$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/906a4434-ef79-4be5-917c-827859a9939a.roa File: 906a4434-ef79-4be5-917c-827859a9939a.roa (raw, json) Hash identifier: pyFiuaSYvZ5fzEyH0zEQ0ZLLnlAI/wiPhSY6sz8eFe4= Subject key identifier: 36:16:6B:09:1B:22:6E:E2:3E:F1:DE:49:6E:2D:8E:01:73:E0:7E:CB Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6811195D3F9537827BD23E9AC5EFCD009B606CF4 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/906a4434-ef79-4be5-917c-827859a9939a.roa Signing time: Mon 17 Mar 2025 15:40:00 +0000 ROA not before: Mon 17 Mar 2025 15:40:00 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:11:19:5d:3f:95:37:82:7b:d2:3e:9a:c5:ef:cd:00:9b:60:6c:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Mar 17 15:40:00 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:17:e5:46:de:2d:cc:b9:7f:c1:14:c1:77:1e: dd:58:02:5e:29:21:5e:f2:c9:46:9c:6a:23:57:93: d6:2d:1c:30:80:a6:4e:7d:65:93:5e:3e:42:44:30: 2b:29:c7:1b:c8:5d:5b:52:e2:04:f6:5e:c1:31:20: cc:31:6a:ad:1f:9b:58:1a:9e:d3:0c:30:95:48:ed: a0:0a:6b:f1:96:78:11:34:e1:c5:bb:20:bc:00:9f: de:99:0e:60:6f:b0:da:2d:db:1d:c1:d3:c6:7a:5d: 62:bf:7e:46:ee:b9:b3:48:74:80:38:9a:c4:e5:7c: f6:84:e1:8f:1f:54:e9:98:7f:6f:8f:8c:ba:7d:ad: 6d:db:9a:03:e5:35:af:ab:54:60:55:48:14:3a:e6: 88:58:6a:e6:e7:9e:bb:b8:86:f9:9c:9b:f9:62:c4: 94:ae:64:aa:97:8d:d0:de:1e:f6:91:dc:57:81:51: 1e:56:3e:fb:d8:f6:c3:03:37:33:69:08:b1:03:cd: e0:d9:5e:61:6a:aa:e1:4a:5b:11:00:e8:92:81:a3: f2:4a:2f:eb:3a:d3:81:b8:1f:94:ce:d7:5d:37:9a: 84:d8:4a:da:d9:e0:72:24:04:d6:4f:f5:04:7e:f8: af:86:48:50:d0:96:19:b7:87:b0:7f:55:10:a2:5d: a0:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:16:6B:09:1B:22:6E:E2:3E:F1:DE:49:6E:2D:8E:01:73:E0:7E:CB X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/906a4434-ef79-4be5-917c-827859a9939a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.246.0/24 Signature Algorithm: sha256WithRSAEncryption 64:44:f5:ec:90:2f:76:8e:51:63:0b:4e:82:80:2f:8e:2f:98: 3a:31:68:d0:c1:08:0b:f6:b1:11:a9:7a:37:fe:ce:3b:67:40: e4:41:69:e9:56:c4:3f:91:30:4b:2d:5a:37:a8:2b:67:a2:2d: fa:e1:d5:44:ac:09:a9:09:71:ee:92:e2:aa:2c:58:aa:a3:86: ec:4f:7b:0b:9a:e3:da:89:da:99:7c:27:4a:ce:d9:2f:8f:61: 97:3e:40:f4:83:5d:22:7a:d0:af:f5:81:bd:72:db:f1:84:05: 7e:ef:0f:6c:e4:78:77:92:63:72:51:99:64:b2:ab:cb:6e:46: 83:62:a0:2b:12:f0:69:1a:29:7f:89:12:e9:6c:7a:6d:36:d7: be:f1:9a:1c:aa:26:15:f3:59:b7:1f:f4:a9:75:41:2e:e2:42: 89:f8:ff:d0:44:24:33:04:2e:b5:96:7e:6a:b4:2f:1c:f7:68: 4e:28:2c:04:73:55:40:b0:7e:61:6d:11:29:3c:0b:ef:1c:aa: ca:50:cd:4d:52:70:5f:93:f2:a6:4e:37:ae:ee:6e:7e:c8:6e: b5:4d:b6:fb:bb:77:7c:91:b5:7a:d1:3b:44:28:16:b8:2f:0d: a7:83:38:bb:84:36:e6:b4:7d:fd:d4:70:b2:a8:b7:c8:5e:b2: 70:d3:97:3e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaBEZXT+VN4J70j6axe/NAJtgbPQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwMzE3MTU0MDAwWhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1Yzc2MGVjNzkxZGFlOTMyMGRmMDA4Y2FhMTIzZjgwMTEz MzI1NjY4NzBiYmIwMTA2N2UzMTA4NWEyZjBlYWQ2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkF+VG3i3MuX/BFMF3Ht1YAl4pIV7yyUacaiNXk9YtHDCA pk59ZZNePkJEMCspxxvIXVtS4gT2XsExIMwxaq0fm1gantMMMJVI7aAKa/GWeBE0 4cW7ILwAn96ZDmBvsNot2x3B08Z6XWK/fkbuubNIdIA4msTlfPaE4Y8fVOmYf2+P jLp9rW3bmgPlNa+rVGBVSBQ65ohYaubnnru4hvmcm/lixJSuZKqXjdDeHvaR3FeB UR5WPvvY9sMDNzNpCLEDzeDZXmFqquFKWxEA6JKBo/JKL+s604G4H5TO1103moTY StrZ4HIkBNZP9QR++K+GSFDQlhm3h7B/VRCiXaBzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNhZrCRsibuI+8d5Jbi2OAXPgfsswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzkwNmE0NDM0LWVmNzktNGJlNS05MTdjLTgyNzg1OWE5OTM5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPYwDQYJKoZIhvcNAQELBQADggEBAGRE9eyQL3aOUWMLToKAL44vmDox aNDBCAv2sRGpejf+zjtnQORBaelWxD+RMEstWjeoK2eiLfrh1USsCakJce6S4qos WKqjhuxPewua49qJ2pl8J0rO2S+PYZc+QPSDXSJ60K/1gb1y2/GEBX7vD2zkeHeS Y3JRmWSyq8tuRoNioCsS8GkaKX+JEulsem02177xmhyqJhXzWbcf9Kl1QS7iQon4 /9BEJDMELrWWfmq0Lxz3aE4oLARzVUCwfmFtESk8C+8cqspQzU1ScF+T8qZON67u bn7IbrVNtvu7d3yRtXrRO0QoFrgvDaeDOLuENua0ff3UcLKot8hesnDTlz4= -----END CERTIFICATE-----Generated at Sat Apr 5 16:51:28 2025 by rpki-client