$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5892d34-8457-485d-a5bb-33dc03a2e607.roa File: e5892d34-8457-485d-a5bb-33dc03a2e607.roa (raw, json) Hash identifier: BGEpusIjdTFD35T+zb4EsC27tkbTWOoP6WV1i3tNom4= Subject key identifier: F2:E7:5F:FA:AD:5C:E1:76:9F:B5:C3:6C:04:8C:68:CE:D4:8A:79:C5 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2D825ABF4092790C5C2B878E1C66C88E692A6750 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5892d34-8457-485d-a5bb-33dc03a2e607.roa Signing time: Mon 30 Jun 2025 17:40:15 +0000 ROA not before: Mon 30 Jun 2025 17:40:15 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 35.96.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:82:5a:bf:40:92:79:0c:5c:2b:87:8e:1c:66:c8:8e:69:2a:67:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:15 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=52498b1b69ddec1699b150a38e676a28ff28e55b8434911a7e52d2e86f2643a9, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ad:6a:44:52:e3:85:c5:0e:9f:d1:c8:d5:1b: ab:96:1f:f4:6a:bd:4b:4a:2d:02:b7:f8:77:34:53: 64:a4:1f:f4:74:60:d8:c0:39:38:68:8c:69:f0:d6: 70:12:38:57:fb:c2:70:7d:fd:38:17:ad:6c:1c:3c: a1:b3:74:af:e8:f3:37:b7:75:2b:64:fd:ac:78:31: a8:53:3e:8c:72:21:62:9e:09:26:65:66:83:5f:f5: d4:44:17:51:1f:25:8b:f7:f2:d8:36:48:1d:8a:40: 68:f3:15:77:c2:e5:44:6b:1a:c8:00:f3:e9:ae:d4: c3:bd:85:d0:d9:6e:69:d1:b0:cf:bd:42:dc:3c:54: a7:70:9b:07:6b:ae:cd:77:d6:3a:a1:01:54:51:e7: c6:fe:9c:37:d5:fa:a9:bf:48:85:46:23:56:3a:ff: ff:7e:88:f4:7f:5f:d9:5d:f3:6a:68:dd:01:63:87: dc:63:29:15:ac:79:2a:9a:9d:9d:f0:a2:17:59:cb: 88:42:c8:9b:3b:0b:90:94:c1:b9:d0:81:71:f4:5a: ff:d5:c3:53:bf:c1:19:0a:99:15:91:7e:62:00:ef: f2:41:c0:6a:65:47:68:63:9c:27:7a:10:4e:09:37: 5e:48:c2:da:f6:98:d5:ba:ac:23:2c:9c:5a:df:d3: 58:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:E7:5F:FA:AD:5C:E1:76:9F:B5:C3:6C:04:8C:68:CE:D4:8A:79:C5 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5892d34-8457-485d-a5bb-33dc03a2e607.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.32.0/24 Signature Algorithm: sha256WithRSAEncryption 19:f6:b6:e5:83:81:88:45:1a:2e:f9:88:e3:e2:ea:d1:6a:cf: e3:64:9b:0e:83:75:d1:f0:8d:8c:40:5a:95:3a:8c:37:b4:3a: 4e:fd:14:a2:2b:e2:8a:3e:ec:cc:e6:da:20:68:81:b0:c5:76: 4a:42:66:11:22:90:a2:80:ef:69:84:0b:2b:4e:8c:51:66:10: a6:a2:5e:c7:f7:3d:e1:49:8c:80:89:23:f1:f8:39:01:c0:ae: d5:55:03:a0:82:09:ab:a0:54:03:51:48:f0:29:62:13:25:a3: 28:a3:32:1e:87:1d:2f:2e:51:3a:d4:29:fc:77:b3:d8:bf:c9: 85:4d:ed:43:48:e2:54:25:ed:3a:a2:0c:fd:12:33:ee:5a:69: dc:35:77:44:4b:93:a4:05:d0:25:b6:0b:38:d9:ed:33:3d:6e: 5b:14:1d:ed:ba:aa:a4:bb:88:8b:95:dd:21:21:8d:d9:15:bd: 07:4b:18:67:1f:4f:5d:23:98:c3:d8:d2:db:9d:96:b8:4d:6d: d6:73:88:db:ff:c1:a6:03:c8:a4:ab:f2:8c:d4:f2:43:91:9b: fa:2d:b1:4d:e2:bb:52:38:ed:2a:c8:2f:2c:2f:53:a8:4c:eb: cc:e2:69:aa:bf:65:69:77:a9:e7:b3:7a:3f:a3:1b:01:39:e6: 57:ba:65:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULYJav0CSeQxcK4eOHGbIjmkqZ1AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDE1WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MjQ5OGIxYjY5ZGRlYzE2OTliMTUwYTM4ZTY3NmEyOGZm MjhlNTViODQzNDkxMWE3ZTUyZDJlODZmMjY0M2E5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTrWpEUuOFxQ6f0cjVG6uWH/RqvUtKLQK3+Hc0U2SkH/R0 YNjAOThojGnw1nASOFf7wnB9/TgXrWwcPKGzdK/o8ze3dStk/ax4MahTPoxyIWKe CSZlZoNf9dREF1EfJYv38tg2SB2KQGjzFXfC5URrGsgA8+mu1MO9hdDZbmnRsM+9 Qtw8VKdwmwdrrs131jqhAVRR58b+nDfV+qm/SIVGI1Y6//9+iPR/X9ld82po3QFj h9xjKRWseSqanZ3wohdZy4hCyJs7C5CUwbnQgXH0Wv/Vw1O/wRkKmRWRfmIA7/JB wGplR2hjnCd6EE4JN15Iwtr2mNW6rCMsnFrf01jXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8udf+q1c4XaftcNsBIxoztSKecUwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2U1ODkyZDM0LTg0NTctNDg1ZC1hNWJiLTMzZGMwM2EyZTYwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCAwDQYJKoZIhvcNAQELBQADggEBABn2tuWDgYhFGi75iOPi6tFqz+Nk mw6DddHwjYxAWpU6jDe0Ok79FKIr4oo+7Mzm2iBogbDFdkpCZhEikKKA72mECytO jFFmEKaiXsf3PeFJjICJI/H4OQHArtVVA6CCCaugVANRSPApYhMloyijMh6HHS8u UTrUKfx3s9i/yYVN7UNI4lQl7TqiDP0SM+5aadw1d0RLk6QF0CW2CzjZ7TM9blsU He26qqS7iIuV3SEhjdkVvQdLGGcfT10jmMPY0tudlrhNbdZziNv/waYDyKSr8ozU 8kORm/otsU3iu1I47SrILywvU6hM68ziaaq/ZWl3qeezej+jGwE55le6ZdI= -----END CERTIFICATE-----Generated at Thu Jul 3 10:22:58 2025 by rpki-client