$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bfd96660-29cf-4054-a14e-cd48975d08b4.roa File: bfd96660-29cf-4054-a14e-cd48975d08b4.roa (raw, json) Hash identifier: KLGRXmWtG5NbF8/+nGfqbBtG5AKFBsjlxiGSSCxMZ6U= Subject key identifier: C2:CE:01:E4:D9:E0:BE:B2:8E:17:3A:5F:B1:C5:DA:3F:42:6A:6F:02 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 13A82BCE9706026F4DCB39D3D5E39F3AB11217D3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bfd96660-29cf-4054-a14e-cd48975d08b4.roa Signing time: Wed 25 Jun 2025 00:40:15 +0000 ROA not before: Wed 25 Jun 2025 00:40:15 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:a8:2b:ce:97:06:02:6f:4d:cb:39:d3:d5:e3:9f:3a:b1:12:17:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 25 00:40:15 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=b6a722dc24b5027130b0c04712e95172cc45533d692447197b112ea279645f31, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bc:ec:f5:90:d9:5f:9c:4c:ab:ac:0a:3c:66: 81:e9:71:3c:81:43:22:5e:be:1e:ec:15:b6:ab:b1: 60:d1:cf:16:25:58:07:5d:32:b1:71:46:d0:2f:3a: 98:5a:f8:c3:89:6d:80:93:de:fc:89:08:fe:a4:0e: 75:96:3f:91:36:51:f1:af:75:8e:02:be:c0:22:f5: 54:0b:a0:28:ea:26:c3:03:e1:9c:a8:14:aa:39:15: f3:93:54:4f:bc:01:b7:4f:6e:a0:cb:d8:5b:f2:6a: bd:8c:f0:19:49:4d:85:73:7f:cc:8b:ff:7e:5e:b7: 22:1a:7f:b2:7d:7d:3d:ae:f7:96:06:a9:10:73:95: c7:29:0f:91:1e:a2:8a:86:29:23:87:fe:a5:75:d0: 23:e3:93:e5:82:f2:5d:07:c0:ad:2d:b0:6f:de:62: b4:42:f7:5f:18:02:7c:88:ef:24:c1:04:16:78:a9: 30:ed:db:1c:5b:f3:81:42:b4:de:38:39:33:3c:18: b6:db:92:ba:a1:37:f7:dc:53:2f:a9:1b:6d:aa:e6: 87:cd:e6:b1:25:c8:01:3a:90:6a:dd:45:62:9f:db: 15:39:48:34:9d:e6:0d:f9:2e:63:6c:85:2c:60:76: 43:10:4b:55:4c:b9:12:1c:31:dd:27:01:e5:ad:0f: 08:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:CE:01:E4:D9:E0:BE:B2:8E:17:3A:5F:B1:C5:DA:3F:42:6A:6F:02 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bfd96660-29cf-4054-a14e-cd48975d08b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.24.0/23 Signature Algorithm: sha256WithRSAEncryption 17:3f:dd:6e:d0:32:7e:58:0b:66:ff:20:3c:e9:59:c5:11:b5: 16:41:7e:09:dc:1a:75:a3:ee:33:6b:3c:10:19:bc:5c:8c:21: 07:5d:66:d9:a2:d8:57:52:c9:d0:36:b4:0b:96:cf:f6:b7:45: dc:3c:81:bb:18:45:93:35:1d:0d:67:6c:7d:c9:0e:4d:40:b3: a2:37:3b:90:b8:6c:32:57:7d:b0:80:d9:38:84:48:16:58:62: cf:dc:2a:44:ad:51:c3:8e:fc:25:af:02:ae:9e:d9:60:1d:d7: 01:2a:e5:16:d7:cc:b4:31:77:da:b6:a3:b0:a6:43:12:18:5e: c4:23:bc:e0:ba:3a:57:be:83:9e:8c:40:c6:42:a5:b0:2f:28: 79:5d:29:d2:3a:7a:2f:23:48:f7:6e:18:7a:a6:69:75:09:15: f5:04:69:ca:e2:3e:ad:1b:79:c6:63:9a:c7:ea:d7:84:58:64: ab:cc:00:73:3f:54:e6:d0:a3:56:62:42:50:bb:7d:ad:47:bf: ba:8d:93:30:f5:50:ed:69:d8:74:b9:f2:25:a4:7f:1f:27:a7: e4:73:7f:14:28:ea:b6:39:20:14:0e:ba:57:ba:22:18:c6:5e: c0:7f:24:28:f2:88:7a:16:b4:3c:27:b2:9f:cd:c3:e8:e6:34: fe:8e:3e:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE6grzpcGAm9NyznT1eOfOrESF9MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI1MDA0MDE1WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNmE3MjJkYzI0YjUwMjcxMzBiMGMwNDcxMmU5NTE3MmNj NDU1MzNkNjkyNDQ3MTk3YjExMmVhMjc5NjQ1ZjMxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0vOz1kNlfnEyrrAo8ZoHpcTyBQyJevh7sFbarsWDRzxYl WAddMrFxRtAvOpha+MOJbYCT3vyJCP6kDnWWP5E2UfGvdY4CvsAi9VQLoCjqJsMD 4ZyoFKo5FfOTVE+8AbdPbqDL2Fvyar2M8BlJTYVzf8yL/35etyIaf7J9fT2u95YG qRBzlccpD5EeooqGKSOH/qV10CPjk+WC8l0HwK0tsG/eYrRC918YAnyI7yTBBBZ4 qTDt2xxb84FCtN44OTM8GLbbkrqhN/fcUy+pG22q5ofN5rElyAE6kGrdRWKf2xU5 SDSd5g35LmNshSxgdkMQS1VMuRIcMd0nAeWtDwj3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUws4B5NngvrKOFzpfscXaP0JqbwIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2JmZDk2NjYwLTI5Y2YtNDA1NC1hMTRlLWNkNDg5NzVkMDhiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBgwDQYJKoZIhvcNAQELBQADggEBABc/3W7QMn5YC2b/IDzpWcURtRZB fgncGnWj7jNrPBAZvFyMIQddZtmi2FdSydA2tAuWz/a3Rdw8gbsYRZM1HQ1nbH3J Dk1As6I3O5C4bDJXfbCA2TiESBZYYs/cKkStUcOO/CWvAq6e2WAd1wEq5RbXzLQx d9q2o7CmQxIYXsQjvOC6Ole+g56MQMZCpbAvKHldKdI6ei8jSPduGHqmaXUJFfUE acriPq0becZjmsfq14RYZKvMAHM/VObQo1ZiQlC7fa1Hv7qNkzD1UO1p2HS58iWk fx8np+RzfxQo6rY5IBQOule6IhjGXsB/JCjyiHoWtDwnsp/Nw+jmNP6OPtk= -----END CERTIFICATE-----Generated at Tue Jul 1 18:36:43 2025 by rpki-client