$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/decfa8a2-ad50-432e-96a7-cba83d9032f9.roa File: decfa8a2-ad50-432e-96a7-cba83d9032f9.roa (raw, json) Hash identifier: IU1DlD7HCB6dmr3ma9IrjKwEtlHm9e63K7vQoCSSWOE= Subject key identifier: F8:27:4E:A7:01:5C:38:8B:54:B0:E3:B7:58:D5:8E:63:92:91:D8:A6 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1117082D5F12CAC5CD8B34D54529BAE0ECCE2D19 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/decfa8a2-ad50-432e-96a7-cba83d9032f9.roa Signing time: Tue 20 May 2025 17:50:06 +0000 ROA not before: Tue 20 May 2025 17:50:06 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:17:08:2d:5f:12:ca:c5:cd:8b:34:d5:45:29:ba:e0:ec:ce:2d:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 20 17:50:06 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=c94e81c37ea8ca008ae5d5b7c51ad9d9b0c878805aa9a169f0f204611119163d, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:13:c6:4f:47:9c:0c:9c:67:35:90:a5:d5:28: 3f:09:84:6b:15:47:0a:05:3d:da:27:00:c7:ef:92: 7c:bc:75:82:e0:b5:90:fd:27:f7:75:62:dd:52:52: ca:27:fd:4c:19:cc:f3:29:9a:a7:20:d1:1e:1a:32: e4:5d:97:3d:47:36:3e:48:5f:c2:df:2f:e6:81:66: 25:ef:a2:c2:b4:ed:72:f0:78:38:a0:7c:0c:a6:40: 05:ff:d0:0f:a2:18:4a:1d:b8:93:67:6d:78:64:e4: 56:84:cd:f6:82:16:3b:19:52:09:bb:aa:ac:9a:7f: 8a:26:5e:62:0f:f3:40:11:92:16:f3:99:95:93:9a: 4b:4e:e4:7d:16:84:1d:61:61:e7:bc:9a:c7:f6:f7: 3c:22:69:e6:b3:06:7d:b6:fd:53:b4:ab:ba:99:88: b2:94:37:30:a0:28:03:cd:39:fd:fb:9c:5e:08:a7: b6:95:40:42:4c:39:93:57:51:00:3d:74:bc:c7:0a: 98:cd:3a:1a:47:1a:a8:75:22:12:7b:c6:d0:c5:3d: b6:21:4e:77:fe:01:55:3f:f6:a2:3d:ad:29:0c:7d: 63:29:71:58:16:76:22:8d:f4:6b:48:00:8c:e9:0e: a3:45:8c:56:96:83:f0:10:b2:a9:34:9e:e3:c6:0a: 90:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:27:4E:A7:01:5C:38:8B:54:B0:E3:B7:58:D5:8E:63:92:91:D8:A6 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/decfa8a2-ad50-432e-96a7-cba83d9032f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.9.0/24 Signature Algorithm: sha256WithRSAEncryption 83:28:f6:6d:b6:82:66:99:f6:ff:71:db:73:cd:10:5c:b7:14: da:4b:04:d9:a5:08:7b:87:38:fb:6a:cc:5f:e1:f9:59:d2:8b: 4c:48:a1:31:b7:5d:6a:3c:2e:a7:0c:50:9c:97:e8:d0:80:db: 61:ff:f1:22:7d:4c:a5:02:d6:56:67:5a:d0:79:08:eb:43:99: fd:39:72:93:00:0d:5a:6c:9a:8a:37:5a:c9:f2:35:88:83:b4: cd:db:41:de:b9:00:ca:32:d8:a8:95:04:5e:f3:98:aa:6a:a8: 01:2b:41:5d:b5:e4:60:b4:b9:2d:35:9a:a6:23:1d:2e:a7:e3: 33:29:c5:9f:65:cd:3a:82:6f:c8:0e:9c:65:a8:80:92:72:69: 94:af:59:34:b4:71:1a:20:74:b4:55:a9:3f:38:b9:b7:47:9e: 2b:c1:b9:9f:11:87:30:75:c9:f2:31:f5:59:6f:3e:59:25:3a: 89:4d:25:51:73:a4:4a:94:cc:35:e7:b2:1d:be:c2:52:45:d9: 04:ed:a8:0e:98:4e:88:9c:ca:cc:89:b9:b1:a3:af:7d:fd:06: ae:5c:5e:d3:0b:18:2a:5b:a2:30:9f:e0:64:37:93:38:bf:7b: 7d:36:a9:97:b9:71:08:35:69:32:bb:fe:81:d3:69:79:9b:5d: 3b:02:df:1f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUERcILV8SysXNizTVRSm64OzOLRkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTIwMTc1MDA2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTRlODFjMzdlYThjYTAwOGFlNWQ1YjdjNTFhZDlkOWIw Yzg3ODgwNWFhOWExNjlmMGYyMDQ2MTExMTkxNjNkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD8E8ZPR5wMnGc1kKXVKD8JhGsVRwoFPdonAMfvkny8dYLg tZD9J/d1Yt1SUson/UwZzPMpmqcg0R4aMuRdlz1HNj5IX8LfL+aBZiXvosK07XLw eDigfAymQAX/0A+iGEoduJNnbXhk5FaEzfaCFjsZUgm7qqyaf4omXmIP80ARkhbz mZWTmktO5H0WhB1hYee8msf29zwiaeazBn22/VO0q7qZiLKUNzCgKAPNOf37nF4I p7aVQEJMOZNXUQA9dLzHCpjNOhpHGqh1IhJ7xtDFPbYhTnf+AVU/9qI9rSkMfWMp cVgWdiKN9GtIAIzpDqNFjFaWg/AQsqk0nuPGCpApAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+CdOpwFcOItUsOO3WNWOY5KR2KYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RlY2ZhOGEyLWFkNTAtNDMyZS05NmE3LWNiYTgzZDkwMzJmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAkwDQYJKoZIhvcNAQELBQADggEBAIMo9m22gmaZ9v9x23PNEFy3FNpL BNmlCHuHOPtqzF/h+VnSi0xIoTG3XWo8LqcMUJyX6NCA22H/8SJ9TKUC1lZnWtB5 COtDmf05cpMADVpsmoo3WsnyNYiDtM3bQd65AMoy2KiVBF7zmKpqqAErQV215GC0 uS01mqYjHS6n4zMpxZ9lzTqCb8gOnGWogJJyaZSvWTS0cRogdLRVqT84ubdHnivB uZ8RhzB1yfIx9VlvPlklOolNJVFzpEqUzDXnsh2+wlJF2QTtqA6YToicysyJubGj r339Bq5cXtMLGCpbojCf4GQ3kzi/e302qZe5cQg1aTK7/oHTaXmbXTsC3x8= -----END CERTIFICATE-----Generated at Sat Jun 7 04:59:15 2025 by rpki-client