$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa File: 0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa (raw, json) Hash identifier: 05Cw7HY4uGeVzf5cTqkDtBVNqwHmiiI947Y17LIeKRA= Subject key identifier: CF:3F:17:BC:EC:7B:2A:96:78:F9:FC:A1:F4:E2:33:D7:04:82:DF:E7 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 65B75178A372C0D63D142F3A39C9E4CB572196CF Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa Signing time: Mon 16 Jun 2025 19:10:11 +0000 ROA not before: Mon 16 Jun 2025 19:10:11 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:b7:51:78:a3:72:c0:d6:3d:14:2f:3a:39:c9:e4:cb:57:21:96:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 16 19:10:11 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=ab0f0eadfd77d7055bc86624b68d1109b07c631353b9a5a67e8c8a12beb72889, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:16:b0:54:57:f7:65:ee:76:30:3e:97:50:26: 26:7a:3c:8e:d2:6a:b5:20:1c:be:2d:b6:b6:fd:dd: c4:e7:85:2a:d1:1a:57:b2:1f:09:52:a3:74:42:f4: bf:5c:be:56:8f:3d:95:f7:99:e1:66:c4:6d:cb:e3: d4:58:cd:01:8d:63:8e:77:c3:fe:7a:c1:29:a9:4c: 51:fb:aa:f5:aa:ad:56:52:17:d6:33:d7:2c:ab:97: 5e:3c:ac:72:55:b5:c3:c3:8b:b8:5b:42:28:bd:2b: 13:e4:c8:e5:9b:fa:45:8b:68:99:d0:85:37:cc:75: 2c:c5:95:f3:d4:fb:53:42:96:99:04:36:ca:8d:92: 9f:f1:87:93:ce:fd:8c:7d:86:f4:ff:5a:14:b0:3c: b9:54:36:32:1f:ed:12:33:32:90:64:d1:77:af:44: d3:07:97:fd:ce:60:23:d8:53:c4:79:63:28:63:1f: e3:a3:1c:3e:4f:de:ab:22:1d:13:0b:f6:33:25:fb: 89:b3:31:87:d5:6a:19:ac:de:40:6b:71:27:cd:cd: 31:e5:59:d6:9f:a4:0a:cb:05:d0:4a:a3:5b:e8:3c: 65:8e:27:8b:ac:b5:57:26:8c:ac:79:7c:cb:8d:e7: 8f:d4:2a:3e:ae:c0:85:86:05:f1:dd:04:d0:4a:e0: 2d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:3F:17:BC:EC:7B:2A:96:78:F9:FC:A1:F4:E2:33:D7:04:82:DF:E7 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.2.0/24 Signature Algorithm: sha256WithRSAEncryption 90:6e:f8:76:10:14:77:c3:d0:b8:35:2f:dc:f5:0a:74:52:ec: 88:34:57:10:60:48:72:12:9a:d5:14:fe:a9:fe:17:4f:76:e0: cd:25:c0:42:87:73:76:38:eb:4e:a2:5b:66:eb:50:f2:12:1f: 0d:cc:e9:c1:86:f6:29:6d:a6:44:50:10:5f:e6:dd:35:81:eb: 3b:d1:88:52:39:42:8f:50:f3:b3:44:c1:2f:68:9b:54:21:ec: c6:60:c1:9e:b5:c9:3a:e2:12:f3:de:43:5a:d6:37:87:48:1f: 23:54:9c:af:ba:7f:16:32:1c:c4:b3:64:ba:6d:3a:de:81:3e: d4:d1:dc:bc:d6:02:57:9c:2d:91:9e:f8:c1:8c:66:63:0e:d6: 6b:12:fa:85:03:f2:a3:17:4a:47:95:44:b5:8e:29:a4:0f:e4: 60:9a:6c:70:ae:40:fa:ae:34:c7:7e:04:8e:8a:14:fd:27:24: 3e:a0:34:21:3e:90:7d:18:3e:95:a7:47:27:c7:55:af:5d:6b: 78:52:59:5d:86:fa:5e:99:25:a9:f0:d7:e3:42:87:c7:e9:56: 23:69:65:7e:1f:ba:ac:6e:65:63:dc:24:b1:a5:24:9f:70:49: 2e:0c:da:5f:aa:41:33:70:d2:17:81:79:a1:89:f4:4a:b3:7a: 09:ca:3f:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZbdReKNywNY9FC86Ocnky1chls8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjE2MTkxMDExWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjBmMGVhZGZkNzdkNzA1NWJjODY2MjRiNjhkMTEwOWIw N2M2MzEzNTNiOWE1YTY3ZThjOGExMmJlYjcyODg5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpFrBUV/dl7nYwPpdQJiZ6PI7SarUgHL4ttrb93cTnhSrR GleyHwlSo3RC9L9cvlaPPZX3meFmxG3L49RYzQGNY453w/56wSmpTFH7qvWqrVZS F9Yz1yyrl148rHJVtcPDi7hbQii9KxPkyOWb+kWLaJnQhTfMdSzFlfPU+1NClpkE NsqNkp/xh5PO/Yx9hvT/WhSwPLlUNjIf7RIzMpBk0XevRNMHl/3OYCPYU8R5Yyhj H+OjHD5P3qsiHRML9jMl+4mzMYfVahms3kBrcSfNzTHlWdafpArLBdBKo1voPGWO J4ustVcmjKx5fMuN54/UKj6uwIWGBfHdBNBK4C3jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzz8XvOx7KpZ4+fyh9OIz1wSC3+cwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBlODE0ZjJjLTYxMDAtNDAzNy05ZGNjLWNkYWYzZTIwZDg1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAIwDQYJKoZIhvcNAQELBQADggEBAJBu+HYQFHfD0Lg1L9z1CnRS7Ig0 VxBgSHISmtUU/qn+F0924M0lwEKHc3Y4606iW2brUPISHw3M6cGG9iltpkRQEF/m 3TWB6zvRiFI5Qo9Q87NEwS9om1Qh7MZgwZ61yTriEvPeQ1rWN4dIHyNUnK+6fxYy HMSzZLptOt6BPtTR3LzWAlecLZGe+MGMZmMO1msS+oUD8qMXSkeVRLWOKaQP5GCa bHCuQPquNMd+BI6KFP0nJD6gNCE+kH0YPpWnRyfHVa9da3hSWV2G+l6ZJanw1+NC h8fpViNpZX4fuqxuZWPcJLGlJJ9wSS4M2l+qQTNw0heBeaGJ9EqzegnKP8s= -----END CERTIFICATE-----Generated at Fri Jul 4 13:33:45 2025 by rpki-client