$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4a409b3c-5797-4e0a-a251-693df1106b07.roa File: 4a409b3c-5797-4e0a-a251-693df1106b07.roa (raw, json) Hash identifier: Wq9tG0fDoqTKkQMvPzF1yRUsFuKvej2pnaLOW2uWCRY= Subject key identifier: 58:10:7D:0B:44:3D:A9:FB:A8:F2:BB:CA:30:B3:D0:9C:6E:2F:B2:CD Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 24C581C17CAAB0948E47618A2B26180897F8C05E Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4a409b3c-5797-4e0a-a251-693df1106b07.roa Signing time: Mon 30 Jun 2025 17:40:55 +0000 ROA not before: Mon 30 Jun 2025 17:40:55 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:c5:81:c1:7c:aa:b0:94:8e:47:61:8a:2b:26:18:08:97:f8:c0:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:55 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=5cf6f89449921f748831d2b0ab862b6a61a2196f1ac94ff8a2dbd2e7d5731f12, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:aa:5d:5a:38:13:e6:97:b0:2b:52:cf:9d:a6: bd:22:55:2b:45:fa:8e:d5:b4:2a:be:ea:60:b9:c1: 78:15:1d:38:62:75:c6:6f:29:a1:ce:2e:d7:4a:67: bf:01:a6:aa:16:42:2e:de:10:2c:a9:28:2d:3a:f3: 0c:88:12:94:c2:8f:91:f9:be:c8:10:98:aa:a6:c0: 45:36:f1:e7:a8:f8:b5:bc:bf:10:c4:4e:31:db:c8: 50:7b:bc:aa:76:d5:9c:10:27:66:a8:60:45:c1:78: 88:d0:0e:07:78:26:0d:53:d5:73:a8:0d:a8:d4:28: ce:0c:ee:0b:c2:b8:31:2e:38:f0:ff:52:70:a7:4c: d1:63:b8:65:99:20:7d:a4:62:d8:21:cf:8f:a0:6e: a7:a0:25:b4:69:79:58:64:ee:b3:9e:8e:3b:6c:2f: d6:84:6c:a7:2f:a2:ae:83:7b:0d:fe:ee:9e:20:9a: b2:50:00:26:b8:67:79:d9:bd:1c:38:4d:93:54:5e: 18:b5:c6:2d:91:be:49:56:07:aa:7e:95:ec:37:66: d2:2c:51:1d:16:eb:0c:6f:e3:d9:a2:32:fa:b5:d9: 1a:00:a3:19:7f:40:8a:ef:10:3d:23:3e:32:e9:a4: 0b:f7:1d:28:cc:61:8a:ef:8f:a9:ed:54:a1:88:0c: ca:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:10:7D:0B:44:3D:A9:FB:A8:F2:BB:CA:30:B3:D0:9C:6E:2F:B2:CD X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4a409b3c-5797-4e0a-a251-693df1106b07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.248.0/24 Signature Algorithm: sha256WithRSAEncryption 09:35:92:53:82:6f:ad:93:8a:5f:83:ed:1e:d8:c1:ee:0e:4f: f2:1e:13:10:8b:cd:f9:af:64:f3:e1:3a:ed:a7:b2:4b:d7:a9: 4b:bf:a0:db:a7:a2:d4:03:3f:77:35:c4:d8:fc:be:b5:9b:5c: 67:66:cf:0b:69:61:33:ab:a7:0d:50:3e:44:9a:b6:d5:d6:c6: cc:8c:29:1e:6e:11:62:d9:35:a4:79:74:2d:39:32:48:ac:07: b9:62:71:8d:55:61:10:42:f0:58:84:52:1a:47:70:da:9a:87: 25:57:b6:13:ae:98:ed:bd:23:be:0d:4b:7d:f2:10:97:08:bb: 3a:38:59:69:67:a8:bc:11:ef:b8:80:b2:af:a5:e7:24:1e:73: cf:88:b5:2f:9e:5a:0b:33:09:9e:83:fa:d0:8c:08:ff:5b:83: f9:fa:7b:2b:25:c7:0b:f9:1a:eb:6e:80:df:74:cf:48:73:8d: 58:7f:37:39:04:0b:f1:64:a8:a4:b3:d6:62:10:12:21:eb:46: c5:5d:e0:51:4c:74:a6:9c:ef:bf:dd:00:7d:bc:df:bc:68:0a: 65:b8:ab:31:00:39:78:9f:5c:dd:12:87:0f:f4:21:ec:39:fa: 4c:49:33:13:7c:d5:9b:f1:3d:fe:e8:83:dd:bd:de:b0:ec:c9: 3d:78:91:16 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJMWBwXyqsJSOR2GKKyYYCJf4wF4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDU1WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Y2Y2Zjg5NDQ5OTIxZjc0ODgzMWQyYjBhYjg2MmI2YTYx YTIxOTZmMWFjOTRmZjhhMmRiZDJlN2Q1NzMxZjEyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxql1aOBPml7ArUs+dpr0iVStF+o7VtCq+6mC5wXgVHThi dcZvKaHOLtdKZ78BpqoWQi7eECypKC068wyIEpTCj5H5vsgQmKqmwEU28eeo+LW8 vxDETjHbyFB7vKp21ZwQJ2aoYEXBeIjQDgd4Jg1T1XOoDajUKM4M7gvCuDEuOPD/ UnCnTNFjuGWZIH2kYtghz4+gbqegJbRpeVhk7rOejjtsL9aEbKcvoq6Dew3+7p4g mrJQACa4Z3nZvRw4TZNUXhi1xi2RvklWB6p+lew3ZtIsUR0W6wxv49miMvq12RoA oxl/QIrvED0jPjLppAv3HSjMYYrvj6ntVKGIDMphAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWBB9C0Q9qfuo8rvKMLPQnG4vss0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzRhNDA5YjNjLTU3OTctNGUwYS1hMjUxLTY5M2RmMTEwNmIwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPgwDQYJKoZIhvcNAQELBQADggEBAAk1klOCb62Til+D7R7Ywe4OT/Ie ExCLzfmvZPPhOu2nskvXqUu/oNunotQDP3c1xNj8vrWbXGdmzwtpYTOrpw1QPkSa ttXWxsyMKR5uEWLZNaR5dC05MkisB7licY1VYRBC8FiEUhpHcNqahyVXthOumO29 I74NS33yEJcIuzo4WWlnqLwR77iAsq+l5yQec8+ItS+eWgszCZ6D+tCMCP9bg/n6 eyslxwv5GutugN90z0hzjVh/NzkEC/FkqKSz1mIQEiHrRsVd4FFMdKac77/dAH28 37xoCmW4qzEAOXifXN0Shw/0Iew5+kxJMxN81ZvxPf7og9293rDsyT14kRY= -----END CERTIFICATE-----Generated at Tue Jul 1 01:21:54 2025 by rpki-client