$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8ded9a1a-a724-4f04-af2d-845ce1bd9da0.roa File: 8ded9a1a-a724-4f04-af2d-845ce1bd9da0.roa (raw, json) Hash identifier: DUQKmqCXwGzZOmO+TePvL/HHZ/PKEsU2cZDpuQEe0NQ= Subject key identifier: 3C:DE:88:2E:E2:4F:B5:38:10:08:7B:C5:71:E7:33:3E:E5:8A:BC:21 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 294E08E039F2C6357975011E6FE631602376103C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8ded9a1a-a724-4f04-af2d-845ce1bd9da0.roa Signing time: Tue 06 May 2025 01:07:18 +0000 ROA not before: Tue 06 May 2025 01:07:18 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:4e:08:e0:39:f2:c6:35:79:75:01:1e:6f:e6:31:60:23:76:10:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 6 01:07:18 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=0a98e7f5a599e7812d6afd1e4bff0010d5cf73596d4d010d9c3cd4681834dcfb, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a0:1b:35:7c:61:85:27:bf:13:d7:96:5d:d9: 89:e0:b6:a7:40:3e:70:05:ec:69:fa:8e:26:98:f5: 06:0d:78:69:9c:16:41:f8:d5:86:fd:e0:fc:b6:c2: d3:3c:4b:54:00:d9:17:70:f8:18:6f:7e:65:95:d2: 44:ff:d9:32:ec:9e:8c:ff:7c:74:46:8b:6f:72:47: c5:68:df:ff:09:1a:dd:57:37:1b:b4:b9:2d:89:a8: 64:fe:a6:76:3b:c1:24:f1:07:dd:35:ae:de:47:7d: 12:a3:4b:9b:b5:67:9e:36:43:91:0f:e7:d7:b3:4a: 32:d4:8b:6e:09:64:a6:0f:34:0e:88:a4:de:62:45: 87:f8:a1:ca:99:10:78:2a:99:75:20:b6:46:5c:5e: f2:fc:e7:4f:74:d6:cb:ab:e3:1a:04:78:37:20:c2: bd:87:1e:c2:59:75:70:c9:49:8c:08:35:19:70:9f: c5:50:e2:63:40:a5:37:59:6c:bf:85:f8:d6:51:a3: 60:8e:b4:21:09:75:62:7f:7b:60:63:7b:65:77:bd: 75:f9:61:61:67:1c:5c:8b:fc:f5:d1:cd:8c:c3:5c: 2a:d7:10:2b:db:4a:a7:48:a3:b7:db:30:a6:bd:18: e6:0b:25:a9:28:73:ce:62:ee:22:f3:29:14:e6:82: 33:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:DE:88:2E:E2:4F:B5:38:10:08:7B:C5:71:E7:33:3E:E5:8A:BC:21 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8ded9a1a-a724-4f04-af2d-845ce1bd9da0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.18.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:03:4d:b6:75:5c:f5:f6:c2:cd:1c:70:34:4e:26:a2:f9:ee: 38:4b:ad:b7:1b:03:84:60:34:32:c1:1b:be:97:4d:e3:a0:58: bf:3a:bc:67:57:66:e1:da:10:ec:37:fe:c0:e6:fc:18:e0:49: 67:2e:2d:5d:38:86:0d:11:ef:3b:14:cc:3d:9b:34:aa:f5:34: dd:f4:9a:ca:66:4c:84:36:94:0f:02:be:f0:44:93:3f:d3:0a: cb:83:da:45:30:78:aa:6c:94:82:87:27:22:b3:41:bc:0f:9b: 1f:8d:99:41:e6:86:67:c3:90:79:b4:1b:3f:16:80:ee:54:97: 00:59:5b:5b:47:81:56:11:30:f4:dd:47:41:f5:a9:12:28:85: b9:d3:6b:f9:af:80:9e:b3:09:7b:26:f8:5c:2e:52:22:34:d9: 6f:75:05:71:9d:3a:f6:27:a3:22:e0:1e:a3:41:11:89:2d:55: 06:92:73:ed:a7:05:8d:51:a4:e5:ce:34:e2:53:1d:5c:7f:07: 97:e9:65:a9:56:7c:4e:53:4c:9a:6b:2d:b1:06:94:cf:29:2c: 77:17:f4:0a:dd:49:80:2e:cd:b4:63:15:aa:6e:c6:16:e4:1f: e9:7a:8f:a4:6f:85:e6:1a:e3:1f:f5:3e:3b:bc:f4:7d:8b:1e: af:7c:e9:c5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKU4I4DnyxjV5dQEeb+YxYCN2EDwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTA2MDEwNzE4WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTk4ZTdmNWE1OTllNzgxMmQ2YWZkMWU0YmZmMDAxMGQ1 Y2Y3MzU5NmQ0ZDAxMGQ5YzNjZDQ2ODE4MzRkY2ZiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5oBs1fGGFJ78T15Zd2YngtqdAPnAF7Gn6jiaY9QYNeGmc FkH41Yb94Py2wtM8S1QA2Rdw+BhvfmWV0kT/2TLsnoz/fHRGi29yR8Vo3/8JGt1X Nxu0uS2JqGT+pnY7wSTxB901rt5HfRKjS5u1Z542Q5EP59ezSjLUi24JZKYPNA6I pN5iRYf4ocqZEHgqmXUgtkZcXvL850901sur4xoEeDcgwr2HHsJZdXDJSYwINRlw n8VQ4mNApTdZbL+F+NZRo2COtCEJdWJ/e2Bje2V3vXX5YWFnHFyL/PXRzYzDXCrX ECvbSqdIo7fbMKa9GOYLJakoc85i7iLzKRTmgjOhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPN6ILuJPtTgQCHvFceczPuWKvCEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhkZWQ5YTFhLWE3MjQtNGYwNC1hZjJkLTg0NWNlMWJkOWRhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBIwDQYJKoZIhvcNAQELBQADggEBAFwDTbZ1XPX2ws0ccDROJqL57jhL rbcbA4RgNDLBG76XTeOgWL86vGdXZuHaEOw3/sDm/BjgSWcuLV04hg0R7zsUzD2b NKr1NN30mspmTIQ2lA8CvvBEkz/TCsuD2kUweKpslIKHJyKzQbwPmx+NmUHmhmfD kHm0Gz8WgO5UlwBZW1tHgVYRMPTdR0H1qRIohbnTa/mvgJ6zCXsm+FwuUiI02W91 BXGdOvYnoyLgHqNBEYktVQaSc+2nBY1RpOXONOJTHVx/B5fpZalWfE5TTJprLbEG lM8pLHcX9ArdSYAuzbRjFapuxhbkH+l6j6RvheYa4x/1Pju89H2LHq986cU= -----END CERTIFICATE-----Generated at Tue May 13 09:43:43 2025 by rpki-client