$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/091bd218-6d23-4d4b-a23a-59d4459462ce.roa File: 091bd218-6d23-4d4b-a23a-59d4459462ce.roa (raw, json) Hash identifier: 6mjykHLgIJDwf+8MjjyeZOuqsNZklEl9/rRqIIvrfUU= Subject key identifier: 87:07:03:BB:DF:BB:5A:22:B4:E0:02:13:A0:38:9E:52:47:95:DD:93 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 391351B993E3512F85090A191A56AA9DCF60D6A8 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/091bd218-6d23-4d4b-a23a-59d4459462ce.roa Signing time: Thu 05 Jun 2025 14:39:03 +0000 ROA not before: Thu 05 Jun 2025 14:39:03 +0000 ROA not after: Thu 10 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:13:51:b9:93:e3:51:2f:85:09:0a:19:1a:56:aa:9d:cf:60:d6:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 5 14:39:03 2025 GMT Not After : Jul 10 23:59:59 2025 GMT Subject: serialNumber=e2c0e9ef433099a902de00cc63183409551841371ad00cc6600ebdc5f4865844, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c1:d6:d5:66:7e:b1:e1:80:83:e5:17:2b:75: 87:7c:c1:d9:ed:f6:91:1b:1c:17:8c:0b:01:5e:9f: 94:dd:da:f2:26:83:3a:db:ab:bd:74:94:51:75:89: 4a:98:6b:2b:ab:77:3a:d8:03:cb:2a:64:b0:ff:7a: 08:a9:bb:7c:6e:80:03:1b:d8:eb:50:5b:c0:73:ff: ee:ac:5c:58:37:2d:52:7c:f5:e0:58:8b:aa:75:4d: bc:9b:99:ee:c8:67:5c:92:e4:3a:56:58:45:9e:53: 89:22:1b:b9:2c:f2:36:65:5c:58:dc:41:a2:ab:f0: dd:0b:00:9c:ee:3a:1b:be:38:73:34:6e:ff:00:6a: 50:64:bd:68:d7:3b:79:03:3e:fd:04:eb:c1:b3:f4: 4f:a7:c5:31:57:1d:6b:34:f4:b8:ee:8a:36:f5:a4: 0a:d1:bb:45:43:a9:32:eb:d1:53:e8:dd:fc:2e:ad: d6:71:8b:a1:a3:39:c7:23:b8:6d:58:4c:df:b4:b9: 4f:9e:e0:02:13:35:f5:b2:2e:98:65:53:7a:73:50: ee:1a:3f:64:6b:ea:bc:1e:19:94:bb:d8:96:05:5e: 84:ba:aa:00:9e:a1:5b:63:1b:d7:b7:d5:0d:2c:a7: 62:2d:fd:eb:f3:40:47:53:69:08:3d:76:54:74:f4: 4e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:07:03:BB:DF:BB:5A:22:B4:E0:02:13:A0:38:9E:52:47:95:DD:93 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/091bd218-6d23-4d4b-a23a-59d4459462ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.68.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:6e:fd:7b:5b:d6:89:68:2e:c2:a0:7c:49:63:33:f8:d6:cc: 99:55:02:eb:fc:fc:b5:fc:0c:c9:2a:f1:94:88:e0:84:28:77: d1:6b:78:96:56:1c:5e:be:9e:23:43:7d:93:7e:42:26:b3:f9: f1:5f:a7:69:8d:02:ae:b7:be:b2:20:4c:23:d6:57:3f:43:e1: e8:21:ae:af:de:8b:c9:85:95:b5:2c:2d:ca:c0:4e:d9:6a:87: 59:e1:be:f9:ad:1c:24:ca:09:03:70:83:6b:b6:e1:aa:a4:dd: fa:a7:98:53:c1:4c:2a:5e:9a:11:08:59:90:74:53:48:6e:c2: 93:15:cf:bd:16:4c:0d:0b:2e:87:97:79:8d:88:7f:0c:f4:dc: 00:c0:ae:a7:94:7d:53:ea:89:e5:68:89:21:4e:9f:f7:df:f8: 0c:95:54:12:05:f7:27:82:2a:ab:a9:69:97:d9:e6:81:92:b3: dc:4b:5f:02:6a:ab:08:7b:34:f0:66:9d:44:71:85:44:f2:fb: 75:67:77:3b:23:6f:08:80:07:a5:ab:03:91:3e:1d:36:b5:48: 3d:e7:b0:ec:98:f1:f9:23:ce:ae:12:2d:07:c6:b1:38:03:9e: de:bd:36:48:89:7d:c0:20:0f:a5:b9:ca:c1:95:2d:fd:78:24: 32:0b:fa:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUORNRuZPjUS+FCQoZGlaqnc9g1qgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjA1MTQzOTAzWhcNMjUwNzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMmMwZTllZjQzMzA5OWE5MDJkZTAwY2M2MzE4MzQwOTU1 MTg0MTM3MWFkMDBjYzY2MDBlYmRjNWY0ODY1ODQ0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+wdbVZn6x4YCD5RcrdYd8wdnt9pEbHBeMCwFen5Td2vIm gzrbq710lFF1iUqYayurdzrYA8sqZLD/egipu3xugAMb2OtQW8Bz/+6sXFg3LVJ8 9eBYi6p1Tbybme7IZ1yS5DpWWEWeU4kiG7ks8jZlXFjcQaKr8N0LAJzuOhu+OHM0 bv8AalBkvWjXO3kDPv0E68Gz9E+nxTFXHWs09Ljuijb1pArRu0VDqTLr0VPo3fwu rdZxi6GjOccjuG1YTN+0uU+e4AITNfWyLphlU3pzUO4aP2Rr6rweGZS72JYFXoS6 qgCeoVtjG9e31Q0sp2It/evzQEdTaQg9dlR09E5PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhwcDu9+7WiK04AIToDieUkeV3ZMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzA5MWJkMjE4LTZkMjMtNGQ0Yi1hMjNhLTU5ZDQ0NTk0NjJjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYEQwDQYJKoZIhvcNAQELBQADggEBAHtu/Xtb1oloLsKgfEljM/jWzJlV Auv8/LX8DMkq8ZSI4IQod9FreJZWHF6+niNDfZN+Qiaz+fFfp2mNAq63vrIgTCPW Vz9D4eghrq/ei8mFlbUsLcrATtlqh1nhvvmtHCTKCQNwg2u24aqk3fqnmFPBTCpe mhEIWZB0U0huwpMVz70WTA0LLoeXeY2Ifwz03ADArqeUfVPqieVoiSFOn/ff+AyV VBIF9yeCKqupaZfZ5oGSs9xLXwJqqwh7NPBmnURxhUTy+3VndzsjbwiAB6WrA5E+ HTa1SD3nsOyY8fkjzq4SLQfGsTgDnt69NkiJfcAgD6W5ysGVLf14JDIL+mA= -----END CERTIFICATE-----Generated at Sat Jun 14 07:05:24 2025 by rpki-client