$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5ffaeb6f-2056-42ae-b0de-d1fff053a663.roa File: 5ffaeb6f-2056-42ae-b0de-d1fff053a663.roa (raw, json) Hash identifier: qz3AKy4JFkbzb7vsPiLhfzKbJuwWLk6setTjmKm0CNY= Subject key identifier: 25:B7:E2:9D:A0:1E:53:FC:1A:BB:08:6A:B0:DC:B7:17:03:44:48:7E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 53DE55CDFE393685F057F6FCD13E494E35AFCF6F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5ffaeb6f-2056-42ae-b0de-d1fff053a663.roa Signing time: Fri 11 Jul 2025 18:20:10 +0000 ROA not before: Fri 11 Jul 2025 18:20:10 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 26 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:de:55:cd:fe:39:36:85:f0:57:f6:fc:d1:3e:49:4e:35:af:cf:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jul 11 18:20:10 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=e21b4e5dd992a3c8a697f1cde1bb08f742ed4ada27c44035352a8ee8df8b75e8, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:79:db:dd:05:f0:f1:8e:89:30:b5:4b:ff:89: cd:a8:46:20:f0:20:76:a2:ca:15:03:89:bf:aa:8b: 5c:e8:83:74:ee:7d:dc:06:51:ae:c0:90:dc:e8:54: 45:47:43:34:36:29:32:01:4c:9b:9b:44:49:ac:c5: a9:a6:44:75:59:ec:94:97:d2:45:61:94:90:77:56: 2d:dd:89:93:15:5e:63:3e:5f:30:76:c4:e0:84:30: 70:28:ba:38:84:e6:8c:9d:01:bd:61:94:6d:7c:d3: cb:57:da:f6:7a:03:d0:57:c7:0d:ee:0b:a6:a3:90: 7c:f6:45:28:20:2a:9b:0f:7b:4b:e6:06:a6:d6:c7: c0:99:9d:bc:31:d1:85:f8:87:28:4c:7f:b3:db:15: 28:68:f1:5c:8a:40:a8:05:22:b9:61:23:82:d1:81: ed:8a:1d:4a:f2:17:25:f4:33:a9:91:47:9d:cb:b1: dc:09:37:da:a3:3b:30:26:75:ea:13:3c:4d:3d:ba: d3:a6:bd:1b:1b:6e:a6:7e:15:c8:8e:21:1f:f3:70: 11:e3:7b:61:4c:f6:20:3c:39:98:9f:8a:47:93:2b: 40:d7:83:97:0c:9f:a2:1f:42:27:1c:15:76:2f:76: 5b:4c:1a:34:71:a5:8b:b9:03:d7:4d:92:e4:63:d5: 80:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:B7:E2:9D:A0:1E:53:FC:1A:BB:08:6A:B0:DC:B7:17:03:44:48:7E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5ffaeb6f-2056-42ae-b0de-d1fff053a663.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.2.0/24 Signature Algorithm: sha256WithRSAEncryption 38:8a:96:ca:c2:8f:ba:d4:0b:3b:83:c6:60:10:0c:46:74:13: 7c:82:74:46:18:63:97:c0:9c:79:a2:bd:d9:86:77:59:ec:1a: 29:a7:29:9b:4c:ba:e1:f8:8f:ee:22:01:ef:70:bf:7e:a8:fb: 76:df:8b:d2:04:91:6f:cb:55:32:df:1a:94:39:30:27:2c:4c: 49:fd:15:b7:60:00:a8:41:e4:96:3c:2d:c1:15:af:fb:f1:87: df:63:5d:ba:2f:65:8e:6c:eb:9f:cb:54:ff:6d:e0:03:25:dc: cb:cd:fe:ca:6f:1c:76:ad:af:b9:ff:bc:cc:a8:94:08:a0:75: a9:a8:c6:63:f8:a2:ec:2e:dc:3e:40:f5:e6:d8:1b:f4:43:8e: f1:ac:9a:fb:68:c4:6e:e4:c7:5d:29:5f:d1:3c:e9:f2:93:c3: 25:70:03:81:14:a2:d2:fa:53:f4:af:42:86:7b:e9:80:ac:5f: 0e:a6:c2:a1:c6:4d:09:95:67:ca:30:8a:b7:94:67:6a:fa:ac: 8f:be:61:6a:9c:31:54:a6:56:08:b4:bf:d9:79:12:4c:87:e4: a5:96:77:07:12:a1:0d:f6:9a:12:37:2d:2a:b4:c7:c3:30:9b: 73:80:b6:02:9d:e5:d5:60:be:fb:79:a5:82:4a:e1:3e:e1:f7: f9:8a:a8:8f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU95Vzf45NoXwV/b80T5JTjWvz28wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNzExMTgyMDEwWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjFiNGU1ZGQ5OTJhM2M4YTY5N2YxY2RlMWJiMDhmNzQy ZWQ0YWRhMjdjNDQwMzUzNTJhOGVlOGRmOGI3NWU4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEedvdBfDxjokwtUv/ic2oRiDwIHaiyhUDib+qi1zog3Tu fdwGUa7AkNzoVEVHQzQ2KTIBTJubREmsxammRHVZ7JSX0kVhlJB3Vi3diZMVXmM+ XzB2xOCEMHAoujiE5oydAb1hlG1808tX2vZ6A9BXxw3uC6ajkHz2RSggKpsPe0vm BqbWx8CZnbwx0YX4hyhMf7PbFSho8VyKQKgFIrlhI4LRge2KHUryFyX0M6mRR53L sdwJN9qjOzAmdeoTPE09utOmvRsbbqZ+FciOIR/zcBHje2FM9iA8OZifikeTK0DX g5cMn6IfQiccFXYvdltMGjRxpYu5A9dNkuRj1YCTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJbfinaAeU/wauwhqsNy3FwNESH4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzVmZmFlYjZmLTIwNTYtNDJhZS1iMGRlLWQxZmZmMDUzYTY2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAIwDQYJKoZIhvcNAQELBQADggEBADiKlsrCj7rUCzuDxmAQDEZ0E3yC dEYYY5fAnHmivdmGd1nsGimnKZtMuuH4j+4iAe9wv36o+3bfi9IEkW/LVTLfGpQ5 MCcsTEn9FbdgAKhB5JY8LcEVr/vxh99jXbovZY5s65/LVP9t4AMl3MvN/spvHHat r7n/vMyolAigdamoxmP4ouwu3D5A9ebYG/RDjvGsmvtoxG7kx10pX9E86fKTwyVw A4EUotL6U/SvQoZ76YCsXw6mwqHGTQmVZ8owireUZ2r6rI++YWqcMVSmVgi0v9l5 EkyH5KWWdwcSoQ32mhI3LSq0x8Mwm3OAtgKd5dVgvvt5pYJK4T7h9/mKqI8= -----END CERTIFICATE-----Generated at Fri Jul 25 17:26:20 2025 by rpki-client