$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa File: 5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa (raw, json) Hash identifier: hw5O+QoNPjrBaB/akRpFFDcBqe4Vy11sB5+6ls3gdys= Subject key identifier: D0:6B:AE:D0:A2:BA:93:28:7A:B9:0A:8F:73:C9:56:B7:DD:81:1F:F0 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1ED080764BD0983D856AC5EC59870047A7003116 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa Signing time: Tue 24 Jun 2025 15:00:03 +0000 ROA not before: Tue 24 Jun 2025 15:00:03 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:d0:80:76:4b:d0:98:3d:85:6a:c5:ec:59:87:00:47:a7:00:31:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 24 15:00:03 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=fad3663b5e3d42a6feaf9a8a7a07f2f00f8db600cdda55145a8e02ccace050a5, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2e:bd:c0:f6:ac:1a:f9:7b:0f:53:09:3c:8e: 2f:c9:c7:2e:54:ad:af:aa:83:73:ff:d4:5a:2c:22: 68:a2:5e:e3:76:17:af:0e:78:28:c6:61:f4:39:83: d6:34:49:58:7f:df:e8:91:6a:bc:27:5a:27:b8:08: 70:3f:c0:61:82:0b:1d:0a:95:db:e4:e4:ad:e2:de: ce:c3:b6:f6:c8:45:da:0e:6f:f2:a6:84:96:22:a5: 79:ad:28:69:b1:5a:5b:f5:3d:b7:04:a4:56:62:d5: e3:5a:1c:e7:c2:0d:93:9b:7b:87:ff:1b:39:7c:13: 94:f3:60:c3:d7:e2:b8:ff:52:c4:a6:df:79:3d:73: 5c:82:4e:ae:c4:02:cf:df:79:eb:9d:34:71:f9:c4: f9:b6:ba:ac:e5:97:fb:74:3c:c8:a1:ac:d4:25:b1: e4:fa:1c:b6:cf:07:c5:6f:22:6f:20:1b:99:fe:15: 13:35:88:f4:d3:41:9e:fb:f7:68:bc:2f:62:d0:7c: b9:42:f9:7c:1c:9d:0e:e3:e5:66:7c:57:0a:87:90: c7:5b:fb:2e:ce:94:89:00:3c:56:bf:ae:4e:f6:2e: 83:dd:76:0c:b7:3f:a4:65:03:b8:3f:e8:45:bf:1b: 8f:a6:f0:75:5f:6b:08:81:fb:9f:c0:f1:1e:d2:7e: 06:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:6B:AE:D0:A2:BA:93:28:7A:B9:0A:8F:73:C9:56:B7:DD:81:1F:F0 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d3a71cd-9e0f-47d1-bfef-bb2990fa9963.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.253.0/24 Signature Algorithm: sha256WithRSAEncryption 92:fd:8f:a1:8b:1d:f0:83:9d:9b:86:65:1e:d4:e5:8d:4a:54: 35:33:79:70:2a:e2:17:30:36:36:6d:98:b9:37:08:b4:75:d8: 03:2d:f7:bb:97:9d:16:ce:de:d6:84:2a:5a:2d:f3:27:6d:ec: 09:e9:99:94:e2:e6:05:65:00:8c:bb:8e:e7:68:8f:7c:3a:c6: 42:8d:c7:d1:9d:90:73:f4:9a:e0:85:0f:66:d3:b1:5b:98:64: bc:ce:0e:b5:0b:29:28:af:1e:7f:01:d9:70:a6:91:27:0a:9e: d5:29:d9:46:35:88:bc:da:bc:fe:d6:54:3d:78:ce:59:bd:03: c0:87:24:9c:f0:db:5c:87:f5:39:b3:c7:05:b5:f8:c7:87:6a: 2b:dc:3a:98:0b:e3:5b:48:24:da:3a:4a:47:32:22:67:d1:2d: 71:ad:2c:b4:9b:3f:58:85:88:fa:d2:76:5b:d1:9d:49:28:ad: f9:01:8b:08:a8:aa:50:20:49:cd:db:ba:03:93:31:3d:48:79: b1:96:e3:7c:fc:d4:c1:d4:1d:70:88:94:7b:1d:05:32:a5:34: f9:a3:b1:e2:4c:e0:39:4e:5b:af:b8:a7:67:50:35:1f:e6:86: 62:b0:2a:6e:f9:4d:6c:87:cf:38:22:d5:c1:aa:60:d0:8c:df: db:db:46:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHtCAdkvQmD2FasXsWYcAR6cAMRYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI0MTUwMDAzWhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYWQzNjYzYjVlM2Q0MmE2ZmVhZjlhOGE3YTA3ZjJmMDBm OGRiNjAwY2RkYTU1MTQ1YThlMDJjY2FjZTA1MGE1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRLr3A9qwa+XsPUwk8ji/Jxy5Ura+qg3P/1FosImiiXuN2 F68OeCjGYfQ5g9Y0SVh/3+iRarwnWie4CHA/wGGCCx0Kldvk5K3i3s7DtvbIRdoO b/KmhJYipXmtKGmxWlv1PbcEpFZi1eNaHOfCDZObe4f/Gzl8E5TzYMPX4rj/UsSm 33k9c1yCTq7EAs/feeudNHH5xPm2uqzll/t0PMihrNQlseT6HLbPB8VvIm8gG5n+ FRM1iPTTQZ7792i8L2LQfLlC+XwcnQ7j5WZ8VwqHkMdb+y7OlIkAPFa/rk72LoPd dgy3P6RlA7g/6EW/G4+m8HVfawiB+5/A8R7SfgbZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0Guu0KK6kyh6uQqPc8lWt92BH/AwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzVkM2E3MWNkLTllMGYtNDdkMS1iZmVmLWJiMjk5MGZhOTk2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYP0wDQYJKoZIhvcNAQELBQADggEBAJL9j6GLHfCDnZuGZR7U5Y1KVDUz eXAq4hcwNjZtmLk3CLR12AMt97uXnRbO3taEKlot8ydt7AnpmZTi5gVlAIy7judo j3w6xkKNx9GdkHP0muCFD2bTsVuYZLzODrULKSivHn8B2XCmkScKntUp2UY1iLza vP7WVD14zlm9A8CHJJzw21yH9TmzxwW1+MeHaivcOpgL41tIJNo6SkcyImfRLXGt LLSbP1iFiPrSdlvRnUkorfkBiwioqlAgSc3bugOTMT1IebGW43z81MHUHXCIlHsd BTKlNPmjseJM4DlOW6+4p2dQNR/mhmKwKm75TWyHzzgi1cGqYNCM39vbRjE= -----END CERTIFICATE-----Generated at Tue Jul 1 19:09:13 2025 by rpki-client