$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/738f6bbb-116a-40cf-85ee-01c2bf067ba4.roa File: 738f6bbb-116a-40cf-85ee-01c2bf067ba4.roa (raw, json) Hash identifier: Vrt11YjY26EU81n3B9O+uKoaSW4p5P7DsxHcPuw3uD8= Subject key identifier: B4:2D:F9:E5:11:46:32:F6:EB:6B:1D:91:D2:91:20:96:2B:31:61:2A Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0F93FE475D49D4AD9DED695DC72AD1D06A71E814 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/738f6bbb-116a-40cf-85ee-01c2bf067ba4.roa Signing time: Mon 30 Jun 2025 17:40:47 +0000 ROA not before: Mon 30 Jun 2025 17:40:47 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:93:fe:47:5d:49:d4:ad:9d:ed:69:5d:c7:2a:d1:d0:6a:71:e8:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:47 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=9745fc1c9686465e425558332240bc10b20b6edd45b1edf0467d297e080f36a8, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:31:b1:9c:bf:7f:df:93:5e:53:53:45:e9:e4: dd:3a:49:ab:cf:e4:d9:63:08:a9:68:dc:45:c7:9b: a2:91:db:cb:65:c1:79:a4:84:9e:ff:0f:d1:d0:d0: 71:c0:57:e6:32:02:b3:f1:cf:95:23:73:8f:53:ad: 68:f2:8f:bb:1a:d1:cf:7d:83:f4:80:1d:cc:65:b8: c4:55:a4:30:2e:69:ef:10:20:1e:78:2d:20:7f:26: f5:96:f0:75:cd:c5:59:b8:4b:6c:b5:a8:ae:cd:56: f3:34:df:fd:43:7f:31:d4:1f:84:98:5f:69:e1:ae: f1:dc:9d:b2:d2:a7:a0:ab:75:4d:78:29:cb:d9:dc: a4:01:a8:a4:9d:34:72:46:b2:b4:de:0e:1b:6e:18: 91:c1:82:df:86:61:bb:f9:93:7d:e6:93:1a:4c:ae: 58:0e:65:2c:91:35:16:05:9c:73:0a:e9:f2:3e:30: f5:b0:31:2b:a5:0c:94:90:6e:e3:17:d6:43:40:22: e3:dd:06:11:6e:e6:52:ba:64:6c:36:e4:01:76:38: 9c:50:06:7f:97:4f:14:6f:4e:4a:d8:12:e0:96:7f: a7:fe:0a:31:f9:ba:63:c4:9b:59:c0:0d:cf:2d:89: 16:3b:e4:48:f5:96:e1:5c:62:53:04:92:2a:98:e7: 18:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:2D:F9:E5:11:46:32:F6:EB:6B:1D:91:D2:91:20:96:2B:31:61:2A X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/738f6bbb-116a-40cf-85ee-01c2bf067ba4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.249.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:11:ea:95:2f:28:a8:83:77:ad:fd:d6:99:17:6a:8e:20:be: a2:fb:fb:8a:22:18:ba:f9:82:4b:e3:25:16:d4:84:98:63:a6: 95:48:78:75:88:ca:5c:f6:94:d6:8d:ce:f4:09:61:2f:98:10: 8b:dd:74:e4:01:5f:91:b0:36:79:d6:b4:d9:53:3c:b4:31:be: 40:79:cd:e3:d0:8d:2e:d1:b1:57:90:ce:b1:bc:fd:43:a3:91: b0:6e:09:ce:b1:c0:9a:5c:1e:fa:91:ce:53:6f:ee:c2:a7:6e: c4:c5:2c:2b:0d:a7:48:14:8c:b6:d1:73:d5:6d:c1:41:92:fb: 37:0c:90:34:5e:28:f2:d1:90:84:1d:2b:ee:da:1c:15:8a:84: 52:7f:db:75:58:b2:81:dc:6a:d7:26:80:ad:94:bc:99:e1:d0: 3c:d8:63:41:9c:ec:6a:81:f1:30:60:19:d2:18:f7:74:45:82: ae:d0:2e:b2:0c:3d:f7:7c:c5:37:fe:ed:90:c6:86:dc:ff:e4: 06:08:62:33:f0:a2:0f:eb:67:30:d1:92:68:57:e6:d9:f9:a7: 76:c2:e6:75:65:db:4c:be:c7:01:1f:2a:17:0d:db:22:38:22: 68:a6:ad:63:52:c9:9c:0f:ef:d0:0f:1b:44:45:b6:ea:d0:5c: 83:89:c6:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD5P+R11J1K2d7WldxyrR0Gpx6BQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDQ3WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NzQ1ZmMxYzk2ODY0NjVlNDI1NTU4MzMyMjQwYmMxMGIy MGI2ZWRkNDViMWVkZjA0NjdkMjk3ZTA4MGYzNmE4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtMbGcv3/fk15TU0Xp5N06SavP5NljCKlo3EXHm6KR28tl wXmkhJ7/D9HQ0HHAV+YyArPxz5Ujc49TrWjyj7sa0c99g/SAHcxluMRVpDAuae8Q IB54LSB/JvWW8HXNxVm4S2y1qK7NVvM03/1DfzHUH4SYX2nhrvHcnbLSp6CrdU14 KcvZ3KQBqKSdNHJGsrTeDhtuGJHBgt+GYbv5k33mkxpMrlgOZSyRNRYFnHMK6fI+ MPWwMSulDJSQbuMX1kNAIuPdBhFu5lK6ZGw25AF2OJxQBn+XTxRvTkrYEuCWf6f+ CjH5umPEm1nADc8tiRY75Ej1luFcYlMEkiqY5xihAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtC355RFGMvbrax2R0pEglisxYSowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzczOGY2YmJiLTExNmEtNDBjZi04NWVlLTAxYzJiZjA2N2JhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPkwDQYJKoZIhvcNAQELBQADggEBADoR6pUvKKiDd6391pkXao4gvqL7 +4oiGLr5gkvjJRbUhJhjppVIeHWIylz2lNaNzvQJYS+YEIvddOQBX5GwNnnWtNlT PLQxvkB5zePQjS7RsVeQzrG8/UOjkbBuCc6xwJpcHvqRzlNv7sKnbsTFLCsNp0gU jLbRc9VtwUGS+zcMkDReKPLRkIQdK+7aHBWKhFJ/23VYsoHcatcmgK2UvJnh0DzY Y0Gc7GqB8TBgGdIY93RFgq7QLrIMPfd8xTf+7ZDGhtz/5AYIYjPwog/rZzDRkmhX 5tn5p3bC5nVl20y+xwEfKhcN2yI4ImimrWNSyZwP79APG0RFturQXIOJxrg= -----END CERTIFICATE-----Generated at Tue Jul 1 01:13:55 2025 by rpki-client