$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa File: 22f66e2d-2753-44a1-9aec-16b69cdffad1.roa (raw, json) Hash identifier: HQpp2SRPwpgIOK3fOzT9YQtZb38bjp6o0vg6tT/Yfgs= Subject key identifier: C7:54:F9:35:82:D6:0D:01:D4:36:E1:D6:6B:FE:1F:B6:06:3B:2A:3B Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7A0D2E785B86B027EE6ED563A3A55497C31FCAB4 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa Signing time: Tue 29 Apr 2025 00:30:21 +0000 ROA not before: Tue 29 Apr 2025 00:30:21 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:0d:2e:78:5b:86:b0:27:ee:6e:d5:63:a3:a5:54:97:c3:1f:ca:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 29 00:30:21 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=ea33bf145b2f837163831e8223ed1a0cce3b6b27954b5ccec8716e4016a6e7d5, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:73:48:db:23:32:0d:14:79:de:f4:ac:5a:82: 3f:00:d5:f5:37:78:eb:e7:0e:37:17:3d:65:5b:d1: c8:27:81:d9:c1:9a:e2:cf:3b:42:4a:b7:24:fe:81: 5b:13:d6:75:75:9d:05:8d:64:f2:cc:62:1f:e5:fe: eb:00:c9:aa:9f:f2:15:e8:7f:b3:86:a9:ae:d6:ea: 10:2b:8b:49:19:b4:0b:e0:34:ae:1b:8a:86:23:1b: 2d:7f:1c:12:71:a5:b3:5a:4b:53:9c:df:fd:3b:cb: 54:36:e4:9d:84:3d:74:f1:8d:e9:86:e1:66:5e:36: e3:f3:5f:4f:3a:7a:a0:8f:46:cb:c2:49:9b:c3:8c: 51:e5:c0:83:82:9b:a2:4a:c1:61:4f:29:9a:02:26: b6:9b:e7:dc:38:01:80:24:de:59:99:7a:64:d7:d8: 9d:bb:94:c0:a5:52:69:ec:9a:ee:65:96:5e:89:82: 06:0f:f9:59:a5:c7:a8:cf:9d:38:04:37:c6:79:97: 5b:67:76:8d:ea:91:63:50:1d:ab:84:c1:61:54:d5: 7c:14:28:af:11:3b:8c:54:f8:10:be:70:1f:81:fd: 34:ac:6f:0d:8f:cd:9b:31:4c:3b:02:b5:6a:3b:9a: bc:f7:08:02:be:0e:a0:69:90:37:c8:21:3b:12:6f: 29:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:54:F9:35:82:D6:0D:01:D4:36:E1:D6:6B:FE:1F:B6:06:3B:2A:3B X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/22f66e2d-2753-44a1-9aec-16b69cdffad1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.1.0/24 Signature Algorithm: sha256WithRSAEncryption 00:dc:db:61:02:e2:ea:b8:3d:5a:4e:a7:db:17:37:8e:e0:a7: 82:a1:9d:7a:cc:62:ff:4d:47:f9:89:81:9c:c7:2d:4f:86:d8: e7:56:29:fa:b5:11:a1:57:3c:40:22:2c:a4:18:e8:98:05:f3: b5:1a:1e:a8:76:9d:25:46:52:71:84:32:06:da:3e:1d:a5:93: 4d:68:01:ff:be:02:c7:85:1e:1c:16:3a:54:cb:43:21:74:6e: f5:95:ce:1a:87:62:6b:51:7e:c1:5b:f9:f0:dc:fb:23:63:fb: 4c:64:5d:21:c1:7e:da:38:cf:46:6f:80:a9:66:f7:ee:40:d5: cd:91:67:5a:96:4b:79:96:82:e0:e4:e6:64:03:26:72:a9:2a: 68:35:05:50:c3:89:ff:b2:84:06:f6:57:b7:57:18:30:de:22: d9:1f:d1:62:5a:03:fd:14:4d:d1:f1:fe:6d:55:b1:6b:cc:45: 45:b2:bc:49:93:69:51:cd:96:1a:d5:85:43:91:89:43:a7:ba: f2:81:9e:7b:b2:67:8c:37:e5:07:02:26:5b:e0:fd:ca:bb:7f: 6c:c7:3e:58:f3:61:2c:f0:c5:b4:2b:0e:7e:4b:fc:36:56:ad: ab:7b:c8:f3:62:f1:63:c5:92:38:2b:83:a2:fa:99:08:a0:9a: 83:5b:f5:5c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeg0ueFuGsCfubtVjo6VUl8MfyrQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDI5MDAzMDIxWhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTMzYmYxNDViMmY4MzcxNjM4MzFlODIyM2VkMWEwY2Nl M2I2YjI3OTU0YjVjY2VjODcxNmU0MDE2YTZlN2Q1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6c0jbIzINFHne9Kxagj8A1fU3eOvnDjcXPWVb0cgngdnB muLPO0JKtyT+gVsT1nV1nQWNZPLMYh/l/usAyaqf8hXof7OGqa7W6hAri0kZtAvg NK4bioYjGy1/HBJxpbNaS1Oc3/07y1Q25J2EPXTxjemG4WZeNuPzX086eqCPRsvC SZvDjFHlwIOCm6JKwWFPKZoCJrab59w4AYAk3lmZemTX2J27lMClUmnsmu5lll6J ggYP+Vmlx6jPnTgEN8Z5l1tndo3qkWNQHauEwWFU1XwUKK8RO4xU+BC+cB+B/TSs bw2PzZsxTDsCtWo7mrz3CAK+DqBpkDfIITsSbym3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUx1T5NYLWDQHUNuHWa/4ftgY7KjswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzIyZjY2ZTJkLTI3NTMtNDRhMS05YWVjLTE2YjY5Y2RmZmFkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAEwDQYJKoZIhvcNAQELBQADggEBAADc22EC4uq4PVpOp9sXN47gp4Kh nXrMYv9NR/mJgZzHLU+G2OdWKfq1EaFXPEAiLKQY6JgF87UaHqh2nSVGUnGEMgba Ph2lk01oAf++AseFHhwWOlTLQyF0bvWVzhqHYmtRfsFb+fDc+yNj+0xkXSHBfto4 z0ZvgKlm9+5A1c2RZ1qWS3mWguDk5mQDJnKpKmg1BVDDif+yhAb2V7dXGDDeItkf 0WJaA/0UTdHx/m1VsWvMRUWyvEmTaVHNlhrVhUORiUOnuvKBnnuyZ4w35QcCJlvg /cq7f2zHPljzYSzwxbQrDn5L/DZWrat7yPNi8WPFkjgrg6L6mQigmoNb9Vw= -----END CERTIFICATE-----Generated at Sat May 10 19:11:38 2025 by rpki-client