$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5777146d-b90f-4e7f-8816-d91c8e8d47b6.roa File: 5777146d-b90f-4e7f-8816-d91c8e8d47b6.roa (raw, json) Hash identifier: anyQGWNru6nwTilSqsX1tjToQt6+K31X61zZpUARmoY= Subject key identifier: 71:2C:B5:7D:B1:C9:67:6A:EA:09:CC:00:B6:1A:9C:CC:E1:A7:A5:BF Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 30CDDEA79D248148783BB7776E5DE23D457F154D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5777146d-b90f-4e7f-8816-d91c8e8d47b6.roa Signing time: Mon 30 Jun 2025 17:41:00 +0000 ROA not before: Mon 30 Jun 2025 17:41:00 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:cd:de:a7:9d:24:81:48:78:3b:b7:77:6e:5d:e2:3d:45:7f:15:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:41:00 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=6cd52334af29de140805da6b46c973f7cb746ca6602456e601b6661a32b7cfe8, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:66:f2:6f:47:a1:7d:3e:a0:e5:fd:18:ab:e0: 14:79:a5:6c:8f:ae:b6:56:a5:f1:30:32:3c:c4:b8: e6:54:fd:4c:49:01:e7:23:92:19:17:0c:cb:57:df: 09:35:66:da:67:b8:76:fc:38:da:c0:0d:7f:2c:4d: 5d:fb:76:02:07:56:a8:84:09:f8:16:58:d8:7b:27: 7d:13:ba:52:70:23:07:4c:4d:36:4b:0e:42:8c:f9: ee:9e:e1:e7:f4:b8:12:90:1c:73:13:6b:5b:79:a2: 96:0d:b3:49:e0:90:44:c6:10:9d:fc:e1:fb:56:82: 25:9e:a1:cd:17:2d:13:f3:9d:bb:aa:5d:c9:e5:d6: e0:ae:24:cc:90:2b:6b:b3:52:8b:49:17:c8:ba:59: f6:d9:c0:cd:94:ae:df:41:ee:7e:2d:75:1c:33:cd: 9f:fe:94:b6:d7:eb:61:49:0f:f4:2b:bc:32:41:38: cf:7f:c6:0c:1d:e9:d3:c3:22:89:17:f4:30:d8:89: 1e:fe:76:7f:f5:39:ee:ee:d2:0a:a4:66:ae:42:36: fc:e9:3a:46:2e:4d:fd:95:e8:62:24:ff:28:49:6b: 2d:19:5a:37:8e:52:87:7e:66:5b:06:69:ec:71:7c: 73:9e:72:e4:0a:20:90:ce:24:66:15:5f:1f:11:f9: db:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:2C:B5:7D:B1:C9:67:6A:EA:09:CC:00:B6:1A:9C:CC:E1:A7:A5:BF X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5777146d-b90f-4e7f-8816-d91c8e8d47b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.144.0/20 Signature Algorithm: sha256WithRSAEncryption 2e:23:81:71:15:8a:57:37:72:ad:5e:21:37:00:5f:12:8b:dc: bb:a7:2b:26:ca:7a:24:3d:c9:0c:1c:79:6e:e4:17:12:f9:af: 5d:a8:82:15:40:ad:69:72:a6:9a:4c:9a:ed:ca:da:53:06:1f: cc:fa:9b:c0:84:bf:7d:35:c4:53:86:3b:83:fc:fb:00:c3:c6: 74:a9:4d:6e:ee:7f:1c:f3:ab:8e:ae:93:17:45:35:69:09:53: e5:79:47:bf:7e:23:2b:80:04:a5:62:c8:6b:14:37:32:34:d7: 16:4b:26:a5:22:6a:76:68:71:7b:c1:7f:64:58:05:ba:1b:a1: cc:ac:37:86:0a:54:8b:d3:ae:1b:51:74:e3:69:f6:8d:60:f6: 81:37:12:85:11:87:45:fe:af:0e:8e:4a:81:8e:7e:70:36:e3: 03:e7:ff:ab:b6:18:03:09:6a:66:11:1a:ac:2c:c7:6f:03:1c: 07:93:7b:a3:44:fc:06:05:3d:40:1e:33:91:73:10:b4:a7:ca: d5:a8:04:af:c4:67:6b:ec:2d:83:40:6b:75:87:2e:00:2f:d2: 3b:3f:f2:e9:cf:5c:11:85:12:95:e3:41:7b:a7:a2:eb:5a:0e: 81:12:69:73:78:b8:5c:91:68:e2:d1:6b:21:b2:ec:86:85:26: d8:fb:15:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMM3ep50kgUh4O7d3bl3iPUV/FU0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MTAwWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2Y2Q1MjMzNGFmMjlkZTE0MDgwNWRhNmI0NmM5NzNmN2Ni NzQ2Y2E2NjAyNDU2ZTYwMWI2NjYxYTMyYjdjZmU4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZZvJvR6F9PqDl/Rir4BR5pWyPrrZWpfEwMjzEuOZU/UxJ AecjkhkXDMtX3wk1ZtpnuHb8ONrADX8sTV37dgIHVqiECfgWWNh7J30TulJwIwdM TTZLDkKM+e6e4ef0uBKQHHMTa1t5opYNs0ngkETGEJ384ftWgiWeoc0XLRPznbuq Xcnl1uCuJMyQK2uzUotJF8i6WfbZwM2Urt9B7n4tdRwzzZ/+lLbX62FJD/QrvDJB OM9/xgwd6dPDIokX9DDYiR7+dn/1Oe7u0gqkZq5CNvzpOkYuTf2V6GIk/yhJay0Z WjeOUod+ZlsGaexxfHOecuQKIJDOJGYVXx8R+dvzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcSy1fbHJZ2rqCcwAthqczOGnpb8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzU3NzcxNDZkLWI5MGYtNGU3Zi04ODE2LWQ5MWM4ZThkNDdiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYJAwDQYJKoZIhvcNAQELBQADggEBAC4jgXEVilc3cq1eITcAXxKL3Lun KybKeiQ9yQwceW7kFxL5r12oghVArWlypppMmu3K2lMGH8z6m8CEv301xFOGO4P8 +wDDxnSpTW7ufxzzq46ukxdFNWkJU+V5R79+IyuABKViyGsUNzI01xZLJqUianZo cXvBf2RYBbobocysN4YKVIvTrhtRdONp9o1g9oE3EoURh0X+rw6OSoGOfnA24wPn /6u2GAMJamYRGqwsx28DHAeTe6NE/AYFPUAeM5FzELSnytWoBK/EZ2vsLYNAa3WH LgAv0js/8unPXBGFEpXjQXunoutaDoESaXN4uFyRaOLRayGy7IaFJtj7FWk= -----END CERTIFICATE-----Generated at Tue Jul 1 14:17:34 2025 by rpki-client