$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa File: 3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa (raw, json) Hash identifier: lV8THjE1ahInhQj1qKNg9OYLQGDm0qdjU2qDFnuz8nw= Subject key identifier: D9:56:EB:F6:AA:B6:7D:D3:D8:E6:F8:0D:D8:1E:A9:C7:37:5F:91:AB Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 486A9DF526659430D89F46CB7A992A11C58D536A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa Signing time: Mon 30 Jun 2025 17:40:50 +0000 ROA not before: Mon 30 Jun 2025 17:40:50 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:6a:9d:f5:26:65:94:30:d8:9f:46:cb:7a:99:2a:11:c5:8d:53:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:50 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=67bc47e1ff28b2b8d082a5632783641dea000886013127f55832086403cfc1c4, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9d:84:5c:c2:d3:e9:42:a8:66:c9:ce:d8:6c: 8c:29:7b:2e:d7:73:87:a2:0b:e2:1c:f7:c2:39:57: fe:14:3f:be:4c:e4:82:61:d4:c8:24:1d:69:d4:cb: 97:7b:8b:09:c1:f5:40:2f:2d:1f:2a:0f:43:7a:81: 53:27:67:80:b5:c5:eb:20:ba:2b:3b:42:e9:cd:40: 6b:08:35:24:bb:72:be:28:de:8a:e0:dd:6d:0f:27: 91:ab:d9:08:cc:a9:e0:89:9d:32:7f:41:51:86:c6: 44:39:6d:3e:6d:96:55:eb:04:97:74:6d:1d:20:fb: eb:d0:8c:9e:59:73:26:0c:5c:71:b7:21:6a:22:bf: e4:cd:25:6b:2c:b9:0d:94:c4:0b:93:eb:18:ba:0f: d1:b6:8d:4a:0e:99:c8:32:b0:45:04:2a:81:77:1d: 84:8f:60:d6:01:a8:e7:49:6a:c3:03:e4:54:93:72: d1:df:ae:a4:5f:02:e5:53:ad:64:e1:37:d4:5e:7b: bb:3d:3b:1e:b9:ad:b7:14:a3:ed:b5:b1:e4:94:a7: 1c:ae:06:6c:4f:de:69:b3:52:96:11:f0:91:10:e6: 96:aa:b5:6f:d8:64:a4:ae:ea:24:6a:6c:48:a4:5b: 5e:1a:76:84:e2:c5:49:ad:2a:b6:64:a6:e3:e8:ec: 3f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:56:EB:F6:AA:B6:7D:D3:D8:E6:F8:0D:D8:1E:A9:C7:37:5F:91:AB X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.245.0/24 Signature Algorithm: sha256WithRSAEncryption 82:4b:b4:25:b6:59:55:b4:69:18:45:af:d4:39:51:c2:21:a0: f7:66:f0:71:40:92:90:7d:1a:af:bb:07:e4:45:c2:ff:f0:bf: 36:5e:7c:92:5f:64:0e:a1:15:37:d2:b8:9f:dd:0b:7e:57:57: 64:df:22:ab:bd:47:85:56:83:26:cb:38:af:03:d5:21:4d:26: 9e:f7:5f:56:c9:42:c3:bd:0a:65:12:66:14:bd:b7:e9:78:90: 73:41:06:86:db:0a:3b:98:15:b0:e7:5a:c5:53:81:3f:65:b2: 2c:d8:42:f8:b6:78:8c:55:16:de:c2:54:44:92:b6:ad:02:aa: 2a:41:85:f0:c2:08:1a:2b:18:c2:e1:bf:e0:75:c1:02:07:98: 2e:6f:ec:6d:21:0e:54:87:66:9d:3f:5b:be:37:97:e8:95:a6: ba:98:84:a0:d2:09:85:cc:8f:7a:91:dc:62:5d:6b:e7:29:fa: 13:40:60:36:87:3d:ff:25:12:39:b1:78:1d:20:3d:e3:45:e9: b9:be:d2:ed:55:a3:57:e1:6f:bc:71:e5:ac:67:e1:04:f9:64: 9c:47:e5:c1:20:ff:93:87:c9:c2:05:86:86:79:54:67:e8:a7: 22:15:2d:7a:39:3e:13:26:e2:86:8c:0a:b5:92:bb:46:e8:5b: 5f:07:2f:ab -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSGqd9SZllDDYn0bLepkqEcWNU2owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDUwWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2N2JjNDdlMWZmMjhiMmI4ZDA4MmE1NjMyNzgzNjQxZGVh MDAwODg2MDEzMTI3ZjU1ODMyMDg2NDAzY2ZjMWM0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfnYRcwtPpQqhmyc7YbIwpey7Xc4eiC+Ic98I5V/4UP75M 5IJh1MgkHWnUy5d7iwnB9UAvLR8qD0N6gVMnZ4C1xesguis7QunNQGsINSS7cr4o 3org3W0PJ5Gr2QjMqeCJnTJ/QVGGxkQ5bT5tllXrBJd0bR0g++vQjJ5ZcyYMXHG3 IWoiv+TNJWssuQ2UxAuT6xi6D9G2jUoOmcgysEUEKoF3HYSPYNYBqOdJasMD5FST ctHfrqRfAuVTrWThN9Ree7s9Ox65rbcUo+21seSUpxyuBmxP3mmzUpYR8JEQ5paq tW/YZKSu6iRqbEikW14adoTixUmtKrZkpuPo7D+3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2Vbr9qq2fdPY5vgN2B6pxzdfkaswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzNiOGJmMjMxLTJiMGUtNDZmOC04ZGIwLWEwYWYxNTAzZDc4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPUwDQYJKoZIhvcNAQELBQADggEBAIJLtCW2WVW0aRhFr9Q5UcIhoPdm 8HFAkpB9Gq+7B+RFwv/wvzZefJJfZA6hFTfSuJ/dC35XV2TfIqu9R4VWgybLOK8D 1SFNJp73X1bJQsO9CmUSZhS9t+l4kHNBBobbCjuYFbDnWsVTgT9lsizYQvi2eIxV Ft7CVESStq0CqipBhfDCCBorGMLhv+B1wQIHmC5v7G0hDlSHZp0/W743l+iVprqY hKDSCYXMj3qR3GJda+cp+hNAYDaHPf8lEjmxeB0gPeNF6bm+0u1Vo1fhb7xx5axn 4QT5ZJxH5cEg/5OHycIFhoZ5VGfopyIVLXo5PhMm4oaMCrWSu0boW18HL6s= -----END CERTIFICATE-----Generated at Tue Jul 1 01:16:38 2025 by rpki-client