$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa File: 0169813a-bb63-4d7c-af7c-621b7522e549.roa (raw, json) Hash identifier: RH7/ofALs0BcvJ5jbhJ1vJE0zaBEHkJbVGW0d3Cb/ZQ= Subject key identifier: D7:E4:03:C9:09:AE:8A:F3:86:60:20:D0:01:48:5A:4F:B9:CA:B4:AA Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 04166C6D85330F721BCF9579B23DA2D215617DF3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa Signing time: Wed 25 Jun 2025 00:40:13 +0000 ROA not before: Wed 25 Jun 2025 00:40:13 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:16:6c:6d:85:33:0f:72:1b:cf:95:79:b2:3d:a2:d2:15:61:7d:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 25 00:40:13 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=f200ab0ba6e8d6d07400d557a535ba016581815fe0402f8b60d14bc4966d8c2c, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:bb:ab:f0:33:cd:52:7f:a3:5d:8e:a4:d9:59: 89:48:6d:fc:b6:94:2c:47:e7:e5:08:a8:01:62:94: db:b4:60:74:fb:00:e3:f0:63:2f:7b:2b:2c:45:11: 41:59:e7:24:7e:ab:2f:09:c5:b8:5a:fa:d9:8e:57: 69:f3:c5:03:37:6e:af:af:c4:49:03:c6:65:26:46: a6:4c:3c:1b:d3:4f:1e:fe:9b:12:95:cc:c7:14:bd: a9:de:96:9b:e4:09:f4:73:c5:e2:53:69:94:ae:75: c9:4e:ac:13:3b:ca:e9:6d:ed:13:37:c4:6c:70:50: 44:44:3a:00:d8:ff:83:d9:08:4c:5c:5a:2b:a0:c4: a1:0f:28:1b:2e:2b:c9:ba:52:32:2f:c5:94:32:2f: 5a:e0:b9:f1:12:c6:b4:f2:fb:da:7b:6e:92:3f:85: 45:b5:44:69:34:be:a7:32:c9:91:0d:bc:b4:33:96: 90:81:7f:5e:cf:55:bd:66:34:3a:ca:5d:64:dc:4b: 00:83:04:2e:44:07:af:e4:58:3a:e9:1c:d6:cb:7f: 68:a5:21:e2:60:82:0a:36:a2:e3:11:8a:15:85:88: 6c:85:dd:95:4e:d7:bf:6c:e9:da:c1:7b:e2:2c:c8: f6:0f:61:41:22:e2:d7:fd:b0:88:f8:7d:92:ae:69: aa:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E4:03:C9:09:AE:8A:F3:86:60:20:D0:01:48:5A:4F:B9:CA:B4:AA X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.24.0/23 Signature Algorithm: sha256WithRSAEncryption 89:d5:e4:b7:bb:0d:bb:2d:f7:68:43:30:6d:c3:5b:4f:3d:d0: b5:2a:44:b0:51:7f:dd:7d:02:e9:e1:2c:c7:73:dc:28:a8:f8: 93:9c:b1:2b:55:a6:4f:4a:2e:4c:37:50:7d:b7:72:28:23:26: 9e:11:2b:9a:13:08:f2:c6:d0:22:e7:45:47:e7:7e:a2:65:f3: 7e:2a:f1:1c:6c:25:69:cf:aa:88:7d:48:30:1f:ad:41:cb:29: 21:82:96:a1:d3:48:f1:ba:1f:90:3a:02:50:ae:b9:03:cc:c7: c3:5a:16:e5:54:5f:bd:49:ab:4d:f8:3e:73:2c:74:b1:41:d2: 60:68:15:80:09:d4:06:02:9d:46:48:7d:90:01:84:8d:be:81: e4:6e:4a:56:44:fa:45:f1:bd:c7:8c:69:a0:b3:d1:3e:c8:ea: 27:ab:92:31:65:ca:38:b2:93:9b:71:96:23:ee:c4:d8:6a:fe: eb:c6:41:6c:60:be:37:0e:d2:93:1c:f3:39:38:66:7f:0b:19: 82:1a:4d:29:46:21:73:96:29:03:3e:e8:5a:5e:5c:a8:7d:19: c9:41:80:1a:ec:1c:42:b7:c4:ba:69:18:7a:49:0d:d1:54:fa: a2:68:6b:f5:3c:18:d3:3e:27:f6:02:35:1d:9d:bd:aa:7d:be: b7:8c:15:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBBZsbYUzD3Ibz5V5sj2i0hVhffMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI1MDA0MDEzWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjAwYWIwYmE2ZThkNmQwNzQwMGQ1NTdhNTM1YmEwMTY1 ODE4MTVmZTA0MDJmOGI2MGQxNGJjNDk2NmQ4YzJjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgu6vwM81Sf6NdjqTZWYlIbfy2lCxH5+UIqAFilNu0YHT7 AOPwYy97KyxFEUFZ5yR+qy8Jxbha+tmOV2nzxQM3bq+vxEkDxmUmRqZMPBvTTx7+ mxKVzMcUvanelpvkCfRzxeJTaZSudclOrBM7yult7RM3xGxwUEREOgDY/4PZCExc WiugxKEPKBsuK8m6UjIvxZQyL1rgufESxrTy+9p7bpI/hUW1RGk0vqcyyZENvLQz lpCBf17PVb1mNDrKXWTcSwCDBC5EB6/kWDrpHNbLf2ilIeJgggo2ouMRihWFiGyF 3ZVO179s6drBe+IsyPYPYUEi4tf9sIj4fZKuaarjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1+QDyQmuivOGYCDQAUhaT7nKtKowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzAxNjk4MTNhLWJiNjMtNGQ3Yy1hZjdjLTYyMWI3NTIyZTU0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBgwDQYJKoZIhvcNAQELBQADggEBAInV5Le7Dbst92hDMG3DW0890LUq RLBRf919AunhLMdz3Cio+JOcsStVpk9KLkw3UH23cigjJp4RK5oTCPLG0CLnRUfn fqJl834q8RxsJWnPqoh9SDAfrUHLKSGClqHTSPG6H5A6AlCuuQPMx8NaFuVUX71J q034PnMsdLFB0mBoFYAJ1AYCnUZIfZABhI2+geRuSlZE+kXxvceMaaCz0T7I6ier kjFlyjiyk5txliPuxNhq/uvGQWxgvjcO0pMc8zk4Zn8LGYIaTSlGIXOWKQM+6Fpe XKh9GclBgBrsHEK3xLppGHpJDdFU+qJoa/U8GNM+J/YCNR2dvap9vreMFYQ= -----END CERTIFICATE-----Generated at Sun Jun 29 11:50:46 2025 by rpki-client