$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa File: 2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa (raw, json) Hash identifier: 44NCohsKhZ6EUadIBbhcyBakW3qZAsoECXxaMfdRgPc= Subject key identifier: 5F:EA:1B:28:B7:A5:6D:AC:27:F8:F3:68:53:E8:A0:36:B6:16:1D:05 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4AF52A7BCDD2E15AE80C73BC0977B6C5CD1EABBD Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa Signing time: Sat 10 May 2025 00:50:29 +0000 ROA not before: Sat 10 May 2025 00:50:29 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:f5:2a:7b:cd:d2:e1:5a:e8:0c:73:bc:09:77:b6:c5:cd:1e:ab:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 10 00:50:29 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=19f76d48c87abe09b358ac8b0ce26cb220b9581740e4c2fca8ee8b1897da0ad4, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e8:26:a9:8d:88:e2:39:bd:c6:41:86:41:92: 94:f2:42:3c:30:d8:e2:2a:ad:73:0f:5d:54:99:84: 2c:63:70:8f:9c:e2:7e:39:c0:69:47:f4:9a:20:0a: da:74:11:3c:ca:bb:f4:cb:11:5d:96:3a:9b:d5:41: 5a:e3:06:32:9e:cd:07:6c:79:1c:49:70:f6:80:af: 01:83:ca:94:f0:48:00:0c:1d:f8:cc:38:76:4b:ef: 9e:18:14:80:8f:91:3f:09:c7:f4:d4:04:ea:98:e7: 82:57:64:5e:3d:37:66:3e:1d:f8:06:ba:a2:d6:8c: c2:7a:ef:65:0f:3a:0d:c3:9a:24:9d:ce:ad:27:b2: 91:e7:2c:93:eb:a7:78:f5:49:39:cc:e0:f1:cb:3c: 6a:bb:db:8c:ea:59:d3:21:e7:78:b2:cd:a4:46:63: e9:c5:b8:e3:81:36:c5:72:37:d3:96:19:11:4a:98: 6b:15:8c:f3:b3:5a:12:e3:0f:7d:be:60:fa:eb:67: 15:3a:34:ef:bb:33:2b:7a:38:ff:42:39:22:6f:39: 7d:93:ec:62:12:93:6f:d1:bd:6c:40:fc:44:17:6a: c9:25:41:11:1e:25:c0:46:cd:ed:44:4d:75:d1:e3: ed:10:57:16:1e:49:02:b0:64:25:ec:1d:1a:d0:5f: 1b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:EA:1B:28:B7:A5:6D:AC:27:F8:F3:68:53:E8:A0:36:B6:16:1D:05 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.8.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:d7:8b:34:b8:4d:26:4e:6d:15:65:a0:98:5c:95:78:a3:25: ec:b7:d1:f1:42:ca:11:31:40:c6:32:97:17:54:38:0c:6b:71: 98:b3:f6:20:e5:17:90:1b:c8:d2:c4:83:a0:9f:e9:a6:55:1b: b1:5a:c5:0f:c9:17:96:46:60:9f:b5:9d:61:f3:1f:ce:cc:0b: ac:19:d9:c9:47:5d:1b:7e:28:88:bf:00:a5:ef:b4:15:32:1f: 15:15:ae:85:a6:fa:e5:81:ed:33:19:4c:52:41:24:cd:70:d9: 85:c4:75:ea:32:e8:2a:75:1e:f7:a4:54:a0:2c:66:10:19:f3: 1b:d2:7b:60:ba:6e:4d:a9:b1:67:d0:f3:56:45:23:38:cf:0b: cd:89:57:22:a8:89:7d:f6:e9:20:e1:88:63:1e:96:64:84:22: 53:a7:6c:a8:11:3b:53:ba:1a:75:47:c7:66:93:9f:23:80:72: 7a:54:5a:6c:9a:65:cf:d0:ea:28:53:bc:d8:09:3a:f2:61:0c: a8:27:d0:a8:40:6b:bb:df:ad:35:39:f8:a6:75:cc:8f:ca:e4: 61:60:54:ef:41:f1:b4:41:d0:20:38:ee:9d:e9:be:a4:38:bf: d2:19:79:7f:32:48:e9:c9:43:d1:a4:df:6a:69:5d:ad:26:cc: e8:f2:a8:3d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSvUqe83S4VroDHO8CXe2xc0eq70wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTEwMDA1MDI5WhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOWY3NmQ0OGM4N2FiZTA5YjM1OGFjOGIwY2UyNmNiMjIw Yjk1ODE3NDBlNGMyZmNhOGVlOGIxODk3ZGEwYWQ0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH6CapjYjiOb3GQYZBkpTyQjww2OIqrXMPXVSZhCxjcI+c 4n45wGlH9JogCtp0ETzKu/TLEV2WOpvVQVrjBjKezQdseRxJcPaArwGDypTwSAAM HfjMOHZL754YFICPkT8Jx/TUBOqY54JXZF49N2Y+HfgGuqLWjMJ672UPOg3DmiSd zq0nspHnLJPrp3j1STnM4PHLPGq724zqWdMh53iyzaRGY+nFuOOBNsVyN9OWGRFK mGsVjPOzWhLjD32+YPrrZxU6NO+7Myt6OP9COSJvOX2T7GISk2/RvWxA/EQXaskl QREeJcBGze1ETXXR4+0QVxYeSQKwZCXsHRrQXxuXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUX+obKLelbawn+PNoU+igNrYWHQUwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzI4MDBjNzBjLTZlYzEtNGQ4Ni1hOTE2LTQ4NTBkZWIyZGZhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAgwDQYJKoZIhvcNAQELBQADggEBAIrXizS4TSZObRVloJhclXijJey3 0fFCyhExQMYylxdUOAxrcZiz9iDlF5AbyNLEg6Cf6aZVG7FaxQ/JF5ZGYJ+1nWHz H87MC6wZ2clHXRt+KIi/AKXvtBUyHxUVroWm+uWB7TMZTFJBJM1w2YXEdeoy6Cp1 HvekVKAsZhAZ8xvSe2C6bk2psWfQ81ZFIzjPC82JVyKoiX326SDhiGMelmSEIlOn bKgRO1O6GnVHx2aTnyOAcnpUWmyaZc/Q6ihTvNgJOvJhDKgn0KhAa7vfrTU5+KZ1 zI/K5GFgVO9B8bRB0CA47p3pvqQ4v9IZeX8ySOnJQ9Gk32ppXa0mzOjyqD0= -----END CERTIFICATE-----Generated at Sun May 11 12:48:42 2025 by rpki-client