$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8ded9a1a-a724-4f04-af2d-845ce1bd9da0.roa File: 8ded9a1a-a724-4f04-af2d-845ce1bd9da0.roa (raw, json) Hash identifier: omX8cOAndkymTzvXa7PhV5ihElIwSa1+3Y22i1oWPPo= Subject key identifier: C5:E7:F5:1D:8A:A9:88:74:21:C8:13:34:E3:FD:57:E7:73:78:BD:56 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 781BE01B8DF973467DE00C6D75F35EB6D5A9949D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8ded9a1a-a724-4f04-af2d-845ce1bd9da0.roa Signing time: Wed 18 Jun 2025 00:30:12 +0000 ROA not before: Wed 18 Jun 2025 00:30:12 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:1b:e0:1b:8d:f9:73:46:7d:e0:0c:6d:75:f3:5e:b6:d5:a9:94:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 18 00:30:12 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=bb7b70c1f9e8ab18a92953ed62a9df42eb67fcef3b7da5cb25d5cb9b4a62f2d6, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:05:3b:2e:2a:ed:6c:ba:ae:a7:6d:c4:c4:71: b0:5a:cf:aa:fc:9f:be:88:f7:8e:7e:64:bb:96:75: 00:ce:cd:7e:09:59:f2:a8:49:ca:86:7f:f0:9e:dd: 42:9d:4f:c7:75:af:a6:43:25:9c:e2:ab:61:19:f5: b4:d5:44:dc:1b:44:86:8a:87:e1:92:9d:74:ba:2b: fb:2c:79:e1:3f:bd:50:e9:65:a0:06:cc:16:f7:58: 3e:b7:09:8a:80:14:d2:f4:3e:9c:08:62:d4:01:97: b0:91:dd:1d:86:78:37:38:de:eb:83:6d:46:53:28: f3:a8:9c:d7:7e:15:59:18:9d:6c:dc:27:9a:87:71: 0a:7c:5b:68:f4:bc:eb:c0:e2:d7:23:7f:af:27:b6: 10:83:8a:17:b5:58:a1:dd:ea:d4:3f:89:a4:c6:fa: dd:95:bb:b8:41:46:b3:73:9f:cd:22:14:4f:47:32: e6:3a:90:58:dd:a2:c5:40:e2:a1:73:2e:40:28:5d: ce:ea:25:cd:39:9b:58:a5:f4:58:36:b5:88:2f:47: 5d:5e:07:c5:92:1c:b7:4a:5e:4f:5b:ea:0f:db:5f: 16:58:ed:ce:dc:60:f6:fe:8e:50:e6:30:b5:de:e9: 76:50:2f:75:ad:09:ab:61:8e:3a:68:72:7f:c0:f3: c1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E7:F5:1D:8A:A9:88:74:21:C8:13:34:E3:FD:57:E7:73:78:BD:56 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8ded9a1a-a724-4f04-af2d-845ce1bd9da0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.18.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:39:9d:f9:18:a4:dd:80:d9:8d:a6:95:07:04:02:23:d7:53: e7:5d:d6:c6:72:ad:cd:48:af:6b:60:f6:da:c7:a9:af:38:d7: 1c:83:39:3f:da:dc:6e:3e:9c:07:e0:43:fb:b1:a1:6d:d8:74: dc:6a:d3:53:c1:2d:fb:7a:63:63:41:8d:84:70:55:2b:60:63: 28:50:53:85:dd:f2:f2:23:e5:cc:13:ce:98:04:80:95:34:d5: 80:2f:ed:cb:7e:4d:e4:10:27:cb:fd:7e:b4:ec:f7:60:77:e7: 08:c2:3f:99:87:43:ad:5e:50:c0:44:b4:44:07:46:9b:c6:a9: 84:d8:cd:1f:c1:6c:68:74:a3:0d:74:3e:e5:bd:46:5c:00:47: 3e:27:05:63:27:e3:11:8d:87:42:9b:b2:b9:96:b0:22:2f:d3: 41:7c:19:b4:cd:e3:d3:e9:75:1d:84:d7:32:06:2f:32:aa:51: f2:aa:5b:a8:3f:26:31:35:8a:ec:c9:a3:60:59:9b:bd:7b:5c: 55:90:20:d8:ac:81:79:7d:7e:00:fe:9f:d8:39:c4:c8:e7:a8: 16:94:d2:1b:07:29:32:5e:cb:7d:64:e1:20:1f:07:2e:b3:b0: 0f:02:62:98:4b:d3:f3:27:cd:c0:e4:f3:f1:fb:87:5f:ae:56: 31:ed:ca:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeBvgG435c0Z94AxtdfNettWplJ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjE4MDAzMDEyWhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjdiNzBjMWY5ZThhYjE4YTkyOTUzZWQ2MmE5ZGY0MmVi NjdmY2VmM2I3ZGE1Y2IyNWQ1Y2I5YjRhNjJmMmQ2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwBTsuKu1suq6nbcTEcbBaz6r8n76I945+ZLuWdQDOzX4J WfKoScqGf/Ce3UKdT8d1r6ZDJZziq2EZ9bTVRNwbRIaKh+GSnXS6K/sseeE/vVDp ZaAGzBb3WD63CYqAFNL0PpwIYtQBl7CR3R2GeDc43uuDbUZTKPOonNd+FVkYnWzc J5qHcQp8W2j0vOvA4tcjf68nthCDihe1WKHd6tQ/iaTG+t2Vu7hBRrNzn80iFE9H MuY6kFjdosVA4qFzLkAoXc7qJc05m1il9Fg2tYgvR11eB8WSHLdKXk9b6g/bXxZY 7c7cYPb+jlDmMLXe6XZQL3WtCathjjpocn/A88E1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxef1HYqpiHQhyBM04/1X53N4vVYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhkZWQ5YTFhLWE3MjQtNGYwNC1hZjJkLTg0NWNlMWJkOWRhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBIwDQYJKoZIhvcNAQELBQADggEBAH45nfkYpN2A2Y2mlQcEAiPXU+dd 1sZyrc1Ir2tg9trHqa841xyDOT/a3G4+nAfgQ/uxoW3YdNxq01PBLft6Y2NBjYRw VStgYyhQU4Xd8vIj5cwTzpgEgJU01YAv7ct+TeQQJ8v9frTs92B35wjCP5mHQ61e UMBEtEQHRpvGqYTYzR/BbGh0ow10PuW9RlwARz4nBWMn4xGNh0KbsrmWsCIv00F8 GbTN49PpdR2E1zIGLzKqUfKqW6g/JjE1iuzJo2BZm717XFWQINisgXl9fgD+n9g5 xMjnqBaU0hsHKTJey31k4SAfBy6zsA8CYphL0/MnzcDk8/H7h1+uVjHtytA= -----END CERTIFICATE-----Generated at Sun Jun 29 08:11:51 2025 by rpki-client