$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a7f6e0ac-810a-4e40-a286-d05397a13e4e.roa File: a7f6e0ac-810a-4e40-a286-d05397a13e4e.roa (raw, json) Hash identifier: npj/fyAQlDZ5m/NxYO/Z7cGQcwUoXqAl1vfazLXartE= Subject key identifier: 18:3E:D5:FF:12:80:75:27:8C:AE:8E:E7:A7:C2:D5:5B:6C:A2:57:53 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6BBDF26700ED58ACE965D5A19101E69AA916C7C0 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a7f6e0ac-810a-4e40-a286-d05397a13e4e.roa Signing time: Mon 16 Jun 2025 20:22:12 +0000 ROA not before: Mon 16 Jun 2025 20:22:12 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:bd:f2:67:00:ed:58:ac:e9:65:d5:a1:91:01:e6:9a:a9:16:c7:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 16 20:22:12 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=fd7a4d7607250bfa0416551733e340ecdac91330e27166ea2aec2debd0685edf, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d3:ff:e1:a7:3e:91:fa:73:14:51:1f:2d:dd: 24:dc:26:b2:fb:e3:18:ea:be:d5:34:44:63:46:35: 54:73:32:80:e3:4e:08:5c:a9:47:ab:ef:00:8b:a5: 3d:42:ec:e6:4c:7c:62:8e:78:0e:01:91:36:7b:9b: 7b:8a:cb:9d:36:dc:7d:2e:7a:2b:bf:6f:dc:8f:0b: 90:68:74:d0:47:6e:52:52:28:20:00:bc:52:8b:75: dc:a0:11:80:6f:ce:b9:07:a5:5e:b2:c3:d0:59:1c: 67:9e:49:b6:82:65:8d:77:24:52:ca:fa:b0:3a:70: 5d:7f:81:42:9f:88:64:aa:d7:44:12:32:c6:51:ed: 6e:a8:f1:c0:54:02:af:8f:bb:38:66:42:11:20:fd: 6e:00:5f:a9:08:03:a2:88:5e:ab:9b:94:4a:3b:35: 5c:b8:03:82:4d:8c:e8:65:36:4e:2e:6d:f6:00:7f: ea:99:01:a4:0b:42:35:2e:73:03:ba:3f:70:58:08: aa:68:1d:a8:b8:70:26:9f:e5:b8:01:fc:d4:4b:05: a2:12:49:fe:c3:47:ec:4e:15:4a:60:3b:6e:8e:59: ba:ba:96:9f:a2:26:e8:04:90:da:a1:bf:3d:93:27: 19:d2:03:af:2f:c0:5c:a4:db:2b:8b:cb:44:09:67: 12:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:3E:D5:FF:12:80:75:27:8C:AE:8E:E7:A7:C2:D5:5B:6C:A2:57:53 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a7f6e0ac-810a-4e40-a286-d05397a13e4e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.41.0/24 Signature Algorithm: sha256WithRSAEncryption 92:16:7c:89:be:af:be:65:41:4e:e3:90:e7:18:02:22:bd:5b: 03:1a:5b:42:d6:d5:ac:6a:a8:d0:4f:c1:0e:5e:bf:80:e2:aa: 15:c7:01:ff:ee:36:93:c3:42:00:11:45:29:74:30:ae:94:fe: 76:61:7f:b3:39:a6:4c:e4:4e:46:1a:a5:d2:93:07:40:7e:ad: 0d:09:8c:ad:92:62:46:f2:2a:20:5d:d8:8a:c8:af:56:3b:fe: 6d:f6:f8:12:2c:9e:a3:9f:bf:62:86:62:01:05:b8:44:02:b8: 44:70:4d:ff:fa:1b:17:0a:0c:d9:a0:02:0f:9b:17:86:ae:fe: ce:cd:60:1f:67:4a:e0:d3:23:d8:07:73:df:e8:02:9b:0f:0b: 2d:d5:30:13:64:7d:6f:9d:3a:22:c5:4e:21:8e:f2:79:d5:b2: 53:33:03:36:4b:82:7e:7f:29:e2:dc:5e:bb:29:33:7c:ec:0e: c3:60:5c:fe:38:7d:df:bf:22:d5:1b:f4:af:f1:5c:81:b7:e5: ce:b8:8f:41:d9:14:26:98:a7:32:74:30:2a:5b:a0:f4:b1:07: 5f:e9:e7:d9:da:1f:29:25:73:ac:f5:fd:8b:ce:30:82:f6:ab: c4:55:22:03:f5:af:af:ab:d6:b3:b3:c5:fd:45:35:50:de:1d: 70:b8:69:cd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa73yZwDtWKzpZdWhkQHmmqkWx8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjE2MjAyMjEyWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDdhNGQ3NjA3MjUwYmZhMDQxNjU1MTczM2UzNDBlY2Rh YzkxMzMwZTI3MTY2ZWEyYWVjMmRlYmQwNjg1ZWRmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb0//hpz6R+nMUUR8t3STcJrL74xjqvtU0RGNGNVRzMoDj TghcqUer7wCLpT1C7OZMfGKOeA4BkTZ7m3uKy5023H0ueiu/b9yPC5BodNBHblJS KCAAvFKLddygEYBvzrkHpV6yw9BZHGeeSbaCZY13JFLK+rA6cF1/gUKfiGSq10QS MsZR7W6o8cBUAq+PuzhmQhEg/W4AX6kIA6KIXqublEo7NVy4A4JNjOhlNk4ubfYA f+qZAaQLQjUucwO6P3BYCKpoHai4cCaf5bgB/NRLBaISSf7DR+xOFUpgO26OWbq6 lp+iJugEkNqhvz2TJxnSA68vwFyk2yuLy0QJZxJ5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGD7V/xKAdSeMro7np8LVW2yiV1MwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2E3ZjZlMGFjLTgxMGEtNGU0MC1hMjg2LWQwNTM5N2ExM2U0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCkwDQYJKoZIhvcNAQELBQADggEBAJIWfIm+r75lQU7jkOcYAiK9WwMa W0LW1axqqNBPwQ5ev4DiqhXHAf/uNpPDQgARRSl0MK6U/nZhf7M5pkzkTkYapdKT B0B+rQ0JjK2SYkbyKiBd2IrIr1Y7/m32+BIsnqOfv2KGYgEFuEQCuERwTf/6GxcK DNmgAg+bF4au/s7NYB9nSuDTI9gHc9/oApsPCy3VMBNkfW+dOiLFTiGO8nnVslMz AzZLgn5/KeLcXrspM3zsDsNgXP44fd+/ItUb9K/xXIG35c64j0HZFCaYpzJ0MCpb oPSxB1/p59naHyklc6z1/YvOMIL2q8RVIgP1r6+r1rOzxf1FNVDeHXC4ac0= -----END CERTIFICATE-----Generated at Tue Jul 1 16:46:19 2025 by rpki-client