$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a80e1a1c-1ea0-4528-ac96-20c192fcc87a.roa File: a80e1a1c-1ea0-4528-ac96-20c192fcc87a.roa (raw, json) Hash identifier: c5Jo8V4kkm5h+aHqjKUfGzIEFQJ4BfviT2ilSd2TBNw= Subject key identifier: 9E:05:9B:7B:AA:49:3A:39:DF:17:D7:F4:AB:30:93:B9:BA:EE:A5:80 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1060EC89277F6BD201E149B3512F332452F65FB1 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a80e1a1c-1ea0-4528-ac96-20c192fcc87a.roa Signing time: Sat 10 May 2025 00:50:30 +0000 ROA not before: Sat 10 May 2025 00:50:30 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:60:ec:89:27:7f:6b:d2:01:e1:49:b3:51:2f:33:24:52:f6:5f:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 10 00:50:30 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=fb76b0808b913d282e67a601d918c2ea58294bf77a2a4c8cdb2673675132d2b0, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:aa:3f:87:69:95:e1:c5:40:e4:bc:6d:de:55: 03:3d:13:29:bb:73:57:61:0e:a9:e0:7d:22:6d:d4: e2:55:0e:db:25:45:db:b9:2d:c3:e4:95:28:36:bc: 00:be:96:87:6a:17:0a:74:01:29:8b:92:37:f2:1f: 38:83:a7:3b:bd:4e:88:20:33:fc:cb:dc:92:16:2c: 4c:76:2c:d6:6f:d5:ab:85:53:36:e5:51:67:99:06: a2:48:0b:0a:ff:8c:b5:a9:1a:27:e9:66:b3:fd:83: 8f:b0:ad:cd:af:64:a2:fe:51:1f:58:98:ff:83:9b: 17:28:3f:21:4f:60:33:29:df:e3:58:93:6a:3c:d8: f8:18:dd:8d:48:78:17:1b:4c:7f:09:51:a5:4b:18: 0e:0f:5a:ae:0e:bd:15:4c:31:66:fd:53:fc:53:09: 6f:51:85:ba:6f:f0:48:d9:58:cc:7d:80:2c:28:f6: d1:03:90:c2:b5:a1:cd:a5:f0:11:8c:13:2e:0b:24: df:f9:d3:43:06:1d:ee:5a:3a:6f:e7:cb:34:99:14: 4c:1b:a7:d8:c2:fc:cb:2a:08:65:e9:09:cc:b5:78: 4c:f1:e3:23:97:13:ff:93:c0:ee:4a:52:96:47:3d: d4:68:0c:7a:24:3f:eb:03:ce:99:0d:ed:74:86:36: b4:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:05:9B:7B:AA:49:3A:39:DF:17:D7:F4:AB:30:93:B9:BA:EE:A5:80 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a80e1a1c-1ea0-4528-ac96-20c192fcc87a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.240.0/24 Signature Algorithm: sha256WithRSAEncryption 22:4e:f1:01:dd:60:bb:77:34:b7:31:c5:9d:17:fd:19:83:88: 76:f1:ac:f8:a9:eb:b9:2c:36:77:e1:a4:ec:35:ec:35:8b:9e: 60:32:b5:36:24:d8:86:52:ac:c7:c5:79:18:2d:d9:00:2f:e9: fe:7a:8d:65:f8:b8:35:8c:91:18:3d:06:cb:56:76:09:07:36: 47:e8:6d:34:ce:3c:6d:a5:71:c3:8a:a9:50:52:e7:6c:ed:89: 54:8d:71:e5:05:ff:12:4e:ce:fc:e2:98:42:b5:75:2f:2b:e9: bf:8e:69:aa:3e:9f:4c:15:b3:9d:1a:47:2d:3e:1e:3e:91:ce: 35:89:cb:d8:61:0c:4b:c6:ce:b4:8b:18:ac:b4:17:b8:6b:80: 81:1f:15:e4:d9:8f:75:92:54:18:d0:c6:dc:1e:f8:82:99:61: b2:2b:0b:78:07:69:95:25:32:07:ed:31:6a:b9:67:b5:85:a0: ae:ce:5f:6a:0b:78:81:f4:91:c5:9d:6e:38:4d:1b:76:d2:04: ed:09:26:33:7d:ab:5d:72:84:9b:69:46:eb:05:50:1d:33:4f: 79:e6:42:eb:10:86:c1:51:f7:c8:bf:c7:50:57:a6:f5:ba:bd: e7:60:fa:4b:3b:1b:95:00:65:ba:52:c4:93:4a:a4:75:aa:06: 23:bb:b5:73 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEGDsiSd/a9IB4UmzUS8zJFL2X7EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTEwMDA1MDMwWhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjc2YjA4MDhiOTEzZDI4MmU2N2E2MDFkOTE4YzJlYTU4 Mjk0YmY3N2EyYTRjOGNkYjI2NzM2NzUxMzJkMmIwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCqj+HaZXhxUDkvG3eVQM9Eym7c1dhDqngfSJt1OJVDtsl Rdu5LcPklSg2vAC+lodqFwp0ASmLkjfyHziDpzu9ToggM/zL3JIWLEx2LNZv1auF UzblUWeZBqJICwr/jLWpGifpZrP9g4+wrc2vZKL+UR9YmP+DmxcoPyFPYDMp3+NY k2o82PgY3Y1IeBcbTH8JUaVLGA4PWq4OvRVMMWb9U/xTCW9Rhbpv8EjZWMx9gCwo 9tEDkMK1oc2l8BGMEy4LJN/500MGHe5aOm/nyzSZFEwbp9jC/MsqCGXpCcy1eEzx 4yOXE/+TwO5KUpZHPdRoDHokP+sDzpkN7XSGNrS9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUngWbe6pJOjnfF9f0qzCTubrupYAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2E4MGUxYTFjLTFlYTAtNDUyOC1hYzk2LTIwYzE5MmZjYzg3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPAwDQYJKoZIhvcNAQELBQADggEBACJO8QHdYLt3NLcxxZ0X/RmDiHbx rPip67ksNnfhpOw17DWLnmAytTYk2IZSrMfFeRgt2QAv6f56jWX4uDWMkRg9BstW dgkHNkfobTTOPG2lccOKqVBS52ztiVSNceUF/xJOzvzimEK1dS8r6b+Oaao+n0wV s50aRy0+Hj6RzjWJy9hhDEvGzrSLGKy0F7hrgIEfFeTZj3WSVBjQxtwe+IKZYbIr C3gHaZUlMgftMWq5Z7WFoK7OX2oLeIH0kcWdbjhNG3bSBO0JJjN9q11yhJtpRusF UB0zT3nmQusQhsFR98i/x1BXpvW6vedg+ks7G5UAZbpSxJNKpHWqBiO7tXM= -----END CERTIFICATE-----Generated at Mon May 12 06:42:14 2025 by rpki-client