$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1abc2a38-5fb6-406f-aa0c-a0c43202bad5.roa File: 1abc2a38-5fb6-406f-aa0c-a0c43202bad5.roa (raw, json) Hash identifier: Q9/MLugfRqsF+X/Rc165RO1lPRxFKVrNPrbU8ai75W4= Subject key identifier: A2:CC:C3:BD:BE:0B:D9:7F:BB:1A:94:EF:19:4B:94:B4:26:D0:A3:D5 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 732D4832FEB3B9CE75413D75D7D8B3C6198880F9 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1abc2a38-5fb6-406f-aa0c-a0c43202bad5.roa Signing time: Tue 24 Jun 2025 15:00:07 +0000 ROA not before: Tue 24 Jun 2025 15:00:07 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:2d:48:32:fe:b3:b9:ce:75:41:3d:75:d7:d8:b3:c6:19:88:80:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 24 15:00:07 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=a4e4a2fcaca834e3d766e58cf482caa2924d8cd5bdc255fab3bb4fa98006598d, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:89:20:bb:85:1d:7f:0c:1f:c8:49:e5:0a:2e: 7c:05:16:f2:be:eb:62:e0:d0:2c:13:7d:d6:2f:67: ca:1c:4e:55:97:d7:e4:1d:fd:89:6d:62:c3:af:59: c2:db:9f:f5:32:23:05:42:17:61:c2:61:db:3a:2e: d4:cc:d2:93:91:81:97:ee:6f:bb:cb:e8:06:7f:14: ce:e8:6e:f9:80:fb:7c:17:a2:ac:0a:74:5e:85:94: b4:c5:79:af:5b:99:95:22:ad:45:da:a5:a5:57:4e: 39:9a:2e:d9:c9:3f:d0:66:58:d0:a0:f2:38:65:48: 4a:db:a4:5c:52:9a:5f:4e:e6:12:2a:79:3b:b8:13: 32:89:78:5d:61:b5:a6:12:46:d4:8d:c2:17:c7:e7: 79:89:99:93:3f:d5:53:9f:63:cc:9c:61:3c:ed:0e: 01:8b:34:2b:b5:7c:ef:ee:7e:e9:82:81:65:a3:c0: a2:21:04:28:e2:9f:33:71:7e:b2:9f:c6:d5:d7:fa: 55:6c:77:d9:3e:84:ab:bd:3e:77:96:dc:10:bb:22: 18:ef:9b:ed:f5:e7:42:6d:0c:2c:06:a9:ec:1f:1e: af:ce:6c:54:2e:09:4b:43:e8:be:66:c6:b3:ee:f9: bb:fd:c3:62:b2:08:c5:6f:88:b3:38:19:82:aa:f8: 63:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:CC:C3:BD:BE:0B:D9:7F:BB:1A:94:EF:19:4B:94:B4:26:D0:A3:D5 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/1abc2a38-5fb6-406f-aa0c-a0c43202bad5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.30.0/23 Signature Algorithm: sha256WithRSAEncryption 29:08:17:70:de:b3:da:e4:b1:31:8b:03:4a:eb:f4:6a:58:79: 8f:94:c7:1b:51:8a:84:22:2b:96:bc:ab:5e:2c:e2:01:c5:3d: a9:55:f8:65:ad:87:80:87:d8:cf:e4:bd:83:9b:15:76:2b:91: 4b:3f:18:93:90:11:ac:d0:54:a4:02:3d:af:0a:e5:59:f7:95: 7d:cd:05:96:e5:b2:0b:6c:8b:74:79:dd:06:e2:2a:1f:76:88: 0a:28:11:af:33:75:1a:2d:82:3a:50:05:47:dd:21:f9:e6:3c: ce:35:3a:2f:fd:a1:1e:01:10:30:27:be:70:68:94:96:d4:37: d6:2f:e6:73:ea:c5:09:06:2e:29:21:24:d7:66:60:f5:b4:53: b8:1a:85:be:86:0f:ba:bf:37:17:ab:63:34:da:e7:ea:27:55: ba:66:28:f6:3e:bc:72:44:03:0d:36:f2:25:cb:e6:1a:54:0c: e7:05:54:69:af:7d:e8:95:be:6b:e2:59:06:9c:1f:4c:d2:e8: ca:7b:d5:e3:08:7e:4e:15:22:7d:5d:f2:cd:7c:61:d6:2b:02: a3:93:9d:c0:ad:64:88:a1:78:5a:3d:58:6c:11:2f:48:87:61: 05:87:d1:8a:aa:b6:d1:87:ce:9e:04:d7:34:7f:d8:59:72:1d: 14:e7:4e:11 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcy1IMv6zuc51QT1119izxhmIgPkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI0MTUwMDA3WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGU0YTJmY2FjYTgzNGUzZDc2NmU1OGNmNDgyY2FhMjky NGQ4Y2Q1YmRjMjU1ZmFiM2JiNGZhOTgwMDY1OThkMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0iSC7hR1/DB/ISeUKLnwFFvK+62Lg0CwTfdYvZ8ocTlWX 1+Qd/YltYsOvWcLbn/UyIwVCF2HCYds6LtTM0pORgZfub7vL6AZ/FM7obvmA+3wX oqwKdF6FlLTFea9bmZUirUXapaVXTjmaLtnJP9BmWNCg8jhlSErbpFxSml9O5hIq eTu4EzKJeF1htaYSRtSNwhfH53mJmZM/1VOfY8ycYTztDgGLNCu1fO/ufumCgWWj wKIhBCjinzNxfrKfxtXX+lVsd9k+hKu9PneW3BC7Ihjvm+3150JtDCwGqewfHq/O bFQuCUtD6L5mxrPu+bv9w2KyCMVviLM4GYKq+GO/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoszDvb4L2X+7GpTvGUuUtCbQo9UwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzFhYmMyYTM4LTVmYjYtNDA2Zi1hYTBjLWEwYzQzMjAyYmFkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYB4wDQYJKoZIhvcNAQELBQADggEBACkIF3Des9rksTGLA0rr9GpYeY+U xxtRioQiK5a8q14s4gHFPalV+GWth4CH2M/kvYObFXYrkUs/GJOQEazQVKQCPa8K 5Vn3lX3NBZblsgtsi3R53QbiKh92iAooEa8zdRotgjpQBUfdIfnmPM41Oi/9oR4B EDAnvnBolJbUN9Yv5nPqxQkGLikhJNdmYPW0U7gahb6GD7q/NxerYzTa5+onVbpm KPY+vHJEAw028iXL5hpUDOcFVGmvfeiVvmviWQacH0zS6Mp71eMIfk4VIn1d8s18 YdYrAqOTncCtZIiheFo9WGwRL0iHYQWH0YqqttGHzp4E1zR/2FlyHRTnThE= -----END CERTIFICATE-----Generated at Sun Jun 29 01:44:12 2025 by rpki-client