$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d6b05e37-7003-4a52-bdba-55defc5294de.roa File: d6b05e37-7003-4a52-bdba-55defc5294de.roa (raw, json) Hash identifier: I+YuIiJ9Xw6vqfMxTsAaQ3mkVqGNWDhRurchHFKN/F4= Subject key identifier: 9B:62:77:6A:18:8E:60:57:2A:72:2F:BB:9A:FE:05:AA:78:51:EC:53 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 293A9ACF9F78DBE91B5F114E7AD1D6DF100CE25F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d6b05e37-7003-4a52-bdba-55defc5294de.roa Signing time: Fri 09 May 2025 16:20:11 +0000 ROA not before: Fri 09 May 2025 16:20:11 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:3a:9a:cf:9f:78:db:e9:1b:5f:11:4e:7a:d1:d6:df:10:0c:e2:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 9 16:20:11 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=c7ff99c9c2ab422060098434fc4704d9539929f4d92956d1f6c29d83761106c3, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b2:4e:82:19:4f:ed:6f:0e:a9:c9:b8:c4:ec: 71:0e:b5:d3:13:c9:11:ce:e3:ef:e6:ed:42:7d:f3: 95:72:de:c7:c8:9b:f1:fc:e5:19:2d:50:83:5b:ad: 7a:9f:e2:d4:12:d3:2b:a2:b0:fc:40:82:1a:6f:24: 10:6c:fd:c7:bf:eb:cd:c9:8b:89:07:5a:f7:d6:f2: 7e:88:9e:a2:f0:95:12:9d:c2:5a:42:d0:aa:52:4b: c6:00:9b:34:0b:16:a8:a1:78:95:35:b3:ac:c4:c2: c2:b7:ce:a5:47:e5:1d:df:50:ab:74:7d:c0:0a:72: ce:a1:5d:a6:53:fa:cb:d6:7b:cd:7d:72:6b:1c:99: 55:69:47:fc:bc:1d:97:c0:45:33:33:74:16:d7:8b: 2f:e8:2f:d0:79:45:91:ae:05:21:5b:87:8e:03:4d: f6:be:78:8d:4b:8f:fc:02:5a:50:a2:a7:ca:6b:a4: c6:29:41:77:e1:da:30:02:ba:86:89:32:92:fe:23: 97:4e:ae:55:e5:39:df:eb:9c:eb:69:10:d2:26:1c: 20:91:6c:54:b8:2a:1c:32:bb:d3:d0:98:31:b0:96: a9:6c:7c:69:08:bc:2a:df:d2:ee:fe:d5:44:4d:29: 87:ac:18:0e:82:db:6d:9e:42:b1:67:01:ce:4f:ee: 0e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:62:77:6A:18:8E:60:57:2A:72:2F:BB:9A:FE:05:AA:78:51:EC:53 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d6b05e37-7003-4a52-bdba-55defc5294de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.249.0/24 Signature Algorithm: sha256WithRSAEncryption 44:df:12:a1:f5:a9:ea:81:e4:57:6b:de:de:c4:59:f6:15:c3: 25:46:f8:35:c6:80:2c:83:9f:69:34:d6:5e:c4:ad:ad:22:d4: 5b:25:1b:a2:45:fe:c6:92:77:fe:4c:5e:54:61:b7:6b:c9:a5: 8d:15:bb:9c:87:d5:a5:c9:91:5e:25:b9:d8:7a:59:e4:03:e1: 38:50:68:ff:aa:8c:c7:ec:4c:81:00:1b:11:5d:b0:40:7a:99: a2:1f:1a:42:14:05:a4:73:19:98:f8:c6:64:9b:aa:f0:42:40: 73:2b:aa:54:51:34:b4:8c:04:0c:a7:13:b4:ec:64:79:e3:00: 50:c2:54:01:5e:c1:8d:f0:51:86:f6:83:7b:ff:3f:01:8a:d7: eb:b5:6f:60:eb:a9:9a:d1:a1:09:fc:ab:ad:35:48:ed:cc:ef: e4:15:66:82:b3:82:82:8d:f0:d3:34:62:c6:85:52:dc:e1:91: d4:12:e0:85:81:31:93:c0:c0:44:2a:51:2d:ba:e0:df:ef:1e: b6:1f:c5:f6:3d:df:9c:5f:fa:1f:5d:3b:ca:2a:4b:c6:63:1d: d9:fb:4e:b9:cc:85:61:3e:6a:af:ac:31:94:11:5d:6d:46:6b: e1:20:b8:ab:02:2e:6a:50:b2:47:e9:55:04:d0:23:d7:2c:81: 09:4d:b0:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKTqaz5942+kbXxFOetHW3xAM4l8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTA5MTYyMDExWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2ZmOTljOWMyYWI0MjIwNjAwOTg0MzRmYzQ3MDRkOTUz OTkyOWY0ZDkyOTU2ZDFmNmMyOWQ4Mzc2MTEwNmMzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUsk6CGU/tbw6pybjE7HEOtdMTyRHO4+/m7UJ985Vy3sfI m/H85RktUINbrXqf4tQS0yuisPxAghpvJBBs/ce/683Ji4kHWvfW8n6InqLwlRKd wlpC0KpSS8YAmzQLFqiheJU1s6zEwsK3zqVH5R3fUKt0fcAKcs6hXaZT+svWe819 cmscmVVpR/y8HZfARTMzdBbXiy/oL9B5RZGuBSFbh44DTfa+eI1Lj/wCWlCip8pr pMYpQXfh2jACuoaJMpL+I5dOrlXlOd/rnOtpENImHCCRbFS4Khwyu9PQmDGwlqls fGkIvCrf0u7+1URNKYesGA6C222eQrFnAc5P7g63AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm2J3ahiOYFcqci+7mv4FqnhR7FMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2Q2YjA1ZTM3LTcwMDMtNGE1Mi1iZGJhLTU1ZGVmYzUyOTRkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPkwDQYJKoZIhvcNAQELBQADggEBAETfEqH1qeqB5Fdr3t7EWfYVwyVG +DXGgCyDn2k01l7Era0i1FslG6JF/saSd/5MXlRht2vJpY0Vu5yH1aXJkV4ludh6 WeQD4ThQaP+qjMfsTIEAGxFdsEB6maIfGkIUBaRzGZj4xmSbqvBCQHMrqlRRNLSM BAynE7TsZHnjAFDCVAFewY3wUYb2g3v/PwGK1+u1b2DrqZrRoQn8q601SO3M7+QV ZoKzgoKN8NM0YsaFUtzhkdQS4IWBMZPAwEQqUS264N/vHrYfxfY935xf+h9dO8oq S8ZjHdn7TrnMhWE+aq+sMZQRXW1Ga+EguKsCLmpQskfpVQTQI9csgQlNsKQ= -----END CERTIFICATE-----Generated at Tue May 13 10:35:41 2025 by rpki-client