$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b063da57-37b1-4f36-91b0-613247453bd5.roa File: b063da57-37b1-4f36-91b0-613247453bd5.roa (raw, json) Hash identifier: 88UN8D6bGFopZB8e8oV3B9wf1eM4wv6kuoJXDOL5TCs= Subject key identifier: BA:0D:9C:08:3E:42:53:4C:F7:7A:00:9F:89:A2:32:C5:52:5A:0E:33 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7D057016ED3F05456945C6D9F37AAE48DE6A7B62 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b063da57-37b1-4f36-91b0-613247453bd5.roa Signing time: Sat 31 May 2025 00:40:44 +0000 ROA not before: Sat 31 May 2025 00:40:44 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:05:70:16:ed:3f:05:45:69:45:c6:d9:f3:7a:ae:48:de:6a:7b:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 31 00:40:44 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=5c3f25cf6cf6ce9db1dcb79c69530277bb5894e19fadda37c2eeeccca3ddcf81, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:41:ab:ac:85:dc:8f:ca:f8:1c:6e:78:18:b1: 8c:47:61:43:70:8a:e7:ea:c6:63:03:b6:a1:f4:74: 31:fb:78:d3:d3:5b:c3:b0:8f:23:51:15:63:7e:8d: 99:e5:4c:c9:84:04:b0:1a:48:b0:bc:ae:af:41:29: bb:b0:37:6f:47:9a:7c:b7:a5:ca:9b:bc:fb:bd:ae: 12:1d:a4:2c:b7:92:48:8d:81:78:0b:39:43:e5:bc: 21:8f:05:86:bb:29:1d:85:5b:25:bc:0c:5e:61:9f: ca:f5:8c:a4:5d:5f:d5:03:e6:7e:79:32:dc:e0:da: 24:f9:fe:45:84:96:f6:16:cb:69:bc:aa:b8:8d:3f: d3:c0:04:34:fe:6b:2a:a5:8a:68:1d:f5:22:4a:5a: 30:43:57:5b:54:d8:e0:94:90:84:a8:05:6a:11:ac: 09:07:d2:2d:d8:84:62:d9:6e:9c:22:2c:7a:c9:50: 7a:87:19:ae:90:0d:7e:48:7e:a7:f2:0e:db:1d:a6: 85:b7:e9:b9:88:6e:06:c8:7e:25:e8:58:8b:16:9e: 2c:55:f3:b6:d7:47:5d:e5:c6:76:29:ac:45:60:9f: 6b:52:b7:90:75:7e:93:8b:1a:dc:09:7d:11:ab:8e: 36:98:34:cd:47:fd:cf:81:06:20:2f:8f:67:09:01: 3e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:0D:9C:08:3E:42:53:4C:F7:7A:00:9F:89:A2:32:C5:52:5A:0E:33 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b063da57-37b1-4f36-91b0-613247453bd5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.26.0/23 Signature Algorithm: sha256WithRSAEncryption 80:67:cc:a8:ee:47:f9:9d:f4:2c:20:a7:1a:ea:6f:c4:5b:5b: fb:8c:92:f5:bb:9c:7b:6d:ac:fa:15:df:25:15:b3:cc:22:87: f5:a4:47:3b:b7:13:76:ee:3d:6b:99:88:be:1c:35:ef:2c:ab: d1:4d:2e:f6:34:82:28:5b:65:90:0c:2e:5e:00:96:65:00:d3: 46:f2:5c:21:9f:0d:5f:98:70:89:ab:95:55:02:94:13:1c:b0: 9c:41:ca:9a:98:3a:8b:7b:52:a1:7f:6a:14:57:2c:d1:5c:6a: 65:d8:b2:06:ae:f6:08:ba:24:4f:6c:8c:41:13:ce:43:be:90: 88:dc:10:d1:9b:f7:87:26:58:8a:c0:69:46:9e:89:51:82:e2: 6a:03:c0:ff:25:73:75:4b:bb:22:7f:00:60:24:d1:c4:a4:3f: 4e:0c:01:57:4c:d3:42:f5:5d:0f:43:1e:4e:30:87:70:97:9c: f8:1c:f0:7b:1d:24:07:6a:7d:57:05:e1:d2:6b:fd:72:68:81: 50:55:67:ca:9d:36:0a:56:58:f3:db:f3:8b:30:f5:ea:39:d8: ba:8f:d8:73:15:68:96:02:9d:8f:ca:04:29:32:7d:11:92:2c: 60:0c:4b:ae:fa:14:16:69:24:d3:1e:de:c6:8c:03:d9:9f:fd: 2d:77:f6:6c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfQVwFu0/BUVpRcbZ83quSN5qe2IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTMxMDA0MDQ0WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzNmMjVjZjZjZjZjZTlkYjFkY2I3OWM2OTUzMDI3N2Ji NTg5NGUxOWZhZGRhMzdjMmVlZWNjY2EzZGRjZjgxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSQaushdyPyvgcbngYsYxHYUNwiufqxmMDtqH0dDH7eNPT W8OwjyNRFWN+jZnlTMmEBLAaSLC8rq9BKbuwN29Hmny3pcqbvPu9rhIdpCy3kkiN gXgLOUPlvCGPBYa7KR2FWyW8DF5hn8r1jKRdX9UD5n55Mtzg2iT5/kWElvYWy2m8 qriNP9PABDT+ayqlimgd9SJKWjBDV1tU2OCUkISoBWoRrAkH0i3YhGLZbpwiLHrJ UHqHGa6QDX5IfqfyDtsdpoW36bmIbgbIfiXoWIsWnixV87bXR13lxnYprEVgn2tS t5B1fpOLGtwJfRGrjjaYNM1H/c+BBiAvj2cJAT4TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUug2cCD5CU0z3egCfiaIyxVJaDjMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2IwNjNkYTU3LTM3YjEtNGYzNi05MWIwLTYxMzI0NzQ1M2JkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBowDQYJKoZIhvcNAQELBQADggEBAIBnzKjuR/md9Cwgpxrqb8RbW/uM kvW7nHttrPoV3yUVs8wih/WkRzu3E3buPWuZiL4cNe8sq9FNLvY0gihbZZAMLl4A lmUA00byXCGfDV+YcImrlVUClBMcsJxBypqYOot7UqF/ahRXLNFcamXYsgau9gi6 JE9sjEETzkO+kIjcENGb94cmWIrAaUaeiVGC4moDwP8lc3VLuyJ/AGAk0cSkP04M AVdM00L1XQ9DHk4wh3CXnPgc8HsdJAdqfVcF4dJr/XJogVBVZ8qdNgpWWPPb84sw 9eo52LqP2HMVaJYCnY/KBCkyfRGSLGAMS676FBZpJNMe3saMA9mf/S139mw= -----END CERTIFICATE-----Generated at Wed Jun 4 11:29:18 2025 by rpki-client