$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa File: 8b1249ac-b74a-4544-80b2-2b577af731f1.roa (raw, json) Hash identifier: aNcbWAmNlno9ZawsVy0JNT0/z8N4Vrwge43S6ZYNxxI= Subject key identifier: F4:C6:8E:B3:9F:46:FD:60:E6:37:D8:F8:AE:88:9C:F8:38:75:ED:D9 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 259D1340B4B90D46B175750200F8E51965F8A9D7 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa Signing time: Tue 06 May 2025 01:07:20 +0000 ROA not before: Tue 06 May 2025 01:07:20 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:9d:13:40:b4:b9:0d:46:b1:75:75:02:00:f8:e5:19:65:f8:a9:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 6 01:07:20 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=a31f81ad88af00dff9096e65ffb030605d6aa21c71f36a370516115a6cff9212, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6e:47:8f:a4:8b:f5:4c:f4:dd:be:2e:ec:62: ad:6f:46:58:b3:1b:8f:93:21:0d:b7:de:09:65:b9: 87:d0:4b:08:14:43:26:07:5b:1d:e9:4a:20:bb:aa: 1a:9a:8e:b9:8b:bf:e7:38:95:fc:9d:a7:7a:b0:19: 14:76:fd:b4:51:6c:7a:a2:de:5b:11:e3:65:c8:65: 1f:2c:e9:45:93:c9:e0:96:79:61:a0:25:1d:71:c5: 41:1e:a5:67:bd:72:ff:a0:28:d7:cd:d5:de:b6:f1: c9:a5:fa:56:9f:6d:ae:ef:b4:b6:2f:41:67:cd:83: 60:9a:c8:a6:ea:d8:fa:4b:fe:f7:ee:37:f7:d8:17: 6e:e8:bc:ec:05:e7:3e:65:7e:e1:ee:13:64:03:0a: 9a:8c:f5:37:05:03:24:5e:f1:fc:3d:cd:dd:83:c2: 2e:ef:52:36:25:2c:5d:9d:0d:04:b7:d0:6e:ee:40: bd:c8:b7:cd:15:40:76:15:22:d6:2b:b7:80:a6:dc: 3c:bb:6b:5a:f5:48:5d:02:f5:a3:2f:da:ba:82:d7: 8d:21:cd:b2:89:2a:0c:ee:26:67:fe:1e:a3:ee:18: 98:7c:16:a8:58:92:27:95:6e:47:0f:ce:f9:4b:82: af:f0:62:03:1c:df:26:b7:df:a2:0b:1f:1e:17:82: 16:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:C6:8E:B3:9F:46:FD:60:E6:37:D8:F8:AE:88:9C:F8:38:75:ED:D9 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b1249ac-b74a-4544-80b2-2b577af731f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.20.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:c2:93:28:29:0a:62:2d:73:d9:bc:c1:d4:54:84:5a:bc:3e: b6:a0:a9:9f:6f:3f:dc:4b:28:39:de:24:d4:c5:01:30:7f:dd: 39:8c:ab:25:c7:7b:d8:70:3c:cb:4b:b1:ca:1c:92:e2:fd:98: 02:2e:da:80:f0:6b:b9:f0:c1:08:14:a7:0c:59:c2:b9:36:d1: c1:ac:de:d1:d3:60:c7:f3:f0:76:1b:46:b9:ec:3a:32:2f:fc: 90:ff:68:65:cb:64:42:db:3e:af:70:14:34:fc:1e:cd:ac:86: 4c:f6:59:72:4e:3d:bb:00:fd:6d:4c:f4:a2:f2:db:91:29:8b: 22:9c:13:84:5f:6c:3c:34:2f:44:db:f8:fa:77:25:74:01:32: 0a:ec:9f:aa:47:e3:a1:3a:d7:e4:52:52:93:dd:5a:39:06:29: fe:34:60:ba:48:36:33:fe:3f:af:d6:d2:04:00:e5:d1:4c:4c: bd:c2:89:15:99:ff:3a:97:7a:06:7b:58:f6:46:17:e1:6e:b3: b2:16:0b:67:1f:4a:a7:55:60:37:3d:47:f5:9b:dd:bb:65:35: 88:4a:ec:b5:1b:f2:ae:5a:f6:b8:b2:24:c8:27:1f:23:2d:63: 66:53:80:31:ac:88:c2:ef:07:ed:a3:75:0e:d0:16:cd:3d:ed: 0e:f2:6e:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJZ0TQLS5DUaxdXUCAPjlGWX4qdcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTA2MDEwNzIwWhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzFmODFhZDg4YWYwMGRmZjkwOTZlNjVmZmIwMzA2MDVk NmFhMjFjNzFmMzZhMzcwNTE2MTE1YTZjZmY5MjEyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8bkePpIv1TPTdvi7sYq1vRlizG4+TIQ233glluYfQSwgU QyYHWx3pSiC7qhqajrmLv+c4lfydp3qwGRR2/bRRbHqi3lsR42XIZR8s6UWTyeCW eWGgJR1xxUEepWe9cv+gKNfN1d628cml+lafba7vtLYvQWfNg2CayKbq2PpL/vfu N/fYF27ovOwF5z5lfuHuE2QDCpqM9TcFAyRe8fw9zd2Dwi7vUjYlLF2dDQS30G7u QL3It80VQHYVItYrt4Cm3Dy7a1r1SF0C9aMv2rqC140hzbKJKgzuJmf+HqPuGJh8 FqhYkieVbkcPzvlLgq/wYgMc3ya336ILHx4XghbnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9MaOs59G/WDmN9j4roic+Dh17dkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhiMTI0OWFjLWI3NGEtNDU0NC04MGIyLTJiNTc3YWY3MzFmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBQwDQYJKoZIhvcNAQELBQADggEBADzCkygpCmItc9m8wdRUhFq8Prag qZ9vP9xLKDneJNTFATB/3TmMqyXHe9hwPMtLscockuL9mAIu2oDwa7nwwQgUpwxZ wrk20cGs3tHTYMfz8HYbRrnsOjIv/JD/aGXLZELbPq9wFDT8Hs2shkz2WXJOPbsA /W1M9KLy25EpiyKcE4RfbDw0L0Tb+Pp3JXQBMgrsn6pH46E61+RSUpPdWjkGKf40 YLpINjP+P6/W0gQA5dFMTL3CiRWZ/zqXegZ7WPZGF+Fus7IWC2cfSqdVYDc9R/Wb 3btlNYhK7LUb8q5a9riyJMgnHyMtY2ZTgDGsiMLvB+2jdQ7QFs097Q7yboQ= -----END CERTIFICATE-----Generated at Tue May 13 14:04:38 2025 by rpki-client