$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3358e5d4-424a-4b50-a5a7-b28e80102190.roa File: 3358e5d4-424a-4b50-a5a7-b28e80102190.roa (raw, json) Hash identifier: K6rGhS0iOs2bzch119tUM/jslFDYvn70J8U43nFEpG0= Subject key identifier: E1:F0:B8:B1:DF:B7:CF:5B:F2:55:C8:BC:8E:50:74:92:16:96:D0:ED Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4835C39B6F127A6BAA492273ACC7F8F7C38CEA5E Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3358e5d4-424a-4b50-a5a7-b28e80102190.roa Signing time: Tue 20 May 2025 18:00:19 +0000 ROA not before: Tue 20 May 2025 18:00:19 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:35:c3:9b:6f:12:7a:6b:aa:49:22:73:ac:c7:f8:f7:c3:8c:ea:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 20 18:00:19 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=0041ba45b04257c5ff95b34f816361cff60d10f594aae24394c046ef6459f16c, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:89:9a:ad:f6:6d:e2:4a:c0:1d:44:60:31:72: c3:1b:54:55:82:7a:f5:d5:f2:3e:61:2b:7d:a1:31: b2:91:d7:b4:76:8a:74:1e:6d:dd:01:8a:a1:31:74: 8c:c0:da:1a:b9:54:4a:2d:dd:89:5e:58:1a:a7:2d: 64:39:66:27:98:41:5f:e5:c7:80:77:eb:db:49:f7: db:e1:53:b3:41:c7:74:fa:d0:be:16:86:5a:d3:19: 4b:1c:5d:1f:54:4f:44:3a:ed:90:6c:b5:e6:08:0f: 87:9f:bf:06:f5:24:fa:ce:b8:5e:11:fd:0c:c1:fd: fb:3d:f7:62:9b:95:4d:ec:7c:32:34:44:95:91:f4: 74:dc:b7:81:ad:ff:45:2e:a8:c0:b3:82:b9:6d:30: 6e:53:29:74:be:46:8a:8d:38:2c:ed:6d:3a:40:a4: 20:f9:20:c4:ac:53:25:db:1b:b4:01:c2:ab:b9:f1: 88:42:19:e3:e1:34:92:c5:4a:8a:7d:9a:28:0e:79: e2:e7:ae:d8:cb:7a:35:34:f5:9f:4d:1f:35:c7:06: e2:65:79:31:79:5a:ea:8c:9a:6c:c3:93:c8:d2:fe: b8:5c:fe:6c:82:e3:9a:2b:75:7e:e5:4b:4f:e1:88: d8:6c:92:95:4c:94:32:ad:ae:c8:3d:4e:5c:f3:ba: 73:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F0:B8:B1:DF:B7:CF:5B:F2:55:C8:BC:8E:50:74:92:16:96:D0:ED X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3358e5d4-424a-4b50-a5a7-b28e80102190.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.128.0/22 Signature Algorithm: sha256WithRSAEncryption 53:d9:a4:18:76:0b:74:f6:b9:3a:6a:83:04:c7:e8:8d:c5:69: 69:4a:d2:bb:81:0e:cd:b9:f7:91:c6:dd:28:39:68:b4:69:01: b3:70:fe:34:11:72:0d:39:8f:4d:a7:06:c5:18:e7:4d:4c:a2: 61:dd:cd:d5:dc:88:cd:6d:75:f7:01:ae:ef:99:22:a4:2f:63: 50:c3:28:e7:c7:5f:ad:64:54:97:d9:eb:d8:0a:44:64:30:1b: 60:83:d6:5b:d0:e4:3e:85:4c:07:6e:9d:d6:6e:de:0f:58:2f: 09:2f:2e:4f:e0:45:8a:e5:8c:27:53:0d:87:4e:53:60:84:a0: 0b:b0:e7:b9:42:68:b4:bc:c1:f5:39:5d:e8:62:cc:9f:24:6a: f7:27:cd:98:e6:0d:1e:b9:ea:81:11:69:4a:ea:c3:69:f3:8f: 0a:9f:73:5c:5d:38:0a:9b:37:60:af:8b:cd:46:93:2f:85:75: 35:cd:de:4e:12:ed:9c:39:77:5e:67:0f:d8:17:87:c2:a7:2b: 25:37:90:16:5b:f2:7d:2a:9d:eb:75:4f:9b:46:9c:61:6f:18: 8f:7b:5c:ac:f9:f1:15:b6:2f:5a:bf:f5:2b:c2:11:45:99:70: c8:48:05:dc:5d:0c:37:72:ba:77:a1:8b:81:c6:68:29:9f:f0: 1f:22:5a:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSDXDm28SemuqSSJzrMf498OM6l4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTIwMTgwMDE5WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDQxYmE0NWIwNDI1N2M1ZmY5NWIzNGY4MTYzNjFjZmY2 MGQxMGY1OTRhYWUyNDM5NGMwNDZlZjY0NTlmMTZjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgiZqt9m3iSsAdRGAxcsMbVFWCevXV8j5hK32hMbKR17R2 inQebd0BiqExdIzA2hq5VEot3YleWBqnLWQ5ZieYQV/lx4B369tJ99vhU7NBx3T6 0L4WhlrTGUscXR9UT0Q67ZBsteYID4efvwb1JPrOuF4R/QzB/fs992KblU3sfDI0 RJWR9HTct4Gt/0UuqMCzgrltMG5TKXS+RoqNOCztbTpApCD5IMSsUyXbG7QBwqu5 8YhCGePhNJLFSop9migOeeLnrtjLejU09Z9NHzXHBuJleTF5WuqMmmzDk8jS/rhc /myC45ordX7lS0/hiNhskpVMlDKtrsg9TlzzunNDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4fC4sd+3z1vyVci8jlB0khaW0O0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzMzNThlNWQ0LTQyNGEtNGI1MC1hNWE3LWIyOGU4MDEwMjE5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYIAwDQYJKoZIhvcNAQELBQADggEBAFPZpBh2C3T2uTpqgwTH6I3FaWlK 0ruBDs2595HG3Sg5aLRpAbNw/jQRcg05j02nBsUY501MomHdzdXciM1tdfcBru+Z IqQvY1DDKOfHX61kVJfZ69gKRGQwG2CD1lvQ5D6FTAdundZu3g9YLwkvLk/gRYrl jCdTDYdOU2CEoAuw57lCaLS8wfU5XehizJ8kavcnzZjmDR656oERaUrqw2nzjwqf c1xdOAqbN2Cvi81Gky+FdTXN3k4S7Zw5d15nD9gXh8KnKyU3kBZb8n0qnet1T5tG nGFvGI97XKz58RW2L1q/9SvCEUWZcMhIBdxdDDdyunehi4HGaCmf8B8iWrI= -----END CERTIFICATE-----Generated at Mon Jun 2 16:52:24 2025 by rpki-client