$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa File: dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa (raw, json) Hash identifier: BRyYjHuyzGCIYgGHyEXJkUxxMMqqImshYzkGZT7Yl4U= Subject key identifier: 30:5D:60:78:7E:DF:2A:90:AD:52:82:13:2A:12:80:91:9C:E0:54:11 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 346A75A42DBD3068CFA64BEE1240C25F2CAB427F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa Signing time: Fri 09 May 2025 16:20:11 +0000 ROA not before: Fri 09 May 2025 16:20:11 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:6a:75:a4:2d:bd:30:68:cf:a6:4b:ee:12:40:c2:5f:2c:ab:42:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 9 16:20:11 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=a3bed96f9278ae66c42ec723307f421030d589e018701a21f57b3e739519ae0a, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b3:95:e7:f4:9a:4d:74:1f:ef:1f:47:25:1a: 7e:5a:fe:0b:b2:23:e6:34:b3:59:61:2d:19:e1:fa: f1:08:57:30:79:b9:82:78:a3:41:b5:d2:90:19:b5: 1e:b3:03:9f:2e:57:e7:dd:7b:6a:0f:c8:c3:a7:41: d5:87:dc:93:92:b6:4d:82:4c:ab:4d:2c:5d:5f:51: 12:b9:db:64:d2:ff:a2:de:7d:d6:8f:f9:8c:49:73: d7:c7:9d:67:55:af:b8:92:a2:d5:b4:ea:9e:a7:b1: a2:49:3a:58:8e:90:52:fc:ba:68:33:4f:32:1f:01: 98:d8:2e:ea:ce:50:a1:7e:0c:6d:8c:50:9d:30:cb: 4a:9a:e8:f6:e6:a7:7d:7b:8f:5e:8a:e2:bb:ae:df: b4:1e:61:02:9e:f1:8c:7e:56:42:20:86:34:89:2b: 6b:e1:3d:5f:54:35:2c:b5:b1:d4:ac:35:8f:1b:33: 3b:b5:40:3f:7d:e5:cc:0c:fb:e4:a0:60:36:ea:53: f1:cd:69:92:cf:8c:58:68:68:7d:73:cb:1e:df:d2: ee:6e:20:74:e7:64:6a:d9:91:c9:32:c5:51:09:d7: dc:63:bb:ac:73:78:df:64:e8:1f:cf:d6:36:f1:58: aa:1d:6f:e0:04:da:83:38:13:0d:17:96:63:1a:fa: 24:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:5D:60:78:7E:DF:2A:90:AD:52:82:13:2A:12:80:91:9C:E0:54:11 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:20:79:de:5c:65:cc:c5:50:f7:1f:e8:47:88:f4:e6:74:5d: 4d:d4:02:5b:eb:f8:59:26:a8:3c:da:44:3d:79:6b:ee:d8:6e: c5:d3:4f:ad:7a:67:a5:93:e2:26:2c:af:64:11:d7:b5:1d:3e: df:7d:aa:5d:d1:8b:95:13:ab:15:74:2f:af:73:62:4f:3c:64: 69:37:c8:c4:b3:a6:da:e7:94:a4:2b:ea:aa:26:89:2e:cd:15: 15:a5:fd:9b:c6:7e:13:d0:3c:aa:0c:05:6f:38:37:6e:a2:0f: ed:19:01:f7:49:f9:42:0c:6c:81:5f:ee:2f:07:4d:91:f4:92: 06:2f:07:0e:3b:cb:ff:04:02:48:7d:1e:52:47:77:4d:53:63: 9b:58:bd:af:b9:02:3c:58:85:62:99:34:c3:d0:16:29:fc:67: 59:97:3c:c2:30:85:f9:fc:6c:62:50:6c:e0:f3:17:8d:3d:f9: ae:01:84:09:4c:04:90:4d:72:b1:51:71:ad:ef:fb:8e:fe:fc: 8e:ad:b1:0a:ae:90:1d:3d:33:4b:f4:db:f4:01:8d:47:79:18: 84:2d:c1:26:68:1f:22:98:35:f4:57:58:29:81:d7:53:a7:a0: b1:96:e0:4f:60:50:b6:c9:a3:6e:54:e3:1b:03:74:ae:2a:ff: 7f:41:49:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNGp1pC29MGjPpkvuEkDCXyyrQn8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTA5MTYyMDExWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhM2JlZDk2ZjkyNzhhZTY2YzQyZWM3MjMzMDdmNDIxMDMw ZDU4OWUwMTg3MDFhMjFmNTdiM2U3Mzk1MTlhZTBhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6s5Xn9JpNdB/vH0clGn5a/guyI+Y0s1lhLRnh+vEIVzB5 uYJ4o0G10pAZtR6zA58uV+fde2oPyMOnQdWH3JOStk2CTKtNLF1fURK522TS/6Le fdaP+YxJc9fHnWdVr7iSotW06p6nsaJJOliOkFL8umgzTzIfAZjYLurOUKF+DG2M UJ0wy0qa6Pbmp317j16K4ruu37QeYQKe8Yx+VkIghjSJK2vhPV9UNSy1sdSsNY8b Mzu1QD995cwM++SgYDbqU/HNaZLPjFhoaH1zyx7f0u5uIHTnZGrZkckyxVEJ19xj u6xzeN9k6B/P1jbxWKodb+AE2oM4Ew0XlmMa+iTnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMF1geH7fKpCtUoITKhKAkZzgVBEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RjODIyYzAxLTE3MTctNGU0NS1hNWE4LTNhNWRjOTE2Yzc2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAswDQYJKoZIhvcNAQELBQADggEBAI0ged5cZczFUPcf6EeI9OZ0XU3U Alvr+FkmqDzaRD15a+7YbsXTT616Z6WT4iYsr2QR17UdPt99ql3Ri5UTqxV0L69z Yk88ZGk3yMSzptrnlKQr6qomiS7NFRWl/ZvGfhPQPKoMBW84N26iD+0ZAfdJ+UIM bIFf7i8HTZH0kgYvBw47y/8EAkh9HlJHd01TY5tYva+5AjxYhWKZNMPQFin8Z1mX PMIwhfn8bGJQbODzF409+a4BhAlMBJBNcrFRca3v+47+/I6tsQqukB09M0v02/QB jUd5GIQtwSZoHyKYNfRXWCmB11OnoLGW4E9gULbJo25U4xsDdK4q/39BSQE= -----END CERTIFICATE-----Generated at Mon May 12 03:12:59 2025 by rpki-client