$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa File: ecc15691-9732-4fda-b2d1-5ad157c2818e.roa (raw, json) Hash identifier: Pw89jyLPEFIFbSziLoUHSgsDMqGzCSc3eNYM0ABrES0= Subject key identifier: ED:75:23:D1:46:22:30:E9:D2:04:4A:07:39:37:7D:58:89:95:D8:FF Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 264F862F969DC2CDB3AFA7D90B81E5DC229B5762 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa Signing time: Sat 10 May 2025 00:50:24 +0000 ROA not before: Sat 10 May 2025 00:50:24 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 16 May 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:4f:86:2f:96:9d:c2:cd:b3:af:a7:d9:0b:81:e5:dc:22:9b:57:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 10 00:50:24 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=a51a82e2c892b14e542ece0220303f9f11bd1acbbe937cabd68644279ff276c9, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f0:44:e3:4d:99:6b:b0:5f:4f:77:33:2f:4e: f2:8e:de:42:e5:8f:e5:07:1d:be:47:ad:c5:b4:77: 57:10:bc:b3:37:28:45:5c:7c:75:7e:9f:61:ac:64: 55:b2:7a:8d:4b:2d:66:4e:36:1a:20:dc:70:ed:3e: d9:ee:10:c7:0b:c7:cd:1a:57:59:31:f2:43:21:cf: 20:3a:82:b7:5a:57:03:ec:ec:5c:92:1a:38:46:d3: d5:03:a5:29:78:6a:97:57:08:e1:43:b7:fd:58:f9: 94:70:5b:d7:0a:da:a7:af:3c:f2:13:bd:e8:5d:de: 22:f6:42:34:d1:05:96:ab:8a:5f:2e:29:cf:fe:d1: 4f:4b:79:18:88:a8:39:7c:4c:e6:71:9f:e7:ec:8f: ca:85:bc:75:c3:45:87:22:f6:32:4b:64:73:57:24: bf:ce:5b:fc:77:e2:8f:69:c8:1a:1c:6f:ab:80:a3: 16:25:97:82:a9:67:33:02:6e:f2:52:15:5e:1d:13: 06:f5:06:cf:6f:33:27:8d:a5:87:21:27:07:e6:db: 3e:e3:2c:39:b4:dc:b2:4d:78:99:e6:48:4e:ae:89: f4:85:4b:ae:96:9a:67:78:9d:af:2b:e4:ba:82:37: a9:90:16:c9:27:e6:b1:ea:60:d7:01:74:6b:f1:ab: 6d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:75:23:D1:46:22:30:E9:D2:04:4A:07:39:37:7D:58:89:95:D8:FF X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.3.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:13:3c:07:bb:bc:b1:8b:89:c8:f1:eb:6c:82:ca:43:d0:d4: c8:d0:7c:f9:f5:c2:15:f4:0f:c1:c6:98:f1:05:ad:1c:08:5a: 8d:81:b6:7d:96:bd:49:cf:de:85:df:95:64:6f:b7:a4:96:8d: f3:8a:6a:ed:ac:31:85:5b:d2:e0:d6:bb:93:a1:52:47:de:b4: 70:67:8f:c7:d0:a7:72:66:67:0f:b1:33:e3:be:fe:94:a1:5e: 8e:24:47:b8:3f:b9:44:16:74:7e:fd:55:45:d8:c3:2d:6d:dd: 43:08:11:f2:4f:cc:b1:1a:b4:78:48:7d:a7:73:83:5a:47:e5: 79:fa:98:b9:ce:fa:6f:3a:15:5e:0b:16:37:dd:51:c0:b4:ee: ea:5f:71:83:8b:8e:8e:43:96:bf:58:ff:fc:ee:f0:56:0f:b7: 10:e3:66:a5:0b:11:3e:e2:69:0a:fc:38:f8:df:6c:18:67:0c: f8:45:e7:29:03:ba:b0:bd:4c:d0:24:1b:ac:18:43:1d:b3:eb: c9:2d:48:af:a7:7e:c6:54:41:37:5f:14:67:ed:fe:74:7e:81: df:45:d6:57:24:86:e4:6d:2a:c7:07:b2:14:7e:31:15:7a:d3: be:6b:f1:1e:3f:5e:4f:c2:e7:39:3f:07:40:30:25:79:94:c9: 0f:49:3c:73 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJk+GL5adws2zr6fZC4Hl3CKbV2IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTEwMDA1MDI0WhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTFhODJlMmM4OTJiMTRlNTQyZWNlMDIyMDMwM2Y5ZjEx YmQxYWNiYmU5MzdjYWJkNjg2NDQyNzlmZjI3NmM5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC28ETjTZlrsF9PdzMvTvKO3kLlj+UHHb5HrcW0d1cQvLM3 KEVcfHV+n2GsZFWyeo1LLWZONhog3HDtPtnuEMcLx80aV1kx8kMhzyA6grdaVwPs 7FySGjhG09UDpSl4apdXCOFDt/1Y+ZRwW9cK2qevPPITvehd3iL2QjTRBZaril8u Kc/+0U9LeRiIqDl8TOZxn+fsj8qFvHXDRYci9jJLZHNXJL/OW/x34o9pyBocb6uA oxYll4KpZzMCbvJSFV4dEwb1Bs9vMyeNpYchJwfm2z7jLDm03LJNeJnmSE6uifSF S66Wmmd4na8r5LqCN6mQFskn5rHqYNcBdGvxq20LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7XUj0UYiMOnSBEoHOTd9WImV2P8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2VjYzE1NjkxLTk3MzItNGZkYS1iMmQxLTVhZDE1N2MyODE4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAMwDQYJKoZIhvcNAQELBQADggEBAF8TPAe7vLGLicjx62yCykPQ1MjQ fPn1whX0D8HGmPEFrRwIWo2Btn2WvUnP3oXflWRvt6SWjfOKau2sMYVb0uDWu5Oh UkfetHBnj8fQp3JmZw+xM+O+/pShXo4kR7g/uUQWdH79VUXYwy1t3UMIEfJPzLEa tHhIfadzg1pH5Xn6mLnO+m86FV4LFjfdUcC07upfcYOLjo5Dlr9Y//zu8FYPtxDj ZqULET7iaQr8OPjfbBhnDPhF5ykDurC9TNAkG6wYQx2z68ktSK+nfsZUQTdfFGft /nR+gd9F1lckhuRtKscHshR+MRV6075r8R4/Xk/C5zk/B0AwJXmUyQ9JPHM= -----END CERTIFICATE-----Generated at Wed May 14 22:57:17 2025 by rpki-client