$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f24b00af-d0f9-4c84-bc60-86f3001d43e2.roa File: f24b00af-d0f9-4c84-bc60-86f3001d43e2.roa (raw, json) Hash identifier: ViBd+LMxw2vD0UfGdgA3/QDLwOZeuJnz9q1u4uCLYNk= Subject key identifier: EE:0B:DA:DF:3B:FE:C4:37:20:10:81:FB:20:74:78:F2:BE:68:D6:AF Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 45E9ABDEF7104048BAF40764CC1918543491D865 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f24b00af-d0f9-4c84-bc60-86f3001d43e2.roa Signing time: Tue 20 May 2025 18:00:14 +0000 ROA not before: Tue 20 May 2025 18:00:14 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:e9:ab:de:f7:10:40:48:ba:f4:07:64:cc:19:18:54:34:91:d8:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 20 18:00:14 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=3bbdb166b0c7fd256ae49137a76ba160e227ef6ac65597526dd725ef2e7501a3, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:17:b2:da:5a:f8:46:50:08:bd:01:42:6f:89: 87:d0:96:70:4f:4b:d9:a5:6f:e1:d9:f0:7c:24:f5: e3:37:00:c6:42:aa:3c:e0:08:d2:36:cf:2f:96:bd: 2c:f3:dc:05:26:11:fe:48:ff:23:76:10:84:d0:d2: 4e:91:67:31:a0:1a:6f:df:8e:01:82:88:59:b3:b4: ca:2b:6e:8d:1e:4d:6d:7f:aa:44:df:96:31:8a:57: ce:e5:5b:24:4e:f2:67:65:78:b0:e2:4e:64:f6:02: 7a:9e:25:3b:db:f7:89:9a:23:ce:64:14:9b:db:71: 75:f1:5d:48:6e:29:e7:4c:27:60:23:3b:8a:75:c8: 73:35:b9:40:13:5f:05:90:d5:06:19:2b:37:88:9c: c7:7d:04:c1:d7:8b:b5:88:a2:b9:c9:36:0e:9e:d1: e0:b3:1e:60:9e:58:bd:34:49:10:d7:8d:8e:81:3c: a6:16:b4:ec:90:5b:c0:e7:0a:d9:96:44:6d:75:d2: 60:a9:9c:b7:c9:1a:eb:c6:e3:3e:d3:9c:69:c7:58: e1:20:19:6a:d0:bc:3a:0d:75:c3:47:57:5d:25:98: bb:72:93:4c:31:81:bd:58:41:4e:04:a3:6f:c0:d1: 99:2f:b8:ac:20:8c:a4:2a:11:ba:9f:16:07:76:3e: 54:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:0B:DA:DF:3B:FE:C4:37:20:10:81:FB:20:74:78:F2:BE:68:D6:AF X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f24b00af-d0f9-4c84-bc60-86f3001d43e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 94:fd:e3:71:be:a7:b8:f7:cd:7b:78:9b:07:4e:d2:f4:3e:a9: e7:b3:b2:b0:21:d5:e5:9e:6c:7f:2b:6a:b7:9e:01:b4:12:ed: ad:6e:d3:34:37:13:86:fe:1a:43:b7:be:63:a9:c6:02:e8:80: ae:b7:f9:16:1e:80:6a:31:e0:63:53:c0:cb:c9:dd:3a:df:f7: b7:12:bc:3e:3b:04:e3:08:ee:fa:ba:43:a1:28:1f:d0:a8:41: 7c:e5:df:1a:2e:b9:8d:2e:c3:3d:89:7f:11:68:1a:83:81:70: 13:c2:59:c5:85:98:d3:a9:e6:39:86:27:a4:83:b2:e1:c8:83: 6b:a9:bd:af:1c:15:79:dc:87:49:cb:0f:fe:fd:fb:7e:5d:26: 43:0d:a0:6a:d1:1b:72:35:1a:8b:18:db:e7:21:71:c4:e0:eb: 0f:96:72:72:11:2e:00:cc:de:50:5b:33:46:37:78:72:3e:7c: 68:f0:6b:26:87:60:03:fa:9c:ec:5a:c5:0d:26:cf:e5:a7:99: da:cf:94:81:10:1e:33:72:5e:20:3b:2c:02:d1:b4:b5:d0:29: df:7f:00:6e:0f:91:75:98:b0:38:0e:89:02:f0:b4:b3:78:e2: 58:ea:df:19:af:77:c2:10:47:1c:b0:18:e1:25:f2:a7:a3:6d: a2:01:d4:64 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURemr3vcQQEi69AdkzBkYVDSR2GUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTIwMTgwMDE0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYmJkYjE2NmIwYzdmZDI1NmFlNDkxMzdhNzZiYTE2MGUy MjdlZjZhYzY1NTk3NTI2ZGQ3MjVlZjJlNzUwMWEzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnF7LaWvhGUAi9AUJviYfQlnBPS9mlb+HZ8Hwk9eM3AMZC qjzgCNI2zy+WvSzz3AUmEf5I/yN2EITQ0k6RZzGgGm/fjgGCiFmztMorbo0eTW1/ qkTfljGKV87lWyRO8mdleLDiTmT2AnqeJTvb94maI85kFJvbcXXxXUhuKedMJ2Aj O4p1yHM1uUATXwWQ1QYZKzeInMd9BMHXi7WIornJNg6e0eCzHmCeWL00SRDXjY6B PKYWtOyQW8DnCtmWRG110mCpnLfJGuvG4z7TnGnHWOEgGWrQvDoNdcNHV10lmLty k0wxgb1YQU4Eo2/A0ZkvuKwgjKQqEbqfFgd2PlTnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7gva3zv+xDcgEIH7IHR48r5o1q8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2YyNGIwMGFmLWQwZjktNGM4NC1iYzYwLTg2ZjMwMDFkNDNlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYGAwDQYJKoZIhvcNAQELBQADggEBAJT943G+p7j3zXt4mwdO0vQ+qeez srAh1eWebH8rareeAbQS7a1u0zQ3E4b+GkO3vmOpxgLogK63+RYegGox4GNTwMvJ 3Trf97cSvD47BOMI7vq6Q6EoH9CoQXzl3xouuY0uwz2JfxFoGoOBcBPCWcWFmNOp 5jmGJ6SDsuHIg2upva8cFXnch0nLD/79+35dJkMNoGrRG3I1GosY2+chccTg6w+W cnIRLgDM3lBbM0Y3eHI+fGjwayaHYAP6nOxaxQ0mz+WnmdrPlIEQHjNyXiA7LALR tLXQKd9/AG4PkXWYsDgOiQLwtLN44ljq3xmvd8IQRxywGOEl8qejbaIB1GQ= -----END CERTIFICATE-----Generated at Mon Jun 2 16:54:36 2025 by rpki-client