$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4f42177e-a433-471b-aa9d-f0e1fa01ed10.roa File: 4f42177e-a433-471b-aa9d-f0e1fa01ed10.roa (raw, json) Hash identifier: Bi5GLghxKpYKOkJRwxuBq26j9BOvnN4k0ws9TKfL8sg= Subject key identifier: 4E:EF:7B:5F:4A:C8:B3:8D:3C:16:5D:D8:E1:30:FC:D9:37:50:B5:5D Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 07709F5877B489EE586996D6D1D753CC3C8DD66F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4f42177e-a433-471b-aa9d-f0e1fa01ed10.roa Signing time: Fri 25 Apr 2025 17:40:53 +0000 ROA not before: Fri 25 Apr 2025 17:40:53 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:70:9f:58:77:b4:89:ee:58:69:96:d6:d1:d7:53:cc:3c:8d:d6:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 25 17:40:53 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=f15b80e754f9dd3ab632a172c2e55b187f70b94f438c7e6610d80a32ec1cde65, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:01:09:4c:ce:51:3b:f4:dc:0f:76:e4:e0:95: 57:4c:90:8a:84:3e:8f:bf:b6:43:5f:63:14:05:9b: bc:c0:79:7f:77:47:e4:83:8d:2d:5e:24:42:eb:f5: d5:40:22:98:e0:31:bd:1b:8b:0c:48:8d:48:c0:aa: aa:4f:41:c4:ff:b6:a8:b0:48:9b:71:47:bc:2f:31: ce:99:da:a6:ce:da:2e:7b:d1:de:0e:ec:82:93:a5: 28:a7:52:f0:b9:b9:b9:72:35:07:0a:d5:00:7e:58: cb:6f:94:cc:ca:4e:0a:65:fc:81:ce:e2:0f:f9:48: a6:06:cb:1e:94:aa:be:93:0e:d0:6c:73:35:cf:0e: 32:12:5a:7d:74:8a:4b:d4:25:34:b6:58:ec:2b:98: 42:4c:78:4f:b5:f3:34:a4:21:ab:c4:c5:d3:24:93: 00:7e:77:ad:e0:a3:c8:e1:98:3f:db:ee:60:b7:1a: 87:03:52:e5:a4:fd:af:d6:64:de:b8:94:de:8b:cd: 40:f1:4f:a3:d5:af:8e:14:d9:01:f3:33:5c:ae:79: 9d:fa:6e:fd:64:1c:dd:1c:d8:f8:19:dd:5e:de:51: 47:e7:cb:e6:b2:dc:ec:0b:20:8e:3d:9c:a9:d2:d6: 00:18:70:a5:b4:ce:c4:d9:c3:2f:e7:6d:56:82:58: 5e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:EF:7B:5F:4A:C8:B3:8D:3C:16:5D:D8:E1:30:FC:D9:37:50:B5:5D X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4f42177e-a433-471b-aa9d-f0e1fa01ed10.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.144.0/20 Signature Algorithm: sha256WithRSAEncryption 4e:6a:cb:6e:92:e6:64:bc:96:c3:3b:7a:d3:4d:ad:9d:9e:2a: 81:ee:d2:6a:f8:58:e3:fa:c1:02:38:01:56:9c:bc:ed:00:8d: 18:9c:37:da:f3:9e:5b:f5:73:f0:76:2c:4b:26:6a:c0:fd:92: 7d:79:77:e1:1d:63:f8:c0:fb:52:4a:cd:26:04:2b:1b:0b:43: 1d:42:4a:6a:cc:bf:97:8d:ac:66:c4:85:17:84:12:82:d0:d3: 42:08:e9:bc:72:79:c9:b1:85:b3:c8:d1:74:8c:6f:42:8c:15: d6:3e:52:23:80:70:1d:62:6c:9f:80:ef:6b:bb:2f:53:86:d3: e1:6b:65:b8:65:fb:5b:42:f4:c0:80:5f:72:e1:5f:a0:d0:5c: 6a:85:49:e5:09:e3:52:5e:89:2f:a5:fa:73:f6:c4:0a:2e:1c: da:f0:ad:8f:af:44:5c:1e:ff:22:b4:bd:fd:12:d2:38:65:54: e2:cd:ec:cc:fc:5b:bc:f2:ea:f0:56:58:8d:93:c9:b6:f3:39: 38:81:2c:24:b5:66:8a:49:78:e7:08:be:ce:49:0b:9d:04:13: 21:a3:6d:ed:91:05:0d:82:2a:05:0c:d1:57:21:be:a0:05:c6: f8:6d:80:82:66:0a:18:5e:c1:3b:e0:f5:83:2f:63:4d:66:1f: 33:47:4a:71 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB3CfWHe0ie5YaZbW0ddTzDyN1m8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDI1MTc0MDUzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMTViODBlNzU0ZjlkZDNhYjYzMmExNzJjMmU1NWIxODdm NzBiOTRmNDM4YzdlNjYxMGQ4MGEzMmVjMWNkZTY1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2AQlMzlE79NwPduTglVdMkIqEPo+/tkNfYxQFm7zAeX93 R+SDjS1eJELr9dVAIpjgMb0biwxIjUjAqqpPQcT/tqiwSJtxR7wvMc6Z2qbO2i57 0d4O7IKTpSinUvC5ublyNQcK1QB+WMtvlMzKTgpl/IHO4g/5SKYGyx6Uqr6TDtBs czXPDjISWn10ikvUJTS2WOwrmEJMeE+18zSkIavExdMkkwB+d63go8jhmD/b7mC3 GocDUuWk/a/WZN64lN6LzUDxT6PVr44U2QHzM1yueZ36bv1kHN0c2PgZ3V7eUUfn y+ay3OwLII49nKnS1gAYcKW0zsTZwy/nbVaCWF5ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTu97X0rIs408Fl3Y4TD82TdQtV0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzRmNDIxNzdlLWE0MzMtNDcxYi1hYTlkLWYwZTFmYTAxZWQxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYJAwDQYJKoZIhvcNAQELBQADggEBAE5qy26S5mS8lsM7etNNrZ2eKoHu 0mr4WOP6wQI4AVacvO0AjRicN9rznlv1c/B2LEsmasD9kn15d+EdY/jA+1JKzSYE KxsLQx1CSmrMv5eNrGbEhReEEoLQ00II6bxyecmxhbPI0XSMb0KMFdY+UiOAcB1i bJ+A72u7L1OG0+FrZbhl+1tC9MCAX3LhX6DQXGqFSeUJ41JeiS+l+nP2xAouHNrw rY+vRFwe/yK0vf0S0jhlVOLN7Mz8W7zy6vBWWI2TybbzOTiBLCS1ZopJeOcIvs5J C50EEyGjbe2RBQ2CKgUM0VchvqAFxvhtgIJmChhewTvg9YMvY01mHzNHSnE= -----END CERTIFICATE-----Generated at Sun May 11 00:35:43 2025 by rpki-client