$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/caa7d407-5b15-4761-9d49-f36ba2078f3c.roa File: caa7d407-5b15-4761-9d49-f36ba2078f3c.roa (raw, json) Hash identifier: DL/ahlPh5LHqnDADMBWnpHgQsPVJ3+zrD+lrbD/3yd0= Subject key identifier: 9C:43:DD:4F:F4:35:D1:A3:7F:BA:38:DE:C7:81:F9:01:81:72:CB:F7 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3994D6CCD3D5F486889BA25832C1CC6ACFE25C98 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/caa7d407-5b15-4761-9d49-f36ba2078f3c.roa Signing time: Wed 18 Jun 2025 00:30:15 +0000 ROA not before: Wed 18 Jun 2025 00:30:15 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:94:d6:cc:d3:d5:f4:86:88:9b:a2:58:32:c1:cc:6a:cf:e2:5c:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 18 00:30:15 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=acae7f86a3e5bd23ea779eaff504da2fdd522171eccdc1b580dd5d65114d9839, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:11:02:08:6d:ad:7d:08:46:51:6c:0e:6c:18: 02:80:73:39:0e:7a:16:a9:c3:c1:50:e1:00:67:a7: 02:9d:10:e1:cb:af:3a:ae:19:b2:68:85:6f:30:1b: d1:fa:6a:cc:66:70:5f:7e:3e:d6:fd:1a:63:50:a2: 43:d9:c0:b3:e0:2e:af:00:06:5a:04:e9:96:b4:21: 3f:15:84:ff:7b:ff:4e:68:c1:d4:e7:67:e2:59:20: fc:a5:a1:8c:bb:ed:21:51:5f:0c:1d:da:3b:a5:98: 4c:ae:79:c0:dc:19:c6:34:b4:d5:50:69:16:dd:eb: f0:10:c8:09:00:9b:32:d5:7f:2b:2e:5e:92:95:b9: fd:01:58:64:d0:68:95:80:cf:90:35:5e:e2:9d:d0: 14:f5:8e:5d:69:29:8b:50:a1:60:76:7c:5b:9c:80: 1d:5f:b3:0c:eb:9e:18:1e:3f:97:90:71:2c:50:a2: 4c:c8:0f:47:a5:62:08:f3:11:11:e2:da:89:a3:b0: c2:a7:62:f4:40:b1:8d:8b:5d:c1:a8:da:80:0c:84: 43:4d:70:60:ac:93:c7:74:44:cb:5b:1c:5e:76:c6: 03:ee:d7:8f:e0:ca:42:66:ce:b7:01:66:b5:ef:a3: da:8a:fa:33:62:d3:1c:91:f7:3c:c1:7e:69:84:4a: 35:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:43:DD:4F:F4:35:D1:A3:7F:BA:38:DE:C7:81:F9:01:81:72:CB:F7 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/caa7d407-5b15-4761-9d49-f36ba2078f3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.18.0/23 Signature Algorithm: sha256WithRSAEncryption 32:79:ce:24:67:7a:a3:e0:7c:c7:cc:42:54:aa:18:c1:57:cd: e0:b6:ee:1c:18:8c:a8:e3:1d:58:84:11:01:c4:ee:9c:88:68: a8:9b:f5:36:c5:3f:10:d6:03:fe:e0:fa:09:14:fe:4e:07:ca: 6d:ec:53:62:d6:11:9f:1f:04:5a:d6:97:d3:7e:15:b3:b2:24: 2d:70:31:4f:5c:66:fa:e3:c5:6a:95:b3:94:e6:c9:9b:f5:05: ab:8c:9b:d4:1a:59:bb:f4:b6:2e:d2:73:36:4b:be:99:80:76: 61:6f:f2:39:cd:3c:ac:85:dc:d6:d6:5c:03:2e:2a:4c:de:ca: 3a:79:e9:e1:a0:04:3e:f9:39:39:6b:8e:d3:21:e3:ec:92:af: 01:35:2c:c2:5e:ff:3a:df:61:25:77:2d:b4:2e:81:04:27:d7: fc:4e:1b:5c:94:ce:8b:09:d2:c0:2b:33:37:96:7a:e3:59:84: 41:60:6e:17:3e:41:27:5d:d2:c0:c9:0d:ed:39:fd:1e:95:8b: 5c:81:bc:b6:ba:5c:57:51:b0:15:4e:be:fb:a1:90:79:6f:94: f7:e4:76:34:8f:f2:2b:36:0f:28:b7:7f:1c:4e:26:f6:f5:ec: 57:9a:36:41:e4:04:cb:41:51:f6:c8:85:2a:2e:f3:45:d7:21: cc:87:35:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOZTWzNPV9IaIm6JYMsHMas/iXJgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjE4MDAzMDE1WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhY2FlN2Y4NmEzZTViZDIzZWE3NzllYWZmNTA0ZGEyZmRk NTIyMTcxZWNjZGMxYjU4MGRkNWQ2NTExNGQ5ODM5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1EQIIba19CEZRbA5sGAKAczkOehapw8FQ4QBnpwKdEOHL rzquGbJohW8wG9H6asxmcF9+Ptb9GmNQokPZwLPgLq8ABloE6Za0IT8VhP97/05o wdTnZ+JZIPyloYy77SFRXwwd2julmEyuecDcGcY0tNVQaRbd6/AQyAkAmzLVfysu XpKVuf0BWGTQaJWAz5A1XuKd0BT1jl1pKYtQoWB2fFucgB1fswzrnhgeP5eQcSxQ okzID0elYgjzERHi2omjsMKnYvRAsY2LXcGo2oAMhENNcGCsk8d0RMtbHF52xgPu 14/gykJmzrcBZrXvo9qK+jNi0xyR9zzBfmmESjX1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnEPdT/Q10aN/ujjex4H5AYFyy/cwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2NhYTdkNDA3LTViMTUtNDc2MS05ZDQ5LWYzNmJhMjA3OGYzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBIwDQYJKoZIhvcNAQELBQADggEBADJ5ziRneqPgfMfMQlSqGMFXzeC2 7hwYjKjjHViEEQHE7pyIaKib9TbFPxDWA/7g+gkU/k4Hym3sU2LWEZ8fBFrWl9N+ FbOyJC1wMU9cZvrjxWqVs5TmyZv1BauMm9QaWbv0ti7SczZLvpmAdmFv8jnNPKyF 3NbWXAMuKkzeyjp56eGgBD75OTlrjtMh4+ySrwE1LMJe/zrfYSV3LbQugQQn1/xO G1yUzosJ0sArMzeWeuNZhEFgbhc+QSdd0sDJDe05/R6Vi1yBvLa6XFdRsBVOvvuh kHlvlPfkdjSP8is2Dyi3fxxOJvb17FeaNkHkBMtBUfbIhSou80XXIcyHNXI= -----END CERTIFICATE-----Generated at Fri Jul 4 13:38:10 2025 by rpki-client