$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cab47dac-09a8-4952-8453-614e0299abcf.roa File: cab47dac-09a8-4952-8453-614e0299abcf.roa (raw, json) Hash identifier: bOfQXvnsVwgi60HokspPTAkAqWA/+44Heqwcl6RcdLU= Subject key identifier: 44:FC:B3:FA:C4:79:A0:78:7F:C7:DC:E7:5C:08:0E:54:9E:12:93:52 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 45BA40162F92E7B97DDCA06EE0A989CF7D142379 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cab47dac-09a8-4952-8453-614e0299abcf.roa Signing time: Fri 20 Jun 2025 21:07:04 +0000 ROA not before: Fri 20 Jun 2025 21:07:04 +0000 ROA not after: Fri 25 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:ba:40:16:2f:92:e7:b9:7d:dc:a0:6e:e0:a9:89:cf:7d:14:23:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 20 21:07:04 2025 GMT Not After : Jul 25 23:59:59 2025 GMT Subject: serialNumber=169ca862080bfe80183bc2fb5f2057a00813d4f6513d271220e51ac14d5e7644, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b2:04:0f:8d:00:36:bb:bb:b6:82:cb:76:11: ff:63:db:fe:a5:1e:40:dd:b8:19:ad:f3:c2:c9:fe: ad:99:4a:15:59:a8:7c:59:00:9c:54:5a:76:f6:b3: 20:cb:e4:1e:5d:4b:14:da:ea:1a:9b:a4:30:0b:57: f8:af:6c:65:65:6a:74:f6:b2:ed:df:0d:35:c3:57: d1:0c:e9:de:4c:b1:04:29:ce:61:da:2a:6a:38:55: 4a:ae:5d:73:b9:39:3a:ab:b2:30:90:d7:f7:43:b3: d4:38:0d:04:fd:5c:35:e0:56:50:57:56:af:cb:8a: c3:ae:8e:e4:ae:b0:6b:46:e5:c2:5f:cc:55:fb:5e: 44:3a:cb:10:2e:9a:28:ff:3a:11:51:72:c9:b7:a0: ca:c3:59:d8:2d:81:e3:0e:da:5e:aa:fd:c6:a6:7f: d1:0e:5e:81:de:0e:b5:62:2d:03:0f:01:fa:c3:23: 61:7f:ad:47:55:17:0d:50:4a:a9:23:11:7a:15:be: 3c:f7:04:d7:25:17:6d:54:30:95:69:4b:2f:24:bd: 50:8b:62:55:77:6c:4a:f6:78:07:b3:8b:d3:b6:de: 88:64:c7:21:4b:41:2e:29:37:71:2e:ac:2a:78:8d: 8f:0f:05:39:94:5a:5a:08:91:99:60:03:d7:ac:e0: c0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:FC:B3:FA:C4:79:A0:78:7F:C7:DC:E7:5C:08:0E:54:9E:12:93:52 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/cab47dac-09a8-4952-8453-614e0299abcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.243.0/24 Signature Algorithm: sha256WithRSAEncryption 72:eb:a4:ed:76:29:30:d5:ca:34:cf:49:a6:36:67:3e:f9:18: 49:f3:5c:a1:1b:24:d4:7d:08:30:2f:54:5e:bb:d2:90:4b:75: 84:0c:57:cc:63:da:43:f8:79:9c:ad:f7:00:17:72:2b:df:cb: 4a:f0:e9:36:a0:0a:43:59:c4:06:e1:32:dc:c8:bf:da:57:e7: 8e:1e:ab:61:34:8e:1f:d9:f8:5d:24:92:70:ba:e0:40:a4:cb: 7b:fb:bb:98:25:09:83:72:72:37:b4:2b:88:2f:94:2b:09:9e: 1b:6a:be:b2:ec:f9:74:09:2b:d4:6a:85:fa:f8:ea:05:4a:48: 36:dc:98:66:33:86:c5:d0:5a:91:99:1e:7e:70:d3:c2:e3:06: 16:50:16:3c:ca:75:fe:cf:b7:8e:60:d1:87:86:2b:8e:d2:82: b6:da:fc:cd:71:86:de:00:db:6f:bc:b1:0b:f8:22:3a:c3:d5: 6b:47:bb:ca:69:bd:c9:a2:e7:7d:1d:ee:70:8f:ba:11:ea:d7: fa:b1:95:09:9b:68:ff:dd:2b:a7:43:b3:b0:f5:d9:0e:bc:e1: b3:65:ed:e1:62:2b:5a:09:1f:2e:48:1a:8e:f6:62:da:12:f1: 16:91:e6:e4:56:0b:b4:a8:7d:b5:d3:92:0d:48:e7:8d:bb:5e: 55:69:2b:23 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURbpAFi+S57l93KBu4KmJz30UI3kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjIwMjEwNzA0WhcNMjUwNzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjljYTg2MjA4MGJmZTgwMTgzYmMyZmI1ZjIwNTdhMDA4 MTNkNGY2NTEzZDI3MTIyMGU1MWFjMTRkNWU3NjQ0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPsgQPjQA2u7u2gst2Ef9j2/6lHkDduBmt88LJ/q2ZShVZ qHxZAJxUWnb2syDL5B5dSxTa6hqbpDALV/ivbGVlanT2su3fDTXDV9EM6d5MsQQp zmHaKmo4VUquXXO5OTqrsjCQ1/dDs9Q4DQT9XDXgVlBXVq/LisOujuSusGtG5cJf zFX7XkQ6yxAumij/OhFRcsm3oMrDWdgtgeMO2l6q/camf9EOXoHeDrViLQMPAfrD I2F/rUdVFw1QSqkjEXoVvjz3BNclF21UMJVpSy8kvVCLYlV3bEr2eAezi9O23ohk xyFLQS4pN3EurCp4jY8PBTmUWloIkZlgA9es4MDRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURPyz+sR5oHh/x9znXAgOVJ4Sk1IwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2NhYjQ3ZGFjLTA5YTgtNDk1Mi04NDUzLTYxNGUwMjk5YWJjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPMwDQYJKoZIhvcNAQELBQADggEBAHLrpO12KTDVyjTPSaY2Zz75GEnz XKEbJNR9CDAvVF670pBLdYQMV8xj2kP4eZyt9wAXcivfy0rw6TagCkNZxAbhMtzI v9pX544eq2E0jh/Z+F0kknC64ECky3v7u5glCYNycje0K4gvlCsJnhtqvrLs+XQJ K9Rqhfr46gVKSDbcmGYzhsXQWpGZHn5w08LjBhZQFjzKdf7Pt45g0YeGK47Sgrba /M1xht4A22+8sQv4IjrD1WtHu8ppvcmi530d7nCPuhHq1/qxlQmbaP/dK6dDs7D1 2Q684bNl7eFiK1oJHy5IGo72YtoS8RaR5uRWC7SofbXTkg1I5427XlVpKyM= -----END CERTIFICATE-----Generated at Tue Jul 1 01:24:11 2025 by rpki-client