$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b063da57-37b1-4f36-91b0-613247453bd5.roa File: b063da57-37b1-4f36-91b0-613247453bd5.roa (raw, json) Hash identifier: oStw+83XgW3fWo83Y8WlrZ9VubKt3VDAHt3uKfoFxxA= Subject key identifier: DD:BD:71:53:C3:82:8E:B9:9B:32:E7:A2:1D:F3:D7:2D:B8:4C:D0:93 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6A9B6AAFF438D5FDC290D74BFB99B60400BADF85 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b063da57-37b1-4f36-91b0-613247453bd5.roa Signing time: Wed 25 Jun 2025 00:40:49 +0000 ROA not before: Wed 25 Jun 2025 00:40:49 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:9b:6a:af:f4:38:d5:fd:c2:90:d7:4b:fb:99:b6:04:00:ba:df:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 25 00:40:49 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=c3228532a7d99819e447ecf1c9d769149301356c925b323ec6df552f742e18c4, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:dd:d8:d4:23:6e:66:6c:b4:81:76:3b:58:81: e0:b6:08:bc:9f:40:16:52:6e:78:a3:68:47:80:d9: 33:28:9f:44:f7:7b:b2:a6:3d:ad:11:9c:72:12:76: 2d:8a:46:1f:03:f3:1c:5a:ba:fd:43:fb:fc:37:15: c0:c4:07:44:d8:23:3d:4a:31:1b:25:de:3e:bd:38: 25:c4:cb:98:4e:5e:6b:7a:b4:15:22:07:1d:57:f4: 69:5c:87:e3:df:c7:32:35:92:fb:35:83:e6:45:74: 5f:fc:e8:76:4d:64:21:d9:85:0b:e5:38:89:dc:a3: a2:f9:0e:46:4e:c8:3e:73:d6:9a:e1:ad:0e:2c:27: 90:4c:a2:5c:9b:79:e3:35:8d:ca:27:cc:fc:ed:98: a4:68:2b:19:ea:62:80:0c:2a:cf:6a:db:9d:27:e1: 99:7a:7e:3e:d9:c7:91:73:57:4e:de:fa:dd:9a:42: 03:8f:55:34:63:02:b4:de:5b:4d:96:53:d3:2b:ea: aa:ad:0f:1e:6c:3d:e8:ba:54:9a:fd:c2:bf:06:b3: 1c:76:d6:6e:16:ec:99:bb:64:5b:51:8d:3a:f2:5e: 45:85:8f:03:e2:a1:7b:4b:2e:48:cb:19:da:aa:2d: 1d:d0:a1:8d:f8:40:55:ca:e3:c0:00:a2:7a:21:03: 4f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:BD:71:53:C3:82:8E:B9:9B:32:E7:A2:1D:F3:D7:2D:B8:4C:D0:93 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/b063da57-37b1-4f36-91b0-613247453bd5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.26.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:7f:c0:5e:70:78:40:e2:9f:cd:5c:ed:a7:51:79:11:5d:70: ec:4b:b1:34:b9:99:e9:e3:54:33:9f:ff:f1:0d:9d:2f:27:fb: ec:cd:f7:10:ee:d4:7f:61:ec:6f:15:16:02:d2:98:ba:74:f8: 27:d1:a9:6e:a0:3d:66:88:89:0b:43:20:9d:2f:4e:67:2d:ec: 10:ee:13:04:c8:77:b4:33:83:eb:9f:d8:00:99:af:33:95:e9: 74:1d:c8:db:71:c1:86:b2:68:27:61:0a:61:ca:b4:e6:56:21: 54:ac:92:85:77:6b:65:b6:76:97:32:0a:36:3d:bc:3f:94:7a: c0:d9:55:25:5c:68:6e:7b:c1:25:f0:91:3c:8f:8f:11:ef:ff: b7:2d:21:1f:a6:2b:cb:1a:99:0a:e7:8e:f3:22:3f:d9:5a:a7: 93:ac:e0:cf:c8:8c:a8:00:be:22:62:d0:83:3d:8b:57:91:36: e8:8d:9d:db:98:92:1d:a2:9d:62:65:6d:34:44:4f:1c:c1:4e: e0:f3:c7:1a:1c:81:44:be:20:9d:45:c4:c7:20:24:e5:d7:b8: d2:58:11:c5:2c:b8:f8:1c:29:7a:70:dd:7e:0c:06:a3:44:13: 16:bc:f9:6e:a1:35:c4:52:c4:fa:55:19:22:5e:9d:37:41:49: 48:e7:55:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaptqr/Q41f3CkNdL+5m2BAC634UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI1MDA0MDQ5WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMzIyODUzMmE3ZDk5ODE5ZTQ0N2VjZjFjOWQ3NjkxNDkz MDEzNTZjOTI1YjMyM2VjNmRmNTUyZjc0MmUxOGM0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt3djUI25mbLSBdjtYgeC2CLyfQBZSbnijaEeA2TMon0T3 e7KmPa0RnHISdi2KRh8D8xxauv1D+/w3FcDEB0TYIz1KMRsl3j69OCXEy5hOXmt6 tBUiBx1X9Glch+PfxzI1kvs1g+ZFdF/86HZNZCHZhQvlOInco6L5DkZOyD5z1prh rQ4sJ5BMolybeeM1jconzPztmKRoKxnqYoAMKs9q250n4Zl6fj7Zx5FzV07e+t2a QgOPVTRjArTeW02WU9Mr6qqtDx5sPei6VJr9wr8Gsxx21m4W7Jm7ZFtRjTryXkWF jwPioXtLLkjLGdqqLR3QoY34QFXK48AAonohA0/TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3b1xU8OCjrmbMueiHfPXLbhM0JMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2IwNjNkYTU3LTM3YjEtNGYzNi05MWIwLTYxMzI0NzQ1M2JkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBowDQYJKoZIhvcNAQELBQADggEBAEx/wF5weEDin81c7adReRFdcOxL sTS5menjVDOf//ENnS8n++zN9xDu1H9h7G8VFgLSmLp0+CfRqW6gPWaIiQtDIJ0v Tmct7BDuEwTId7Qzg+uf2ACZrzOV6XQdyNtxwYayaCdhCmHKtOZWIVSskoV3a2W2 dpcyCjY9vD+UesDZVSVcaG57wSXwkTyPjxHv/7ctIR+mK8samQrnjvMiP9lap5Os 4M/IjKgAviJi0IM9i1eRNuiNnduYkh2inWJlbTRETxzBTuDzxxocgUS+IJ1FxMcg JOXXuNJYEcUsuPgcKXpw3X4MBqNEExa8+W6hNcRSxPpVGSJenTdBSUjnVXI= -----END CERTIFICATE-----Generated at Thu Jul 3 10:22:06 2025 by rpki-client