$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa File: ecc15691-9732-4fda-b2d1-5ad157c2818e.roa (raw, json) Hash identifier: D0SucqFdARgBw2IRtMR9wgqP0CbAwl0BdggsD0dVnoY= Subject key identifier: 38:97:2F:9E:15:81:76:02:59:3B:4F:78:B4:19:49:FE:46:04:02:BE Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7D5847A66018B45D076F5189AD5D27AEEF1D9396 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa Signing time: Fri 21 Mar 2025 00:50:15 +0000 ROA not before: Fri 21 Mar 2025 00:50:15 +0000 ROA not after: Fri 25 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:58:47:a6:60:18:b4:5d:07:6f:51:89:ad:5d:27:ae:ef:1d:93:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Mar 21 00:50:15 2025 GMT Not After : Apr 25 23:59:59 2025 GMT Subject: CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c3:6f:68:b9:66:a4:68:96:67:fc:76:93:a3: 39:81:a3:02:b7:ac:da:db:0e:23:45:8d:c8:49:e9: 52:3f:e5:76:f4:f4:c0:e4:f8:6a:8d:f5:d0:eb:f8: 81:1a:31:e8:81:81:87:b5:e7:08:fe:eb:4c:32:4e: 7c:64:c3:be:a4:f5:47:45:63:3b:15:be:03:00:d1: 30:18:73:8c:41:ae:5e:2c:d0:5a:40:05:18:80:40: ed:a5:ae:c6:a1:25:00:4b:b5:8f:5e:b8:f0:8d:9c: 9e:1b:71:d7:c8:f9:7f:88:f8:c2:a2:90:83:9b:d9: 0f:dc:3c:70:af:e5:89:f4:fe:e6:34:1f:10:4e:24: 8a:cc:c5:09:0c:73:45:60:a2:f0:48:7e:ba:dd:c8: 33:f6:f7:5f:34:d2:ab:db:85:46:df:68:4b:91:1d: ca:c7:68:a7:6a:c8:62:5f:9b:b4:f0:ab:4e:b2:de: 97:2d:f9:73:c1:a7:ac:2a:d8:d6:49:c3:f2:e3:30: 5b:84:73:b1:88:b8:f4:a0:d8:27:99:5e:a6:0b:8d: 20:30:43:a8:a3:8b:3d:cb:cd:d3:11:3f:90:91:0c: 79:2e:ab:fb:ac:b2:3b:35:1a:c5:b5:ad:43:f7:45: 07:6c:9a:6e:e1:89:61:a8:4c:aa:8f:ec:03:b5:a6: 2a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:97:2F:9E:15:81:76:02:59:3B:4F:78:B4:19:49:FE:46:04:02:BE X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.3.0/24 Signature Algorithm: sha256WithRSAEncryption 30:9e:1c:b7:13:ae:85:98:83:bd:86:03:37:7a:4c:a6:3d:94: 89:0a:9c:1a:59:3d:1d:3a:fe:15:ca:49:73:d1:95:37:e4:a0: d1:40:c8:4a:f0:76:cc:5a:51:56:cb:8e:9f:f7:e5:23:6f:3f: e1:4b:14:b6:cf:9c:a0:f6:db:71:7b:08:44:c5:62:7d:ae:20: d0:5b:2b:f8:4f:63:f8:70:d9:8e:9a:0a:30:7b:bd:12:92:7d: 49:75:53:b7:87:4b:30:cb:24:9c:6f:08:ea:82:12:83:6d:a7: 31:46:03:25:ce:1a:a6:2b:7e:bf:98:3e:77:75:9b:8c:e0:01: 22:af:60:66:a7:76:03:15:5d:87:db:93:83:f3:60:ea:f8:81: ae:09:7f:fa:03:2e:dd:3f:67:92:b4:9e:9a:c8:1f:e4:89:2a: 29:00:e1:5e:94:d0:df:57:25:b1:4b:b9:d7:52:21:b7:a6:2b: b3:dd:51:11:f8:60:63:b6:2a:e0:2b:bd:4f:f2:19:e1:69:8b: 08:da:79:22:a9:5e:ba:8d:1a:ff:52:55:34:d6:ba:3e:f0:19: 33:6d:61:f3:22:01:1a:e1:1d:8c:e9:5f:6c:39:8d:f0:a9:ab: ff:20:b2:26:67:43:80:33:e1:81:45:50:63:f4:d9:ff:2a:90: a7:21:8b:11 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfVhHpmAYtF0Hb1GJrV0nru8dk5YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwMzIxMDA1MDE1WhcNMjUwNDI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDJjYTY4ZDY2MDU5YjRlM2I2YTM3YmM1Mjk3MzAxMzg1 ZjFlNWZlM2JjMTIzZjRjNTBhMDRjYTVmNzJlNWI4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2w29ouWakaJZn/HaTozmBowK3rNrbDiNFjchJ6VI/5Xb0 9MDk+GqN9dDr+IEaMeiBgYe15wj+60wyTnxkw76k9UdFYzsVvgMA0TAYc4xBrl4s 0FpABRiAQO2lrsahJQBLtY9euPCNnJ4bcdfI+X+I+MKikIOb2Q/cPHCv5Yn0/uY0 HxBOJIrMxQkMc0VgovBIfrrdyDP291800qvbhUbfaEuRHcrHaKdqyGJfm7Twq06y 3pct+XPBp6wq2NZJw/LjMFuEc7GIuPSg2CeZXqYLjSAwQ6ijiz3LzdMRP5CRDHku q/ussjs1GsW1rUP3RQdsmm7hiWGoTKqP7AO1pio7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOJcvnhWBdgJZO094tBlJ/kYEAr4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2VjYzE1NjkxLTk3MzItNGZkYS1iMmQxLTVhZDE1N2MyODE4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAMwDQYJKoZIhvcNAQELBQADggEBADCeHLcTroWYg72GAzd6TKY9lIkK nBpZPR06/hXKSXPRlTfkoNFAyErwdsxaUVbLjp/35SNvP+FLFLbPnKD223F7CETF Yn2uINBbK/hPY/hw2Y6aCjB7vRKSfUl1U7eHSzDLJJxvCOqCEoNtpzFGAyXOGqYr fr+YPnd1m4zgASKvYGandgMVXYfbk4PzYOr4ga4Jf/oDLt0/Z5K0nprIH+SJKikA 4V6U0N9XJbFLuddSIbemK7PdURH4YGO2KuArvU/yGeFpiwjaeSKpXrqNGv9SVTTW uj7wGTNtYfMiARrhHYzpX2w5jfCpq/8gsiZnQ4Az4YFFUGP02f8qkKchixE= -----END CERTIFICATE-----Generated at Sun Apr 6 15:17:44 2025 by rpki-client