$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bb137ef6-15e7-4d0d-9872-00d472b0776b.roa File: bb137ef6-15e7-4d0d-9872-00d472b0776b.roa (raw, json) Hash identifier: 4bCe7MbY0g/DVqeT7WWYt8mT/Q3R82BeXfESUdmkc/M= Subject key identifier: BE:37:4C:74:4A:68:F7:EC:F5:74:23:65:39:05:64:8B:F0:CE:22:0C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1AC9413E0E2255A0BA9D73F8C701110235DFDC08 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bb137ef6-15e7-4d0d-9872-00d472b0776b.roa Signing time: Mon 30 Jun 2025 17:50:24 +0000 ROA not before: Mon 30 Jun 2025 17:50:24 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:c9:41:3e:0e:22:55:a0:ba:9d:73:f8:c7:01:11:02:35:df:dc:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:50:24 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=fb342d3b47f93f139f008c2e34221b3d7fd3d7fb04abe35c9b895ba56f42a586, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ca:96:6e:e2:95:57:46:2b:23:5a:53:2d:a5: 43:9d:1b:37:4e:6b:ec:53:be:38:4a:60:a5:05:ee: 42:e3:b6:25:66:4c:1d:65:53:04:a1:f4:6f:27:a7: 21:22:b0:98:62:a9:a9:2a:01:15:25:ba:7a:e6:99: 35:bc:d1:d0:b4:cd:79:28:91:78:b3:ab:23:a5:f4: 46:a8:ee:40:c5:f9:0d:5e:e7:cd:15:12:bc:2f:50: 64:83:dc:0d:44:0e:e9:a1:a7:c3:c8:17:e3:ed:a5: 39:7f:45:be:cb:54:3e:ae:ab:e4:2b:af:73:9e:c6: f8:ec:15:44:2d:0e:dd:a9:37:ce:4a:30:b4:1b:86: 2f:d8:c2:a4:cf:20:fe:7b:fa:50:3f:09:2c:65:65: c5:02:c1:b7:50:f4:df:e2:2d:2d:e5:91:3c:85:5f: 4e:78:30:f2:53:5c:45:c2:54:17:45:09:44:01:44: bd:07:57:b7:cf:2d:ab:06:f1:66:de:a0:e0:ff:91: 44:36:7c:05:78:aa:90:77:09:f5:9e:5f:96:2e:0d: 4d:2d:a2:7e:6e:78:43:dd:fe:f5:a3:b1:f8:16:de: b6:e9:33:60:7e:4d:67:31:1a:c5:96:b8:7e:50:df: 41:da:12:3f:ff:88:4f:2a:5d:70:42:4a:10:60:05: 4a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:37:4C:74:4A:68:F7:EC:F5:74:23:65:39:05:64:8B:F0:CE:22:0C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bb137ef6-15e7-4d0d-9872-00d472b0776b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.60.0/22 Signature Algorithm: sha256WithRSAEncryption 6a:b9:8c:90:d8:8e:1a:6b:8f:42:6a:8e:64:c8:e2:0f:1b:89: 49:92:cd:a8:78:5c:46:fa:7b:ac:47:e7:a0:43:6f:af:96:5f: 9e:e0:0e:a8:09:e3:5c:fe:53:8a:71:66:d9:6b:43:58:bb:3c: 09:4b:bb:2a:f5:87:a4:83:a5:5d:11:30:22:69:d4:21:82:c9: 39:b2:88:f5:c1:7b:1c:6a:ff:b3:62:05:05:51:98:69:a6:07: ba:94:96:f7:43:c8:4e:53:91:cf:89:41:9c:f0:07:af:99:d7: 83:ae:a1:ff:cf:aa:8d:b2:9f:17:07:6e:89:de:11:34:56:22: f8:6e:85:1b:da:6a:1a:8a:e3:2f:46:74:3f:9f:81:e5:00:25: e1:32:5e:b7:12:d5:2c:06:46:bf:12:c0:28:0a:8d:10:5c:b6: 56:aa:d4:44:be:9c:e5:75:ab:0f:8a:6e:2a:87:32:93:c4:8d: 3f:ed:0d:bb:a2:90:77:0c:b5:1f:4c:c9:4a:cd:88:78:6b:f4: d3:57:35:b9:33:50:66:ec:bd:fd:d7:81:3c:c2:11:3e:cb:81: a8:be:7c:27:88:a3:5c:cd:e6:0c:df:84:b9:e1:b6:9d:80:f5: f4:8c:ff:24:ae:0f:95:c0:b8:da:1f:c7:da:8a:db:37:6f:af: 84:1b:53:d3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGslBPg4iVaC6nXP4xwERAjXf3AgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc1MDI0WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjM0MmQzYjQ3ZjkzZjEzOWYwMDhjMmUzNDIyMWIzZDdm ZDNkN2ZiMDRhYmUzNWM5Yjg5NWJhNTZmNDJhNTg2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaypZu4pVXRisjWlMtpUOdGzdOa+xTvjhKYKUF7kLjtiVm TB1lUwSh9G8npyEisJhiqakqARUlunrmmTW80dC0zXkokXizqyOl9Eao7kDF+Q1e 580VErwvUGSD3A1EDumhp8PIF+PtpTl/Rb7LVD6uq+Qrr3OexvjsFUQtDt2pN85K MLQbhi/YwqTPIP57+lA/CSxlZcUCwbdQ9N/iLS3lkTyFX054MPJTXEXCVBdFCUQB RL0HV7fPLasG8WbeoOD/kUQ2fAV4qpB3CfWeX5YuDU0ton5ueEPd/vWjsfgW3rbp M2B+TWcxGsWWuH5Q30HaEj//iE8qXXBCShBgBUpJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvjdMdEpo9+z1dCNlOQVki/DOIgwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2JiMTM3ZWY2LTE1ZTctNGQwZC05ODcyLTAwZDQ3MmIwNzc2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYDwwDQYJKoZIhvcNAQELBQADggEBAGq5jJDYjhprj0JqjmTI4g8biUmS zah4XEb6e6xH56BDb6+WX57gDqgJ41z+U4pxZtlrQ1i7PAlLuyr1h6SDpV0RMCJp 1CGCyTmyiPXBexxq/7NiBQVRmGmmB7qUlvdDyE5Tkc+JQZzwB6+Z14Ouof/Pqo2y nxcHboneETRWIvhuhRvaahqK4y9GdD+fgeUAJeEyXrcS1SwGRr8SwCgKjRBctlaq 1ES+nOV1qw+KbiqHMpPEjT/tDbuikHcMtR9MyUrNiHhr9NNXNbkzUGbsvf3XgTzC ET7Lgai+fCeIo1zN5gzfhLnhtp2A9fSM/ySuD5XAuNofx9qK2zdvr4QbU9M= -----END CERTIFICATE-----Generated at Tue Jul 1 01:13:23 2025 by rpki-client