$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fecb6982-06d4-4bb4-a59c-59982eb1b971.roa File: fecb6982-06d4-4bb4-a59c-59982eb1b971.roa (raw, json) Hash identifier: 2Nf6h5Tl/GtyINLb+zkKEMNCWR58XDEvLDfYLMGx/Qg= Subject key identifier: 11:E0:1D:7B:03:02:0C:6B:52:6B:A4:FB:9B:E9:50:65:E8:36:4F:88 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6E02A14ADD0B48FC1ABA4C845593A956791EF052 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fecb6982-06d4-4bb4-a59c-59982eb1b971.roa Signing time: Fri 30 May 2025 16:37:06 +0000 ROA not before: Fri 30 May 2025 16:37:06 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:02:a1:4a:dd:0b:48:fc:1a:ba:4c:84:55:93:a9:56:79:1e:f0:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 30 16:37:06 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=5b3393a3cd8a56a0369cb99b0720df1d69e9f3a8cac7e99bdbf75ecc4f053ead, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:94:d8:28:1c:ab:79:6a:fe:38:97:52:87:2c: 0f:3a:0a:50:26:2f:42:f3:8d:1d:ea:af:16:67:47: f0:ee:14:61:f1:6a:30:ce:fc:b8:0c:f1:b9:ca:c4: 2a:37:f4:1e:1d:38:f9:7f:d3:09:6d:39:4f:03:87: 2c:aa:7a:f9:6a:3f:9a:99:05:9b:9d:1b:29:60:10: a7:7a:d5:49:4f:61:c8:74:80:a2:16:c6:b9:78:43: 23:da:7f:68:a2:c5:55:b7:bc:52:be:d8:bd:8e:03: e8:f7:3a:19:7a:cf:6c:b1:09:df:30:a9:11:6b:bc: fc:7e:52:7d:38:82:f0:2e:52:cd:6c:ea:0f:3a:99: 52:bc:a2:ee:63:e3:2f:e7:b0:27:43:81:52:51:5e: 86:a7:86:70:fc:f0:b5:ee:84:54:63:92:9b:91:fe: 9a:c3:5e:26:a5:84:14:58:57:5e:5c:95:9d:4a:b5: 61:6d:88:6d:80:42:1d:b1:3f:9d:42:b1:83:2e:12: c9:c2:05:4a:36:6f:c1:f8:bf:77:02:c0:44:5f:51: d6:07:12:a6:ca:7c:30:5d:f1:9a:59:44:a1:f9:7f: 68:eb:76:fb:88:c8:24:ac:7b:df:13:72:ff:fc:21: 72:78:ed:4f:e9:b2:25:59:a7:af:3a:dd:1a:47:86: a5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:E0:1D:7B:03:02:0C:6B:52:6B:A4:FB:9B:E9:50:65:E8:36:4F:88 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fecb6982-06d4-4bb4-a59c-59982eb1b971.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.30.0/23 Signature Algorithm: sha256WithRSAEncryption 79:39:72:4f:8b:4c:40:9c:7b:2d:bf:84:53:aa:19:72:d1:5a: 5c:62:4a:d4:86:97:e8:45:3f:4c:1e:84:88:cf:78:d4:54:f3: 4e:fc:ec:a7:56:11:57:08:94:2e:97:5c:aa:4c:44:da:bc:c7: 36:29:db:a8:11:b0:90:dc:46:38:82:c9:2c:7d:35:e6:04:b9: be:f0:7a:b4:b7:e0:32:7e:4f:66:e0:a9:7f:31:a5:ff:21:df: 51:40:b5:16:26:42:11:7b:cd:f9:15:ed:11:57:1e:46:33:d8: 4b:82:ea:a6:9b:db:6d:3e:45:33:90:61:2e:53:72:a2:7b:aa: d8:55:e6:07:f6:43:1a:ab:d5:53:64:8c:47:c5:f9:83:c0:f0: 11:e4:b4:97:d7:1e:06:27:c8:39:2b:49:b7:c5:31:92:d9:b1: 04:94:ff:77:72:a4:58:1b:27:63:2f:cb:70:6c:11:12:7a:de: c6:fc:03:5d:e0:7e:93:92:1b:23:10:e6:ff:3d:34:d9:9b:c6: d6:3b:e4:c6:29:3b:c0:db:6d:99:f5:b4:b1:e2:41:be:60:6f: 24:05:37:09:a2:e0:86:70:47:39:2c:5e:51:56:65:7a:4a:57: 62:3f:17:5f:8b:bb:84:49:59:2a:24:29:6f:bd:1d:1f:1c:db: a8:77:71:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbgKhSt0LSPwaukyEVZOpVnke8FIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTMwMTYzNzA2WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YjMzOTNhM2NkOGE1NmEwMzY5Y2I5OWIwNzIwZGYxZDY5 ZTlmM2E4Y2FjN2U5OWJkYmY3NWVjYzRmMDUzZWFkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCDlNgoHKt5av44l1KHLA86ClAmL0LzjR3qrxZnR/DuFGHx ajDO/LgM8bnKxCo39B4dOPl/0wltOU8DhyyqevlqP5qZBZudGylgEKd61UlPYch0 gKIWxrl4QyPaf2iixVW3vFK+2L2OA+j3Ohl6z2yxCd8wqRFrvPx+Un04gvAuUs1s 6g86mVK8ou5j4y/nsCdDgVJRXoanhnD88LXuhFRjkpuR/prDXialhBRYV15clZ1K tWFtiG2AQh2xP51CsYMuEsnCBUo2b8H4v3cCwERfUdYHEqbKfDBd8ZpZRKH5f2jr dvuIyCSse98Tcv/8IXJ47U/psiVZp6863RpHhqUJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEeAdewMCDGtSa6T7m+lQZeg2T4gwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2ZlY2I2OTgyLTA2ZDQtNGJiNC1hNTljLTU5OTgyZWIxYjk3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYB4wDQYJKoZIhvcNAQELBQADggEBAHk5ck+LTECcey2/hFOqGXLRWlxi StSGl+hFP0wehIjPeNRU80787KdWEVcIlC6XXKpMRNq8xzYp26gRsJDcRjiCySx9 NeYEub7werS34DJ+T2bgqX8xpf8h31FAtRYmQhF7zfkV7RFXHkYz2EuC6qab220+ RTOQYS5TcqJ7qthV5gf2Qxqr1VNkjEfF+YPA8BHktJfXHgYnyDkrSbfFMZLZsQSU /3dypFgbJ2Mvy3BsERJ63sb8A13gfpOSGyMQ5v89NNmbxtY75MYpO8DbbZn1tLHi Qb5gbyQFNwmi4IZwRzksXlFWZXpKV2I/F1+Lu4RJWSokKW+9HR8c26h3cQ0= -----END CERTIFICATE-----Generated at Sun Jun 8 01:05:33 2025 by rpki-client