$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f9e50d68-b0c9-485d-9221-bde42a68abe9.roa File: f9e50d68-b0c9-485d-9221-bde42a68abe9.roa (raw, json) Hash identifier: 6UDYHoKqYI270QhvQtG3HO3W1KZSXwCtHVckrr2+X54= Subject key identifier: 4A:83:03:08:D9:B4:25:9B:71:AC:44:82:25:62:A0:1B:2E:96:29:93 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 150E72FC06F253E0FAB9D3CB5A205551B573BA58 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f9e50d68-b0c9-485d-9221-bde42a68abe9.roa Signing time: Mon 30 Jun 2025 17:50:12 +0000 ROA not before: Mon 30 Jun 2025 17:50:12 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:0e:72:fc:06:f2:53:e0:fa:b9:d3:cb:5a:20:55:51:b5:73:ba:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:50:12 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=4e498a0ab79e29224fb84f89e82f3e0b499a73aa2a12e958da69a645ddc7d5c8, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5d:52:9d:04:37:4e:3e:49:e9:a7:46:a5:ee: 5f:ed:33:d9:ea:17:e7:2a:4f:6c:0f:d8:80:f7:d6: 3a:c2:46:36:62:59:ec:2a:a1:39:2a:91:55:90:98: 55:d4:3a:13:f4:80:69:c4:1f:ef:52:81:94:cc:a6: 5f:59:fa:90:a1:88:0b:3e:dd:cf:ef:d2:cd:f0:a4: a8:9e:da:66:5e:9e:b9:4d:dd:a4:0f:4a:77:97:37: 40:0f:76:fe:7a:e5:00:27:19:78:5b:22:64:84:21: 4e:8e:8b:83:15:2f:c0:7a:6a:d2:5f:1f:50:a2:93: c4:0c:71:49:f4:29:69:0a:c4:c5:63:c5:e3:5a:a8: 31:9e:62:54:98:6b:f1:92:59:82:d4:20:78:dd:7e: 86:87:d0:ca:2d:a6:b2:6e:4d:15:af:51:2d:dd:51: eb:e0:a2:91:78:13:e1:66:a4:53:a9:1f:84:27:e9: 04:3e:19:a7:b3:79:79:c5:8f:b3:c3:10:3d:af:4f: 20:37:3a:6e:86:17:17:44:4d:d0:b4:53:84:a3:04: e9:54:79:9a:ea:96:44:60:c0:2a:35:8f:71:c0:3e: 66:40:bd:97:1e:9d:fb:bc:9c:92:26:ab:ad:1e:38: 13:e9:2b:4f:9c:fb:2a:33:31:8a:23:0f:0e:70:f3: 28:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:83:03:08:D9:B4:25:9B:71:AC:44:82:25:62:A0:1B:2E:96:29:93 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f9e50d68-b0c9-485d-9221-bde42a68abe9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.64.0/20 Signature Algorithm: sha256WithRSAEncryption 81:4e:33:5c:55:7f:f0:6d:30:21:61:4e:f1:09:cf:2c:e2:56: c5:be:d5:0a:ae:38:0a:06:8a:0e:e6:9c:88:97:7b:8b:75:eb: 9d:ef:ae:fb:5d:a0:3c:5e:88:c7:13:f9:87:a7:bc:a6:a1:33: 61:96:83:6d:c2:fd:cb:84:a4:2d:9f:80:ff:bf:10:72:41:16: 79:35:56:fe:c6:eb:2e:10:11:b0:fc:f1:d7:f3:1a:ff:c3:ba: a4:1b:84:0f:41:82:88:96:c7:85:e8:88:0a:f9:25:35:36:46: b6:02:a8:b7:31:e8:08:20:4b:54:47:ce:c4:8c:64:66:a7:98: 54:27:86:78:46:d3:d6:e2:f1:92:3a:1a:e3:bc:a0:c0:c8:fc: fd:72:a7:72:32:79:c2:0d:79:c6:4d:13:a0:7d:b2:c7:1c:ec: 45:43:79:7e:2c:43:94:c4:21:4d:4f:28:ea:68:56:fb:06:33: a7:89:4b:78:99:4d:2b:0f:c2:27:19:70:9f:3f:9c:1b:92:58: 49:da:73:b7:59:c4:94:7a:aa:96:39:1c:03:a2:ae:4f:08:6c: c6:e7:10:3a:2e:2a:ff:c5:fe:20:d8:03:e2:fb:eb:c3:18:77: 14:a5:80:d8:e1:65:d4:69:f7:91:4b:6b:ab:ab:87:d6:f7:b0: cb:67:40:ad -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFQ5y/AbyU+D6udPLWiBVUbVzulgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc1MDEyWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTQ5OGEwYWI3OWUyOTIyNGZiODRmODllODJmM2UwYjQ5 OWE3M2FhMmExMmU5NThkYTY5YTY0NWRkYzdkNWM4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEXVKdBDdOPknpp0al7l/tM9nqF+cqT2wP2ID31jrCRjZi WewqoTkqkVWQmFXUOhP0gGnEH+9SgZTMpl9Z+pChiAs+3c/v0s3wpKie2mZenrlN 3aQPSneXN0APdv565QAnGXhbImSEIU6Oi4MVL8B6atJfH1Cik8QMcUn0KWkKxMVj xeNaqDGeYlSYa/GSWYLUIHjdfoaH0MotprJuTRWvUS3dUevgopF4E+FmpFOpH4Qn 6QQ+GaezeXnFj7PDED2vTyA3Om6GFxdETdC0U4SjBOlUeZrqlkRgwCo1j3HAPmZA vZcenfu8nJImq60eOBPpK0+c+yozMYojDw5w8yifAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSoMDCNm0JZtxrESCJWKgGy6WKZMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2Y5ZTUwZDY4LWIwYzktNDg1ZC05MjIxLWJkZTQyYTY4YWJlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYEAwDQYJKoZIhvcNAQELBQADggEBAIFOM1xVf/BtMCFhTvEJzyziVsW+ 1QquOAoGig7mnIiXe4t1653vrvtdoDxeiMcT+YenvKahM2GWg23C/cuEpC2fgP+/ EHJBFnk1Vv7G6y4QEbD88dfzGv/DuqQbhA9BgoiWx4XoiAr5JTU2RrYCqLcx6Agg S1RHzsSMZGanmFQnhnhG09bi8ZI6GuO8oMDI/P1yp3IyecINecZNE6B9sscc7EVD eX4sQ5TEIU1PKOpoVvsGM6eJS3iZTSsPwicZcJ8/nBuSWEnac7dZxJR6qpY5HAOi rk8IbMbnEDouKv/F/iDYA+L768MYdxSlgNjhZdRp95FLa6urh9b3sMtnQK0= -----END CERTIFICATE-----Generated at Tue Jul 1 01:21:59 2025 by rpki-client