$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fcabc937-df80-4df7-95c8-bde2ef225d55.roa File: fcabc937-df80-4df7-95c8-bde2ef225d55.roa (raw, json) Hash identifier: GticDri5ZdfwKKJZtio9ZCP52RJI10GXjR/q23KuXSw= Subject key identifier: 83:1E:A0:2D:98:74:78:62:02:4E:49:1B:A9:7A:BF:20:96:54:50:54 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 754D129F45684B1564E6CF82C9F4BDEDB0F272DE Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fcabc937-df80-4df7-95c8-bde2ef225d55.roa Signing time: Mon 30 Jun 2025 17:50:07 +0000 ROA not before: Mon 30 Jun 2025 17:50:07 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:4d:12:9f:45:68:4b:15:64:e6:cf:82:c9:f4:bd:ed:b0:f2:72:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:50:07 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=806f43f0626c89e249f7040ddc67faed131b644deb5c658986e47e0c25e1188a, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1c:b4:04:e2:e9:fe:23:42:11:63:56:f8:66: de:a1:0b:25:e0:7c:1f:66:10:d8:56:ce:da:e8:50: af:f7:1e:c2:2c:a6:c4:ce:19:50:a3:75:ea:f5:73: 35:f8:c0:54:f6:ad:e1:87:99:c8:48:af:5c:61:1b: 0a:00:74:89:35:e9:13:e9:c5:12:18:e3:e7:2e:22: e9:fc:4e:57:7b:2f:69:f6:3d:03:40:67:b2:8e:fa: e4:88:0b:07:8f:f2:c5:43:d6:90:5a:3e:ba:a1:05: b4:48:f6:2f:40:ed:31:24:c5:77:6e:0d:60:f9:f0: 24:e1:73:5e:4d:4c:44:c4:93:bf:0f:0c:0e:2a:c6: e6:0c:b8:50:a1:f3:c1:e9:bc:78:00:7b:c0:15:7f: ea:81:47:6b:43:f1:ce:e6:28:a1:86:03:8e:0e:88: 5d:41:ad:06:bb:c8:fa:67:5b:16:4f:70:33:b4:87: 68:1e:91:84:fc:e9:41:8d:90:96:fc:70:29:44:4f: ce:a5:e0:9c:db:36:44:2e:21:3b:1d:df:e0:23:dd: 53:10:5b:eb:8e:61:fa:db:96:cb:76:c0:c9:8b:2b: f4:05:44:fa:49:85:9e:50:6d:0e:b8:e9:44:19:aa: 30:fe:3c:d3:77:c2:c4:3e:e0:3d:c4:84:60:a8:d3: 4e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:1E:A0:2D:98:74:78:62:02:4E:49:1B:A9:7A:BF:20:96:54:50:54 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fcabc937-df80-4df7-95c8-bde2ef225d55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.48.0/20 Signature Algorithm: sha256WithRSAEncryption 96:47:a8:33:b7:d1:17:6a:5a:5f:96:23:e3:de:e6:da:2f:8a: 1f:7e:a3:f7:82:c9:85:80:f7:a2:29:35:20:4b:c6:e4:e6:dd: 7e:09:78:e0:20:cf:4a:18:80:90:53:a8:07:94:69:c1:d7:ab: d8:cb:94:61:a5:7a:4b:5a:02:87:78:96:6b:19:40:a1:20:e1: fa:4f:e1:fa:24:fd:4d:d6:45:d0:2e:5b:01:c3:7d:a3:59:1d: a7:26:77:d6:21:c6:8f:60:f8:4e:b1:b8:8e:51:b2:ee:c9:fe: 0c:78:b4:ef:84:4a:db:32:25:93:8e:7f:59:53:bd:d3:c1:33: 82:db:62:65:7a:c6:df:81:be:4e:5e:15:fc:29:3f:73:f9:00: 29:90:84:5b:b3:89:1f:0b:29:c0:d6:0a:e2:ed:b0:d1:b7:17: 3d:cf:80:85:22:51:2a:f5:06:ba:07:23:1b:ed:14:99:bc:c0: 22:c0:87:b4:6b:6e:76:10:8f:90:60:7b:1b:14:2d:9e:b5:a6: 6b:1e:4a:b3:06:28:8e:a1:a0:09:9b:04:a8:7d:0b:1e:1f:cc: da:5b:ae:5a:c6:12:16:39:c6:54:87:d9:73:18:7d:65:f7:b5: 43:a4:d7:32:4c:e4:aa:86:28:9b:e9:1b:4f:5a:48:61:93:f6: 35:37:7c:ef -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdU0Sn0VoSxVk5s+CyfS97bDyct4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc1MDA3WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDZmNDNmMDYyNmM4OWUyNDlmNzA0MGRkYzY3ZmFlZDEz MWI2NDRkZWI1YzY1ODk4NmU0N2UwYzI1ZTExODhhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClHLQE4un+I0IRY1b4Zt6hCyXgfB9mENhWztroUK/3HsIs psTOGVCjder1czX4wFT2reGHmchIr1xhGwoAdIk16RPpxRIY4+cuIun8Tld7L2n2 PQNAZ7KO+uSICweP8sVD1pBaPrqhBbRI9i9A7TEkxXduDWD58CThc15NTETEk78P DA4qxuYMuFCh88HpvHgAe8AVf+qBR2tD8c7mKKGGA44OiF1BrQa7yPpnWxZPcDO0 h2gekYT86UGNkJb8cClET86l4JzbNkQuITsd3+Aj3VMQW+uOYfrblst2wMmLK/QF RPpJhZ5QbQ646UQZqjD+PNN3wsQ+4D3EhGCo007lAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgx6gLZh0eGICTkkbqXq/IJZUUFQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2ZjYWJjOTM3LWRmODAtNGRmNy05NWM4LWJkZTJlZjIyNWQ1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYDAwDQYJKoZIhvcNAQELBQADggEBAJZHqDO30RdqWl+WI+Pe5tovih9+ o/eCyYWA96IpNSBLxuTm3X4JeOAgz0oYgJBTqAeUacHXq9jLlGGlektaAod4lmsZ QKEg4fpP4fok/U3WRdAuWwHDfaNZHacmd9Yhxo9g+E6xuI5Rsu7J/gx4tO+EStsy JZOOf1lTvdPBM4LbYmV6xt+Bvk5eFfwpP3P5ACmQhFuziR8LKcDWCuLtsNG3Fz3P gIUiUSr1BroHIxvtFJm8wCLAh7RrbnYQj5BgexsULZ61pmseSrMGKI6hoAmbBKh9 Cx4fzNpbrlrGEhY5xlSH2XMYfWX3tUOk1zJM5KqGKJvpG09aSGGT9jU3fO8= -----END CERTIFICATE-----Generated at Tue Jul 1 01:15:19 2025 by rpki-client