LaYVGGjqOwxtP1GqZcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDAyMDAzMDA1WhcNMjUwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDhlN2E4ZTk1ZGEzODg0YWIwZjE0MTgwMzVjNWQ2YTYy YTQ4YWE2MjdjOGJjNjAxNWE3MTVkOTk0NWI0ZmI5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC40mfmLskMVGBw8MNgy+w4mJET2IKSLjM6Kh+Mt8u/+L+2 ZZBOnBgu+tuM1D83DYRQ5k7Aegc2fg6wn57RSCICfBHqV7EnGvRFXZ7b2Y4t4SDG eWKrwI36cEoIRwzeTpkjXIkE7SnUEBPJ3v2pQQeIIyY2M6uRYfgahKo+0Rc8doZm 7lVgWSCfWSMtPCLp8OcgwVNXZJz9W5CODiAKCwaSeqxGEqZVaGVezrpycswUIXqq F+2mRfRY88Jf/0nYnjQLxbv+EKUqEcfDe1SgZBsffknsxa4nSyfQaKIVDmUOrlGg t7H8OmSjcR8sV31KO+GMQJvNepLqesfwrLlz6Mz9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzZj78g+c0VqAbNQT6PaCFjjcz6IwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzA3YmQzYWFjLTdjOTctNDI5YS05YTgxLTY3NTFlNDAwMWY2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAYwDQYJKoZIhvcNAQELBQADggEBAGHl2aXE1xHFtsFrOBdfX+OXL+B8 Veb48eu9rYF9coyh0EJowSOIEWADxdCExWGqNbzSdQBvFSi7QGiRwpELfxOSV9Ct 3iqHvAVlkQcn+NRv1g2TY9W8wMGvO+exJdu9NjvKJLYFj7OHfu9gXHOkdLk5V7QF Q577cZ1OcATeMyS9YyEraLFeL9/fUljMhBd4F5qyrGSJz3HbQgEmgaR1F/9DMMJF 2iYdqUgnhqK+l1NfUjFXSd4lLgkqSvCUf9zdgUASNXdAQevl85IbPLlv61EfpGXZ iyDf4XxmKv53fZfMiTFNPhXNtj0p6UqWK5j6Ssr5AQ8VD+iibMAcNw1VXtM= -----END CERTIFICATE-----Generated at Sat Apr 5 16:53:10 2025 by rpki-client