$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa File: 9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa (raw, json) Hash identifier: AFvtbcLNipIpZb21UD2bUhYcuFZP+LUDh8bGs0JdfuE= Subject key identifier: 49:7E:46:33:33:2B:37:DB:15:5F:E5:E2:D1:7E:D4:C4:90:BA:79:D2 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3B4AE456684B70DDEB15D686FC133A840D6E0718 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa Signing time: Tue 03 Jun 2025 16:20:13 +0000 ROA not before: Tue 03 Jun 2025 16:20:13 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:4a:e4:56:68:4b:70:dd:eb:15:d6:86:fc:13:3a:84:0d:6e:07:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 3 16:20:13 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=8e538f85f2aeb8992e160ccbfde0ac4d7ae7c25eb2c2d91d123a265ad62ba54e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6c:e8:2b:df:9d:c7:5b:98:88:9a:04:74:7a: 2e:ca:71:4c:ed:ed:77:58:4d:e7:fd:a0:63:11:c6: f9:91:c0:e7:2c:45:c7:e9:24:3f:20:8d:2e:39:c4: ec:3c:2b:c7:00:fa:4c:7e:fc:a3:68:ba:7d:e0:74: 53:e2:99:8a:69:36:00:6a:3c:f3:a3:dd:3a:10:c0: de:e4:e4:b4:f9:76:5d:1d:62:94:c5:0b:89:51:ce: de:ce:0f:f8:f5:74:ac:d2:5a:ff:18:24:53:f0:60: b5:83:4a:ba:f5:61:f1:2d:1c:a5:8d:06:3a:80:5f: 9d:f9:40:29:e9:a0:57:7e:0e:98:0b:2b:9a:03:56: b0:95:2d:59:ea:09:77:e0:5d:55:69:1f:53:64:38: 98:35:3f:13:4d:de:80:94:38:f1:bc:38:cd:36:26: 6e:34:c2:26:32:71:35:c2:bb:1f:7b:3d:24:63:ae: 77:9d:13:07:81:70:d0:89:0f:de:00:82:27:c2:45: 29:fd:b9:84:5c:31:2b:4d:62:e3:64:31:1d:4a:0e: d3:c1:5d:9a:db:7e:99:16:a1:4d:20:bb:b2:1b:69: 73:56:88:d2:fa:e2:8e:8f:3b:0b:10:96:24:23:81: 13:3f:e1:e8:95:49:b4:9d:97:b6:c6:1c:70:d3:ae: 18:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:7E:46:33:33:2B:37:DB:15:5F:E5:E2:D1:7E:D4:C4:90:BA:79:D2 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:4a:c6:48:dc:50:96:9a:06:e4:9e:95:73:fa:82:f5:16:56: 75:a7:56:d9:01:00:29:37:ba:ee:69:6d:87:64:e5:10:68:a9: 46:0a:28:ca:2b:1b:46:73:af:be:a8:25:5b:47:63:3f:29:c2: e5:dc:38:04:7a:2e:54:29:df:3e:95:c5:bd:0d:2e:33:c5:04: 10:a2:a7:47:75:49:67:b4:82:70:7a:3c:5a:88:7e:ba:12:c9: 6c:af:c1:e2:b7:82:17:c3:b3:75:5f:97:f2:1c:27:f3:02:f7: ae:a0:db:d7:64:36:a5:f4:c5:c5:b1:6a:8b:96:6b:6a:ea:9b: fd:ee:c4:64:9d:10:2b:87:29:12:b9:d0:ad:b3:a5:12:09:d1: 95:26:a1:af:4a:03:9e:25:36:88:83:38:19:2c:b2:24:42:f9: f3:e8:14:a5:ac:17:71:ac:26:fa:60:24:29:8a:04:ce:51:3c: 71:32:df:38:49:b6:fc:a9:d6:32:cc:2b:83:94:a2:cd:5e:9e: ce:31:b1:71:b1:c1:72:a2:ac:74:a7:58:46:79:dc:f4:03:05: d4:f7:e1:03:df:5d:f7:ce:fb:23:c2:87:38:34:e4:dd:51:e1: 9a:33:6a:3f:20:5a:c2:b3:3d:fd:4e:82:2b:11:a5:38:c1:d9: ca:c3:f7:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO0rkVmhLcN3rFdaG/BM6hA1uBxgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjAzMTYyMDEzWhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTUzOGY4NWYyYWViODk5MmUxNjBjY2JmZGUwYWM0ZDdh ZTdjMjVlYjJjMmQ5MWQxMjNhMjY1YWQ2MmJhNTRlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4bOgr353HW5iImgR0ei7KcUzt7XdYTef9oGMRxvmRwOcs RcfpJD8gjS45xOw8K8cA+kx+/KNoun3gdFPimYppNgBqPPOj3ToQwN7k5LT5dl0d YpTFC4lRzt7OD/j1dKzSWv8YJFPwYLWDSrr1YfEtHKWNBjqAX535QCnpoFd+DpgL K5oDVrCVLVnqCXfgXVVpH1NkOJg1PxNN3oCUOPG8OM02Jm40wiYycTXCux97PSRj rnedEweBcNCJD94AgifCRSn9uYRcMStNYuNkMR1KDtPBXZrbfpkWoU0gu7IbaXNW iNL64o6POwsQliQjgRM/4eiVSbSdl7bGHHDTrhiNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSX5GMzMrN9sVX+Xi0X7UxJC6edIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzliODA0ZmEwLWY3MjctNGZhYi1hNzFhLTljNWY4NDg2ZWE3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAswDQYJKoZIhvcNAQELBQADggEBAE1KxkjcUJaaBuSelXP6gvUWVnWn VtkBACk3uu5pbYdk5RBoqUYKKMorG0Zzr76oJVtHYz8pwuXcOAR6LlQp3z6Vxb0N LjPFBBCip0d1SWe0gnB6PFqIfroSyWyvweK3ghfDs3Vfl/IcJ/MC966g29dkNqX0 xcWxaouWa2rqm/3uxGSdECuHKRK50K2zpRIJ0ZUmoa9KA54lNoiDOBkssiRC+fPo FKWsF3GsJvpgJCmKBM5RPHEy3zhJtvyp1jLMK4OUos1ens4xsXGxwXKirHSnWEZ5 3PQDBdT34QPfXffO+yPChzg05N1R4Zozaj8gWsKzPf1OgisRpTjB2crD93Q= -----END CERTIFICATE-----Generated at Wed Jun 4 11:22:30 2025 by rpki-client