$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa File: 8b1249ac-b74a-4544-80b2-2b577af731f1.roa (raw, json) Hash identifier: bOeq4Nymx2qQe+G5rSyUyWChtaifWImhixyWeXluwJQ= Subject key identifier: 80:5A:7A:74:12:AF:27:66:BD:82:F7:7A:9D:9F:40:2D:77:F8:38:99 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 47EB902B9726C3972958DA33B05B33204293890A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa Signing time: Sat 31 May 2025 00:40:13 +0000 ROA not before: Sat 31 May 2025 00:40:13 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:eb:90:2b:97:26:c3:97:29:58:da:33:b0:5b:33:20:42:93:89:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 31 00:40:13 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=8741a0051c7c1dee731f096630239698943327e11ad2a2e5e6c8bad415fcb652, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3c:8a:1d:e0:0a:2f:67:1a:8f:7d:89:72:6d: 5c:4d:c2:ed:e9:3c:64:5d:f9:e4:97:c6:da:15:b3: 7c:d9:91:c0:6c:5a:4f:95:8d:a6:27:f2:a8:0f:71: 9c:00:e1:44:f6:6c:59:1e:a1:7c:a0:1f:1c:f8:e9: 6c:06:3e:fc:ce:c4:6d:da:51:94:26:32:88:7c:97: 36:c3:0e:4d:31:b6:65:1b:96:7f:41:85:ba:da:5a: d6:de:de:6a:fa:d1:7c:26:2d:4d:21:18:c0:8e:a0: fd:43:5f:55:a7:b2:11:17:37:e8:99:e1:b9:db:fb: 82:ec:c2:b5:ae:ae:2d:53:ae:80:60:81:10:18:0f: cb:46:62:25:5c:98:6c:27:27:df:62:f9:7f:05:c5: c1:4a:53:3c:8a:7c:31:16:c7:86:9b:92:33:6b:fd: 1c:a0:34:7e:22:cd:ee:7e:80:b6:56:e8:e9:ed:87: a0:d7:d0:42:b8:3c:a4:5b:c2:59:5e:af:ed:61:f2: ea:3c:38:dc:ae:84:9b:f7:1a:9e:30:97:6d:88:94: 51:2a:4d:60:54:48:79:c3:23:97:71:64:9e:52:08: 17:68:10:cd:0a:0e:be:ea:9f:cb:03:6e:1c:a2:6f: 68:8b:09:83:85:e1:05:f6:08:71:ae:3b:92:cd:58: 65:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:5A:7A:74:12:AF:27:66:BD:82:F7:7A:9D:9F:40:2D:77:F8:38:99 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.20.0/23 Signature Algorithm: sha256WithRSAEncryption 86:df:40:a6:63:41:d6:db:88:2c:a4:7a:16:2c:17:1e:4f:86: 5b:b8:4d:f5:49:52:bc:23:fc:37:4d:66:c5:f1:61:88:c9:71: b2:8e:0f:4d:96:e1:de:79:bd:54:bb:e7:7b:cb:16:ea:e4:ec: 60:33:8f:a4:61:59:a2:bb:28:ec:e2:19:1d:de:d6:cd:b0:01: c3:5f:26:67:54:cc:01:22:4c:b8:85:b8:3c:78:75:03:5f:9c: f8:66:20:0f:23:d8:fe:c8:20:d2:ba:21:28:91:64:55:65:cd: 93:fa:60:78:85:72:de:82:a1:8f:5c:ac:d6:1c:ee:e9:7b:d2: fc:4f:94:6a:4d:83:af:63:cb:20:c9:db:7a:b1:47:5a:7d:80: c2:44:67:36:2d:40:7e:ba:2b:d2:44:ce:b7:49:b7:56:7b:49: fe:58:a0:72:7a:7f:75:68:de:b5:a3:1e:1c:11:26:7c:ba:b6: dd:99:06:9c:d6:40:83:9c:ac:67:f4:48:07:3b:fb:a5:04:df: 9b:dc:5e:2a:f6:82:4c:48:76:9c:7f:3a:79:72:17:76:10:52: 92:c3:04:6f:1f:28:1d:bc:56:c7:f3:35:dc:cf:56:b5:e3:88: 0c:01:52:97:30:ed:5c:9d:64:55:2e:f2:fa:25:c9:9a:b1:fb: f0:91:ee:fb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR+uQK5cmw5cpWNozsFszIEKTiQowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTMxMDA0MDEzWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzQxYTAwNTFjN2MxZGVlNzMxZjA5NjYzMDIzOTY5ODk0 MzMyN2UxMWFkMmEyZTVlNmM4YmFkNDE1ZmNiNjUyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4PIod4AovZxqPfYlybVxNwu3pPGRd+eSXxtoVs3zZkcBs Wk+VjaYn8qgPcZwA4UT2bFkeoXygHxz46WwGPvzOxG3aUZQmMoh8lzbDDk0xtmUb ln9BhbraWtbe3mr60XwmLU0hGMCOoP1DX1WnshEXN+iZ4bnb+4LswrWuri1TroBg gRAYD8tGYiVcmGwnJ99i+X8FxcFKUzyKfDEWx4abkjNr/RygNH4ize5+gLZW6Ont h6DX0EK4PKRbwller+1h8uo8ONyuhJv3Gp4wl22IlFEqTWBUSHnDI5dxZJ5SCBdo EM0KDr7qn8sDbhyib2iLCYOF4QX2CHGuO5LNWGVxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgFp6dBKvJ2a9gvd6nZ9ALXf4OJkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhiMTI0OWFjLWI3NGEtNDU0NC04MGIyLTJiNTc3YWY3MzFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBQwDQYJKoZIhvcNAQELBQADggEBAIbfQKZjQdbbiCykehYsFx5Phlu4 TfVJUrwj/DdNZsXxYYjJcbKOD02W4d55vVS753vLFurk7GAzj6RhWaK7KOziGR3e 1s2wAcNfJmdUzAEiTLiFuDx4dQNfnPhmIA8j2P7IINK6ISiRZFVlzZP6YHiFct6C oY9crNYc7ul70vxPlGpNg69jyyDJ23qxR1p9gMJEZzYtQH66K9JEzrdJt1Z7Sf5Y oHJ6f3Vo3rWjHhwRJny6tt2ZBpzWQIOcrGf0SAc7+6UE35vcXir2gkxIdpx/Only F3YQUpLDBG8fKB28VsfzNdzPVrXjiAwBUpcw7VydZFUu8volyZqx+/CR7vs= -----END CERTIFICATE-----Generated at Wed Jun 4 11:27:03 2025 by rpki-client