$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6df93fb2-679f-4247-81c7-fd108c812488.roa File: 6df93fb2-679f-4247-81c7-fd108c812488.roa (raw, json) Hash identifier: y3zv1SpwhFhhhD9TbOupedQ3fd4Tn4oaAYM3EYja4g4= Subject key identifier: 1D:F7:C0:98:F2:45:74:59:B2:6B:2C:97:BE:58:44:AF:46:48:02:C3 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 369489FA1B9F055159676C440A2511A92F90B5CD Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6df93fb2-679f-4247-81c7-fd108c812488.roa Signing time: Mon 30 Jun 2025 17:50:09 +0000 ROA not before: Mon 30 Jun 2025 17:50:09 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:94:89:fa:1b:9f:05:51:59:67:6c:44:0a:25:11:a9:2f:90:b5:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:50:09 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=dc08d66248cd9241a7178782aa72e1cedaca9303075a599d90e536e80231c558, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1a:a9:a2:20:76:c1:78:bc:e8:91:19:62:ab: 32:cc:9a:49:73:8a:95:ba:0e:35:74:9a:ff:36:cd: 23:f7:94:d1:bb:01:a1:34:38:95:92:97:e3:ad:63: ff:18:c0:88:fb:74:a1:e3:b2:0e:49:7a:44:fc:b2: 9e:f3:34:aa:18:49:1b:d0:d6:cb:e9:77:4b:a8:bf: e3:b0:ca:e6:3f:ba:f4:20:7e:05:65:50:01:d8:d1: e7:03:73:d3:34:63:99:95:76:2b:d7:3a:61:29:b1: ad:6a:62:92:e0:0a:45:3a:a8:06:bd:7f:7f:0c:9e: d3:09:df:6d:da:b4:fc:7c:9d:a6:2b:b5:95:12:c3: 09:68:67:af:94:c2:18:4c:b8:80:7a:09:ba:1d:94: 4e:27:46:62:05:6b:56:37:f9:2c:e1:a9:06:9f:cb: 6c:e2:2c:7b:20:9d:83:34:4a:b2:19:c8:c6:6d:82: 3d:e7:0c:29:77:b5:c3:bc:d3:55:99:d4:11:a9:a5: 72:28:37:51:0d:8b:57:bd:19:f7:69:98:0e:28:aa: 22:61:44:1e:56:59:7e:c8:9a:81:35:01:0a:4a:fb: 07:86:81:98:91:06:c7:5f:89:7b:c9:b2:01:84:4a: 16:05:e5:4a:60:5d:7e:61:4c:c5:71:9a:ee:85:86: 21:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:F7:C0:98:F2:45:74:59:B2:6B:2C:97:BE:58:44:AF:46:48:02:C3 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6df93fb2-679f-4247-81c7-fd108c812488.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.128.0/20 Signature Algorithm: sha256WithRSAEncryption 77:8d:af:3f:09:b5:4b:82:26:1e:45:7c:8f:9c:e9:b8:44:d6: fe:34:ea:3b:4b:db:ff:b0:a5:40:cf:d4:30:b6:16:da:c9:ac: 08:e1:d0:98:25:3c:a7:89:ad:06:57:36:63:b2:82:00:2a:f3: 3e:0c:e9:54:88:22:2e:c3:c4:02:e9:ca:97:c5:8c:21:98:34: 52:2a:27:7a:fb:17:fb:6e:5f:b8:aa:9d:5e:f8:1f:9b:23:0d: af:ea:0d:1f:42:3c:9b:38:5a:eb:ab:e1:2c:a6:ef:60:8c:d5: ea:b5:5e:2c:26:c1:d6:57:27:44:fa:99:0c:0d:0b:1f:9b:2b: 49:1d:66:d5:ee:bd:2a:7b:5d:e3:72:a6:86:a1:3b:93:03:5e: 00:1a:99:7f:21:5b:90:1b:4a:db:06:1e:27:eb:db:cf:f9:1b: d3:0f:11:d5:7f:86:5a:bd:83:02:ef:4d:a1:d7:41:3c:da:3f: f7:8d:12:37:10:13:7d:30:3e:4c:3d:30:43:22:35:aa:c8:af: 6f:98:9f:10:c1:48:65:1d:0e:84:bc:14:cb:af:96:d2:64:47: 83:7d:f2:6f:a3:71:96:8f:3f:bf:aa:18:d5:9e:ef:d9:c9:cf: ee:a0:96:1b:49:d3:82:63:8a:c7:f2:72:7e:a7:fe:aa:fa:b0: 72:e4:3d:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNpSJ+hufBVFZZ2xECiURqS+Qtc0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc1MDA5WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzA4ZDY2MjQ4Y2Q5MjQxYTcxNzg3ODJhYTcyZTFjZWRh Y2E5MzAzMDc1YTU5OWQ5MGU1MzZlODAyMzFjNTU4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWGqmiIHbBeLzokRliqzLMmklzipW6DjV0mv82zSP3lNG7 AaE0OJWSl+OtY/8YwIj7dKHjsg5JekT8sp7zNKoYSRvQ1svpd0uov+OwyuY/uvQg fgVlUAHY0ecDc9M0Y5mVdivXOmEpsa1qYpLgCkU6qAa9f38MntMJ323atPx8naYr tZUSwwloZ6+UwhhMuIB6CbodlE4nRmIFa1Y3+SzhqQafy2ziLHsgnYM0SrIZyMZt gj3nDCl3tcO801WZ1BGppXIoN1ENi1e9GfdpmA4oqiJhRB5WWX7ImoE1AQpK+weG gZiRBsdfiXvJsgGEShYF5UpgXX5hTMVxmu6FhiFlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHffAmPJFdFmyayyXvlhEr0ZIAsMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzZkZjkzZmIyLTY3OWYtNDI0Ny04MWM3LWZkMTA4YzgxMjQ4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYIAwDQYJKoZIhvcNAQELBQADggEBAHeNrz8JtUuCJh5FfI+c6bhE1v40 6jtL2/+wpUDP1DC2FtrJrAjh0JglPKeJrQZXNmOyggAq8z4M6VSIIi7DxALpypfF jCGYNFIqJ3r7F/tuX7iqnV74H5sjDa/qDR9CPJs4Wuur4Sym72CM1eq1XiwmwdZX J0T6mQwNCx+bK0kdZtXuvSp7XeNypoahO5MDXgAamX8hW5AbStsGHifr28/5G9MP EdV/hlq9gwLvTaHXQTzaP/eNEjcQE30wPkw9MEMiNarIr2+YnxDBSGUdDoS8FMuv ltJkR4N98m+jcZaPP7+qGNWe79nJz+6glhtJ04Jjisfycn6n/qr6sHLkPXE= -----END CERTIFICATE-----Generated at Tue Jul 1 01:17:12 2025 by rpki-client