$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa File: c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa (raw, json) Hash identifier: HJY/zE/PLwq4Ch18fPqdB/v+mtddzkJSECX32Exe6mw= Subject key identifier: A8:A6:28:98:75:65:F4:CB:42:4F:77:FA:51:77:1D:30:BC:78:65:97 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 342CEB2257C1922A3F899E033E23D2A8252C41D6 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa Signing time: Mon 16 Jun 2025 20:22:17 +0000 ROA not before: Mon 16 Jun 2025 20:22:17 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:2c:eb:22:57:c1:92:2a:3f:89:9e:03:3e:23:d2:a8:25:2c:41:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 16 20:22:17 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=167c1c26f62e4d676d9b72dd5117c0224e1362b10c9bbe93c2a4a46e2fa11479, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:0a:f6:34:0d:47:5f:91:37:2a:0f:3b:7e:1e: 3c:ae:06:24:9d:45:7b:07:6a:37:d8:ce:66:5f:98: 8b:d6:05:b2:47:40:26:76:68:86:c5:85:26:8f:a5: a7:1c:5a:c3:31:8b:d9:e7:01:31:a6:36:5f:95:95: ec:26:61:67:45:4e:e4:db:05:a4:49:9c:b9:7f:45: d4:bf:91:ff:c7:87:d5:93:d0:52:a9:cc:af:15:aa: bb:1a:47:17:1c:cd:25:3a:14:24:4f:fc:94:1f:6f: 16:2c:35:9a:96:fc:42:45:4c:3a:4d:62:4a:de:5d: 9a:eb:b9:66:ff:c8:02:a4:43:f2:a7:cb:a4:0e:22: 71:a4:d5:9e:6b:cc:a1:ea:9d:de:73:b2:d3:c2:dd: b8:57:0c:5a:32:9e:f6:49:39:30:aa:12:2a:59:9c: f7:5d:70:2f:d5:f9:c3:53:74:3b:03:77:d5:70:51: 77:1a:0c:68:fa:e1:2d:35:8a:ae:c3:26:a5:b2:20: 39:17:3b:92:a7:bf:f5:d9:e3:9c:aa:a9:ff:01:fd: 92:b0:e8:78:ae:86:55:01:19:92:9d:5a:b3:97:62: 81:95:c5:2c:04:5d:fc:89:ac:15:2f:c4:bf:ee:ac: 8f:29:77:6b:e3:d6:ce:43:32:c9:23:ba:65:f6:07: 1d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:A6:28:98:75:65:F4:CB:42:4F:77:FA:51:77:1D:30:BC:78:65:97 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/c221708b-2fb3-40d7-9d91-a273c57bb3c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.43.0/24 Signature Algorithm: sha256WithRSAEncryption 88:34:0b:f0:df:79:48:cc:2e:80:03:41:36:b6:dc:29:1a:94: 75:67:70:15:02:20:0d:8f:d5:04:09:de:69:b0:eb:5c:35:5c: 77:fd:fb:f8:95:65:71:2c:05:d3:6c:51:aa:20:b4:01:62:2f: 04:2f:40:ce:ad:5a:3b:3f:cc:81:9d:d1:57:bb:25:21:59:65: 1a:d5:f7:51:3d:40:20:f2:92:c5:76:fc:66:fb:2b:c6:ab:0c: 35:57:6c:fd:03:7b:18:8f:f9:1a:d7:63:57:b2:56:77:a4:d6: b6:fe:77:7c:fb:25:3b:0b:a0:3f:14:03:7c:46:f9:fc:73:84: f5:77:45:31:5d:72:3b:0a:4e:0a:7f:a3:47:d3:b4:d7:e9:2b: 9b:20:79:a1:fe:a8:b9:03:33:ab:78:b1:1d:4c:b7:c4:79:01: 8d:bc:07:6c:4e:02:f8:d3:3c:8a:02:5b:4a:4c:be:4e:55:42: 18:57:2c:42:89:e6:8f:fc:67:39:82:0e:1e:9c:9a:69:c5:c9: 29:58:bf:35:29:33:6a:fa:07:51:bd:44:95:16:b8:b7:7d:e2: c7:22:4e:d6:b1:2c:2f:bc:6c:bf:94:7f:bb:84:69:d9:64:dc: 83:5d:39:f1:a9:e8:65:14:4b:c7:4a:00:be:31:25:39:2b:8d: 43:a1:fa:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNCzrIlfBkio/iZ4DPiPSqCUsQdYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjE2MjAyMjE3WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjdjMWMyNmY2MmU0ZDY3NmQ5YjcyZGQ1MTE3YzAyMjRl MTM2MmIxMGM5YmJlOTNjMmE0YTQ2ZTJmYTExNDc5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDvCvY0DUdfkTcqDzt+HjyuBiSdRXsHajfYzmZfmIvWBbJH QCZ2aIbFhSaPpaccWsMxi9nnATGmNl+VlewmYWdFTuTbBaRJnLl/RdS/kf/Hh9WT 0FKpzK8VqrsaRxcczSU6FCRP/JQfbxYsNZqW/EJFTDpNYkreXZrruWb/yAKkQ/Kn y6QOInGk1Z5rzKHqnd5zstPC3bhXDFoynvZJOTCqEipZnPddcC/V+cNTdDsDd9Vw UXcaDGj64S01iq7DJqWyIDkXO5Knv/XZ45yqqf8B/ZKw6HiuhlUBGZKdWrOXYoGV xSwEXfyJrBUvxL/urI8pd2vj1s5DMskjumX2Bx2rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqKYomHVl9MtCT3f6UXcdMLx4ZZcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2MyMjE3MDhiLTJmYjMtNDBkNy05ZDkxLWEyNzNjNTdiYjNjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCswDQYJKoZIhvcNAQELBQADggEBAIg0C/DfeUjMLoADQTa23CkalHVn cBUCIA2P1QQJ3mmw61w1XHf9+/iVZXEsBdNsUaogtAFiLwQvQM6tWjs/zIGd0Ve7 JSFZZRrV91E9QCDyksV2/Gb7K8arDDVXbP0DexiP+RrXY1eyVnek1rb+d3z7JTsL oD8UA3xG+fxzhPV3RTFdcjsKTgp/o0fTtNfpK5sgeaH+qLkDM6t4sR1Mt8R5AY28 B2xOAvjTPIoCW0pMvk5VQhhXLEKJ5o/8ZzmCDh6cmmnFySlYvzUpM2r6B1G9RJUW uLd94sciTtaxLC+8bL+Uf7uEadlk3INdOfGp6GUUS8dKAL4xJTkrjUOh+hU= -----END CERTIFICATE-----Generated at Fri Jul 4 17:43:10 2025 by rpki-client