$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa File: 9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa (raw, json) Hash identifier: 0aq5UN4TaepmeKwVaIpeEc23WuhlyrDKpBY0QkK/THE= Subject key identifier: 73:27:DB:7C:DA:43:B9:32:79:73:4D:AE:02:7C:74:BC:54:55:8B:67 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3E60CB7F0DC1193233CFD6C54FCB2A8466F37B Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa Signing time: Fri 09 May 2025 16:20:09 +0000 ROA not before: Fri 09 May 2025 16:20:09 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:60:cb:7f:0d:c1:19:32:33:cf:d6:c5:4f:cb:2a:84:66:f3:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 9 16:20:09 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=41feb909f3ba127f645b5258c18d412c8d95eb1effd0997922b40952b9828fe6, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c6:51:d6:e7:15:c1:25:47:4a:c6:04:29:18: 61:74:7c:70:7b:37:c4:3b:44:d8:2a:09:34:e8:33: 28:bf:e3:a1:f2:7e:f2:97:08:df:f2:dd:1c:83:58: 03:3e:48:43:ca:2b:fd:3c:91:2b:8c:f8:00:92:3c: cc:71:0e:6c:b8:3a:b3:46:47:d2:ad:28:5d:a7:65: 70:42:6e:8a:03:12:db:fe:7b:ba:b6:75:e9:e4:42: d7:9c:b2:e7:c5:38:3f:03:03:1e:fa:ba:a2:4e:0e: 05:5e:9b:6f:73:3a:11:10:c4:8f:0d:a1:24:19:2a: 90:a4:6e:fa:3d:9c:c2:76:10:2d:78:9b:70:9c:84: 11:c7:17:3d:46:cb:bf:a7:5d:a0:28:90:05:26:2e: c8:34:b7:00:97:1b:7f:fc:c4:60:c0:ce:e9:09:80: 0c:d0:31:fc:1b:ce:63:71:1a:36:a7:2b:e9:d2:98: ae:72:e8:58:fb:97:13:42:c2:61:ef:a4:04:c1:d0: be:e9:4b:81:2b:d1:0f:75:41:4d:3d:f0:ae:86:c3: c7:46:f9:e2:93:6f:12:2f:79:ab:fc:f7:3b:51:d1: 4d:ea:99:54:1d:85:69:ea:c3:dc:79:53:c3:c1:43: d6:0e:0d:86:4d:5a:17:23:ab:47:e6:74:d9:68:45: 27:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:27:DB:7C:DA:43:B9:32:79:73:4D:AE:02:7C:74:BC:54:55:8B:67 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9b804fa0-f727-4fab-a71a-9c5f8486ea74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:66:49:9f:d1:bc:25:2b:07:ad:7a:11:e3:16:88:af:55:3b: ba:1b:c6:88:62:13:9e:25:37:66:09:ef:79:cb:8a:2f:cc:dd: 49:c7:74:c6:ab:ca:44:08:48:1e:6d:7c:0e:53:d8:3d:5e:d6: 3d:41:20:ed:a0:08:80:26:f2:b9:1f:dc:06:f7:e2:74:90:21: f4:5e:3d:82:10:3d:7e:07:8f:f2:e5:3a:63:c9:e5:dd:e0:38: 3f:75:07:0a:4e:d9:f0:c3:40:cf:b6:e7:18:8c:9d:68:af:02: e3:55:25:44:8f:a1:1c:ef:c2:db:c3:88:d5:d6:22:f8:09:2b: a6:8a:71:fe:a3:07:89:5e:bf:5e:00:67:24:65:23:ee:04:27: 78:07:e5:ca:76:a9:a8:43:13:22:a1:af:dd:80:0f:18:77:c3: ff:90:7c:fb:62:3a:a4:59:49:a0:19:fd:c0:0a:81:b4:62:63: b7:28:45:91:b8:19:da:dc:d6:88:9a:1c:3c:23:50:04:82:1e: 25:25:89:04:35:00:93:93:9b:2e:f2:f6:d1:06:c3:e9:99:61: f3:d4:6c:c2:35:c1:11:16:2a:3d:82:17:bf:4b:26:2f:4a:a1: 4f:59:7c:26:e8:e6:65:dd:9d:ea:b9:44:a5:d9:ca:fd:f6:2c: 15:f9:11:2f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITPmDLfw3BGTIzz9bFT8sqhGbzezANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI5YWIwMTVmMzgyNmUwMTM1MTJhNDUyOThhNDJmMmJhYmEx ZmE3MmY4ZDI3OTM4ODc4YzAeFw0yNTA1MDkxNjIwMDlaFw0yNTA2MTMyMzU5NTla MHoxSTBHBgNVBAUTQDQxZmViOTA5ZjNiYTEyN2Y2NDViNTI1OGMxOGQ0MTJjOGQ5 NWViMWVmZmQwOTk3OTIyYjQwOTUyYjk4MjhmZTYxLTArBgNVBAMTJDhjZDg0NDJm LTIzNWYtNDE3MS04NGU2LThlMTAwN2E2NGM2MDCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALjGUdbnFcElR0rGBCkYYXR8cHs3xDtE2CoJNOgzKL/jofJ+ 8pcI3/LdHINYAz5IQ8or/TyRK4z4AJI8zHEObLg6s0ZH0q0oXadlcEJuigMS2/57 urZ16eRC15yy58U4PwMDHvq6ok4OBV6bb3M6ERDEjw2hJBkqkKRu+j2cwnYQLXib cJyEEccXPUbLv6ddoCiQBSYuyDS3AJcbf/zEYMDO6QmADNAx/BvOY3EaNqcr6dKY rnLoWPuXE0LCYe+kBMHQvulLgSvRD3VBTT3wrobDx0b54pNvEi95q/z3O1HRTeqZ VB2FaerD3HlTw8FD1g4Nhk1aFyOrR+Z02WhFJ8kCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBRzJ9t82kO5MnlzTa4CfHS8VFWLZzAfBgNVHSMEGDAWgBRqzD59oudtmREP 1jnEE35CQplw2DAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzLzY3NTU5NzBjLTQ3 NDctNDk5ZC05Nzc0LTVlMTMwOGM1MDFhNy85YWIwMTVmMzgyNmUwMTM1MTJhNDUy OThhNDJmMmJhYmExZmE3MmY4ZDI3OTM4ODc4Yy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS9lNzJkOGRiMC00NzI4LTRmYzEtYmRkOC00NzEx Mjk4NjYzNjIvOWI4MDRmYTAtZjcyNy00ZmFiLWE3MWEtOWM1Zjg0ODZlYTc0LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgt NDcxMTI5ODY2MzYyL2JnRTFFcVJTbUtRdks2dWgtbkw0MG5rNGg0dy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACNgCzANBgkqhkiG9w0BAQsFAAOCAQEAb2ZJn9G8JSsHrXoR4xaIr1U7uhvG iGITniU3ZgnvecuKL8zdScd0xqvKRAhIHm18DlPYPV7WPUEg7aAIgCbyuR/cBvfi dJAh9F49ghA9fgeP8uU6Y8nl3eA4P3UHCk7Z8MNAz7bnGIydaK8C41UlRI+hHO/C 28OI1dYi+Akrpopx/qMHiV6/XgBnJGUj7gQneAflynapqEMTIqGv3YAPGHfD/5B8 +2I6pFlJoBn9wAqBtGJjtyhFkbgZ2tzWiJocPCNQBIIeJSWJBDUAk5ObLvL20QbD 6Zlh89RswjXBERYqPYIXv0smL0qhT1l8JujmZd2d6rlEpdnK/fYsFfkRLw== -----END CERTIFICATE-----Generated at Mon May 12 04:18:39 2025 by rpki-client