$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa File: 2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa (raw, json) Hash identifier: eDoHgDD9iU+kveL5qRk5LDl4xQU7hesNSBHQ65kwzys= Subject key identifier: E5:56:06:64:4C:A1:59:A4:9F:26:D3:EF:60:4E:83:26:F5:4D:F6:B0 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3F375E88D9C7D32C9669ECD6CD0EDBF132202913 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa Signing time: Tue 06 May 2025 01:07:27 +0000 ROA not before: Tue 06 May 2025 01:07:27 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:37:5e:88:d9:c7:d3:2c:96:69:ec:d6:cd:0e:db:f1:32:20:29:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 6 01:07:27 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=00a3a7505e346b0c2b7f02f39c16faccf5ae6091ea3b00e5ba87a2d718505632, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:83:6e:c7:e8:42:5f:59:35:2e:9e:61:07:77: db:11:4f:38:6d:1a:b1:ad:b6:35:a2:09:ec:87:1a: 7b:74:cf:bb:10:11:d7:36:37:79:54:31:9f:c2:d7: 6f:16:f4:ad:20:f8:ac:0e:70:de:04:ec:08:d3:78: d5:b4:aa:ab:d6:b6:7d:45:fc:2c:3d:0a:d4:07:4e: 9c:ec:54:1b:d0:ab:85:00:8f:05:ec:00:11:99:8e: 5c:c9:62:00:6d:08:70:90:26:45:48:69:77:48:fd: ee:8a:44:b7:ed:0f:f3:bd:5d:bb:99:39:28:f3:70: e2:34:c6:da:34:23:6f:0d:59:ee:5c:06:79:c7:37: 45:b6:2d:4c:d4:dc:0d:28:04:94:2c:45:d3:b5:71: b2:b0:28:6d:1d:ab:cb:6b:e7:00:f2:29:a4:9b:a4: 61:61:81:8f:d7:54:1e:31:40:09:23:c8:da:00:c9: 44:02:48:8b:d9:2d:0b:6f:6d:dc:0c:16:38:a7:5a: 5e:13:1f:23:dc:03:f1:04:75:93:51:bd:61:dd:0c: c9:08:50:bf:d8:23:1b:4e:3d:9b:57:b0:bd:e7:4f: 36:e7:7b:75:f8:03:06:2b:a3:30:bf:53:9e:b9:5c: 15:5b:22:5e:1e:0e:56:5f:a2:96:aa:e3:fc:66:c3: 68:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:56:06:64:4C:A1:59:A4:9F:26:D3:EF:60:4E:83:26:F5:4D:F6:B0 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.26.0/23 Signature Algorithm: sha256WithRSAEncryption 92:64:82:93:74:8a:2a:51:30:1b:d9:c2:66:8e:03:2e:3b:ce: fb:5a:c8:0e:c0:9a:3d:77:a3:75:1f:1a:c7:d2:d5:17:4d:48: f3:6c:68:b6:1f:0b:ac:bb:df:6a:f0:b1:e5:e3:82:7c:79:8f: 34:5e:99:f3:d2:d3:02:d8:7d:20:9e:51:c1:79:3d:b2:47:64: 3c:fc:b2:ed:93:0c:3b:51:d6:2e:0c:26:af:e6:63:ef:93:74: 3e:8e:b6:9c:ca:67:47:d5:1f:b4:cf:1d:76:d5:4a:7b:07:97: c5:9d:d4:06:37:7c:26:6d:df:27:a8:36:f0:15:18:eb:cd:08: a6:06:3d:19:c8:b6:79:a3:5b:5f:d7:e8:16:51:ee:2e:90:02: 3e:76:8e:68:ef:5c:2f:ff:3c:dd:fd:5e:d2:44:21:84:fc:b1: 54:b7:61:36:50:3a:c7:45:0b:a2:77:f2:f7:59:e3:89:a9:2b: f2:22:6e:5b:f3:5e:cf:0b:cb:f9:49:28:1f:b8:e9:e6:dd:95: b9:0e:4a:83:74:08:8a:45:cc:df:43:64:25:e2:2e:91:84:97: 30:10:ff:c5:9b:57:42:0c:46:8b:81:23:cd:b0:f5:12:24:82: 43:cc:71:7d:36:94:99:88:52:68:3c:75:54:9d:c5:9c:d0:44: 77:fb:57:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPzdeiNnH0yyWaezWzQ7b8TIgKRMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTA2MDEwNzI3WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGEzYTc1MDVlMzQ2YjBjMmI3ZjAyZjM5YzE2ZmFjY2Y1 YWU2MDkxZWEzYjAwZTViYTg3YTJkNzE4NTA1NjMyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHg27H6EJfWTUunmEHd9sRTzhtGrGttjWiCeyHGnt0z7sQ Edc2N3lUMZ/C128W9K0g+KwOcN4E7AjTeNW0qqvWtn1F/Cw9CtQHTpzsVBvQq4UA jwXsABGZjlzJYgBtCHCQJkVIaXdI/e6KRLftD/O9XbuZOSjzcOI0xto0I28NWe5c BnnHN0W2LUzU3A0oBJQsRdO1cbKwKG0dq8tr5wDyKaSbpGFhgY/XVB4xQAkjyNoA yUQCSIvZLQtvbdwMFjinWl4THyPcA/EEdZNRvWHdDMkIUL/YIxtOPZtXsL3nTzbn e3X4AwYrozC/U565XBVbIl4eDlZfopaq4/xmw2iZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5VYGZEyhWaSfJtPvYE6DJvVN9rAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJmMjU2YzJiLThiY2YtNDdiNS1iMmY1LTZkODRmZjFkNWZlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBowDQYJKoZIhvcNAQELBQADggEBAJJkgpN0iipRMBvZwmaOAy47zvta yA7Amj13o3UfGsfS1RdNSPNsaLYfC6y732rwseXjgnx5jzRemfPS0wLYfSCeUcF5 PbJHZDz8su2TDDtR1i4MJq/mY++TdD6OtpzKZ0fVH7TPHXbVSnsHl8Wd1AY3fCZt 3yeoNvAVGOvNCKYGPRnItnmjW1/X6BZR7i6QAj52jmjvXC//PN39XtJEIYT8sVS3 YTZQOsdFC6J38vdZ44mpK/IiblvzXs8Ly/lJKB+46ebdlbkOSoN0CIpFzN9DZCXi LpGElzAQ/8WbV0IMRouBI82w9RIkgkPMcX02lJmIUmg8dVSdxZzQRHf7V5E= -----END CERTIFICATE-----Generated at Tue May 13 10:01:25 2025 by rpki-client