$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d4c4477c-38ab-4e3a-a8ed-6942eb4ea062.roa File: d4c4477c-38ab-4e3a-a8ed-6942eb4ea062.roa (raw, json) Hash identifier: JcZaULFeAGpEECzH5tGrhgkNpkpTX25Al+dnW0Xe8MY= Subject key identifier: C5:C2:D8:07:E7:44:64:63:B7:23:E5:70:7F:17:B4:60:57:1B:65:53 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7364823381210EF73AEBEE950F1176FC53711A7B Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d4c4477c-38ab-4e3a-a8ed-6942eb4ea062.roa Signing time: Wed 18 Jun 2025 00:30:14 +0000 ROA not before: Wed 18 Jun 2025 00:30:14 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:64:82:33:81:21:0e:f7:3a:eb:ee:95:0f:11:76:fc:53:71:1a:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 18 00:30:14 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=ccfa5c1e210c2c5d9db927b20393bc2df4d9913fb888786707c236833775cd91, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1c:83:23:b0:b1:a5:56:2a:70:79:17:8f:73: d2:70:ae:af:33:78:91:ea:25:b7:75:70:db:f4:a2: e0:fe:c3:7d:8e:3c:0c:9a:bb:60:66:90:65:27:1e: af:59:88:e2:aa:8a:f1:8c:23:56:6b:bb:36:87:f2: b6:12:ab:74:db:d8:f0:d1:67:be:10:c9:cb:1d:fd: c5:d2:34:05:f5:ce:94:0f:0c:8b:4b:97:f4:59:a1: 78:e7:3f:7f:74:29:57:0f:3f:27:5d:e7:c3:83:e6: 26:be:62:9f:07:dc:f5:c6:4f:cf:eb:47:85:bb:32: 59:78:3b:00:20:df:93:e7:22:be:c7:f8:16:22:71: 50:85:06:ca:79:56:2a:ac:96:9f:13:7d:ee:3b:2b: 17:62:9f:8a:c0:7e:aa:3c:4e:90:7d:83:e4:51:89: 33:6e:95:38:5b:7a:7b:cb:c3:96:16:92:6d:29:a1: 8b:63:f9:aa:31:f8:55:ba:5f:89:e4:14:90:42:05: 02:17:d6:69:5c:c7:43:50:21:fb:ca:36:a0:17:6d: cb:9e:b3:44:a6:97:ba:f4:12:a1:fe:a4:44:3c:f5: c6:4a:50:d5:42:41:a4:c8:ca:67:0e:51:e2:eb:87: 41:f7:e8:24:5b:48:f7:92:51:8c:44:f9:6c:f9:23: b8:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C2:D8:07:E7:44:64:63:B7:23:E5:70:7F:17:B4:60:57:1B:65:53 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d4c4477c-38ab-4e3a-a8ed-6942eb4ea062.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.18.0/23 Signature Algorithm: sha256WithRSAEncryption 82:32:ca:66:3b:2d:35:20:62:dc:a8:a8:dc:f8:25:47:da:c9: 4b:ed:1d:df:31:3a:a8:e5:a7:49:60:5f:70:de:0a:e9:d0:50: ee:f2:29:33:1a:e6:d8:5a:e2:d4:d1:d8:d5:99:64:13:26:3d: 42:09:5d:1a:7b:82:a1:03:92:26:7c:53:a4:4b:cc:4d:2b:06: 7e:96:0c:54:58:6e:5b:22:03:8e:61:b7:d5:b7:4c:2d:7d:65: a4:ef:58:ec:ae:fe:75:73:52:75:8a:40:98:6b:1a:ae:60:a0: 70:eb:16:5a:c6:aa:cf:45:a7:9b:59:8a:50:15:ae:a6:d8:40: ed:fd:e6:64:de:95:48:2d:f4:8a:c1:13:d0:37:4f:ab:ff:d6: 4e:2d:5c:8c:2f:6e:a7:15:ee:98:bf:dc:46:4a:e0:97:03:6f: fa:12:fa:f3:77:78:47:c4:8c:47:33:9c:57:99:0a:d9:3f:6a: 30:05:12:d4:44:60:ea:ae:10:91:f2:f9:5f:e3:d7:f9:43:60: 55:55:a3:c5:63:79:7e:43:f7:98:f7:a8:87:e4:62:39:98:20: 43:2f:f8:14:e9:dc:bc:e5:6c:6f:22:e2:b4:97:53:45:81:2d: 23:07:ac:67:0b:0a:83:8d:eb:aa:6d:0c:3b:4c:da:eb:9c:f7: fc:df:22:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc2SCM4EhDvc66+6VDxF2/FNxGnswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjE4MDAzMDE0WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjY2ZhNWMxZTIxMGMyYzVkOWRiOTI3YjIwMzkzYmMyZGY0 ZDk5MTNmYjg4ODc4NjcwN2MyMzY4MzM3NzVjZDkxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCHIMjsLGlVipweRePc9Jwrq8zeJHqJbd1cNv0ouD+w32O PAyau2BmkGUnHq9ZiOKqivGMI1ZruzaH8rYSq3Tb2PDRZ74Qycsd/cXSNAX1zpQP DItLl/RZoXjnP390KVcPPydd58OD5ia+Yp8H3PXGT8/rR4W7Mll4OwAg35PnIr7H +BYicVCFBsp5Viqslp8Tfe47Kxdin4rAfqo8TpB9g+RRiTNulThbenvLw5YWkm0p oYtj+aox+FW6X4nkFJBCBQIX1mlcx0NQIfvKNqAXbcues0Sml7r0EqH+pEQ89cZK UNVCQaTIymcOUeLrh0H36CRbSPeSUYxE+Wz5I7jlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxcLYB+dEZGO3I+Vwfxe0YFcbZVMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2Q0YzQ0NzdjLTM4YWItNGUzYS1hOGVkLTY5NDJlYjRlYTA2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBIwDQYJKoZIhvcNAQELBQADggEBAIIyymY7LTUgYtyoqNz4JUfayUvt Hd8xOqjlp0lgX3DeCunQUO7yKTMa5tha4tTR2NWZZBMmPUIJXRp7gqEDkiZ8U6RL zE0rBn6WDFRYblsiA45ht9W3TC19ZaTvWOyu/nVzUnWKQJhrGq5goHDrFlrGqs9F p5tZilAVrqbYQO395mTelUgt9IrBE9A3T6v/1k4tXIwvbqcV7pi/3EZK4JcDb/oS +vN3eEfEjEcznFeZCtk/ajAFEtREYOquEJHy+V/j1/lDYFVVo8VjeX5D95j3qIfk YjmYIEMv+BTp3LzlbG8i4rSXU0WBLSMHrGcLCoON66ptDDtM2uuc9/zfIrE= -----END CERTIFICATE-----Generated at Mon Jun 30 17:16:09 2025 by rpki-client