$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2b15c9d1-408d-403d-9973-829e5c92c101.roa File: 2b15c9d1-408d-403d-9973-829e5c92c101.roa (raw, json) Hash identifier: gP9+PIj/1IOGKsJcQO8cL9vm4zNGlIzmAS6La7NYoNA= Subject key identifier: C9:68:14:7A:95:86:B0:C4:44:D7:51:58:D7:53:85:31:AA:04:05:2E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 74F48768769A9016EB9CA32736BA39DFC83F4639 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2b15c9d1-408d-403d-9973-829e5c92c101.roa Signing time: Tue 06 May 2025 01:07:28 +0000 ROA not before: Tue 06 May 2025 01:07:28 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:f4:87:68:76:9a:90:16:eb:9c:a3:27:36:ba:39:df:c8:3f:46:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 6 01:07:28 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=0b61abc6567e9fd0f23db042841e114d8b8ba3522b4bec3f829573d3199bf94e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:45:9d:de:53:5b:ca:0f:c6:bd:7f:15:2f:93: 68:94:12:79:ad:51:c4:1c:75:c7:88:1f:90:a7:64: d3:21:4e:4b:28:78:0c:da:e0:0e:99:c4:26:09:15: 66:4c:98:da:f2:95:1b:c8:2e:e0:d6:70:fe:59:61: d7:9d:04:b8:d3:5c:fe:6c:e6:be:c0:77:33:5e:9b: 72:b6:ed:fc:7b:bb:a0:cf:2f:1b:81:e8:b4:cc:b3: 00:14:03:76:46:9d:1e:f2:db:64:be:34:db:b3:3b: 57:da:94:d8:4f:5e:87:6d:80:1c:b3:15:ea:96:d8: fd:f7:f8:78:b9:d7:31:57:84:c5:5b:d1:b0:1b:fd: e4:72:93:4f:b1:25:57:8a:6b:9e:9e:e2:7b:ed:55: 22:d5:72:b8:d2:2d:36:8a:d4:9f:1a:69:6e:4d:49: 98:4b:c4:ce:f0:d5:b2:df:43:5a:3f:d9:7e:d9:fd: bf:d1:54:31:61:a0:ab:47:64:18:c4:1a:0f:9a:04: 6a:6c:0f:4a:6c:41:4f:dd:86:ad:c6:ab:23:14:fd: 1f:b8:0b:49:a6:96:05:ed:23:00:38:6d:e7:f7:06: cf:a4:df:c4:0c:52:61:89:6a:ba:f3:c7:53:e0:89: a6:bf:13:f1:79:cf:d1:a2:58:d7:0c:8b:b5:ac:af: f9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:68:14:7A:95:86:B0:C4:44:D7:51:58:D7:53:85:31:AA:04:05:2E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2b15c9d1-408d-403d-9973-829e5c92c101.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.26.0/23 Signature Algorithm: sha256WithRSAEncryption 06:35:e6:da:e6:03:ae:aa:6a:2f:fe:0d:7f:da:16:18:84:b5: 28:57:5c:d0:48:37:27:2a:9d:65:c8:46:5f:61:09:74:bb:9e: fb:1d:ba:b7:a4:fa:0d:c9:b0:bb:b1:34:61:ea:e0:2b:38:99: e0:f0:b3:74:fe:cb:d7:45:ba:92:76:1d:25:be:b4:f7:86:49: 51:2d:fe:2b:6b:61:2f:c1:9d:c3:40:9a:f3:5e:93:5d:a8:ee: de:d2:31:07:5c:0e:77:35:8a:78:d6:9e:25:10:d9:fa:49:76: 48:13:96:fa:88:8c:19:91:9d:46:9a:24:26:8d:5c:25:41:c4: 71:3a:84:da:93:70:3e:23:4b:f0:d3:60:72:33:63:75:f2:83: bf:37:26:4a:4f:bf:bc:76:2a:71:0d:5f:18:84:84:ff:6b:32: 8b:81:b7:58:b0:eb:a5:96:c1:94:30:87:25:51:7d:15:ab:43: 83:fa:66:49:3e:bd:cb:44:6a:d1:ae:e2:bf:a2:f6:0d:87:5e: 7a:93:0c:af:10:1f:e9:d2:74:eb:02:5b:2e:47:e1:d5:15:90: 49:5d:4d:b3:ac:f3:ac:9b:51:8c:fb:9a:0b:57:1a:a4:9e:d4: bf:94:6a:ef:bf:56:95:10:a6:9f:9a:86:5f:2d:75:ef:78:11: e9:57:99:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdPSHaHaakBbrnKMnNro538g/RjkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTA2MDEwNzI4WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjYxYWJjNjU2N2U5ZmQwZjIzZGIwNDI4NDFlMTE0ZDhi OGJhMzUyMmI0YmVjM2Y4Mjk1NzNkMzE5OWJmOTRlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrRZ3eU1vKD8a9fxUvk2iUEnmtUcQcdceIH5CnZNMhTkso eAza4A6ZxCYJFWZMmNrylRvILuDWcP5ZYdedBLjTXP5s5r7AdzNem3K27fx7u6DP LxuB6LTMswAUA3ZGnR7y22S+NNuzO1falNhPXodtgByzFeqW2P33+Hi51zFXhMVb 0bAb/eRyk0+xJVeKa56e4nvtVSLVcrjSLTaK1J8aaW5NSZhLxM7w1bLfQ1o/2X7Z /b/RVDFhoKtHZBjEGg+aBGpsD0psQU/dhq3GqyMU/R+4C0mmlgXtIwA4bef3Bs+k 38QMUmGJarrzx1Pgiaa/E/F5z9GiWNcMi7Wsr/nxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyWgUepWGsMRE11FY11OFMaoEBS4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJiMTVjOWQxLTQwOGQtNDAzZC05OTczLTgyOWU1YzkyYzEwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBowDQYJKoZIhvcNAQELBQADggEBAAY15trmA66qai/+DX/aFhiEtShX XNBINycqnWXIRl9hCXS7nvsdurek+g3JsLuxNGHq4Cs4meDws3T+y9dFupJ2HSW+ tPeGSVEt/itrYS/BncNAmvNek12o7t7SMQdcDnc1injWniUQ2fpJdkgTlvqIjBmR nUaaJCaNXCVBxHE6hNqTcD4jS/DTYHIzY3Xyg783JkpPv7x2KnENXxiEhP9rMouB t1iw66WWwZQwhyVRfRWrQ4P6Zkk+vctEatGu4r+i9g2HXnqTDK8QH+nSdOsCWy5H 4dUVkEldTbOs86ybUYz7mgtXGqSe1L+Uau+/VpUQpp+ahl8tde94EelXmUc= -----END CERTIFICATE-----Generated at Mon May 12 00:20:48 2025 by rpki-client