$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa File: a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa (raw, json) Hash identifier: tmuGU9X6W5cKd69oe1o0aOaCMb0yMDOdCZMtGOyCVzg= Subject key identifier: 92:C5:C8:AF:85:67:48:FE:C3:A6:6A:DC:F8:DD:29:84:F5:F1:15:87 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6258926507639104282009863B5614205C03889F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa Signing time: Wed 25 Jun 2025 00:40:20 +0000 ROA not before: Wed 25 Jun 2025 00:40:20 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:58:92:65:07:63:91:04:28:20:09:86:3b:56:14:20:5c:03:88:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 25 00:40:20 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=0fb77d0195b7ac9f5dff7b91f4a50ff8f1dddcf3260617c17117af9a65c87dec, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:33:23:3a:4b:6e:2e:3f:3a:8d:f1:27:41:1f: 66:82:f1:c1:06:46:b9:36:81:a5:69:91:57:74:d5: 16:ef:11:85:d1:ae:97:07:e0:29:11:c2:42:03:7d: 9a:87:fa:cf:90:00:fd:14:e2:5c:9f:e1:ae:0e:64: 41:03:a3:38:46:69:63:f8:04:0a:57:c8:4f:0a:ff: 93:71:fc:2b:e6:b0:41:50:d1:78:ea:d1:fb:6c:5f: 56:b4:8a:df:0f:48:72:ff:b4:36:aa:11:fd:09:65: b7:01:04:84:ee:4a:eb:cd:00:20:14:03:fe:e0:69: 14:5c:c9:50:77:a0:81:80:28:d5:b0:c5:07:e5:d2: 0e:45:d7:59:3e:35:7f:a1:d0:1a:3f:83:e4:dd:be: e2:a2:9e:8d:de:f9:13:03:21:94:c4:e1:78:ba:c4: 3c:9b:a6:8f:0c:ef:51:2d:8e:4c:df:26:8b:4b:6e: a2:ba:92:56:62:48:4b:23:2f:29:2d:97:e6:86:85: 97:b4:b4:84:0e:5c:8c:65:2f:fe:af:44:08:2e:6e: cc:b7:7f:aa:88:e8:0b:d9:40:a7:57:fc:38:91:7e: c6:a6:3c:dc:bd:ec:dc:e0:a9:a8:8a:79:99:3f:29: ed:44:f0:7e:e7:06:a8:7c:ca:92:cc:97:c3:a6:49: bf:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C5:C8:AF:85:67:48:FE:C3:A6:6A:DC:F8:DD:29:84:F5:F1:15:87 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a27cd140-1d2b-4e7d-a6c0-7e3c86150c3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.22.0/23 Signature Algorithm: sha256WithRSAEncryption 59:72:36:8f:84:d6:17:56:0f:aa:51:f5:55:dc:7e:d8:d6:c3: 84:e4:22:88:a0:3f:ff:b7:c3:16:fd:83:4a:9f:28:53:f9:d8: 92:7d:6d:bc:7f:06:c4:08:fe:ae:25:6f:4b:03:a2:db:27:08: 21:d0:36:5e:31:39:15:82:4e:c7:c6:e4:50:7e:ca:0b:d5:b8: f5:79:5d:34:bd:0a:78:6c:f6:1b:a3:01:07:a6:07:01:ac:45: 35:e9:dc:df:d6:c6:f5:f9:ca:9e:97:38:a0:7a:10:a4:82:04: f5:15:5c:cb:ca:27:21:97:db:ef:c2:55:38:da:00:cf:dc:c1: cb:72:0a:27:bb:20:1e:81:87:a8:47:c4:50:99:40:ce:1b:55: d7:9a:16:ed:8c:66:af:e1:27:96:29:a6:0f:fe:19:ba:45:3f: b2:44:26:d9:13:79:e5:58:b3:4a:ab:a5:7f:67:e8:31:97:86: 8e:1c:9a:00:50:6e:cc:1f:65:08:b1:80:27:41:34:0d:fd:5d: 35:ef:13:cb:af:ef:e9:2e:40:0d:e0:51:d4:4c:4b:ed:78:71: c8:41:27:c3:7d:6b:ab:86:2b:06:28:6e:f9:46:31:a8:eb:6b: 9a:88:7e:60:f5:82:7e:c0:81:66:b5:8e:3a:c7:5e:7d:66:4a: b8:5f:e4:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYliSZQdjkQQoIAmGO1YUIFwDiJ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI1MDA0MDIwWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZmI3N2QwMTk1YjdhYzlmNWRmZjdiOTFmNGE1MGZmOGYx ZGRkY2YzMjYwNjE3YzE3MTE3YWY5YTY1Yzg3ZGVjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtMyM6S24uPzqN8SdBH2aC8cEGRrk2gaVpkVd01RbvEYXR rpcH4CkRwkIDfZqH+s+QAP0U4lyf4a4OZEEDozhGaWP4BApXyE8K/5Nx/CvmsEFQ 0Xjq0ftsX1a0it8PSHL/tDaqEf0JZbcBBITuSuvNACAUA/7gaRRcyVB3oIGAKNWw xQfl0g5F11k+NX+h0Bo/g+TdvuKino3e+RMDIZTE4Xi6xDybpo8M71EtjkzfJotL bqK6klZiSEsjLyktl+aGhZe0tIQOXIxlL/6vRAgubsy3f6qI6AvZQKdX/DiRfsam PNy97NzgqaiKeZk/Ke1E8H7nBqh8ypLMl8OmSb8PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUksXIr4VnSP7Dpmrc+N0phPXxFYcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2EyN2NkMTQwLTFkMmItNGU3ZC1hNmMwLTdlM2M4NjE1MGMzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBYwDQYJKoZIhvcNAQELBQADggEBAFlyNo+E1hdWD6pR9VXcftjWw4Tk IoigP/+3wxb9g0qfKFP52JJ9bbx/BsQI/q4lb0sDotsnCCHQNl4xORWCTsfG5FB+ ygvVuPV5XTS9Cnhs9hujAQemBwGsRTXp3N/WxvX5yp6XOKB6EKSCBPUVXMvKJyGX 2+/CVTjaAM/cwctyCie7IB6Bh6hHxFCZQM4bVdeaFu2MZq/hJ5Yppg/+GbpFP7JE JtkTeeVYs0qrpX9n6DGXho4cmgBQbswfZQixgCdBNA39XTXvE8uv7+kuQA3gUdRM S+14cchBJ8N9a6uGKwYobvlGMajra5qIfmD1gn7AgWa1jjrHXn1mSrhf5JU= -----END CERTIFICATE-----Generated at Sun Jun 29 09:35:53 2025 by rpki-client