$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8e88398f-80cd-4b06-bbdf-e3fab6e6abe1.roa File: 8e88398f-80cd-4b06-bbdf-e3fab6e6abe1.roa (raw, json) Hash identifier: CsKQALrbQImAVzjhP3Z6ATqA++7eAQIkI8O90pmL8kU= Subject key identifier: AF:08:42:3F:E6:CA:90:85:83:7C:3A:06:63:1F:E2:01:5C:9F:7E:6E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 399AA7F8108C3CE8DC89BA4D2AD390081FA6D874 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8e88398f-80cd-4b06-bbdf-e3fab6e6abe1.roa Signing time: Fri 21 Mar 2025 00:50:19 +0000 ROA not before: Fri 21 Mar 2025 00:50:19 +0000 ROA not after: Fri 25 Apr 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:9a:a7:f8:10:8c:3c:e8:dc:89:ba:4d:2a:d3:90:08:1f:a6:d8:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Mar 21 00:50:19 2025 GMT Not After : Apr 25 23:59:59 2025 GMT Subject: CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:24:56:b2:b2:ce:c1:e2:f2:90:6b:72:43:a3: 73:29:7b:b0:d0:3b:1b:67:5e:cb:2c:bd:59:bb:5c: 86:d2:ec:fb:4b:3f:da:1f:e9:46:55:3d:46:38:eb: 2d:77:1e:76:4d:bf:62:e5:c7:fc:f1:c5:c3:03:84: e9:51:e2:1e:1f:37:47:be:ab:6e:e2:15:74:82:24: 15:2a:67:af:dd:b3:a2:8e:fa:12:90:8d:9f:9c:ed: 69:e1:a0:20:38:33:df:f5:89:23:3f:b0:24:87:25: af:65:87:fb:9c:b2:4f:3b:9b:9d:9b:6c:26:67:37: 13:ae:cc:84:f0:03:53:40:b3:a6:0b:64:04:0d:50: 3b:08:42:5b:96:1e:c1:8c:f1:fd:7d:64:a1:35:c0: e6:2b:13:09:56:bf:d8:bb:9c:3f:2c:c9:24:43:e8: 79:4d:76:d7:7d:24:2c:5f:f1:3e:ef:ee:69:55:1a: 37:2f:e3:ef:7b:ba:bd:a1:c2:97:23:79:fd:c2:b7: 31:d6:c8:83:18:19:36:4c:9b:6e:19:ba:47:e1:fe: 32:65:30:7c:58:55:7c:83:4e:11:f5:bf:b3:6f:49: f1:32:fa:f2:b9:53:75:04:d0:90:c0:3f:6c:d9:64: 4f:c0:69:83:51:97:39:ae:cf:f6:51:36:d0:29:60: b5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:08:42:3F:E6:CA:90:85:83:7C:3A:06:63:1F:E2:01:5C:9F:7E:6E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8e88398f-80cd-4b06-bbdf-e3fab6e6abe1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.8.0/24 Signature Algorithm: sha256WithRSAEncryption 01:3e:9f:d3:4f:1d:9b:f8:b3:1c:8c:3a:4d:a4:1d:50:36:26: fd:4d:74:d7:d4:2e:a7:52:4c:21:0f:0b:c5:92:e2:c2:d7:3a: 85:cf:7a:84:76:38:f8:34:67:87:d7:e5:7b:f7:30:76:23:e8: dc:99:1c:e3:4c:c7:8c:e0:8a:e2:40:92:aa:bf:76:f3:69:8b: f2:11:9d:7a:92:15:04:b0:81:1a:da:fd:0c:1c:af:2d:af:82: 55:09:52:f9:20:1b:e6:50:4a:07:57:70:f7:12:ff:72:60:fd: e9:b0:7c:7a:d0:a7:02:49:bc:48:90:8a:08:ab:c9:1e:ac:31: 2a:f5:46:2f:75:25:41:0c:93:60:41:60:cb:78:04:a4:82:47: a5:95:40:ed:c8:61:42:4a:45:f7:b0:21:af:ab:61:c1:c4:2b: 45:10:2e:26:96:7a:d7:94:c0:2e:ea:ed:35:d9:53:92:15:ee: 01:2d:f5:13:04:a0:de:7a:48:84:b5:30:35:8a:f8:98:a8:55: 5e:80:55:ea:84:6d:79:ad:e8:3e:e2:89:4d:de:13:62:02:02: 98:61:53:8b:76:93:68:bc:a6:d1:13:24:25:d8:c4:72:20:d4: ac:51:32:27:72:1b:f0:0e:dc:af:5a:c6:e0:8f:43:ad:51:40: c8:05:5d:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOZqn+BCMPOjcibpNKtOQCB+m2HQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwMzIxMDA1MDE5WhcNMjUwNDI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTNhMDUwOWU4ZDcwM2JkMzA3YzRmODg3ZjE5NGEzNzA2 ZTUxZGRkOTQxZWNhN2QzOGQ2NDI5ZTcxOWZiMTdlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnJFayss7B4vKQa3JDo3Mpe7DQOxtnXsssvVm7XIbS7PtL P9of6UZVPUY46y13HnZNv2Llx/zxxcMDhOlR4h4fN0e+q27iFXSCJBUqZ6/ds6KO +hKQjZ+c7WnhoCA4M9/1iSM/sCSHJa9lh/ucsk87m52bbCZnNxOuzITwA1NAs6YL ZAQNUDsIQluWHsGM8f19ZKE1wOYrEwlWv9i7nD8sySRD6HlNdtd9JCxf8T7v7mlV Gjcv4+97ur2hwpcjef3CtzHWyIMYGTZMm24Zukfh/jJlMHxYVXyDThH1v7NvSfEy +vK5U3UE0JDAP2zZZE/AaYNRlzmuz/ZRNtApYLWJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrwhCP+bKkIWDfDoGYx/iAVyffm4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhlODgzOThmLTgwY2QtNGIwNi1iYmRmLWUzZmFiNmU2YWJlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAgwDQYJKoZIhvcNAQELBQADggEBAAE+n9NPHZv4sxyMOk2kHVA2Jv1N dNfULqdSTCEPC8WS4sLXOoXPeoR2OPg0Z4fX5Xv3MHYj6NyZHONMx4zgiuJAkqq/ dvNpi/IRnXqSFQSwgRra/Qwcry2vglUJUvkgG+ZQSgdXcPcS/3Jg/emwfHrQpwJJ vEiQigiryR6sMSr1Ri91JUEMk2BBYMt4BKSCR6WVQO3IYUJKRfewIa+rYcHEK0UQ LiaWeteUwC7q7TXZU5IV7gEt9RMEoN56SIS1MDWK+JioVV6AVeqEbXmt6D7iiU3e E2ICAphhU4t2k2i8ptETJCXYxHIg1KxRMidyG/AO3K9axuCPQ61RQMgFXaQ= -----END CERTIFICATE-----Generated at Sun Apr 6 06:05:42 2025 by rpki-client