$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/89f6527b-adbb-4687-9a24-ace3d28006fb.roa File: 89f6527b-adbb-4687-9a24-ace3d28006fb.roa (raw, json) Hash identifier: G8zCijIH0V/EvoqLhhzK7cL39DhzysYjUF3JCxxAVPU= Subject key identifier: 26:1E:A7:68:AA:40:D8:03:D6:EF:76:0C:9E:4E:5C:41:76:B4:57:3E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4D4BEB0838835D1ED25CD11F2B7163500251EF Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/89f6527b-adbb-4687-9a24-ace3d28006fb.roa Signing time: Sat 31 May 2025 00:40:17 +0000 ROA not before: Sat 31 May 2025 00:40:17 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:4b:eb:08:38:83:5d:1e:d2:5c:d1:1f:2b:71:63:50:02:51:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 31 00:40:17 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=797876416cf2582980f184a3340634232d2ee336ae285a53e0fd8986ad5a9854, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:eb:f6:d7:aa:39:05:86:f4:46:66:91:eb:ec: 0d:e5:04:65:67:34:40:71:c5:f7:2f:e5:9d:45:65: ed:bc:40:ba:73:af:05:ea:8c:2e:39:7e:6f:d0:f5: 58:fa:c1:63:e7:0d:68:d4:81:92:c0:ad:64:28:f9: a7:8a:41:5b:64:b2:ea:cf:d4:28:83:3d:96:a3:b6: 21:e8:a7:d5:d7:85:b2:9c:16:f6:70:38:16:6d:da: 0b:c5:51:6d:f1:cd:61:4d:1e:23:79:f2:df:55:73: 2d:f0:99:8e:a3:74:da:2c:cd:ba:46:e8:4b:05:d5: 04:33:7b:5d:58:af:6b:e1:43:75:e8:44:51:be:17: 9d:fc:ca:ad:35:a3:7b:62:a5:a4:c6:ad:e7:59:ee: 47:20:9e:d7:d0:9e:da:72:8d:ff:41:c3:aa:da:38: be:13:48:c2:28:c0:30:fd:08:1d:0c:ba:28:1e:c8: 43:f2:3c:60:47:0c:f1:8b:04:43:fc:eb:bb:08:59: b7:9b:7f:ce:e4:47:6d:b8:94:56:58:56:6b:62:28: d9:7a:62:76:ee:e7:0a:78:2b:7f:5e:45:02:3c:51: e5:a9:bf:93:ad:78:7b:4f:f8:4a:80:72:59:f4:cd: a2:e4:fc:66:4e:4e:f3:5e:7b:10:fa:34:ac:2e:c9: 0a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:1E:A7:68:AA:40:D8:03:D6:EF:76:0C:9E:4E:5C:41:76:B4:57:3E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/89f6527b-adbb-4687-9a24-ace3d28006fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.16.0/23 Signature Algorithm: sha256WithRSAEncryption 38:b9:fe:4a:ac:54:1d:56:8a:e7:aa:0a:86:0c:b6:4a:5c:f8: d0:2f:24:95:3e:b7:dc:37:5b:4b:b6:e8:b3:c7:01:74:7c:b4: c1:9f:1b:f3:11:bf:43:f4:3b:bc:50:cc:82:d3:ef:93:84:18: 63:3e:b3:c2:88:df:08:09:50:15:2f:d5:77:2f:58:95:fc:20: 75:fb:e4:81:f5:3c:09:0e:45:a2:ae:be:b3:06:ce:4e:ed:fb: fc:34:e3:8b:c4:48:80:68:8f:25:8f:ac:9c:60:96:9b:6f:57: a6:35:cd:11:cd:2c:21:55:fb:4b:74:fe:0d:a9:98:1c:ec:f1: 41:11:30:37:c1:62:4f:55:09:ae:20:32:43:75:e4:52:91:6f: 78:56:bc:90:28:c7:de:ee:75:a1:d7:44:f9:fc:b4:2c:54:e8: 1a:2f:ab:22:e5:ba:54:c7:26:74:c5:44:f7:13:fb:f8:19:2e: b0:96:69:22:dc:5f:68:ca:a4:57:a8:1b:f9:53:66:68:16:ab: 65:7a:d7:53:c8:1a:be:aa:0c:29:ba:ca:01:bf:94:d4:11:a2: 38:32:c4:37:9c:5a:7a:a5:2d:3c:8f:d1:ed:bb:64:6a:32:48: 72:e7:51:83:0b:d3:1e:b1:01:58:f6:5e:10:7f:48:6b:ba:d6: ec:54:c1:2f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITTUvrCDiDXR7SXNEfK3FjUAJR7zANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI5YWIwMTVmMzgyNmUwMTM1MTJhNDUyOThhNDJmMmJhYmEx ZmE3MmY4ZDI3OTM4ODc4YzAeFw0yNTA1MzEwMDQwMTdaFw0yNTA3MDUyMzU5NTla MHoxSTBHBgNVBAUTQDc5Nzg3NjQxNmNmMjU4Mjk4MGYxODRhMzM0MDYzNDIzMmQy ZWUzMzZhZTI4NWE1M2UwZmQ4OTg2YWQ1YTk4NTQxLTArBgNVBAMTJDhjZDg0NDJm LTIzNWYtNDE3MS04NGU2LThlMTAwN2E2NGM2MDCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANPr9teqOQWG9EZmkevsDeUEZWc0QHHF9y/lnUVl7bxAunOv BeqMLjl+b9D1WPrBY+cNaNSBksCtZCj5p4pBW2Sy6s/UKIM9lqO2Iein1deFspwW 9nA4Fm3aC8VRbfHNYU0eI3ny31VzLfCZjqN02izNukboSwXVBDN7XViva+FDdehE Ub4XnfzKrTWje2KlpMat51nuRyCe19Ce2nKN/0HDqto4vhNIwijAMP0IHQy6KB7I Q/I8YEcM8YsEQ/zruwhZt5t/zuRHbbiUVlhWa2Io2Xpidu7nCngrf15FAjxR5am/ k614e0/4SoByWfTNouT8Zk5O8157EPo0rC7JCjUCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQmHqdoqkDYA9bvdgyeTlxBdrRXPjAfBgNVHSMEGDAWgBRqzD59oudtmREP 1jnEE35CQplw2DAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzY3NTU5NzBjLTQ3 NDctNDk5ZC05Nzc0LTVlMTMwOGM1MDFhNy85YWIwMTVmMzgyNmUwMTM1MTJhNDUy OThhNDJmMmJhYmExZmE3MmY4ZDI3OTM4ODc4Yy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzJkOGRiMC00NzI4LTRmYzEtYmRkOC00NzEx Mjk4NjYzNjIvODlmNjUyN2ItYWRiYi00Njg3LTlhMjQtYWNlM2QyODAwNmZiLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgt NDcxMTI5ODY2MzYyL2JnRTFFcVJTbUtRdks2dWgtbkw0MG5rNGg0dy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEASNgEDANBgkqhkiG9w0BAQsFAAOCAQEAOLn+SqxUHVaK56oKhgy2Slz40C8k lT633DdbS7bos8cBdHy0wZ8b8xG/Q/Q7vFDMgtPvk4QYYz6zwojfCAlQFS/Vdy9Y lfwgdfvkgfU8CQ5Foq6+swbOTu37/DTji8RIgGiPJY+snGCWm29XpjXNEc0sIVX7 S3T+DamYHOzxQREwN8FiT1UJriAyQ3XkUpFveFa8kCjH3u51oddE+fy0LFToGi+r IuW6VMcmdMVE9xP7+BkusJZpItxfaMqkV6gb+VNmaBarZXrXU8gavqoMKbrKAb+U 1BGiODLEN5xaeqUtPI/R7btkajJIcudRgwvTHrEBWPZeEH9Ia7rW7FTBLw== -----END CERTIFICATE-----Generated at Wed Jun 4 11:28:28 2025 by rpki-client