$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/caa7d407-5b15-4761-9d49-f36ba2078f3c.roa File: caa7d407-5b15-4761-9d49-f36ba2078f3c.roa (raw, json) Hash identifier: C/5w8ULtpOZQFX185q9cjGs2Lja10s15Iz6FpanU3jU= Subject key identifier: 6C:FC:87:A7:5F:84:01:39:4A:47:CF:BC:90:26:C4:AA:D3:4F:87:7E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 253390198557512D136F63279FB1B3C13F117DA5 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/caa7d407-5b15-4761-9d49-f36ba2078f3c.roa Signing time: Tue 06 May 2025 01:07:19 +0000 ROA not before: Tue 06 May 2025 01:07:19 +0000 ROA not after: Tue 10 Jun 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:33:90:19:85:57:51:2d:13:6f:63:27:9f:b1:b3:c1:3f:11:7d:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 6 01:07:19 2025 GMT Not After : Jun 10 23:59:59 2025 GMT Subject: serialNumber=290a2d970baca1ccb146da67a6151688c3a773429f9f9ec44c11c31f1ebd3913, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2d:a3:60:c8:16:38:00:50:29:96:fa:ca:89: a7:7b:6d:5a:24:c6:9c:00:d6:82:b1:37:95:cc:2d: 7a:5f:ed:fe:75:e3:1c:8f:6a:dc:22:37:96:1b:0c: 3f:b8:2d:4e:ce:5d:c6:c0:f2:f6:55:31:1e:3f:32: 9e:dd:00:59:8a:ee:43:95:9a:c5:e0:0e:52:ab:df: 63:a4:a5:df:ec:fe:e7:17:fa:31:1a:e1:ff:7c:3c: 29:37:46:0e:e5:db:1f:87:b9:b3:0b:7c:7c:65:ce: 84:cf:a5:84:3a:b7:d7:db:8d:eb:c6:6b:4b:88:15: 76:25:48:80:03:86:92:f4:51:60:50:24:e5:cf:0e: 24:f4:06:77:cb:66:3c:2c:9a:c8:1b:85:bd:24:8e: 43:f8:6a:2d:62:50:ee:a7:ad:13:1e:a1:f8:64:20: 89:46:b0:2a:18:c4:14:a8:ef:4c:bf:49:e7:4f:17: 0a:d6:47:e0:91:e4:84:78:f5:cb:38:39:f1:86:af: 92:2a:39:88:8e:fb:62:ef:84:90:6e:17:7d:ed:62: e3:62:e4:1e:97:cb:3c:f3:57:db:6e:38:89:ad:81: 30:19:17:47:8e:c3:c2:73:bc:f4:ec:6c:ab:bf:eb: b8:ba:db:63:40:77:29:8e:0f:e2:54:4f:e6:02:73: 44:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:FC:87:A7:5F:84:01:39:4A:47:CF:BC:90:26:C4:AA:D3:4F:87:7E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/caa7d407-5b15-4761-9d49-f36ba2078f3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.18.0/23 Signature Algorithm: sha256WithRSAEncryption 10:dc:9a:ee:08:d1:5b:68:21:37:36:f0:f9:eb:f1:50:d9:4c: 10:eb:b7:ba:7b:2a:30:4b:8d:74:84:e0:f7:50:3e:dd:75:46: 58:51:60:98:3b:1f:63:c7:52:67:56:10:e8:17:a4:5f:4c:14: 36:93:2c:1b:f7:82:93:11:ed:ff:39:2a:74:b2:9c:19:51:be: 93:d9:16:95:a4:24:5c:48:e1:d5:cf:fc:f0:4d:45:3b:2f:aa: 9f:87:32:b4:6e:94:df:16:c6:b7:ae:8e:58:04:b6:1d:bb:31: d7:34:56:33:1d:c6:4b:e6:00:7d:b9:88:39:a2:cb:46:f3:69: 81:4a:82:9c:b5:1f:43:22:c2:86:0a:fd:17:29:cc:5e:3b:a3: bc:c2:d8:b7:06:32:1b:3d:90:a4:19:35:18:db:dd:6a:b9:b2: 88:03:f6:72:cb:95:50:25:41:87:5b:21:2d:a6:1f:1a:0c:c3: e9:b3:65:4a:08:09:33:2d:5a:70:cd:24:ce:99:1b:dd:52:91: e5:f7:ce:64:28:b1:2b:0b:7b:67:3a:9d:50:33:c6:f1:42:2c: 59:c8:b0:f7:4b:eb:81:64:e9:5b:f5:a2:54:70:f3:f1:8c:da: 85:90:61:df:4c:d2:01:20:3b:cd:8f:ba:59:cf:9f:77:64:e4: 73:b8:6f:8d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJTOQGYVXUS0Tb2Mnn7GzwT8RfaUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTA2MDEwNzE5WhcNMjUwNjEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTBhMmQ5NzBiYWNhMWNjYjE0NmRhNjdhNjE1MTY4OGMz YTc3MzQyOWY5ZjllYzQ0YzExYzMxZjFlYmQzOTEzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLLaNgyBY4AFAplvrKiad7bVokxpwA1oKxN5XMLXpf7f51 4xyPatwiN5YbDD+4LU7OXcbA8vZVMR4/Mp7dAFmK7kOVmsXgDlKr32Okpd/s/ucX +jEa4f98PCk3Rg7l2x+HubMLfHxlzoTPpYQ6t9fbjevGa0uIFXYlSIADhpL0UWBQ JOXPDiT0BnfLZjwsmsgbhb0kjkP4ai1iUO6nrRMeofhkIIlGsCoYxBSo70y/SedP FwrWR+CR5IR49cs4OfGGr5IqOYiO+2LvhJBuF33tYuNi5B6XyzzzV9tuOImtgTAZ F0eOw8JzvPTsbKu/67i622NAdymOD+JUT+YCc0SDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbPyHp1+EATlKR8+8kCbEqtNPh34wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2NhYTdkNDA3LTViMTUtNDc2MS05ZDQ5LWYzNmJhMjA3OGYzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBIwDQYJKoZIhvcNAQELBQADggEBABDcmu4I0VtoITc28Pnr8VDZTBDr t7p7KjBLjXSE4PdQPt11RlhRYJg7H2PHUmdWEOgXpF9MFDaTLBv3gpMR7f85KnSy nBlRvpPZFpWkJFxI4dXP/PBNRTsvqp+HMrRulN8WxreujlgEth27Mdc0VjMdxkvm AH25iDmiy0bzaYFKgpy1H0MiwoYK/RcpzF47o7zC2LcGMhs9kKQZNRjb3Wq5sogD 9nLLlVAlQYdbIS2mHxoMw+mzZUoICTMtWnDNJM6ZG91SkeX3zmQosSsLe2c6nVAz xvFCLFnIsPdL64Fk6Vv1olRw8/GM2oWQYd9M0gEgO82PulnPn3dk5HO4b40= -----END CERTIFICATE-----Generated at Mon May 12 01:31:06 2025 by rpki-client