$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa File: 2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa (raw, json) Hash identifier: Hnq8f0N/XeoZkSyGcx/MAPUhYLAd27BtwtRx7sg+8oo= Subject key identifier: 1F:48:5B:87:4F:34:25:7F:8F:A6:01:76:54:9F:4B:83:C3:61:C9:A2 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2DDF163A70B73EB73E31E28BD7F1254BB9D18C2C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa Signing time: Tue 15 Apr 2025 00:50:36 +0000 ROA not before: Tue 15 Apr 2025 00:50:36 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:df:16:3a:70:b7:3e:b7:3e:31:e2:8b:d7:f1:25:4b:b9:d1:8c:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 15 00:50:36 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=2f2a73ca0236237e507f86b491a4fc9d610d872875f3bd0c1825cf72254f515c, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:bb:77:29:86:30:8c:39:eb:5b:b5:73:53:a9: a7:7a:fc:24:92:65:25:7f:6c:63:df:aa:78:72:f2: 52:a1:80:91:e9:99:a3:b8:16:e9:0c:6b:7d:7f:e7: 8a:56:4d:3c:43:6d:d3:66:52:32:69:0b:55:e7:97: 5f:b9:52:50:1e:ce:0e:81:95:5a:1c:dc:41:91:de: 89:34:80:ac:38:1e:c4:3f:1b:51:38:09:7c:4d:7a: 78:0a:72:a6:a5:78:42:fe:74:ba:46:ae:3f:c8:91: 76:b1:67:2e:2e:3c:90:10:0c:92:6d:2a:05:dc:3b: 22:01:04:9a:d6:86:8d:63:c6:84:72:d1:14:ab:e5: 00:5a:b5:78:88:4a:10:55:6b:61:f5:20:2f:f8:3d: bd:7d:24:d2:92:33:49:80:51:42:f8:56:36:fa:f2: 0c:29:55:0b:c1:e4:c6:c4:8e:46:4e:c3:78:50:80: ca:30:79:67:31:b7:78:7c:76:ca:ac:7a:fc:bb:87: 43:94:e6:12:99:21:e6:84:d8:15:fc:68:04:4d:3a: a0:b4:11:d1:ec:fb:f5:7b:28:98:81:56:34:4c:14: 74:95:09:72:41:29:e2:8d:97:34:27:2f:50:b5:09: ec:9a:a7:1d:72:9f:d6:62:b5:a2:8d:31:db:11:6e: 78:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:48:5B:87:4F:34:25:7F:8F:A6:01:76:54:9F:4B:83:C3:61:C9:A2 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2800c70c-6ec1-4d86-a916-4850deb2dfaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.8.0/24 Signature Algorithm: sha256WithRSAEncryption 75:d7:5a:53:e1:00:f5:36:9d:b3:a0:bd:e3:33:01:88:6b:26: 55:8a:f9:9a:3f:78:07:bf:38:3d:07:5a:84:2b:94:83:60:d5: a8:f7:17:97:c9:5d:7e:8e:02:8f:d8:e7:78:d5:ba:c9:3b:f3: 82:78:c5:05:6a:8d:22:29:00:d6:78:3e:e4:5e:06:2a:0d:e9: 4b:36:0d:78:9a:90:d6:61:9f:16:ca:46:51:68:15:9d:ec:96: fe:bf:b9:19:83:73:12:fb:a2:70:fa:e5:76:79:83:52:75:b3: af:6e:be:ae:35:ee:ae:cb:21:2c:db:5d:a5:49:d8:22:29:ae: 71:d5:5d:46:ef:c1:74:68:89:d8:ca:3f:8c:6a:a6:b4:56:ab: bd:6c:82:68:ff:b1:f1:cb:c8:4c:e4:e4:ce:79:26:da:52:72: 89:2b:ee:a0:1f:ff:23:1b:da:23:1e:7f:bd:c4:db:76:fb:8b: e9:ae:7a:73:f2:92:72:c7:14:5e:ca:e7:1e:69:77:38:28:bf: cd:3a:de:e8:9f:82:ca:28:a7:bb:47:9e:73:69:bf:36:d0:d6: 0b:de:5b:2b:5a:cb:1b:de:81:12:5b:22:77:b2:ef:6b:4b:62: 6c:6b:da:36:3b:ad:44:bb:c5:16:77:8f:4f:bc:70:81:25:1e: cc:5c:59:ce -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULd8WOnC3Prc+MeKL1/ElS7nRjCwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDE1MDA1MDM2WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjJhNzNjYTAyMzYyMzdlNTA3Zjg2YjQ5MWE0ZmM5ZDYx MGQ4NzI4NzVmM2JkMGMxODI1Y2Y3MjI1NGY1MTVjMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiu3cphjCMOetbtXNTqad6/CSSZSV/bGPfqnhy8lKhgJHp maO4FukMa31/54pWTTxDbdNmUjJpC1Xnl1+5UlAezg6BlVoc3EGR3ok0gKw4HsQ/ G1E4CXxNengKcqaleEL+dLpGrj/IkXaxZy4uPJAQDJJtKgXcOyIBBJrWho1jxoRy 0RSr5QBatXiIShBVa2H1IC/4Pb19JNKSM0mAUUL4Vjb68gwpVQvB5MbEjkZOw3hQ gMoweWcxt3h8dsqsevy7h0OU5hKZIeaE2BX8aARNOqC0EdHs+/V7KJiBVjRMFHSV CXJBKeKNlzQnL1C1Ceyapx1yn9ZitaKNMdsRbnhNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUH0hbh080JX+PpgF2VJ9Lg8NhyaIwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzI4MDBjNzBjLTZlYzEtNGQ4Ni1hOTE2LTQ4NTBkZWIyZGZhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAgwDQYJKoZIhvcNAQELBQADggEBAHXXWlPhAPU2nbOgveMzAYhrJlWK +Zo/eAe/OD0HWoQrlINg1aj3F5fJXX6OAo/Y53jVusk784J4xQVqjSIpANZ4PuRe BioN6Us2DXiakNZhnxbKRlFoFZ3slv6/uRmDcxL7onD65XZ5g1J1s69uvq417q7L ISzbXaVJ2CIprnHVXUbvwXRoidjKP4xqprRWq71sgmj/sfHLyEzk5M55JtpScokr 7qAf/yMb2iMef73E23b7i+muenPyknLHFF7K5x5pdzgov8063uifgsoop7tHnnNp vzbQ1gveWytayxvegRJbIney72tLYmxr2jY7rUS7xRZ3j0+8cIElHsxcWc4= -----END CERTIFICATE-----Generated at Sat Apr 26 12:23:49 2025 by rpki-client