$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa File: 0169813a-bb63-4d7c-af7c-621b7522e549.roa (raw, json) Hash identifier: aj9ZpXPfq6mxfOg0ByBuoJL9+F9+Q79vDYkouTuLaAQ= Subject key identifier: 85:D5:A6:15:AA:E8:A4:6C:2F:3F:29:A3:16:3B:58:74:4E:1F:63:D8 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 71D166143F1949F59772B374E259299932253FBC Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa Signing time: Tue 06 May 2025 01:07:25 +0000 ROA not before: Tue 06 May 2025 01:07:25 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:d1:66:14:3f:19:49:f5:97:72:b3:74:e2:59:29:99:32:25:3f:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 6 01:07:25 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=8d239699c623f52363160a4ade76d90e08d23760b927ef726c5ec71410690c79, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3b:8a:b9:50:21:da:22:9a:de:85:83:46:68: ce:90:73:20:b7:9b:56:52:c3:a7:86:ef:1a:cd:74: 4d:cf:bc:00:42:86:51:1e:92:ea:08:6b:c3:04:7e: 49:d7:be:f2:72:75:05:fa:92:a1:07:82:49:f5:88: cc:9c:0a:53:20:cd:7a:a4:74:55:79:33:52:6d:d6: f4:8d:63:43:40:21:79:df:fd:91:e1:8c:24:05:6f: 30:91:c5:cd:25:8e:aa:2e:be:d9:5e:2b:7a:87:bb: 00:2b:22:0e:22:08:48:67:49:1d:f4:1c:af:ce:3d: d8:72:85:15:bf:c8:1c:65:7c:59:81:9b:36:5f:8a: 35:32:b1:68:df:77:a0:54:f0:fe:86:48:d9:1c:46: 0e:e2:ab:b1:c3:72:9f:18:c3:c4:79:88:90:94:8f: cf:a9:f6:c9:a4:32:35:7e:bc:11:80:d6:e8:51:a7: 4a:85:9a:58:51:9b:41:a0:47:91:24:0e:4b:35:e5: f2:e2:60:b5:b4:e1:8a:7a:ba:4f:df:15:be:75:4a: ae:45:42:0e:2b:69:7b:bd:f8:89:ed:68:ec:a9:79: a7:4c:95:12:8c:37:b2:70:e1:19:89:e2:61:b8:d3: 83:56:b2:5d:14:1e:98:82:b7:1f:f7:cc:19:fd:7d: ef:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:D5:A6:15:AA:E8:A4:6C:2F:3F:29:A3:16:3B:58:74:4E:1F:63:D8 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0169813a-bb63-4d7c-af7c-621b7522e549.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.24.0/23 Signature Algorithm: sha256WithRSAEncryption 78:ed:c9:89:3f:cc:db:42:3a:25:7b:fa:07:07:48:5f:98:52: 65:67:c1:3a:48:0d:eb:d3:3a:4e:fc:56:64:88:a5:51:85:8d: d0:17:7f:98:5f:90:9f:4c:a9:73:12:b5:f4:50:f7:bc:50:8a: 31:77:a6:ed:84:8a:35:9c:ff:95:6f:73:20:88:80:b7:8c:b0: 79:2c:70:da:20:72:bd:96:a5:92:a9:6e:b1:55:b9:2e:d5:62: 4d:34:94:94:75:7e:e5:44:40:b1:f4:aa:18:28:94:d1:d3:e4: 1c:b8:09:00:e8:6e:8c:5c:1a:83:e3:b4:bc:a8:c9:40:d7:25: 3f:3c:31:1b:f6:5f:03:5d:5c:d9:60:55:44:73:5d:58:84:e5: 4d:74:e7:38:07:89:93:92:2a:56:63:6f:f9:45:9b:13:df:da: 55:6c:fe:c0:ef:af:af:50:53:ad:94:aa:2f:ed:db:3b:d4:e8: cf:31:5c:02:fc:27:11:2e:74:1a:b6:d2:46:45:a4:43:b4:5b: c6:46:1a:fa:38:0e:9f:c0:ae:6a:87:bf:f8:83:b4:f6:d9:dc: 95:ad:52:cc:74:81:80:11:e6:2e:3a:dd:29:f0:c1:e6:9c:0c: 57:79:15:8b:df:cf:dc:fa:25:86:cc:48:14:12:3a:9a:dc:59: 90:d3:f3:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcdFmFD8ZSfWXcrN04lkpmTIlP7wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTA2MDEwNzI1WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDIzOTY5OWM2MjNmNTIzNjMxNjBhNGFkZTc2ZDkwZTA4 ZDIzNzYwYjkyN2VmNzI2YzVlYzcxNDEwNjkwYzc5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDO4q5UCHaIprehYNGaM6QcyC3m1ZSw6eG7xrNdE3PvABC hlEekuoIa8MEfknXvvJydQX6kqEHgkn1iMycClMgzXqkdFV5M1Jt1vSNY0NAIXnf /ZHhjCQFbzCRxc0ljqouvtleK3qHuwArIg4iCEhnSR30HK/OPdhyhRW/yBxlfFmB mzZfijUysWjfd6BU8P6GSNkcRg7iq7HDcp8Yw8R5iJCUj8+p9smkMjV+vBGA1uhR p0qFmlhRm0GgR5EkDks15fLiYLW04Yp6uk/fFb51Sq5FQg4raXu9+IntaOypeadM lRKMN7Jw4RmJ4mG404NWsl0UHpiCtx/3zBn9fe8DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhdWmFaropGwvPymjFjtYdE4fY9gwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzAxNjk4MTNhLWJiNjMtNGQ3Yy1hZjdjLTYyMWI3NTIyZTU0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBgwDQYJKoZIhvcNAQELBQADggEBAHjtyYk/zNtCOiV7+gcHSF+YUmVn wTpIDevTOk78VmSIpVGFjdAXf5hfkJ9MqXMStfRQ97xQijF3pu2EijWc/5VvcyCI gLeMsHkscNogcr2WpZKpbrFVuS7VYk00lJR1fuVEQLH0qhgolNHT5By4CQDoboxc GoPjtLyoyUDXJT88MRv2XwNdXNlgVURzXViE5U105zgHiZOSKlZjb/lFmxPf2lVs /sDvr69QU62Uqi/t2zvU6M8xXAL8JxEudBq20kZFpEO0W8ZGGvo4Dp/ArmqHv/iD tPbZ3JWtUsx0gYAR5i463SnwweacDFd5FYvfz9z6JYbMSBQSOprcWZDT89I= -----END CERTIFICATE-----Generated at Tue May 13 09:53:05 2025 by rpki-client