$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa File: 2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa (raw, json) Hash identifier: 7PWcZ7ZA7oGgOSYwbA5oi69KvmHAwIWhGVqzpccRIU8= Subject key identifier: CE:3B:91:BD:0A:66:AE:B5:6C:51:52:75:A7:04:B2:88:67:ED:7F:4A Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 61619E83E4562D3B910C028B7E97A3B7699777F4 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa Signing time: Sat 10 May 2025 00:50:18 +0000 ROA not before: Sat 10 May 2025 00:50:18 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:61:9e:83:e4:56:2d:3b:91:0c:02:8b:7e:97:a3:b7:69:97:77:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 10 00:50:18 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=4d2334c0ef2f72e35bd8968852ab8be385d78019d14edf4f29ecbba07db81190, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a7:15:02:7a:84:ea:c7:39:9b:53:ba:e0:d3: 18:97:e7:f8:e1:d2:44:3a:12:ec:d2:3d:5e:56:35: fe:b0:99:f2:ce:ef:1b:b6:6f:7d:f5:86:bc:78:b5: 6c:87:a6:31:6e:4b:ce:8f:ba:09:4c:3f:0f:fe:3f: 74:ca:cb:ed:c9:f3:0e:17:e4:59:24:9b:47:69:44: 73:73:bb:6f:4c:ff:3e:69:d4:ac:b1:8d:2a:05:7f: 01:dc:c5:ea:51:30:05:dc:75:6f:cc:61:61:27:aa: 8f:3f:1c:63:44:b0:57:6c:ed:23:8b:0a:e6:8c:dc: 56:fb:c0:35:08:9f:38:26:43:e5:e7:61:8d:8b:7d: e7:e1:02:24:5d:16:6a:51:3c:ac:9f:9c:96:da:ec: 21:9f:32:fe:0e:11:08:75:92:bf:db:91:4a:ab:9e: 58:9e:86:0a:53:5f:e3:48:63:76:86:9e:83:81:3b: 41:5a:a1:04:fa:df:08:04:9d:75:7f:23:59:00:e4: da:fd:5d:94:c0:4e:e7:86:ac:41:2b:f5:1e:05:b9: f4:fe:41:d0:02:c1:d8:90:25:52:c0:98:56:61:ac: ae:17:60:f3:c5:b8:80:5c:68:38:bf:68:80:61:8f: 25:6a:26:90:0d:56:5b:5e:c7:d1:84:b3:3c:12:f7: a2:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:3B:91:BD:0A:66:AE:B5:6C:51:52:75:A7:04:B2:88:67:ED:7F:4A X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2ca5264c-7bf5-4248-b6ad-dd9cf57a2be3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:e7:86:43:72:39:65:8f:1f:6a:ce:e4:47:6f:86:2d:0d:47: 3d:d6:db:9e:23:2e:c5:b9:8c:0b:9c:c0:8e:7c:cf:b2:9e:51: 5a:af:b3:d7:1a:c0:21:4b:0f:f1:55:a7:28:8a:66:52:1c:18: d8:60:b3:37:87:9a:6d:76:05:86:e7:46:64:53:8a:6e:f4:3e: ef:33:bd:28:4b:d4:36:c2:a1:5d:cc:33:c5:e3:25:f5:8c:08: 2c:4b:50:0a:94:f8:26:69:43:3c:e7:e4:0d:9b:8c:f3:b8:ea: 9e:2d:ef:18:23:7d:df:60:dc:dd:63:0a:77:ab:ff:9e:81:89: 70:65:c5:f8:5e:f2:2e:c1:6d:46:05:e1:4b:26:b3:1a:59:d4: ea:37:0d:4e:d6:38:f2:63:a3:3a:bf:bb:76:4d:69:4c:72:a7: 4b:97:53:85:98:d9:26:8f:b2:a4:9c:ce:23:17:ed:d2:4d:b8: 67:21:68:6e:2f:79:1e:61:12:dd:84:51:98:52:4a:36:ce:3e: e6:47:1a:00:08:bf:4e:73:fb:17:41:bd:03:c1:12:33:6c:26: 86:ac:b9:10:af:ca:43:1e:d8:7b:69:45:25:34:72:85:6a:1a: d2:71:4b:2d:c2:c3:44:ee:7f:36:f3:f2:ca:73:95:f1:c3:ac: 85:7a:bd:54 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYWGeg+RWLTuRDAKLfpejt2mXd/QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTEwMDA1MDE4WhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZDIzMzRjMGVmMmY3MmUzNWJkODk2ODg1MmFiOGJlMzg1 ZDc4MDE5ZDE0ZWRmNGYyOWVjYmJhMDdkYjgxMTkwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCapxUCeoTqxzmbU7rg0xiX5/jh0kQ6EuzSPV5WNf6wmfLO 7xu2b331hrx4tWyHpjFuS86PuglMPw/+P3TKy+3J8w4X5Fkkm0dpRHNzu29M/z5p 1KyxjSoFfwHcxepRMAXcdW/MYWEnqo8/HGNEsFds7SOLCuaM3Fb7wDUInzgmQ+Xn YY2LfefhAiRdFmpRPKyfnJba7CGfMv4OEQh1kr/bkUqrnliehgpTX+NIY3aGnoOB O0FaoQT63wgEnXV/I1kA5Nr9XZTATueGrEEr9R4FufT+QdACwdiQJVLAmFZhrK4X YPPFuIBcaDi/aIBhjyVqJpANVltex9GEszwS96LrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzjuRvQpmrrVsUVJ1pwSyiGftf0owHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJjYTUyNjRjLTdiZjUtNDI0OC1iNmFkLWRkOWNmNTdhMmJlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPQwDQYJKoZIhvcNAQELBQADggEBAErnhkNyOWWPH2rO5Edvhi0NRz3W 254jLsW5jAucwI58z7KeUVqvs9cawCFLD/FVpyiKZlIcGNhgszeHmm12BYbnRmRT im70Pu8zvShL1DbCoV3MM8XjJfWMCCxLUAqU+CZpQzzn5A2bjPO46p4t7xgjfd9g 3N1jCner/56BiXBlxfhe8i7BbUYF4UsmsxpZ1Oo3DU7WOPJjozq/u3ZNaUxyp0uX U4WY2SaPsqScziMX7dJNuGchaG4veR5hEt2EUZhSSjbOPuZHGgAIv05z+xdBvQPB EjNsJoasuRCvykMe2HtpRSU0coVqGtJxSy3Cw0Tufzbz8spzlfHDrIV6vVQ= -----END CERTIFICATE-----Generated at Mon Jun 2 16:44:12 2025 by rpki-client