$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa File: 2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa (raw, json) Hash identifier: vm4MATBvNyunmm/zyG5G6ZvzeOt86tKUSvlLdDZNgkk= Subject key identifier: 78:D8:1C:29:90:F5:FD:AE:1B:83:BF:BF:75:B8:F1:D3:1B:F1:48:8D Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 77F3CD363450E3025E56139ED4F1023E64240DF8 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa Signing time: Mon 30 Jun 2025 17:40:26 +0000 ROA not before: Mon 30 Jun 2025 17:40:26 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:f3:cd:36:34:50:e3:02:5e:56:13:9e:d4:f1:02:3e:64:24:0d:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:26 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=410949fbafb92392d291cdfd1b3d8d470e5b90807e28ea598acd54e19c73f9d8, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:98:45:89:bb:a1:13:f1:fa:ed:d3:8c:4c:f6: b4:03:26:63:b6:91:46:37:b2:b8:a4:59:a2:54:56: 51:ed:01:0e:06:29:ce:8a:4f:af:e6:bd:b4:df:67: 4a:6d:3a:91:40:32:7e:61:1f:8b:47:3a:e5:09:5d: 7a:10:5a:22:0f:a3:88:06:f2:98:39:0a:63:ba:e5: 8b:2f:7c:c6:ee:2c:bc:fb:69:ee:a1:87:04:a5:10: 49:65:99:03:94:59:b3:ac:af:1d:04:6b:f2:62:c0: f7:36:f6:7b:5a:08:b2:d7:d1:08:c7:25:2f:76:40: c0:90:5f:02:1c:cb:e2:70:3e:d7:c0:dd:47:16:f8: cc:92:15:88:5b:07:d5:c7:d7:ba:a2:84:a8:a9:4e: 5f:23:e7:9b:2c:94:3c:7a:76:19:ca:f6:e4:b0:c4: 33:81:f8:40:e9:f2:e6:28:0b:63:da:19:c3:0b:c4: ac:85:8d:09:30:7e:51:9e:39:fd:b0:b1:0c:14:cf: 28:56:28:5a:ec:1e:a8:62:ee:3a:19:92:2e:02:84: 85:f9:f8:c1:f6:66:93:07:d9:d0:f6:30:b3:6e:7d: e9:0f:ac:85:39:1d:20:13:9c:5f:f9:ae:7c:9f:42: 0b:19:17:5d:56:d5:ca:31:cb:cf:81:a6:70:07:ab: 51:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D8:1C:29:90:F5:FD:AE:1B:83:BF:BF:75:B8:F1:D3:1B:F1:48:8D X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.8.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:30:c9:17:82:01:20:bd:69:a6:9a:74:aa:31:7f:63:ae:2b: 1e:67:31:a3:f5:ba:3d:63:7e:ab:8b:c9:ce:77:a9:21:a2:6b: 41:9a:57:41:31:7e:67:ca:69:40:e3:ed:b5:b9:88:ad:c9:8f: 5e:7b:a6:6f:07:f7:4a:3c:b9:80:8d:c4:67:15:02:d5:60:a4: a5:af:51:50:aa:f2:ef:aa:d4:28:01:79:34:df:3e:0e:d4:45: 33:ad:8f:ab:11:a7:cf:3e:87:3f:c5:80:45:22:db:c6:6e:39: d9:eb:01:4f:43:ff:88:fc:f4:f0:5c:be:2a:50:e5:13:cd:7b: a9:81:04:17:a8:9e:62:be:34:cc:9f:60:fe:37:37:55:1f:ea: 73:97:e1:ae:e6:18:c0:87:3e:08:f6:8f:9c:c2:f5:68:dd:b0: c0:a7:c9:b0:04:33:2f:29:76:2d:21:ae:ca:0d:90:e2:c5:1a: 78:2f:33:92:7f:0c:76:8f:29:61:b9:75:46:34:31:70:5d:b9: 11:00:0d:4f:94:4c:c1:c4:a6:e3:f7:c8:28:d1:b3:14:18:0f: 16:d9:c2:a7:4e:5f:4d:eb:90:7c:63:f4:6a:7f:55:5c:b6:79: 2e:78:91:70:ff:d0:7d:5c:76:89:e9:aa:3f:18:fa:6f:c7:1d: 15:2e:31:76 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd/PNNjRQ4wJeVhOe1PECPmQkDfgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDI2WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTA5NDlmYmFmYjkyMzkyZDI5MWNkZmQxYjNkOGQ0NzBl NWI5MDgwN2UyOGVhNTk4YWNkNTRlMTljNzNmOWQ4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2mEWJu6ET8frt04xM9rQDJmO2kUY3srikWaJUVlHtAQ4G Kc6KT6/mvbTfZ0ptOpFAMn5hH4tHOuUJXXoQWiIPo4gG8pg5CmO65YsvfMbuLLz7 ae6hhwSlEEllmQOUWbOsrx0Ea/JiwPc29ntaCLLX0QjHJS92QMCQXwIcy+JwPtfA 3UcW+MySFYhbB9XH17qihKipTl8j55sslDx6dhnK9uSwxDOB+EDp8uYoC2PaGcML xKyFjQkwflGeOf2wsQwUzyhWKFrsHqhi7joZki4ChIX5+MH2ZpMH2dD2MLNufekP rIU5HSATnF/5rnyfQgsZF11W1coxy8+BpnAHq1EDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeNgcKZD1/a4bg7+/dbjx0xvxSI0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzI4MDBjNzBjLTZlYzEtNGQ4Ni1hOTE2LTQ4NTBkZWIyZGZhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAgwDQYJKoZIhvcNAQELBQADggEBAG8wyReCASC9aaaadKoxf2OuKx5n MaP1uj1jfquLyc53qSGia0GaV0ExfmfKaUDj7bW5iK3Jj157pm8H90o8uYCNxGcV AtVgpKWvUVCq8u+q1CgBeTTfPg7URTOtj6sRp88+hz/FgEUi28ZuOdnrAU9D/4j8 9PBcvipQ5RPNe6mBBBeonmK+NMyfYP43N1Uf6nOX4a7mGMCHPgj2j5zC9WjdsMCn ybAEMy8pdi0hrsoNkOLFGngvM5J/DHaPKWG5dUY0MXBduREADU+UTMHEpuP3yCjR sxQYDxbZwqdOX03rkHxj9Gp/VVy2eS54kXD/0H1cdonpqj8Y+m/HHRUuMXY= -----END CERTIFICATE-----Generated at Tue Jul 1 15:31:14 2025 by rpki-client