$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa File: 3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa (raw, json) Hash identifier: R5LaKFJiC3SObUM8jxeoWTraB9SsRz2gENaa8Lp8rwQ= Subject key identifier: 1C:CA:AE:54:F1:96:2B:B1:36:47:F2:2E:99:F5:54:39:4D:96:D7:A1 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1FB6677D6015A46E70B7A8D4BD75007F489B670D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa Signing time: Thu 05 Jun 2025 14:37:07 +0000 ROA not before: Thu 05 Jun 2025 14:37:07 +0000 ROA not after: Thu 10 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:b6:67:7d:60:15:a4:6e:70:b7:a8:d4:bd:75:00:7f:48:9b:67:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 5 14:37:07 2025 GMT Not After : Jul 10 23:59:59 2025 GMT Subject: serialNumber=a046d261d6aafe447bb182bf2bda7a5ec186ee88dce774bc5ef54111b385184f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:07:37:9f:ce:5f:92:fd:94:ed:1a:ed:f4:c4: c9:59:2a:8f:24:46:68:87:ae:da:5f:34:a3:c1:ba: 3c:7e:43:da:5a:c5:33:1e:9c:37:03:2a:61:40:46: 04:b0:75:d2:88:49:7b:56:12:23:c2:40:c6:bf:55: e4:d8:94:dc:57:69:b5:f9:9f:e3:c8:bb:11:06:ce: 93:ea:84:4c:8c:4f:88:a3:d1:d3:e8:c7:44:0d:8f: 6c:1e:4a:21:54:10:bb:ee:7d:c9:5d:b3:84:86:6b: 25:63:8f:2c:b6:af:80:61:89:66:6f:eb:8b:ff:e7: d5:31:af:5c:75:00:26:c6:a4:cc:26:17:ce:91:e8: c8:68:72:44:7b:a8:71:7e:31:92:2e:39:d4:e2:57: c4:d8:be:d0:d0:f4:76:e4:4f:e5:6d:68:d8:3b:75: 10:51:9c:c7:3d:e5:76:7e:3e:3a:05:50:ef:19:7e: 28:c4:1c:ca:75:7e:ec:da:eb:5a:3b:d5:94:c2:4b: a4:10:67:c0:1b:9d:11:d2:71:6a:c9:3f:02:fe:bc: 26:43:4d:3f:da:ba:5a:67:00:2c:8b:2f:ff:f3:b4: 09:05:ea:e5:29:5e:a6:2c:7d:59:9f:b0:52:7b:b8: e3:ca:5b:7e:cc:5b:61:2e:f5:68:c2:4b:62:77:0e: 7e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:CA:AE:54:F1:96:2B:B1:36:47:F2:2E:99:F5:54:39:4D:96:D7:A1 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/3e0aab8e-78a1-4b4a-b87c-4a79294fc0a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.254.0/24 Signature Algorithm: sha256WithRSAEncryption 23:29:8a:e6:1b:2d:95:c6:90:73:59:05:dc:e6:e9:16:2e:e5: 0f:70:cd:cc:f1:41:22:d3:38:4d:09:6e:c7:06:b3:d3:6d:6b: bf:1e:c0:b7:67:32:13:a3:51:c8:61:73:50:45:a7:3a:38:87: 12:6d:e7:b6:96:3c:10:e8:95:41:98:24:74:e6:f6:25:99:92: 89:5c:ce:06:fb:8e:60:e7:c5:ee:e4:01:6b:60:70:f9:95:50: 24:1b:f4:26:49:e1:98:dd:91:74:f9:18:23:53:6a:c4:bc:91: 70:a1:ea:1d:4b:ed:6e:4f:e1:4e:69:aa:6b:ae:e6:fd:70:91: 0f:ab:ef:d2:42:3a:98:9c:d5:c3:6d:04:49:97:ea:f0:79:8a: 7b:e2:b7:6b:f0:8d:12:47:aa:af:52:52:06:06:d4:76:c0:99: c8:87:bc:30:71:a5:e9:ad:a7:cb:09:84:8e:07:0c:f4:b0:2a: 85:a9:3b:ac:97:f1:01:04:e4:c7:c2:3a:6c:de:1c:01:e2:2f: cc:8c:4d:2b:b8:4d:b8:34:c1:82:88:1a:9c:7a:4b:48:85:e0: e7:d4:4e:66:42:78:6e:fb:34:e4:3d:66:58:67:2f:70:de:92: 84:14:a9:53:6a:db:cf:c4:6a:b7:b8:46:93:d9:21:7f:83:dd: 7f:29:3c:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH7ZnfWAVpG5wt6jUvXUAf0ibZw0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjA1MTQzNzA3WhcNMjUwNzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDQ2ZDI2MWQ2YWFmZTQ0N2JiMTgyYmYyYmRhN2E1ZWMx ODZlZTg4ZGNlNzc0YmM1ZWY1NDExMWIzODUxODRmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwBzefzl+S/ZTtGu30xMlZKo8kRmiHrtpfNKPBujx+Q9pa xTMenDcDKmFARgSwddKISXtWEiPCQMa/VeTYlNxXabX5n+PIuxEGzpPqhEyMT4ij 0dPox0QNj2weSiFUELvufclds4SGayVjjyy2r4BhiWZv64v/59Uxr1x1ACbGpMwm F86R6MhockR7qHF+MZIuOdTiV8TYvtDQ9HbkT+VtaNg7dRBRnMc95XZ+PjoFUO8Z fijEHMp1fuza61o71ZTCS6QQZ8AbnRHScWrJPwL+vCZDTT/aulpnACyLL//ztAkF 6uUpXqYsfVmfsFJ7uOPKW37MW2Eu9WjCS2J3Dn4JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHMquVPGWK7E2R/IumfVUOU2W16EwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzNlMGFhYjhlLTc4YTEtNGI0YS1iODdjLTRhNzkyOTRmYzBhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYP4wDQYJKoZIhvcNAQELBQADggEBACMpiuYbLZXGkHNZBdzm6RYu5Q9w zczxQSLTOE0JbscGs9Nta78ewLdnMhOjUchhc1BFpzo4hxJt57aWPBDolUGYJHTm 9iWZkolczgb7jmDnxe7kAWtgcPmVUCQb9CZJ4ZjdkXT5GCNTasS8kXCh6h1L7W5P 4U5pqmuu5v1wkQ+r79JCOpic1cNtBEmX6vB5invit2vwjRJHqq9SUgYG1HbAmciH vDBxpemtp8sJhI4HDPSwKoWpO6yX8QEE5MfCOmzeHAHiL8yMTSu4Tbg0wYKIGpx6 S0iF4OfUTmZCeG77NOQ9ZlhnL3DekoQUqVNq28/Eare4RpPZIX+D3X8pPHo= -----END CERTIFICATE-----Generated at Sat Jun 14 06:46:27 2025 by rpki-client