$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa File: 87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa (raw, json) Hash identifier: Wrexfp4aTDGmPdB2fdmJ3KbLQexnvdaejJDlNJ3Zsf8= Subject key identifier: D5:6F:13:C0:6A:35:9E:5B:7B:0E:00:FD:EF:54:E7:B4:53:DF:A6:F6 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 103A91B028CDE7487092BD8E55F36748D3F725C8 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa Signing time: Mon 30 Jun 2025 17:50:22 +0000 ROA not before: Mon 30 Jun 2025 17:50:22 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:3a:91:b0:28:cd:e7:48:70:92:bd:8e:55:f3:67:48:d3:f7:25:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:50:22 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=6ae1909b83a17f9c3ee039e927ccf8cdb32ecf76e449de0e593104957362e11b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:09:a3:9e:7f:f4:03:e6:9a:05:cf:2f:44:ee: f0:00:a9:dd:e6:e8:28:14:fd:30:12:f4:2d:fc:10: 35:d7:6a:6b:9d:1a:38:60:9e:c8:08:47:23:12:03: 12:64:a0:fe:5e:db:3f:83:1f:83:ce:d3:6f:f0:25: ba:96:43:11:cd:0e:1b:d3:9b:a3:21:71:ca:7d:ae: fe:e4:a8:4e:60:e9:b6:d2:40:65:4d:93:77:c4:29: 54:5b:ef:18:5b:66:ac:25:fc:3d:c7:f3:94:cf:94: 6a:0a:ab:d8:7f:76:0d:de:2f:03:48:ff:5f:ca:25: 0d:a1:7e:b4:ad:b9:49:95:3b:c1:70:ee:be:40:ab: be:74:f8:e7:cd:23:27:8b:af:2d:58:aa:1d:95:5d: 19:89:66:df:a0:9e:10:aa:ae:4e:5c:2b:6e:aa:bf: 10:f1:55:ad:69:52:bd:43:f7:ab:36:49:d0:03:dd: a3:6b:17:1c:fa:42:97:12:38:44:3a:d0:e0:40:69: 0d:24:d7:bb:23:0c:58:c1:6c:ef:46:30:e4:cc:59: 78:f5:b8:ff:80:b3:58:f2:0d:0d:56:3d:54:5b:02: 55:33:22:91:96:b4:74:00:43:df:c2:af:20:f3:3e: ca:7c:60:20:e2:9e:8b:3f:ba:a7:ab:68:b2:9d:85: a3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:6F:13:C0:6A:35:9E:5B:7B:0E:00:FD:EF:54:E7:B4:53:DF:A6:F6 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.112.0/20 Signature Algorithm: sha256WithRSAEncryption 00:3f:40:02:be:c8:a2:3d:48:c9:0c:0a:48:ef:11:58:c7:63: 87:c6:db:c4:5f:ca:a6:de:8d:10:24:79:31:0f:ea:28:d8:06: 8b:ba:06:9d:50:43:2e:08:f3:e1:01:07:d7:e3:98:00:ad:08: 4c:f4:52:3a:25:2b:b2:0f:fb:16:b9:d0:d0:9d:86:61:39:99: f7:96:67:71:76:09:4a:e2:dd:ca:c0:92:98:6a:bf:cb:9d:47: 39:08:55:a0:e3:0c:b2:9d:2a:ae:94:86:2b:84:dd:20:29:26: 7e:06:09:11:75:67:2c:20:82:e8:53:2f:87:0b:cf:9b:34:b0: 6b:50:c9:23:39:94:87:79:23:b4:3c:c0:75:7f:97:f6:55:ac: 40:81:48:7f:43:b2:b9:d8:1b:cb:2f:92:74:12:c5:34:82:dd: c4:49:d4:92:d8:8d:e6:48:68:9b:19:bb:e1:ae:9a:a4:e5:b5: 84:fc:04:ee:14:65:76:d5:c6:86:73:1e:93:2c:0a:1e:64:20: be:73:1f:cd:64:81:52:00:f9:8e:b2:aa:a8:bb:e3:6d:b3:6e: df:99:db:7c:20:47:83:31:ff:83:2a:93:06:eb:41:a8:21:a0: 7d:14:31:32:10:bc:cf:c3:b9:df:8b:49:b0:4b:cd:52:e1:78: 59:3f:b1:61 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEDqRsCjN50hwkr2OVfNnSNP3JcgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc1MDIyWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YWUxOTA5YjgzYTE3ZjljM2VlMDM5ZTkyN2NjZjhjZGIz MmVjZjc2ZTQ0OWRlMGU1OTMxMDQ5NTczNjJlMTFiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbCaOef/QD5poFzy9E7vAAqd3m6CgU/TAS9C38EDXXamud GjhgnsgIRyMSAxJkoP5e2z+DH4PO02/wJbqWQxHNDhvTm6Mhccp9rv7kqE5g6bbS QGVNk3fEKVRb7xhbZqwl/D3H85TPlGoKq9h/dg3eLwNI/1/KJQ2hfrStuUmVO8Fw 7r5Aq750+OfNIyeLry1Yqh2VXRmJZt+gnhCqrk5cK26qvxDxVa1pUr1D96s2SdAD 3aNrFxz6QpcSOEQ60OBAaQ0k17sjDFjBbO9GMOTMWXj1uP+As1jyDQ1WPVRbAlUz IpGWtHQAQ9/CryDzPsp8YCDinos/uqeraLKdhaO5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1W8TwGo1nlt7DgD971TntFPfpvYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzg3ZTQwY2E3LTRiZDUtNGE4ZS1iYWJjLWVmNDUwZDI1YTBjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYHAwDQYJKoZIhvcNAQELBQADggEBAAA/QAK+yKI9SMkMCkjvEVjHY4fG 28RfyqbejRAkeTEP6ijYBou6Bp1QQy4I8+EBB9fjmACtCEz0UjolK7IP+xa50NCd hmE5mfeWZ3F2CUri3crAkphqv8udRzkIVaDjDLKdKq6UhiuE3SApJn4GCRF1Zywg guhTL4cLz5s0sGtQySM5lId5I7Q8wHV/l/ZVrECBSH9DsrnYG8svknQSxTSC3cRJ 1JLYjeZIaJsZu+GumqTltYT8BO4UZXbVxoZzHpMsCh5kIL5zH81kgVIA+Y6yqqi7 422zbt+Z23wgR4Mx/4MqkwbrQaghoH0UMTIQvM/Dud+LSbBLzVLheFk/sWE= -----END CERTIFICATE-----Generated at Tue Jul 1 00:51:47 2025 by rpki-client