$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa File: 3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa (raw, json) Hash identifier: SodILce6JDVrjg55Cyq3jPJnA2BZlEU4XqrMaqjLylw= Subject key identifier: F2:5E:38:64:19:D9:B1:40:1C:3C:09:2F:68:6F:A8:A6:42:87:4F:B7 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2774EF0B0896FED17FA6BD5D11CE2E17D63B86A3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa Signing time: Mon 30 Jun 2025 17:40:51 +0000 ROA not before: Mon 30 Jun 2025 17:40:51 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:74:ef:0b:08:96:fe:d1:7f:a6:bd:5d:11:ce:2e:17:d6:3b:86:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:51 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=10255185b3007785002a5dcb6a6858e4f1eca4a80e6212e93bd816a94c2f0d64, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d7:06:55:38:b0:5c:35:e6:bb:68:ae:a6:92: b0:f6:f6:43:b8:61:21:84:13:14:71:04:b5:41:b9: 9a:a0:27:2e:c5:70:a7:ec:b7:8e:f4:40:81:1f:e0: e8:1b:2a:f6:48:3c:59:56:ac:f2:ba:5d:28:f1:57: 26:66:e5:79:59:37:38:62:92:e1:65:56:00:c0:2a: 6a:11:90:be:97:bb:ee:95:a7:f9:fe:a6:87:fe:1e: 93:65:bd:bb:59:44:ef:9c:e4:94:51:e9:4b:b1:66: c4:f4:e4:31:dd:26:43:f2:b2:94:17:46:19:3d:b4: 6b:dd:51:80:42:7e:9a:5a:34:8b:50:ae:51:bb:c1: 47:a0:fd:fc:bf:62:0c:4f:3c:80:01:20:bd:ea:37: bd:0e:bd:d4:c7:7f:92:d6:51:be:b0:7d:78:b7:1c: ab:db:06:2b:ad:c0:f1:50:af:c2:65:c2:a9:c3:da: e4:23:96:6b:db:84:68:4e:5b:b1:d5:9d:45:6a:c9: f2:e0:dd:da:0a:ba:83:32:74:86:dd:58:dd:e9:87: a6:09:46:30:8e:02:e2:0a:dc:06:85:77:50:95:d3: 8b:e7:30:d3:d2:07:52:63:d6:8f:dd:a6:bf:87:8c: 15:0c:c0:4a:3b:12:d8:3e:54:1b:36:82:32:8f:be: d6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:5E:38:64:19:D9:B1:40:1C:3C:09:2F:68:6F:A8:A6:42:87:4F:B7 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.254.0/24 Signature Algorithm: sha256WithRSAEncryption 15:09:9f:bc:53:32:a7:11:4d:80:5d:d2:54:2b:de:1d:bd:6e: f9:83:88:dd:15:3c:a5:ae:e4:ff:c2:bb:14:83:cc:3f:9c:08: 4b:0c:59:67:d3:b4:9c:4e:34:14:22:b0:dc:72:a8:b9:0b:6b: 11:ce:d1:23:ab:cc:fe:20:df:8d:1e:e4:89:f3:b6:a9:0a:de: 87:29:40:d1:a0:18:dc:8d:7e:9d:b2:37:98:51:d2:ff:1d:b1: 53:50:af:6e:20:88:c3:aa:91:eb:6c:89:43:35:b2:84:23:5b: a1:0f:f1:d7:62:27:a4:3d:52:70:aa:44:f3:5c:41:6c:a2:47: bb:78:68:4f:98:6b:95:0c:d3:d2:ed:b9:58:fc:a7:11:c4:a4: af:0e:ec:ca:d2:6d:ad:cd:db:2f:ac:45:b9:c6:42:45:c7:87: 46:fd:df:19:0e:dd:4e:7e:bb:c1:fa:e8:37:e0:d4:f9:79:3f: 6d:c6:78:7c:6e:58:d6:94:74:16:33:b4:56:90:2b:6a:09:67: af:f6:78:77:18:1b:67:04:a5:c0:57:d6:6d:0d:f0:4a:82:f1: e5:76:43:d3:8c:34:98:4b:60:68:ec:ad:40:71:73:af:c3:98: 67:70:d2:6d:8b:f5:f9:b7:c8:d7:1e:68:ad:3a:74:e9:65:b8: 0c:85:f9:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ3TvCwiW/tF/pr1dEc4uF9Y7hqMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDUxWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDI1NTE4NWIzMDA3Nzg1MDAyYTVkY2I2YTY4NThlNGYx ZWNhNGE4MGU2MjEyZTkzYmQ4MTZhOTRjMmYwZDY0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC21wZVOLBcNea7aK6mkrD29kO4YSGEExRxBLVBuZqgJy7F cKfst470QIEf4OgbKvZIPFlWrPK6XSjxVyZm5XlZNzhikuFlVgDAKmoRkL6Xu+6V p/n+pof+HpNlvbtZRO+c5JRR6UuxZsT05DHdJkPyspQXRhk9tGvdUYBCfppaNItQ rlG7wUeg/fy/YgxPPIABIL3qN70OvdTHf5LWUb6wfXi3HKvbBiutwPFQr8JlwqnD 2uQjlmvbhGhOW7HVnUVqyfLg3doKuoMydIbdWN3ph6YJRjCOAuIK3AaFd1CV04vn MNPSB1Jj1o/dpr+HjBUMwEo7Etg+VBs2gjKPvtbtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8l44ZBnZsUAcPAkvaG+opkKHT7cwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzNlMGFhYjhlLTc4YTEtNGI0YS1iODdjLTRhNzkyOTRmYzBhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYP4wDQYJKoZIhvcNAQELBQADggEBABUJn7xTMqcRTYBd0lQr3h29bvmD iN0VPKWu5P/CuxSDzD+cCEsMWWfTtJxONBQisNxyqLkLaxHO0SOrzP4g340e5Inz tqkK3ocpQNGgGNyNfp2yN5hR0v8dsVNQr24giMOqketsiUM1soQjW6EP8ddiJ6Q9 UnCqRPNcQWyiR7t4aE+Ya5UM09LtuVj8pxHEpK8O7MrSba3N2y+sRbnGQkXHh0b9 3xkO3U5+u8H66Dfg1Pl5P23GeHxuWNaUdBYztFaQK2oJZ6/2eHcYG2cEpcBX1m0N 8EqC8eV2Q9OMNJhLYGjsrUBxc6/DmGdw0m2L9fm3yNceaK06dOlluAyF+dc= -----END CERTIFICATE-----Generated at Tue Jul 1 01:01:27 2025 by rpki-client