$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9761c5a0-4e06-4534-a45f-5dce788a2329.roa File: 9761c5a0-4e06-4534-a45f-5dce788a2329.roa (raw, json) Hash identifier: oGicbtIT3AH7KKXmGkNVFicsdkDoO9STav9u1W87mu4= Subject key identifier: 35:90:80:F1:2D:75:97:67:7A:7B:12:FF:3D:1C:BD:11:7A:25:D0:3D Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2B03C23C5A547B387775022A3C43158D16827551 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9761c5a0-4e06-4534-a45f-5dce788a2329.roa Signing time: Tue 01 Apr 2025 15:00:14 +0000 ROA not before: Tue 01 Apr 2025 15:00:14 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 12 Apr 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:03:c2:3c:5a:54:7b:38:77:75:02:2a:3c:43:15:8d:16:82:75:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 1 15:00:14 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1f:c6:1a:2f:5c:a1:a3:e0:37:13:a7:2e:7b: 06:14:bc:a4:e8:62:aa:8e:f3:f2:1d:5b:7f:5e:92: 48:7d:c8:57:b6:a5:1f:01:86:c5:cc:9a:86:96:0a: 7e:fd:8d:55:37:7d:c0:70:ae:44:6b:60:89:96:d1: 75:bf:47:37:09:f9:c1:49:c3:bf:bc:e7:b9:94:5e: 92:b8:07:0b:b1:ff:df:81:dd:d6:36:e1:fe:1f:26: 16:38:98:97:39:a1:2b:dc:82:07:a4:34:bf:ee:2f: 6d:ac:47:1a:7e:81:7c:b9:9d:7a:42:7b:e6:9c:91: bd:e3:96:d5:57:d2:d9:44:cf:32:ea:de:ef:c1:82: 19:34:c8:3e:cb:21:fa:a5:68:89:56:68:fe:4a:5d: 35:9e:1d:2a:76:90:3e:a3:70:be:7d:fb:90:28:f0: a1:4a:6c:1b:19:0c:65:74:f6:ce:13:30:fb:2b:d8: 74:e5:ea:20:36:c8:9a:25:f7:f8:bb:88:3d:e4:f6: 78:1b:83:6f:34:be:9b:ad:3e:ed:53:8d:de:5f:c2: d0:60:f3:e9:99:e9:ef:c2:ca:09:17:57:38:d8:90: bc:f0:b8:a7:57:9f:69:6c:bf:d5:a8:d6:6f:d3:3d: e5:e5:55:60:75:ef:36:a7:af:40:f3:ee:4d:d1:ea: ec:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:90:80:F1:2D:75:97:67:7A:7B:12:FF:3D:1C:BD:11:7A:25:D0:3D X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9761c5a0-4e06-4534-a45f-5dce788a2329.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.5.0/24 Signature Algorithm: sha256WithRSAEncryption 41:be:b6:fe:ef:2a:34:2f:16:d5:80:ab:b8:d4:12:f0:20:46: 5d:cd:f6:69:86:e4:fc:ce:88:1e:4b:29:3f:af:a7:3a:9c:2e: ed:d6:ff:e9:31:0f:a4:1a:42:5c:3d:bc:e9:67:d3:78:97:66: bf:7f:ac:f1:7d:87:9d:e8:c5:77:16:95:57:0c:5b:6e:15:61: 93:83:c3:04:e1:ad:f4:60:61:a4:90:74:be:56:d0:17:a7:ac: b2:7d:d7:af:14:f8:d1:31:ea:87:c0:fb:4e:b7:6d:93:ff:6d: b8:31:6f:74:83:c2:0b:6e:d0:d2:aa:cf:c9:00:a5:c8:3d:65: f4:cc:94:b3:34:47:93:9a:9c:70:dd:50:e6:d0:a2:97:31:83: bd:37:f8:35:53:b8:93:1a:42:d1:51:63:4d:c3:8e:5c:c3:41: 26:18:56:fd:7d:de:d4:79:c5:ba:3c:a3:af:0e:3f:01:12:0e: 01:52:d9:d6:56:61:62:9d:c8:7e:3f:8a:58:16:c1:02:72:21: 84:97:eb:f5:ba:20:09:07:d1:e9:0b:04:bd:fc:d7:18:ee:d4: 93:74:53:d3:99:dc:6a:d6:79:eb:c9:a5:e8:ff:ee:64:56:a3: e2:fb:7c:c3:36:3f:ce:e3:24:ac:2a:47:47:fa:8c:ee:b6:14: 9e:2b:2e:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKwPCPFpUezh3dQIqPEMVjRaCdVEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDAxMTUwMDE0WhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZmQ5OTUyYTE3NjBkOTdkNWYzNGZhNmMyYmNiMDlkNTc1 NmE0NTY4NzM5NmYxNmEyYzMzOGZmY2Y4NGExYzYzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWH8YaL1yho+A3E6cuewYUvKToYqqO8/IdW39ekkh9yFe2 pR8BhsXMmoaWCn79jVU3fcBwrkRrYImW0XW/RzcJ+cFJw7+857mUXpK4Bwux/9+B 3dY24f4fJhY4mJc5oSvcggekNL/uL22sRxp+gXy5nXpCe+ackb3jltVX0tlEzzLq 3u/Bghk0yD7LIfqlaIlWaP5KXTWeHSp2kD6jcL59+5Ao8KFKbBsZDGV09s4TMPsr 2HTl6iA2yJol9/i7iD3k9ngbg280vputPu1Tjd5fwtBg8+mZ6e/CygkXVzjYkLzw uKdXn2lsv9Wo1m/TPeXlVWB17zanr0Dz7k3R6uzFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNZCA8S11l2d6exL/PRy9EXol0D0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzk3NjFjNWEwLTRlMDYtNDUzNC1hNDVmLTVkY2U3ODhhMjMyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAUwDQYJKoZIhvcNAQELBQADggEBAEG+tv7vKjQvFtWAq7jUEvAgRl3N 9mmG5PzOiB5LKT+vpzqcLu3W/+kxD6QaQlw9vOln03iXZr9/rPF9h53oxXcWlVcM W24VYZODwwThrfRgYaSQdL5W0BenrLJ9168U+NEx6ofA+063bZP/bbgxb3SDwgtu 0NKqz8kApcg9ZfTMlLM0R5OanHDdUObQopcxg703+DVTuJMaQtFRY03DjlzDQSYY Vv193tR5xbo8o68OPwESDgFS2dZWYWKdyH4/ilgWwQJyIYSX6/W6IAkH0ekLBL38 1xju1JN0U9OZ3GrWeevJpej/7mRWo+L7fMM2P87jJKwqR0f6jO62FJ4rLqA= -----END CERTIFICATE-----Generated at Thu Apr 10 21:19:17 2025 by rpki-client