$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa File: 2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa (raw, json) Hash identifier: yDm2Fapxy6V1gXbvd35CsK+EZeLuh2nCdrLAkQ9IOZQ= Subject key identifier: 48:C4:A2:F7:B8:F0:26:3D:01:C5:0F:8F:0C:B2:6A:4F:D3:2C:AB:1C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1CBE01D79FEC25398DC11C47460E0E95DC357E5E Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa Signing time: Sat 31 May 2025 00:40:45 +0000 ROA not before: Sat 31 May 2025 00:40:45 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:be:01:d7:9f:ec:25:39:8d:c1:1c:47:46:0e:0e:95:dc:35:7e:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 31 00:40:45 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=a338d703287a148136d581fbffe25de8d29da1cd70fa0a7cd2979eb5ba1cf591, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:34:45:28:83:de:cd:b4:95:f6:fd:10:05:a5: 94:f6:06:e8:6f:76:3c:2b:98:3e:b8:08:f5:bb:63: 33:0c:23:69:7b:a2:8d:fd:b3:b5:d3:3c:84:75:3b: 5a:7f:18:0a:5d:d6:35:de:99:a7:e5:c0:9b:0a:33: 5b:97:4c:8b:3e:11:03:bb:13:7d:59:ea:2c:c6:e5: 59:a9:b1:16:9b:d4:6e:7c:af:ec:db:21:d5:8f:47: 6b:55:64:46:7e:ab:4e:e3:a2:01:83:43:17:43:38: 0d:e5:6c:ed:bb:f1:75:6f:fb:0b:69:dc:bf:39:7f: ed:c4:e3:1b:4f:3a:26:92:98:70:d0:0a:e7:f2:a9: 88:98:e4:ae:b4:66:3e:87:07:fc:df:34:82:12:74: 4d:57:6c:82:f6:b2:af:c7:2e:7c:62:4b:29:c7:76: 3c:b3:83:9a:ef:ba:30:ae:b9:ad:db:27:d8:b2:c3: 8c:64:5d:67:6e:21:cb:57:0b:db:a0:37:ff:00:30: 72:98:1e:38:a0:15:1a:78:34:49:75:01:0c:21:c0: b8:c5:3d:7d:f1:89:53:c4:b7:97:39:03:2d:6e:61: 47:cd:fa:36:4f:ec:b5:c0:a2:b5:a1:f1:4a:bf:c7: e5:e7:91:2b:92:e9:33:bd:f6:7f:ea:b0:b2:df:e2: 0a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:C4:A2:F7:B8:F0:26:3D:01:C5:0F:8F:0C:B2:6A:4F:D3:2C:AB:1C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2f256c2b-8bcf-47b5-b2f5-6d84ff1d5fe9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.26.0/23 Signature Algorithm: sha256WithRSAEncryption 35:06:f7:13:34:64:fe:eb:67:93:d4:5a:ab:82:9b:74:1f:e4: cb:17:3a:06:4d:48:a7:03:e8:b2:be:a7:ec:f6:09:09:68:17: a2:bd:63:5a:d0:3f:db:55:13:e4:7a:43:e3:f8:d2:54:a7:35: ef:35:1b:92:9f:bc:67:a1:f5:4b:28:2f:91:06:b6:5d:6f:db: 66:35:3c:2c:f9:19:6f:7c:b9:6e:4d:42:89:82:0d:c1:ae:e8: 17:88:97:e9:ef:cd:3c:0c:63:31:3a:cc:ae:3c:d1:ba:d3:c0: 7a:ed:cb:97:ec:c5:79:99:d7:0c:04:b4:be:f5:68:41:91:55: a6:ff:27:71:90:2a:4e:21:ac:77:8f:37:e3:c5:94:6d:7c:66: 48:9e:36:ac:47:8c:bc:a1:94:2d:c8:d5:fe:c0:7c:e4:88:21: fa:6a:44:93:3c:38:f6:b6:c3:f1:77:34:75:36:7c:27:9c:87: 0c:52:55:44:83:a4:e4:53:cf:68:f6:66:19:38:b2:4a:90:33: 79:1e:f9:82:3a:89:bf:b6:1f:19:d0:bb:5e:cd:05:82:34:07: ed:15:a2:f7:51:58:2e:79:2e:90:28:90:8b:32:8e:01:67:c1: 0d:4f:2e:29:09:22:65:e0:ec:8b:df:9b:30:76:47:eb:93:19: f7:32:23:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHL4B15/sJTmNwRxHRg4Oldw1fl4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTMxMDA0MDQ1WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzM4ZDcwMzI4N2ExNDgxMzZkNTgxZmJmZmUyNWRlOGQy OWRhMWNkNzBmYTBhN2NkMjk3OWViNWJhMWNmNTkxMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDONEUog97NtJX2/RAFpZT2BuhvdjwrmD64CPW7YzMMI2l7 oo39s7XTPIR1O1p/GApd1jXemaflwJsKM1uXTIs+EQO7E31Z6izG5VmpsRab1G58 r+zbIdWPR2tVZEZ+q07jogGDQxdDOA3lbO278XVv+wtp3L85f+3E4xtPOiaSmHDQ CufyqYiY5K60Zj6HB/zfNIISdE1XbIL2sq/HLnxiSynHdjyzg5rvujCuua3bJ9iy w4xkXWduIctXC9ugN/8AMHKYHjigFRp4NEl1AQwhwLjFPX3xiVPEt5c5Ay1uYUfN +jZP7LXAorWh8Uq/x+XnkSuS6TO99n/qsLLf4grpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSMSi97jwJj0BxQ+PDLJqT9MsqxwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJmMjU2YzJiLThiY2YtNDdiNS1iMmY1LTZkODRmZjFkNWZlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBowDQYJKoZIhvcNAQELBQADggEBADUG9xM0ZP7rZ5PUWquCm3Qf5MsX OgZNSKcD6LK+p+z2CQloF6K9Y1rQP9tVE+R6Q+P40lSnNe81G5KfvGeh9UsoL5EG tl1v22Y1PCz5GW98uW5NQomCDcGu6BeIl+nvzTwMYzE6zK480brTwHrty5fsxXmZ 1wwEtL71aEGRVab/J3GQKk4hrHePN+PFlG18ZkieNqxHjLyhlC3I1f7AfOSIIfpq RJM8OPa2w/F3NHU2fCechwxSVUSDpORTz2j2Zhk4skqQM3ke+YI6ib+2HxnQu17N BYI0B+0VovdRWC55LpAokIsyjgFnwQ1PLikJImXg7IvfmzB2R+uTGfcyI/I= -----END CERTIFICATE-----Generated at Sat Jun 14 06:55:58 2025 by rpki-client