$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa File: 27feea1a-4933-4577-b9c4-9488e2a550f0.roa (raw, json) Hash identifier: Yp2UKudvsiMAduv5b3OMoP3+vxpYSK6PsIEhhcpffMg= Subject key identifier: 3A:57:AD:DC:88:49:73:81:FB:CB:32:7D:9B:FA:41:34:72:7C:29:90 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7C082ED9335FC00EC5AD2DA87A549B4CE18BFBB7 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa Signing time: Sat 10 May 2025 00:50:19 +0000 ROA not before: Sat 10 May 2025 00:50:19 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:08:2e:d9:33:5f:c0:0e:c5:ad:2d:a8:7a:54:9b:4c:e1:8b:fb:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 10 00:50:19 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=9e7da4646a9dd41a23b0ea21edd1485b4ae4bdbfa8f6c062c3d0025518be1e64, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:be:e0:76:b5:20:7b:bd:36:9f:cd:34:8e:00: 2b:77:7e:50:b3:3c:56:a1:58:b4:4f:d9:ea:2a:80: 57:d0:e2:83:70:7e:73:c5:65:2b:96:14:ae:26:d2: 01:66:b8:11:d1:96:8b:76:2d:ed:4e:3c:17:7d:db: d9:a6:e8:18:b6:53:17:79:24:5f:02:5e:8b:68:76: d6:fc:1b:5e:2e:f1:27:1f:72:dc:9f:33:fc:75:e1: 7c:df:77:4d:e4:44:61:9d:e1:28:6d:81:5e:b2:3c: 58:f2:3b:6d:b9:18:84:34:7e:25:3d:5c:a5:61:26: 06:3e:97:4c:12:d3:71:ae:a1:bc:06:c7:8d:ad:e7: 05:64:80:8c:06:00:a4:6b:87:6b:67:c1:03:49:a8: 73:63:61:88:eb:c9:99:76:fc:e8:72:41:ef:01:ba: b6:36:90:de:96:ea:02:49:a9:88:e1:e6:29:0a:73: 15:b1:08:05:08:71:92:f5:fb:44:ba:58:f4:97:d3: f5:52:d1:6a:5d:68:e6:1b:7e:72:65:83:88:1b:78: ae:57:81:1a:85:33:06:9d:e6:4f:60:ab:0d:59:5c: 29:85:76:3f:de:58:21:1d:bc:70:d6:44:a0:40:d2: 98:c2:d8:e6:da:1c:df:27:4b:60:6f:1a:2b:b6:0c: 80:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:57:AD:DC:88:49:73:81:FB:CB:32:7D:9B:FA:41:34:72:7C:29:90 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption 80:fe:4a:5c:5d:c0:b7:16:77:90:d4:2d:26:5c:59:9d:b0:8a: 05:7d:68:c2:af:71:c9:3d:b9:77:fd:49:ad:77:ae:9c:71:87: 52:e7:b2:31:86:f4:a0:58:4a:bf:a8:b1:22:28:f0:26:40:16: 0e:aa:fe:b7:b0:94:f3:28:3f:35:0e:f0:0f:b2:cb:ca:cf:c1: 78:b5:e4:26:99:7e:ef:38:16:ab:7f:73:3d:56:ac:d7:dc:f1: 9b:49:fe:a0:f0:67:35:e1:99:df:5c:bf:53:a2:2e:a3:93:e3: ce:43:e2:6f:c9:16:35:1a:69:07:b7:5f:8c:5e:8c:1c:1d:89: e7:4c:33:a8:f9:dd:5a:fc:f8:0e:ff:14:c4:89:d7:38:53:a1: 21:10:5a:24:9c:2d:7b:2f:ce:a5:6a:be:e5:aa:06:ea:99:5f: 37:fc:b6:44:12:88:c3:ad:0e:0b:42:06:bd:df:c0:c7:26:b0: c6:49:3b:71:35:11:76:7f:b3:fc:d0:d2:21:1b:c7:a3:72:8e: 0a:84:ac:02:55:c9:27:3d:02:12:85:eb:4d:49:c4:39:2a:1f: a2:1a:fc:fc:b4:9f:f8:11:5e:d7:83:4b:ae:4e:6e:b1:04:d0: 0c:b2:17:e1:81:20:e1:fa:54:a7:73:52:c8:85:46:6e:e3:55: 64:71:7e:5e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfAgu2TNfwA7FrS2oelSbTOGL+7cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTEwMDA1MDE5WhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTdkYTQ2NDZhOWRkNDFhMjNiMGVhMjFlZGQxNDg1YjRh ZTRiZGJmYThmNmMwNjJjM2QwMDI1NTE4YmUxZTY0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVvuB2tSB7vTafzTSOACt3flCzPFahWLRP2eoqgFfQ4oNw fnPFZSuWFK4m0gFmuBHRlot2Le1OPBd929mm6Bi2Uxd5JF8CXotodtb8G14u8Scf ctyfM/x14Xzfd03kRGGd4ShtgV6yPFjyO225GIQ0fiU9XKVhJgY+l0wS03GuobwG x42t5wVkgIwGAKRrh2tnwQNJqHNjYYjryZl2/OhyQe8BurY2kN6W6gJJqYjh5ikK cxWxCAUIcZL1+0S6WPSX0/VS0WpdaOYbfnJlg4gbeK5XgRqFMwad5k9gqw1ZXCmF dj/eWCEdvHDWRKBA0pjC2ObaHN8nS2BvGiu2DIAxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOlet3IhJc4H7yzJ9m/pBNHJ8KZAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzI3ZmVlYTFhLTQ5MzMtNDU3Ny1iOWM0LTk0ODhlMmE1NTBmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPQwDQYJKoZIhvcNAQELBQADggEBAID+SlxdwLcWd5DULSZcWZ2wigV9 aMKvcck9uXf9Sa13rpxxh1LnsjGG9KBYSr+osSIo8CZAFg6q/rewlPMoPzUO8A+y y8rPwXi15CaZfu84Fqt/cz1WrNfc8ZtJ/qDwZzXhmd9cv1OiLqOT485D4m/JFjUa aQe3X4xejBwdiedMM6j53Vr8+A7/FMSJ1zhToSEQWiScLXsvzqVqvuWqBuqZXzf8 tkQSiMOtDgtCBr3fwMcmsMZJO3E1EXZ/s/zQ0iEbx6NyjgqErAJVySc9AhKF601J xDkqH6Ia/Py0n/gRXteDS65ObrEE0AyyF+GBIOH6VKdzUsiFRm7jVWRxfl4= -----END CERTIFICATE-----Generated at Tue May 13 09:21:28 2025 by rpki-client