$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa File: 95808009-fbc3-494a-8fba-ce3cf5711341.roa (raw, json) Hash identifier: IvEpg9Hc2WyCCA5XVsPZJQBWRCDJ5wxW1tmXVdF2QUY= Subject key identifier: C4:D6:66:5D:ED:15:31:79:3B:E2:85:C1:AF:2C:29:26:96:86:9E:68 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3690AC88FF3C6016E07E19C0960A414C1D44A987 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa Signing time: Sat 31 May 2025 00:40:12 +0000 ROA not before: Sat 31 May 2025 00:40:12 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:90:ac:88:ff:3c:60:16:e0:7e:19:c0:96:0a:41:4c:1d:44:a9:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 31 00:40:12 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=18d5a19215559306c909e72899878ee7a52ba9aa9cef885da8409f05fdc549df, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:29:60:81:81:7f:87:c7:4a:64:f1:52:06:9c: 3e:f3:ed:a1:62:c1:2b:bd:16:e9:7d:3a:04:b4:59: 0c:33:18:1a:ff:ad:92:13:71:a9:ce:21:34:e8:a5: 69:95:b9:f0:18:78:47:90:42:cd:04:ad:46:06:f6: b5:5d:39:7b:8b:2b:e1:c1:b4:29:3b:90:7d:9f:56: f1:f7:a2:d4:52:87:ae:9c:b8:46:52:8d:1a:66:20: 10:8a:55:23:7a:7a:32:aa:1a:55:6b:18:31:5d:27: c3:76:42:5d:67:f2:a5:70:74:0c:c4:29:10:1d:2a: 07:46:86:3b:77:a6:95:17:60:05:70:e7:c4:25:48: 08:8d:53:1f:36:b9:63:58:eb:c1:c5:7b:08:db:60: d6:8f:0e:8f:a3:37:e5:da:f5:7e:45:17:53:8d:73: 86:11:8f:34:42:28:18:de:e1:ec:f3:d9:1f:f5:b5: 25:eb:a5:91:74:49:43:b1:5f:fc:91:65:7f:e2:7e: 22:bc:6b:af:a3:e3:07:d6:a8:d1:75:c6:39:8e:db: d5:a2:a4:46:7b:30:ee:93:2b:9f:03:a9:93:69:c2: 47:09:32:8c:84:68:54:b3:2f:fa:ad:8c:a2:08:28: e4:b8:4c:f1:68:96:00:34:cb:52:64:77:07:b6:3e: 80:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:D6:66:5D:ED:15:31:79:3B:E2:85:C1:AF:2C:29:26:96:86:9E:68 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:f2:ff:e8:52:54:7b:e4:b9:df:3e:91:6e:aa:f7:69:15:98: f5:8d:81:3b:a9:7f:61:32:0d:ee:e5:a2:33:f3:21:2f:57:0e: a4:fe:42:6a:64:c5:96:2b:76:5e:d7:4f:1a:ad:3d:14:73:85: 57:2c:b0:e9:c5:40:b8:4f:1a:e9:43:94:e9:6b:7b:84:57:e2: 7e:d9:80:57:ae:39:bb:48:d6:5c:fc:9e:58:3f:a2:51:71:e7: d5:9c:ad:16:83:57:f7:bd:8c:5b:e8:f9:f8:93:28:ac:7c:0b: 29:d5:27:50:05:2c:d1:65:c1:64:f3:53:c2:8f:0a:eb:f4:27: 14:e8:4b:4a:c1:b7:b1:d1:d2:d2:38:05:fb:c2:6d:62:9c:02: 64:41:d9:23:90:f4:68:69:83:65:0c:5b:83:81:62:79:cc:75: fd:9e:8a:3b:e7:6a:9c:50:29:87:72:ab:e5:6e:91:72:53:dc: 9b:57:5a:01:46:0e:a2:0a:bc:38:d7:97:3c:ed:f3:1d:42:36: 52:cf:b7:89:18:fe:6e:9a:c4:1d:73:e4:e7:3e:0e:b5:c4:54: 90:a1:b2:16:4f:d2:d6:7d:6b:a6:23:43:b3:db:f8:e3:47:54: 00:2d:48:dc:97:f9:3b:ff:e8:0c:39:58:79:5c:9e:6f:4e:46: 4e:84:2e:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNpCsiP88YBbgfhnAlgpBTB1EqYcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTMxMDA0MDEyWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOGQ1YTE5MjE1NTU5MzA2YzkwOWU3Mjg5OTg3OGVlN2E1 MmJhOWFhOWNlZjg4NWRhODQwOWYwNWZkYzU0OWRmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRKWCBgX+Hx0pk8VIGnD7z7aFiwSu9Ful9OgS0WQwzGBr/ rZITcanOITTopWmVufAYeEeQQs0ErUYG9rVdOXuLK+HBtCk7kH2fVvH3otRSh66c uEZSjRpmIBCKVSN6ejKqGlVrGDFdJ8N2Ql1n8qVwdAzEKRAdKgdGhjt3ppUXYAVw 58QlSAiNUx82uWNY68HFewjbYNaPDo+jN+Xa9X5FF1ONc4YRjzRCKBje4ezz2R/1 tSXrpZF0SUOxX/yRZX/ifiK8a6+j4wfWqNF1xjmO29WipEZ7MO6TK58DqZNpwkcJ MoyEaFSzL/qtjKIIKOS4TPFolgA0y1Jkdwe2PoBxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxNZmXe0VMXk74oXBrywpJpaGnmgwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzk1ODA4MDA5LWZiYzMtNDk0YS04ZmJhLWNlM2NmNTcxMTM0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBAFvy/+hSVHvkud8+kW6q92kVmPWN gTupf2EyDe7lojPzIS9XDqT+QmpkxZYrdl7XTxqtPRRzhVcssOnFQLhPGulDlOlr e4RX4n7ZgFeuObtI1lz8nlg/olFx59WcrRaDV/e9jFvo+fiTKKx8CynVJ1AFLNFl wWTzU8KPCuv0JxToS0rBt7HR0tI4BfvCbWKcAmRB2SOQ9Ghpg2UMW4OBYnnMdf2e ijvnapxQKYdyq+VukXJT3JtXWgFGDqIKvDjXlzzt8x1CNlLPt4kY/m6axB1z5Oc+ DrXEVJChshZP0tZ9a6YjQ7Pb+ONHVAAtSNyX+Tv/6Aw5WHlcnm9ORk6ELp8= -----END CERTIFICATE-----Generated at Mon Jun 2 17:08:59 2025 by rpki-client