$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa File: 0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa (raw, json) Hash identifier: KvC51nN62nJWCVeB1kk7iAaAoRqE5Enxy3AxJq3roIs= Subject key identifier: 4A:02:F1:80:81:36:18:4F:D3:26:BA:B1:CF:8C:26:65:49:16:74:05 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 22F27C708DE803EC313DE8B8EBD2F85611033E1F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa Signing time: Fri 25 Apr 2025 17:40:11 +0000 ROA not before: Fri 25 Apr 2025 17:40:11 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:f2:7c:70:8d:e8:03:ec:31:3d:e8:b8:eb:d2:f8:56:11:03:3e:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 25 17:40:11 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=24a88c93ff7a88440f83c49041931a87964a02837c810c5f548c3ac78561c782, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:25:b3:bd:5e:05:86:90:2d:8f:f2:a3:13:80: 94:5d:0a:23:4c:bb:77:2b:9e:f3:9a:ae:98:3a:07: 63:c3:e3:d1:2a:87:30:a9:07:70:b6:d7:1a:35:48: df:7f:0e:3b:ff:02:09:9d:7c:14:8b:68:94:7d:a7: c5:34:63:7c:bc:97:26:55:47:c8:fb:66:08:30:63: 2a:ed:32:9c:39:18:99:3b:28:f7:84:27:ae:b1:ed: a4:f0:07:ef:80:a6:04:e4:e7:69:df:09:0c:8a:bd: 43:83:31:0b:e8:07:f7:3c:51:ff:92:f3:94:72:98: 68:c4:f1:85:6b:15:81:d0:a1:bd:1a:7e:1e:b2:2a: 69:b5:5c:c6:71:9c:ea:6e:1d:48:3a:7e:f7:31:9c: bd:da:a7:ca:4d:16:b9:02:bc:64:93:4e:80:c7:b1: 1a:bb:27:fe:12:83:09:05:81:d1:a1:72:87:74:7d: b9:4a:86:69:c5:b0:e6:a1:64:aa:41:62:3b:46:40: 78:f7:bb:ce:4d:0a:3b:40:d3:92:58:3c:6b:7c:fd: d4:f9:e2:5b:ec:98:f0:35:fe:a6:df:95:f7:bf:b9: da:0f:dc:1f:8e:5c:7c:cf:44:17:62:7f:b4:90:03: 5a:62:dd:ce:60:c6:1e:bd:78:c0:3e:94:4f:e4:d0: ca:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:02:F1:80:81:36:18:4F:D3:26:BA:B1:CF:8C:26:65:49:16:74:05 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/0e814f2c-6100-4037-9dcc-cdaf3e20d853.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.2.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:94:c8:6f:2c:74:31:93:e9:bb:a3:ec:66:8f:65:00:f7:80: e1:98:63:e5:16:50:8e:f1:21:1a:71:d9:58:94:bc:34:1d:31: b7:3c:43:61:ed:79:63:1a:53:e0:08:80:1f:6d:47:fa:ff:b4: 92:42:c9:d1:b2:07:77:64:79:d8:03:8f:c8:ab:09:21:2e:c4: bc:a6:cd:54:78:0c:16:18:ec:05:fb:ec:b9:35:46:99:90:2e: 4f:eb:28:8e:40:ba:da:2b:85:de:79:07:b8:39:cd:84:cb:4d: 53:ea:34:7e:ac:b7:fa:87:48:23:85:70:9e:4c:99:e0:14:f6: 4e:48:81:88:d6:0d:a1:7c:ce:ca:bc:16:2b:70:36:a6:3f:41: b2:e3:1d:28:62:24:1d:89:18:2e:ba:c6:31:d1:7a:b3:56:d5: 69:0a:1c:ec:2b:bc:e1:19:a0:61:22:c3:c7:37:e6:69:fc:0c: 53:83:9b:68:48:dd:c0:d8:25:54:f7:06:0a:f9:3a:4c:b7:e7: 11:a3:7f:df:37:0e:39:fa:51:42:f0:64:06:a1:77:b7:18:34: c6:a6:af:84:24:87:e3:17:62:00:87:d4:c4:36:03:f3:a6:1b: 18:14:34:25:18:61:80:20:45:01:f8:06:69:90:0a:3b:32:ca: 37:e0:fb:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIvJ8cI3oA+wxPei469L4VhEDPh8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDI1MTc0MDExWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNGE4OGM5M2ZmN2E4ODQ0MGY4M2M0OTA0MTkzMWE4Nzk2 NGEwMjgzN2M4MTBjNWY1NDhjM2FjNzg1NjFjNzgyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeJbO9XgWGkC2P8qMTgJRdCiNMu3crnvOarpg6B2PD49Eq hzCpB3C21xo1SN9/Djv/AgmdfBSLaJR9p8U0Y3y8lyZVR8j7ZggwYyrtMpw5GJk7 KPeEJ66x7aTwB++ApgTk52nfCQyKvUODMQvoB/c8Uf+S85RymGjE8YVrFYHQob0a fh6yKmm1XMZxnOpuHUg6fvcxnL3ap8pNFrkCvGSTToDHsRq7J/4SgwkFgdGhcod0 fblKhmnFsOahZKpBYjtGQHj3u85NCjtA05JYPGt8/dT54lvsmPA1/qbflfe/udoP 3B+OXHzPRBdif7SQA1pi3c5gxh69eMA+lE/k0MqZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSgLxgIE2GE/TJrqxz4wmZUkWdAUwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzBlODE0ZjJjLTYxMDAtNDAzNy05ZGNjLWNkYWYzZTIwZDg1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAIwDQYJKoZIhvcNAQELBQADggEBAC+UyG8sdDGT6buj7GaPZQD3gOGY Y+UWUI7xIRpx2ViUvDQdMbc8Q2HteWMaU+AIgB9tR/r/tJJCydGyB3dkedgDj8ir CSEuxLymzVR4DBYY7AX77Lk1RpmQLk/rKI5Autorhd55B7g5zYTLTVPqNH6st/qH SCOFcJ5MmeAU9k5IgYjWDaF8zsq8FitwNqY/QbLjHShiJB2JGC66xjHRerNW1WkK HOwrvOEZoGEiw8c35mn8DFODm2hI3cDYJVT3Bgr5Oky35xGjf983Djn6UULwZAah d7cYNMamr4Qkh+MXYgCH1MQ2A/OmGxgUNCUYYYAgRQH4BmmQCjsyyjfg+3c= -----END CERTIFICATE-----Generated at Sat Apr 26 12:57:20 2025 by rpki-client