$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa File: ecc15691-9732-4fda-b2d1-5ad157c2818e.roa (raw, json) Hash identifier: 3ZZdEr5ZNl3nVQff1m9sYWFhsIduS0xF0jgz5+M0ths= Subject key identifier: 9C:CF:DC:B1:3E:A2:FC:03:CC:8D:87:CB:9D:DD:B8:73:D3:75:2F:B3 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 36ED08454B82866322265038A19556EBEBECA93A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa Signing time: Mon 30 Jun 2025 17:40:23 +0000 ROA not before: Mon 30 Jun 2025 17:40:23 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ed:08:45:4b:82:86:63:22:26:50:38:a1:95:56:eb:eb:ec:a9:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 30 17:40:23 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=89e8086e3cc1838923aaae3e83c0f24051484976d65d6f0d5819272050b40958, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f4:70:aa:e5:5a:cf:d0:4a:ac:52:93:53:10: 75:57:e1:4b:36:8a:56:91:30:80:48:b8:6c:08:6f: 48:53:78:ec:17:c7:94:48:02:62:52:c1:f4:46:41: 7b:54:e9:4f:96:69:a0:3f:c8:fe:f9:e1:75:07:a7: 00:1e:1e:ba:a0:48:e5:a2:ec:81:75:5b:c8:69:67: 7a:21:a7:15:ba:12:66:89:25:aa:07:54:cf:64:c7: 02:3e:e8:90:f5:ea:ad:f4:27:a8:ef:21:61:35:3b: 34:66:1f:f3:67:b2:fd:9e:e9:99:a3:91:78:23:7d: 92:1b:33:49:1c:09:9a:ef:7f:c0:31:02:3a:3e:52: 1e:10:bf:1f:e6:8d:a6:24:7e:65:45:fe:e8:3c:3e: 3b:29:a0:1a:09:a0:f9:d1:22:45:eb:26:51:ed:46: fe:17:3c:81:cd:0c:8b:90:34:23:2d:71:01:be:c0: 4c:2c:b6:f2:20:55:de:04:23:ed:e1:ad:16:63:3a: 18:42:9e:37:7b:14:38:94:15:77:a1:82:6d:db:0c: cd:d3:8b:4f:a0:36:77:36:90:18:2e:67:f3:fe:00: 02:92:a2:03:bc:17:96:5d:9f:4b:4a:16:0a:5b:9b: 5c:c9:57:46:ff:75:58:f2:93:57:dd:7e:e3:8b:9a: 57:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:CF:DC:B1:3E:A2:FC:03:CC:8D:87:CB:9D:DD:B8:73:D3:75:2F:B3 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.3.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:2c:eb:b3:e2:82:9d:de:cf:83:0c:37:6f:3b:d3:6d:bc:36: 7e:42:63:10:1f:0b:e3:47:8b:ef:33:9a:2e:17:90:ca:4c:2c: ca:c7:b2:e9:58:6c:c0:6f:ee:10:32:e6:a7:2f:7b:87:35:a8: 8d:33:31:cf:4d:be:47:0d:f9:97:f3:59:54:bb:0d:0e:c3:52: 89:c3:93:27:ee:61:c1:db:54:5e:da:db:c1:cf:ae:74:d2:2d: 97:37:3d:f3:0d:39:6e:a0:ef:5d:71:6d:5f:17:6f:52:82:3d: 89:2c:94:8b:28:d6:cb:73:6c:73:31:c7:25:63:1d:54:7b:e5: 7d:aa:e5:0d:01:43:96:5f:39:f6:dd:60:64:44:45:72:6d:91: 7a:ba:39:c8:45:f1:26:f1:1c:ec:8e:64:67:d7:e3:f5:94:98: 2b:c8:cd:0a:19:20:3b:5f:32:c9:92:43:a3:d1:6e:8a:b8:bd: 95:d5:52:11:e3:55:82:d2:95:9c:55:7b:2b:2a:14:50:17:35: 88:37:09:03:cb:c3:cc:de:89:37:dd:cd:34:fb:70:be:0f:9b: 18:f3:8d:b9:0e:53:66:14:2b:51:a2:c9:09:28:ba:25:35:be: 91:70:76:45:24:4b:7c:5d:15:dd:66:a1:b2:f2:25:a1:74:a2: 12:0e:c3:d5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNu0IRUuChmMiJlA4oZVW6+vsqTowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjMwMTc0MDIzWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWU4MDg2ZTNjYzE4Mzg5MjNhYWFlM2U4M2MwZjI0MDUx NDg0OTc2ZDY1ZDZmMGQ1ODE5MjcyMDUwYjQwOTU4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDW9HCq5VrP0EqsUpNTEHVX4Us2ilaRMIBIuGwIb0hTeOwX x5RIAmJSwfRGQXtU6U+WaaA/yP754XUHpwAeHrqgSOWi7IF1W8hpZ3ohpxW6EmaJ JaoHVM9kxwI+6JD16q30J6jvIWE1OzRmH/Nnsv2e6ZmjkXgjfZIbM0kcCZrvf8Ax Ajo+Uh4Qvx/mjaYkfmVF/ug8PjspoBoJoPnRIkXrJlHtRv4XPIHNDIuQNCMtcQG+ wEwstvIgVd4EI+3hrRZjOhhCnjd7FDiUFXehgm3bDM3Ti0+gNnc2kBguZ/P+AAKS ogO8F5Zdn0tKFgpbm1zJV0b/dVjyk1fdfuOLmlfzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnM/csT6i/APMjYfLnd24c9N1L7MwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2VjYzE1NjkxLTk3MzItNGZkYS1iMmQxLTVhZDE1N2MyODE4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAMwDQYJKoZIhvcNAQELBQADggEBAHws67Pigp3ez4MMN2870228Nn5C YxAfC+NHi+8zmi4XkMpMLMrHsulYbMBv7hAy5qcve4c1qI0zMc9NvkcN+ZfzWVS7 DQ7DUonDkyfuYcHbVF7a28HPrnTSLZc3PfMNOW6g711xbV8Xb1KCPYkslIso1stz bHMxxyVjHVR75X2q5Q0BQ5ZfOfbdYGRERXJtkXq6OchF8SbxHOyOZGfX4/WUmCvI zQoZIDtfMsmSQ6PRboq4vZXVUhHjVYLSlZxVeysqFFAXNYg3CQPLw8zeiTfdzTT7 cL4PmxjzjbkOU2YUK1GiyQkouiU1vpFwdkUkS3xdFd1mobLyJaF0ohIOw9U= -----END CERTIFICATE-----Generated at Thu Jul 3 14:00:35 2025 by rpki-client