$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b063da57-37b1-4f36-91b0-613247453bd5.roa File: b063da57-37b1-4f36-91b0-613247453bd5.roa (raw, json) Hash identifier: VXiPbK8UHFQ2/QvHPe2UK3RO65hJan+uy69C0R1sRiM= Subject key identifier: 48:A6:B2:7D:66:17:90:F7:F4:AA:AF:8A:76:77:BB:B6:C5:21:F3:3E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6993F90472803059037837DFC754BB73E256D3C6 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b063da57-37b1-4f36-91b0-613247453bd5.roa Signing time: Tue 06 May 2025 01:07:26 +0000 ROA not before: Tue 06 May 2025 01:07:26 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:93:f9:04:72:80:30:59:03:78:37:df:c7:54:bb:73:e2:56:d3:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 6 01:07:26 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=ad392096612a93ee9bfb127da8de14656672a66491a7ca3b54a9a757e2c0c5cc, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a1:ab:a4:5f:ea:02:3c:64:5f:5a:12:68:1d: 2e:7f:d6:31:59:4e:f1:c3:1b:4e:9d:fe:77:ea:1b: cb:78:b5:97:8f:db:04:89:3b:27:62:8d:5b:c9:2c: 2c:44:a9:c3:64:56:15:20:49:2e:45:6c:81:5a:52: bc:29:ae:2d:25:63:db:c9:73:8c:55:1a:91:18:e0: 1e:77:91:3d:bd:90:34:5e:9f:83:d0:ce:0d:fe:69: c9:77:87:e0:11:de:33:0f:19:ed:a9:17:89:34:a1: 42:7b:c5:99:ae:33:49:3f:1c:49:9e:4e:fa:68:10: 82:1e:74:56:6d:76:61:74:a8:16:77:54:c5:62:be: c0:0d:3a:03:52:2f:51:39:83:45:0b:fe:48:b6:1a: 7a:f9:7d:9d:b6:c9:63:1b:67:3a:54:1d:36:79:8e: 6b:99:c4:1b:79:1a:e9:49:27:01:a9:8a:9a:49:a0: 87:d9:71:2f:8e:0c:a5:22:c6:1a:00:a4:9e:16:7c: d7:65:6b:c9:23:52:94:d1:35:5e:b9:7c:d8:fc:65: 74:85:72:8a:ae:74:a7:c3:6c:0f:a1:23:67:4c:8d: 79:f0:22:9e:75:db:13:91:84:34:e0:ab:30:a1:e5: 37:f5:bc:77:73:59:f0:3a:31:0d:84:3c:65:55:3a: a9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:A6:B2:7D:66:17:90:F7:F4:AA:AF:8A:76:77:BB:B6:C5:21:F3:3E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b063da57-37b1-4f36-91b0-613247453bd5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.26.0/23 Signature Algorithm: sha256WithRSAEncryption 10:93:8c:5b:28:c4:98:da:a9:58:f3:bf:b0:2b:f5:8a:84:f1: e4:88:9a:95:ab:b5:d4:08:d0:08:f2:72:d9:46:e5:41:66:1e: 8f:b8:98:d8:2b:ac:01:85:89:a8:84:81:27:84:b4:fe:e8:f6: 7f:4a:ac:73:81:db:3b:60:10:01:50:57:98:fe:d6:b9:c0:12: ca:87:ae:3f:fa:2d:de:f1:a2:b1:db:2c:6a:18:a7:af:8c:1b: a1:56:cf:bd:1c:3e:32:22:3c:8e:a6:f8:c8:31:db:eb:17:44: 1b:80:e6:20:dc:40:aa:df:dd:b0:28:09:d4:e9:20:1e:2a:42: 6f:54:83:18:67:0f:1b:e1:39:6c:4c:52:49:93:03:f0:33:73: 20:a2:7a:50:89:ca:c6:96:df:3d:bf:6d:ef:14:a4:df:6d:76: 9f:c1:31:f0:66:43:1e:d7:3b:20:1c:f3:73:5a:44:73:5f:32: 3d:80:78:7e:c7:3e:ab:4b:15:b2:cf:ad:f1:d6:4d:92:c7:de: 0f:bd:70:11:1f:8c:e5:c1:54:c6:4e:df:12:24:cb:e8:9f:e9: 8f:a8:97:6b:42:3f:30:ad:36:37:cf:1d:d2:fa:0b:70:d0:c9: 58:bb:46:2b:a2:e1:49:7b:2c:c9:23:c1:c3:cf:1a:ea:ab:35: bc:f4:28:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaZP5BHKAMFkDeDffx1S7c+JW08YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTA2MDEwNzI2WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZDM5MjA5NjYxMmE5M2VlOWJmYjEyN2RhOGRlMTQ2NTY2 NzJhNjY0OTFhN2NhM2I1NGE5YTc1N2UyYzBjNWNjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCroaukX+oCPGRfWhJoHS5/1jFZTvHDG06d/nfqG8t4tZeP 2wSJOydijVvJLCxEqcNkVhUgSS5FbIFaUrwpri0lY9vJc4xVGpEY4B53kT29kDRe n4PQzg3+acl3h+AR3jMPGe2pF4k0oUJ7xZmuM0k/HEmeTvpoEIIedFZtdmF0qBZ3 VMVivsANOgNSL1E5g0UL/ki2Gnr5fZ22yWMbZzpUHTZ5jmuZxBt5GulJJwGpippJ oIfZcS+ODKUixhoApJ4WfNdla8kjUpTRNV65fNj8ZXSFcoqudKfDbA+hI2dMjXnw Ip512xORhDTgqzCh5Tf1vHdzWfA6MQ2EPGVVOqm5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSKayfWYXkPf0qq+Kdne7tsUh8z4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2IwNjNkYTU3LTM3YjEtNGYzNi05MWIwLTYxMzI0NzQ1M2JkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBowDQYJKoZIhvcNAQELBQADggEBABCTjFsoxJjaqVjzv7Ar9YqE8eSI mpWrtdQI0AjyctlG5UFmHo+4mNgrrAGFiaiEgSeEtP7o9n9KrHOB2ztgEAFQV5j+ 1rnAEsqHrj/6Ld7xorHbLGoYp6+MG6FWz70cPjIiPI6m+Mgx2+sXRBuA5iDcQKrf 3bAoCdTpIB4qQm9UgxhnDxvhOWxMUkmTA/AzcyCielCJysaW3z2/be8UpN9tdp/B MfBmQx7XOyAc83NaRHNfMj2AeH7HPqtLFbLPrfHWTZLH3g+9cBEfjOXBVMZO3xIk y+if6Y+ol2tCPzCtNjfPHdL6C3DQyVi7Riui4Ul7LMkjwcPPGuqrNbz0KHo= -----END CERTIFICATE-----Generated at Tue May 13 11:32:29 2025 by rpki-client