$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa File: 95808009-fbc3-494a-8fba-ce3cf5711341.roa (raw, json) Hash identifier: N9oTBVK/SlxWSYUeCmwTzTpFlgfYl/GPIPce1xaNLrQ= Subject key identifier: AA:11:1D:BA:B2:06:1A:96:61:3A:93:DA:3E:A6:51:BD:57:FD:E8:39 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 04593BC9044A10FC39F9E2FE81A28395B29456FB Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa Signing time: Tue 06 May 2025 01:07:24 +0000 ROA not before: Tue 06 May 2025 01:07:24 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 17 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:59:3b:c9:04:4a:10:fc:39:f9:e2:fe:81:a2:83:95:b2:94:56:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 6 01:07:24 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=ac5f266c2b63c865fd743fe4b9551f38e203d19ba1afaff3b072d0a89e42c8a5, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f1:ff:ec:fa:34:d4:a8:f4:55:54:b0:54:4e: 7b:10:46:fc:c1:13:bc:c4:87:ac:e9:73:ed:bf:a3: 9d:0c:c4:9c:5c:6a:e6:92:33:1b:6d:fb:37:da:8d: 95:ad:bc:24:aa:ee:c1:3a:2d:32:d7:41:d4:73:33: 23:b4:12:dc:4d:30:a5:96:99:44:30:dd:ed:b3:db: d1:dc:fd:e1:bd:e2:aa:cc:39:6e:d3:f3:48:cb:81: 21:c2:3e:30:e8:2b:da:b2:ee:81:dd:c4:76:d1:3b: b0:a6:2f:45:26:11:c8:8a:ea:23:8a:0a:e1:dd:65: 2b:0e:65:3e:7d:79:30:a1:88:d8:3a:97:80:6d:ed: ba:5b:9a:a2:46:51:84:61:3b:b4:64:ed:53:f2:06: ef:54:8a:03:34:15:ca:e3:8c:1e:ca:0c:cc:6a:37: 73:2a:ac:7e:9a:c2:a0:66:1c:f8:9b:51:7b:bc:0c: 3e:79:24:7a:de:90:90:cc:81:59:c6:d4:91:6f:9c: 12:24:64:9c:e4:ec:79:20:4f:33:fb:d3:8d:bd:54: 03:07:7d:72:c2:7b:fc:7c:ab:08:06:f1:d0:2c:cc: 79:5d:5b:df:27:4f:24:ec:68:72:63:33:20:b0:b0: ff:ce:2a:5a:1f:d7:33:56:64:4e:e2:59:54:ef:2d: ae:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:11:1D:BA:B2:06:1A:96:61:3A:93:DA:3E:A6:51:BD:57:FD:E8:39 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/95808009-fbc3-494a-8fba-ce3cf5711341.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:2c:a7:7e:9d:09:1e:96:21:4a:cf:74:91:46:fc:ab:d8:d4: 62:4d:4e:c3:28:ef:e3:22:40:6b:01:57:42:a3:69:72:44:27: c1:28:89:2d:e5:84:12:8a:09:0c:c0:fc:3d:d9:35:ad:b9:83: 22:b0:87:31:6d:88:0c:e4:84:55:a1:46:24:60:0a:c2:a0:e4: 80:c6:c0:5e:a6:88:d8:8c:c7:56:da:d5:86:07:58:6c:4b:83: 33:6d:84:da:da:3d:05:f1:69:c5:81:d0:d0:46:9c:1d:bc:a6: 6a:11:cd:6e:48:76:60:31:1c:4c:54:22:14:28:01:5b:ab:61: b7:81:0b:72:53:58:1c:e5:a8:28:cb:7e:cc:80:0d:cf:db:d2: 13:9e:36:e5:a0:75:c1:6b:a0:e6:fb:8f:9a:80:83:84:ee:91: 8d:7d:e8:bc:80:2a:9a:ee:c6:f7:69:89:15:af:46:af:d4:3c: 94:ea:66:76:2a:f6:b3:d4:f6:cd:c6:40:44:ae:42:e3:72:1c: 5c:f3:65:54:36:f5:22:ab:e2:1b:19:ee:28:c5:a3:44:93:0d: ed:21:9a:65:e2:ea:96:d3:48:08:55:bc:11:21:c4:64:6c:20: 2e:47:08:16:59:18:b3:3e:35:f3:6d:d2:06:bf:a7:23:3f:63: af:3b:20:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBFk7yQRKEPw5+eL+gaKDlbKUVvswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTA2MDEwNzI0WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzVmMjY2YzJiNjNjODY1ZmQ3NDNmZTRiOTU1MWYzOGUy MDNkMTliYTFhZmFmZjNiMDcyZDBhODllNDJjOGE1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDN8f/s+jTUqPRVVLBUTnsQRvzBE7zEh6zpc+2/o50MxJxc auaSMxtt+zfajZWtvCSq7sE6LTLXQdRzMyO0EtxNMKWWmUQw3e2z29Hc/eG94qrM OW7T80jLgSHCPjDoK9qy7oHdxHbRO7CmL0UmEciK6iOKCuHdZSsOZT59eTChiNg6 l4Bt7bpbmqJGUYRhO7Rk7VPyBu9UigM0FcrjjB7KDMxqN3MqrH6awqBmHPibUXu8 DD55JHrekJDMgVnG1JFvnBIkZJzk7HkgTzP70429VAMHfXLCe/x8qwgG8dAszHld W98nTyTsaHJjMyCwsP/OKlof1zNWZE7iWVTvLa5tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqhEdurIGGpZhOpPaPqZRvVf96DkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzk1ODA4MDA5LWZiYzMtNDk0YS04ZmJhLWNlM2NmNTcxMTM0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBADssp36dCR6WIUrPdJFG/KvY1GJN TsMo7+MiQGsBV0KjaXJEJ8EoiS3lhBKKCQzA/D3ZNa25gyKwhzFtiAzkhFWhRiRg CsKg5IDGwF6miNiMx1ba1YYHWGxLgzNthNraPQXxacWB0NBGnB28pmoRzW5IdmAx HExUIhQoAVurYbeBC3JTWBzlqCjLfsyADc/b0hOeNuWgdcFroOb7j5qAg4TukY19 6LyAKpruxvdpiRWvRq/UPJTqZnYq9rPU9s3GQESuQuNyHFzzZVQ29SKr4hsZ7ijF o0STDe0hmmXi6pbTSAhVvBEhxGRsIC5HCBZZGLM+NfNt0ga/pyM/Y687IIo= -----END CERTIFICATE-----Generated at Fri May 16 03:11:51 2025 by rpki-client