$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa File: 3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa (raw, json) Hash identifier: +hSxP+tLsV7euML/J6BYhxJVj4VksjZPe/glK32zTC4= Subject key identifier: 4B:6B:2D:98:31:73:9E:E5:8B:11:48:39:70:E0:BA:D4:32:DE:FB:5C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 6F311D6CE19E9B33819092CB4EC189720182C5ED Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa Signing time: Thu 05 Jun 2025 14:37:10 +0000 ROA not before: Thu 05 Jun 2025 14:37:10 +0000 ROA not after: Thu 10 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:31:1d:6c:e1:9e:9b:33:81:90:92:cb:4e:c1:89:72:01:82:c5:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 5 14:37:10 2025 GMT Not After : Jul 10 23:59:59 2025 GMT Subject: serialNumber=42b33b71d207241ffb0e4e40b838fd0af1c67d56538868a6b23aad3683651912, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ff:1b:74:6e:ee:9e:21:ee:de:fa:94:56:b5: a4:47:26:38:76:b2:fd:19:e0:67:2f:b4:93:c3:95: 21:3e:59:e0:1a:d6:14:09:ed:92:30:74:32:c8:60: e3:ff:48:8b:d7:30:40:e3:77:57:4f:73:73:80:6a: 6c:1a:db:de:6d:4b:a9:81:ac:49:c1:dd:a7:93:b8: 52:a4:17:84:f8:93:2b:01:26:cd:20:50:d1:e4:78: 2c:3c:fa:0b:80:97:70:d0:c4:2e:01:26:52:bf:0a: 5c:7a:2d:c3:82:a4:ce:08:1d:d4:f2:ca:20:fc:29: 9b:de:b9:1f:58:80:0b:de:70:36:28:4c:1f:17:01: 0c:ec:d2:e1:17:90:9f:3f:e3:7a:65:5c:a3:c7:08: ba:f9:19:9d:5e:49:52:e3:05:99:3d:f1:64:a7:ec: 19:17:9e:ba:46:c3:9a:54:d6:f1:59:5d:0b:50:e3: 84:5f:d6:7f:80:3b:6d:0f:62:c1:68:92:97:72:af: 3b:03:5a:d4:9d:cb:e4:5e:ad:a9:19:a1:2d:c2:50: 9f:6c:32:28:ef:5c:23:a0:7e:7e:28:26:fe:1e:30: 5c:fc:b1:fc:03:56:95:7d:91:d9:84:75:46:f5:92: a5:4a:c7:af:54:3d:ac:c0:fa:a5:26:fe:db:76:1a: 1f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:6B:2D:98:31:73:9E:E5:8B:11:48:39:70:E0:BA:D4:32:DE:FB:5C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3b8bf231-2b0e-46f8-8db0-a0af1503d780.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.245.0/24 Signature Algorithm: sha256WithRSAEncryption 01:f8:ed:82:95:be:fb:30:e7:75:96:f1:b3:a3:b8:eb:e8:59: 2c:2c:e2:a7:c2:3d:e7:f8:ba:52:80:4d:4e:46:e2:e3:98:2d: ee:be:8e:21:60:d2:fe:3d:d4:c2:57:44:5d:65:7c:63:e2:51: 43:e6:90:fc:b1:b1:c6:73:29:9a:40:22:bc:6a:1b:a0:7a:8e: b9:9a:1b:42:d8:b7:88:76:17:c0:24:fe:f0:20:b6:1f:d4:3b: 95:c3:7f:d4:ef:62:2e:19:5d:56:86:4b:1d:1b:13:d1:41:13: 82:1e:20:64:15:fc:4a:f4:73:bc:53:60:cf:02:b4:ab:e8:fc: 8d:9c:ca:7d:a2:a5:7b:8b:15:46:e7:4f:3e:11:1e:b0:c1:0d: da:20:e6:2d:24:93:a5:20:58:7b:20:89:59:9c:e6:c6:f3:a2: d8:be:93:39:b0:78:fc:c6:a0:88:3b:ab:1d:ce:12:c3:74:fd: 30:ae:21:e0:e1:0c:85:10:8f:66:8d:13:af:d5:23:2c:8c:2a: 5f:15:f6:17:ac:ee:eb:85:9e:de:76:0d:22:57:ac:e3:dc:47: fa:45:3d:a0:c7:a7:f9:40:ac:8a:31:ec:9d:22:e6:b6:7b:88: 00:df:cc:e5:af:db:a3:ce:ec:97:36:0e:21:f9:fd:a4:b8:b5: 09:ac:d1:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbzEdbOGemzOBkJLLTsGJcgGCxe0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjA1MTQzNzEwWhcNMjUwNzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MmIzM2I3MWQyMDcyNDFmZmIwZTRlNDBiODM4ZmQwYWYx YzY3ZDU2NTM4ODY4YTZiMjNhYWQzNjgzNjUxOTEyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDe/xt0bu6eIe7e+pRWtaRHJjh2sv0Z4GcvtJPDlSE+WeAa 1hQJ7ZIwdDLIYOP/SIvXMEDjd1dPc3OAamwa295tS6mBrEnB3aeTuFKkF4T4kysB Js0gUNHkeCw8+guAl3DQxC4BJlK/Clx6LcOCpM4IHdTyyiD8KZveuR9YgAvecDYo TB8XAQzs0uEXkJ8/43plXKPHCLr5GZ1eSVLjBZk98WSn7BkXnrpGw5pU1vFZXQtQ 44Rf1n+AO20PYsFokpdyrzsDWtSdy+RerakZoS3CUJ9sMijvXCOgfn4oJv4eMFz8 sfwDVpV9kdmEdUb1kqVKx69UPazA+qUm/tt2Gh8vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUS2stmDFznuWLEUg5cOC61DLe+1wwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzNiOGJmMjMxLTJiMGUtNDZmOC04ZGIwLWEwYWYxNTAzZDc4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPUwDQYJKoZIhvcNAQELBQADggEBAAH47YKVvvsw53WW8bOjuOvoWSws 4qfCPef4ulKATU5G4uOYLe6+jiFg0v491MJXRF1lfGPiUUPmkPyxscZzKZpAIrxq G6B6jrmaG0LYt4h2F8Ak/vAgth/UO5XDf9TvYi4ZXVaGSx0bE9FBE4IeIGQV/Er0 c7xTYM8CtKvo/I2cyn2ipXuLFUbnTz4RHrDBDdog5i0kk6UgWHsgiVmc5sbzoti+ kzmwePzGoIg7qx3OEsN0/TCuIeDhDIUQj2aNE6/VIyyMKl8V9hes7uuFnt52DSJX rOPcR/pFPaDHp/lArIox7J0i5rZ7iADfzOWv26PO7Jc2DiH5/aS4tQms0ck= -----END CERTIFICATE-----Generated at Sat Jun 14 18:52:57 2025 by rpki-client