$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa File: a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa (raw, json) Hash identifier: ttCZP7tvgeAlhiJK3KoXPGSNzkqpe5sLbvxxp3leHRw= Subject key identifier: 7B:56:67:0D:86:F3:8A:D8:1A:4C:FE:67:77:91:02:02:80:A2:10:E3 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 61D5C52A11D0F8FEEB92AD967E14AF06CC46B011 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa Signing time: Tue 06 May 2025 01:07:23 +0000 ROA not before: Tue 06 May 2025 01:07:23 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:d5:c5:2a:11:d0:f8:fe:eb:92:ad:96:7e:14:af:06:cc:46:b0:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 6 01:07:23 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=8d4cf2ea750f83bf043f968d6ea8d391123ac0c311864da9e2242f83db080b9b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:20:35:d9:6d:67:8e:e8:28:ca:4b:dd:5b:d8: 9a:87:e7:4c:54:17:14:e6:44:06:72:65:e2:9e:ad: 54:6a:9d:de:22:f8:d6:32:b9:f3:ee:94:bd:4f:7b: 7b:a2:33:eb:44:10:c7:00:76:29:11:ee:48:dd:b6: a4:e8:2d:81:dc:68:7c:ae:dc:6f:58:a1:4f:a5:ba: 8f:7a:d8:2d:40:94:dd:65:ed:9b:d2:01:e0:9e:a4: 35:ed:f0:db:72:cd:4a:55:40:40:2c:dc:1f:be:3d: 71:c6:e6:98:e1:db:e1:af:6d:b7:ac:97:86:27:33: 90:55:0f:f8:c6:63:9d:02:60:ab:99:54:97:8e:2e: 9d:bf:88:1c:0f:a8:bc:13:ae:91:6b:b8:a8:9c:3f: e1:1e:d8:cf:86:07:90:09:de:2d:9c:3c:1b:1f:2e: 01:67:f2:33:31:58:8e:1a:01:98:84:84:2d:34:cd: d8:0f:c7:ab:97:d2:01:e2:86:8d:77:ab:46:0f:ee: 1e:b0:f7:bd:9e:07:d2:9d:a9:92:d9:de:47:4e:81: 3d:3e:8d:a3:58:06:57:c7:74:39:78:82:8c:54:0c: 0f:ea:f0:22:5d:90:94:9e:b6:c6:3e:79:37:2a:aa: d4:f4:38:bb:f4:d5:eb:b6:12:6e:69:ef:7b:16:39: 24:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:56:67:0D:86:F3:8A:D8:1A:4C:FE:67:77:91:02:02:80:A2:10:E3 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:b6:bc:8a:08:90:2b:42:eb:4b:8e:d0:cf:5d:4f:e7:6a:e0: ac:52:7a:94:a3:97:47:95:29:2c:0c:db:ca:92:24:d6:72:c8: 87:e9:8a:7c:57:86:7e:74:d1:2a:e4:d4:3f:c2:c5:2a:44:7c: 83:fd:d8:73:83:ef:be:7c:62:19:48:a7:09:fa:91:d7:b1:a8: cb:ad:79:21:36:39:47:f4:c6:7a:7f:96:6f:c1:fc:4f:3e:a2: 8b:a9:ce:2c:8e:7a:47:b6:d2:f6:3c:85:8a:32:06:5a:6e:1f: 0a:c9:f5:1c:8a:c0:5f:ba:fc:72:9a:1d:59:9e:a4:4b:95:95: 25:9b:28:51:f5:93:06:30:66:5f:65:bb:3a:bd:1a:d9:16:ef: b3:ba:7c:5e:2f:1a:4e:7a:ac:ff:f9:62:b7:d2:f6:66:d5:cb: 2e:52:17:44:93:1d:c9:29:c1:ec:a7:38:f6:a7:81:ad:96:eb: 92:86:2d:48:18:24:0a:d9:69:02:36:9b:dd:f2:1e:a3:09:64: 93:fd:38:9b:89:16:44:93:01:e9:12:7d:fa:1d:c0:e3:f7:2a: d9:b2:3c:db:d9:85:02:87:68:6d:2a:a0:9c:7f:fb:9e:9b:d7: 71:63:9a:b5:ed:de:30:60:0b:76:e5:75:1c:c3:4a:aa:25:8c: ae:14:49:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYdXFKhHQ+P7rkq2WfhSvBsxGsBEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTA2MDEwNzIzWhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDRjZjJlYTc1MGY4M2JmMDQzZjk2OGQ2ZWE4ZDM5MTEy M2FjMGMzMTE4NjRkYTllMjI0MmY4M2RiMDgwYjliMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfIDXZbWeO6CjKS91b2JqH50xUFxTmRAZyZeKerVRqnd4i +NYyufPulL1Pe3uiM+tEEMcAdikR7kjdtqToLYHcaHyu3G9YoU+luo962C1AlN1l 7ZvSAeCepDXt8NtyzUpVQEAs3B++PXHG5pjh2+Gvbbesl4YnM5BVD/jGY50CYKuZ VJeOLp2/iBwPqLwTrpFruKicP+Ee2M+GB5AJ3i2cPBsfLgFn8jMxWI4aAZiEhC00 zdgPx6uX0gHiho13q0YP7h6w972eB9KdqZLZ3kdOgT0+jaNYBlfHdDl4goxUDA/q 8CJdkJSetsY+eTcqqtT0OLv01eu2Em5p73sWOSTtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUe1ZnDYbzitgaTP5nd5ECAoCiEOMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2EyN2NkMTQwLTFkMmItNGU3ZC1hNmMwLTdlM2M4NjE1MGMzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBACq2vIoIkCtC60uO0M9dT+dq4KxS epSjl0eVKSwM28qSJNZyyIfpinxXhn500Srk1D/CxSpEfIP92HOD7758YhlIpwn6 kdexqMuteSE2OUf0xnp/lm/B/E8+ooupziyOeke20vY8hYoyBlpuHwrJ9RyKwF+6 /HKaHVmepEuVlSWbKFH1kwYwZl9luzq9GtkW77O6fF4vGk56rP/5YrfS9mbVyy5S F0STHckpweynOPanga2W65KGLUgYJArZaQI2m93yHqMJZJP9OJuJFkSTAekSffod wOP3KtmyPNvZhQKHaG0qoJx/+56b13FjmrXt3jBgC3bldRzDSqoljK4USZI= -----END CERTIFICATE-----Generated at Tue May 13 09:51:51 2025 by rpki-client