$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0cbd91d4-0754-474d-a224-7857f9f4d2f0.roa File: 0cbd91d4-0754-474d-a224-7857f9f4d2f0.roa (raw, json) Hash identifier: 14NJ3S+k6+Geo0fmoEEOsXCyKAS7HHhoVtZt5tnV0yk= Subject key identifier: 62:07:43:96:5C:4D:A6:B9:41:8E:D6:DF:15:3F:AF:EB:04:A7:55:F3 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1E104BF40F64E871FC03321D5235545BC00C3C4F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0cbd91d4-0754-474d-a224-7857f9f4d2f0.roa Signing time: Mon 31 Mar 2025 18:40:01 +0000 ROA not before: Mon 31 Mar 2025 18:40:01 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:10:4b:f4:0f:64:e8:71:fc:03:32:1d:52:35:54:5b:c0:0c:3c:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Mar 31 18:40:01 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:36:eb:0b:18:1f:d3:35:90:17:6d:fa:4a:14: 4b:f4:fa:a2:99:77:27:ce:25:74:d5:93:fa:3c:bf: 7d:01:c7:fd:ce:fa:ae:dc:d5:e1:c3:4c:8e:0e:e5: eb:8c:a8:8c:f5:4f:8f:bc:59:62:5a:6f:4f:e7:f5: 7a:c3:0c:46:b4:0f:2a:2d:78:d4:9d:03:bf:18:72: 2e:65:e4:36:9a:20:50:4c:86:94:99:49:4c:20:4f: 63:b2:42:d5:a2:24:0b:a0:31:ae:12:4d:c2:1c:fc: db:2b:ea:ee:43:10:3e:d2:0a:8b:dc:cc:f8:5c:33: f7:3b:3e:b1:75:2d:70:96:98:9a:51:e3:28:30:3a: 0b:5e:65:6b:9b:04:fb:b3:25:bb:b7:b7:fb:36:4c: c1:31:85:8a:74:d9:22:75:62:cc:c3:60:bf:a1:4a: 0c:34:b1:50:9f:c9:a7:3c:ac:86:be:9b:ac:02:ba: f0:f3:ca:7a:a4:b1:36:76:eb:8f:35:d9:f6:da:39: f6:8b:86:06:48:e4:24:a9:40:22:69:c2:39:c2:b0: d3:0e:6f:11:5a:3e:93:89:c1:20:1e:4f:5e:d9:9c: 66:48:9d:80:82:68:45:51:c9:27:cd:1b:69:26:0a: 42:9a:3a:69:8b:b7:cd:2c:3a:ab:d7:03:ed:83:5a: 89:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:07:43:96:5C:4D:A6:B9:41:8E:D6:DF:15:3F:AF:EB:04:A7:55:F3 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0cbd91d4-0754-474d-a224-7857f9f4d2f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.132.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:1e:90:23:4a:68:c0:49:10:36:2d:eb:da:cd:ce:c7:df:96: 55:68:e8:05:59:6a:2d:8a:dc:0b:e5:b7:01:db:eb:68:65:35: a4:73:97:77:41:29:80:0f:08:ac:3b:81:d8:5f:a0:70:2d:3d: 69:e0:13:0f:9f:5a:78:ff:35:b9:b3:e0:34:a4:05:59:ac:9c: 8d:f4:5d:1d:06:bd:38:88:7e:b4:a8:69:2e:1f:a7:79:75:0f: 69:9f:9b:fc:e1:ee:d3:91:b5:bd:56:7a:6b:95:72:1b:7a:36: ca:89:a5:8a:a9:35:cc:c8:c6:f6:e0:5d:86:cf:24:14:44:3a: 54:9e:16:56:65:53:40:30:12:2a:02:00:ca:c7:51:c7:02:86: f0:f6:ba:c7:d7:2e:04:12:4a:27:d5:02:9c:f0:69:dc:3c:86: 9f:79:7e:74:5b:3a:c7:4d:e1:05:95:07:75:3d:57:38:13:be: 0a:75:27:78:80:92:a6:c4:d6:33:e8:b9:7b:10:90:06:4f:67: 7b:44:6e:e8:e2:eb:bc:24:46:fe:c8:e5:8e:8a:2a:23:5e:3a: a2:f7:9b:36:80:fa:c0:98:19:de:14:2e:cb:69:d6:91:96:02: 68:41:d2:b9:a4:cd:56:06:08:2f:d9:6a:cb:7b:b4:06:1a:ae: 82:61:f7:34 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHhBL9A9k6HH8AzIdUjVUW8AMPE8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwMzMxMTg0MDAxWhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDdhMzZhODhjZDZjMzk1NWNkNzVmYTViMTRiZTdjNWQx YjU4ZmE2MDk4MWI2ZjRkMjljODM5ZTQxNzg3NDdiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjNusLGB/TNZAXbfpKFEv0+qKZdyfOJXTVk/o8v30Bx/3O +q7c1eHDTI4O5euMqIz1T4+8WWJab0/n9XrDDEa0DyoteNSdA78Yci5l5DaaIFBM hpSZSUwgT2OyQtWiJAugMa4STcIc/Nsr6u5DED7SCovczPhcM/c7PrF1LXCWmJpR 4ygwOgteZWubBPuzJbu3t/s2TMExhYp02SJ1YszDYL+hSgw0sVCfyac8rIa+m6wC uvDzynqksTZ264812fbaOfaLhgZI5CSpQCJpwjnCsNMObxFaPpOJwSAeT17ZnGZI nYCCaEVRySfNG2kmCkKaOmmLt80sOqvXA+2DWolJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYgdDllxNprlBjtbfFT+v6wSnVfMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBjYmQ5MWQ0LTA3NTQtNDc0ZC1hMjI0LTc4NTdmOWY0ZDJmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYIQwDQYJKoZIhvcNAQELBQADggEBAB4ekCNKaMBJEDYt69rNzsffllVo 6AVZai2K3AvltwHb62hlNaRzl3dBKYAPCKw7gdhfoHAtPWngEw+fWnj/Nbmz4DSk BVmsnI30XR0GvTiIfrSoaS4fp3l1D2mfm/zh7tORtb1WemuVcht6NsqJpYqpNczI xvbgXYbPJBREOlSeFlZlU0AwEioCAMrHUccChvD2usfXLgQSSifVApzwadw8hp95 fnRbOsdN4QWVB3U9VzgTvgp1J3iAkqbE1jPouXsQkAZPZ3tEbuji67wkRv7I5Y6K KiNeOqL3mzaA+sCYGd4ULstp1pGWAmhB0rmkzVYGCC/Zast7tAYaroJh9zQ= -----END CERTIFICATE-----Generated at Sat Apr 5 11:21:49 2025 by rpki-client