$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa File: 27feea1a-4933-4577-b9c4-9488e2a550f0.roa (raw, json) Hash identifier: nDAsakjMjlf5eRmRlvrkkZ12vFRKVl7FP/NwF4FVtkM= Subject key identifier: 4F:69:AA:0C:44:94:E4:2B:00:1B:52:88:8C:A5:91:8D:B1:A5:20:0F Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7747B283092510B5DF575C7371040D904E607869 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa Signing time: Tue 15 Apr 2025 00:50:27 +0000 ROA not before: Tue 15 Apr 2025 00:50:27 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:47:b2:83:09:25:10:b5:df:57:5c:73:71:04:0d:90:4e:60:78:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 15 00:50:27 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=d7ada0902bfb46ed34a483f411419f02fdfe6ff117c963975589a20599074b99, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:89:7d:c7:2f:ad:1f:a8:b6:18:97:eb:a1:45: 74:48:33:1a:e5:08:5a:ad:91:39:db:c1:a8:71:52: f1:3a:e6:e9:3b:80:de:e1:09:17:3d:3b:1d:de:24: 80:a6:9c:e6:15:ff:1b:cd:0e:f3:86:05:4a:fa:0f: 4a:5a:84:54:4e:10:37:8f:14:5e:0d:f0:67:d6:41: 32:c5:3b:cd:99:e4:42:6f:a5:61:2e:54:cd:f7:08: f8:a7:9a:eb:a9:3a:da:91:1d:5d:00:86:33:07:1d: 9f:83:df:ae:1e:4d:66:3a:fd:68:a8:de:dc:ec:7e: 4c:30:9c:5d:78:d4:7e:77:4a:2f:2a:73:66:fd:d6: e4:64:10:90:3b:15:bf:07:aa:28:14:fc:ba:f9:b7: 02:4d:47:b7:30:2c:df:77:63:fc:8c:f2:3d:a5:8a: b9:b3:3e:04:bd:a6:fe:15:0b:7a:97:04:0f:93:bf: 13:4f:a2:c0:dd:28:ab:13:da:8d:24:1c:ea:ea:81: 54:dc:d6:c7:19:20:5e:b5:ae:57:a6:bf:92:42:ec: 60:97:e9:05:b8:6f:d4:5e:ce:e0:8a:dd:46:fd:9e: 98:97:af:2c:3b:90:0f:86:b6:aa:60:a1:62:46:92: c0:8c:37:4a:58:1a:39:75:06:f1:1e:e0:4a:15:fc: d2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:69:AA:0C:44:94:E4:2B:00:1B:52:88:8C:A5:91:8D:B1:A5:20:0F X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/27feea1a-4933-4577-b9c4-9488e2a550f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption 87:79:5c:3d:e8:5e:59:2e:cd:c8:7f:09:b2:2d:16:ec:b5:38: a0:ca:fb:90:d7:6f:f9:e7:13:c5:ea:d5:70:da:4c:a8:fb:b7: 24:db:49:74:f5:0f:ff:6f:66:b6:4a:8c:3e:2c:ac:72:4f:e4: ac:13:a1:84:9c:e2:d8:e8:9f:7b:4d:60:79:bf:a8:f6:53:48: 9b:93:1d:5a:7e:a1:b5:c3:bb:5b:ba:43:37:80:87:76:2b:71: c7:26:90:fb:ed:f0:af:5c:88:ca:0d:b7:85:aa:e6:af:ea:5c: 64:33:0a:d8:9a:d4:68:9a:99:0b:00:90:8c:ec:f6:f1:7a:e7: 1c:47:b5:b6:45:dd:d4:ec:6d:d4:ed:08:46:06:4e:9a:ef:08: 90:e2:81:7b:5d:1e:e1:9b:0e:37:99:25:2e:ed:22:a1:c7:b6: 46:93:bd:06:85:1a:da:82:09:eb:3f:96:a9:ed:a0:63:f7:3e: 08:67:c7:31:bf:08:f6:cb:18:48:bf:48:20:33:e2:0b:74:91: 87:85:67:10:99:d0:d4:19:b8:57:08:12:ac:14:25:93:c3:d4: 59:30:60:41:d8:5b:1c:60:9e:a6:3f:18:43:cf:e7:6c:22:23: be:7e:6f:19:58:7b:8e:c7:62:9d:b5:e2:a9:aa:7a:a6:60:2d: 36:88:e3:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd0eygwklELXfV1xzcQQNkE5geGkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDE1MDA1MDI3WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkN2FkYTA5MDJiZmI0NmVkMzRhNDgzZjQxMTQxOWYwMmZk ZmU2ZmYxMTdjOTYzOTc1NTg5YTIwNTk5MDc0Yjk5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCviX3HL60fqLYYl+uhRXRIMxrlCFqtkTnbwahxUvE65uk7 gN7hCRc9Ox3eJICmnOYV/xvNDvOGBUr6D0pahFROEDePFF4N8GfWQTLFO82Z5EJv pWEuVM33CPinmuupOtqRHV0AhjMHHZ+D364eTWY6/Wio3tzsfkwwnF141H53Si8q c2b91uRkEJA7Fb8HqigU/Lr5twJNR7cwLN93Y/yM8j2lirmzPgS9pv4VC3qXBA+T vxNPosDdKKsT2o0kHOrqgVTc1scZIF61rlemv5JC7GCX6QW4b9RezuCK3Ub9npiX ryw7kA+GtqpgoWJGksCMN0pYGjl1BvEe4EoV/NJtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUT2mqDESU5CsAG1KIjKWRjbGlIA8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzI3ZmVlYTFhLTQ5MzMtNDU3Ny1iOWM0LTk0ODhlMmE1NTBmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPQwDQYJKoZIhvcNAQELBQADggEBAId5XD3oXlkuzch/CbItFuy1OKDK +5DXb/nnE8Xq1XDaTKj7tyTbSXT1D/9vZrZKjD4srHJP5KwToYSc4tjon3tNYHm/ qPZTSJuTHVp+obXDu1u6QzeAh3YrcccmkPvt8K9ciMoNt4Wq5q/qXGQzCtia1Gia mQsAkIzs9vF65xxHtbZF3dTsbdTtCEYGTprvCJDigXtdHuGbDjeZJS7tIqHHtkaT vQaFGtqCCes/lqntoGP3PghnxzG/CPbLGEi/SCAz4gt0kYeFZxCZ0NQZuFcIEqwU JZPD1FkwYEHYWxxgnqY/GEPP52wiI75+bxlYe47HYp214qmqeqZgLTaI43Q= -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:37 2025 by rpki-client