$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b7f51c8-2141-46fa-9e5c-3cc85fbe6b3e.roa File: 8b7f51c8-2141-46fa-9e5c-3cc85fbe6b3e.roa (raw, json) Hash identifier: APyHxeAri+vpP4slF23xKAwXQFoczk203IqiX1hEf+g= Subject key identifier: E2:6D:00:90:7E:A4:F2:66:4D:33:E8:46:2F:87:00:A1:D7:AD:65:5C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 62796FD9C8D6BE9868194656E54FE12620E52630 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b7f51c8-2141-46fa-9e5c-3cc85fbe6b3e.roa Signing time: Sat 31 May 2025 00:40:19 +0000 ROA not before: Sat 31 May 2025 00:40:19 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:79:6f:d9:c8:d6:be:98:68:19:46:56:e5:4f:e1:26:20:e5:26:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 31 00:40:19 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=4e8177c3b865fdef6248fda42d05bc3912fdf19c8773475a1a20660a81def945, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:43:05:83:7b:3e:83:a3:e0:47:17:5a:9f:d5: fc:f7:f9:aa:b6:1c:a2:77:22:8c:6f:58:31:f4:27: c7:36:5f:4e:71:6e:de:a4:87:f7:51:27:ba:5c:2a: d5:7a:3e:d2:60:d6:61:85:93:f6:6d:2a:ae:8e:02: 04:5f:27:72:f9:a0:25:09:47:28:9a:ca:f4:23:d4: 7f:3b:8b:d8:6c:af:6b:e5:ec:5b:78:9d:4c:56:b4: 23:b0:a4:fd:33:d0:6f:0b:46:ac:37:06:70:a0:82: 17:64:f5:08:47:6e:c4:56:6f:13:36:fd:a8:84:4f: 22:95:09:8a:a4:bb:b3:d0:45:2e:1f:3a:d4:a3:32: ff:cf:ce:da:45:c7:22:c3:33:31:c1:bc:63:04:9f: 04:7d:d0:70:43:4f:56:77:7e:0d:38:f0:c7:79:2e: c7:14:4f:a9:09:62:b1:c4:91:19:d9:fb:30:f8:66: c8:24:75:a8:fa:76:0a:7a:a2:16:23:cb:96:84:a9: 25:d6:9a:7f:cf:29:d2:6d:2c:06:9c:21:f1:31:f4: 6f:d2:ac:90:be:80:06:8b:73:6c:92:26:e9:6c:87: fb:80:87:66:85:05:c6:8a:2e:fe:17:13:b9:f7:c3: 25:c8:8a:92:08:d8:7d:4c:fa:d6:0e:ec:3d:f3:1e: 72:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:6D:00:90:7E:A4:F2:66:4D:33:E8:46:2F:87:00:A1:D7:AD:65:5C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b7f51c8-2141-46fa-9e5c-3cc85fbe6b3e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.16.0/23 Signature Algorithm: sha256WithRSAEncryption 25:ad:56:51:5a:04:fa:d5:f9:4a:81:b2:6e:72:6b:f3:3e:eb: 91:49:e2:95:4c:21:04:21:ad:a7:ee:0c:cf:4e:12:04:e1:ae: 03:24:51:55:86:01:a6:f4:cb:e4:bb:aa:62:72:73:21:8c:55: 09:e0:64:83:95:49:fb:cf:5c:8f:9a:03:7b:f2:0c:13:5b:0d: 02:6d:fd:79:00:09:11:60:6d:42:e3:59:92:47:45:49:dc:e7: e0:c7:4a:21:b2:e8:28:3c:ec:f8:7b:9b:a4:43:59:4c:d3:73: e1:07:c2:f9:3a:0b:c1:ef:b1:64:00:72:a7:1c:0a:23:42:2b: 1c:c2:e1:9c:68:f2:bd:26:89:81:27:db:b4:40:c0:6e:2c:5c: 2b:9c:1e:4c:d0:18:f7:53:0d:8d:84:2e:5d:6c:64:f4:cd:9d: 29:f7:5f:e3:d0:28:1b:a6:90:48:f2:d9:68:c8:a4:30:80:b2: a9:21:36:c1:b6:ad:75:35:1d:3d:0f:81:37:53:c4:d6:21:17: 27:95:b6:e0:2d:ea:3f:9a:70:0a:93:34:94:ce:16:09:62:82: fe:8f:5e:08:bb:65:c3:19:07:48:0a:c8:42:77:30:c9:f6:4b: 20:98:ad:b0:07:a2:ff:c2:f1:43:84:78:d3:bb:30:4f:50:b2: f2:2e:19:43 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYnlv2cjWvphoGUZW5U/hJiDlJjAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTMxMDA0MDE5WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTgxNzdjM2I4NjVmZGVmNjI0OGZkYTQyZDA1YmMzOTEy ZmRmMTljODc3MzQ3NWExYTIwNjYwYTgxZGVmOTQ1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiQwWDez6Do+BHF1qf1fz3+aq2HKJ3IoxvWDH0J8c2X05x bt6kh/dRJ7pcKtV6PtJg1mGFk/ZtKq6OAgRfJ3L5oCUJRyiayvQj1H87i9hsr2vl 7Ft4nUxWtCOwpP0z0G8LRqw3BnCgghdk9QhHbsRWbxM2/aiETyKVCYqku7PQRS4f OtSjMv/PztpFxyLDMzHBvGMEnwR90HBDT1Z3fg048Md5LscUT6kJYrHEkRnZ+zD4 Zsgkdaj6dgp6ohYjy5aEqSXWmn/PKdJtLAacIfEx9G/SrJC+gAaLc2ySJulsh/uA h2aFBcaKLv4XE7n3wyXIipII2H1M+tYO7D3zHnL3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4m0AkH6k8mZNM+hGL4cAodetZVwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhiN2Y1MWM4LTIxNDEtNDZmYS05ZTVjLTNjYzg1ZmJlNmIzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBAwDQYJKoZIhvcNAQELBQADggEBACWtVlFaBPrV+UqBsm5ya/M+65FJ 4pVMIQQhrafuDM9OEgThrgMkUVWGAab0y+S7qmJycyGMVQngZIOVSfvPXI+aA3vy DBNbDQJt/XkACRFgbULjWZJHRUnc5+DHSiGy6Cg87Ph7m6RDWUzTc+EHwvk6C8Hv sWQAcqccCiNCKxzC4Zxo8r0miYEn27RAwG4sXCucHkzQGPdTDY2ELl1sZPTNnSn3 X+PQKBumkEjy2WjIpDCAsqkhNsG2rXU1HT0PgTdTxNYhFyeVtuAt6j+acAqTNJTO Fgligv6PXgi7ZcMZB0gKyEJ3MMn2SyCYrbAHov/C8UOEeNO7ME9QsvIuGUM= -----END CERTIFICATE-----Generated at Fri Jun 6 18:26:01 2025 by rpki-client