$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/42d40d51-4cca-4b97-bb1c-a6e1af32adcc.roa File: 42d40d51-4cca-4b97-bb1c-a6e1af32adcc.roa (raw, json) Hash identifier: 9aCxxeS6Lxt/7/2+BeqKHaBNKXT+ZwVnmjPhX8GO/5w= Subject key identifier: FA:5D:2A:1B:E9:85:6E:A2:4D:B0:DB:CB:F6:F9:8C:B5:29:1B:A6:03 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2E73C59E2B33737E8468C7C013A4D85129FCD4B7 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/42d40d51-4cca-4b97-bb1c-a6e1af32adcc.roa Signing time: Fri 25 Apr 2025 17:40:19 +0000 ROA not before: Fri 25 Apr 2025 17:40:19 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.48.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:73:c5:9e:2b:33:73:7e:84:68:c7:c0:13:a4:d8:51:29:fc:d4:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 25 17:40:19 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=33d804da8536043b94e9988794a80602deb7fb1638773819929753372840e66e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c8:be:19:6d:ef:2e:b1:bf:cf:83:fa:31:81: 1f:af:e8:66:d4:ef:da:cb:15:77:c6:da:3e:c5:4d: 2e:0e:25:e0:d1:27:af:a6:1e:e6:0c:8c:86:bf:05: 4a:47:13:89:c7:50:f6:4e:4e:dd:31:54:9e:ca:8f: 14:b2:4d:ff:0b:85:99:f6:ad:aa:66:fd:8f:47:ca: 6d:2a:a8:05:af:5d:e6:2f:31:77:72:2b:ed:dd:0e: 5f:09:a9:87:21:df:8c:6f:a6:68:64:a5:a0:1f:cb: 13:ff:8a:a6:c8:16:65:55:68:32:cd:97:e9:d2:ab: 4f:03:be:a5:86:cf:03:de:43:a3:05:25:35:ac:79: a5:07:fc:e4:d4:04:14:19:ae:07:a0:27:95:b7:e9: 46:f8:cc:b1:bd:92:7e:c2:68:3d:31:4e:b5:cd:1a: 73:bc:ba:21:4a:fd:e2:d0:7c:d6:36:6a:02:9d:e0: 32:74:67:61:d8:2e:2d:b3:ba:74:8c:95:85:ec:40: 1a:b4:71:9e:6e:6c:b9:32:35:a7:6a:3e:da:90:a4: 49:bd:a2:0b:a3:d8:4d:ee:ed:25:40:ee:ca:91:a2: 76:cb:10:e2:4d:59:63:c8:d2:a8:a5:d0:29:b8:87: df:a5:6b:4d:c7:8a:63:8a:66:06:dd:14:ff:0e:db: 99:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:5D:2A:1B:E9:85:6E:A2:4D:B0:DB:CB:F6:F9:8C:B5:29:1B:A6:03 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/42d40d51-4cca-4b97-bb1c-a6e1af32adcc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.48.0/22 Signature Algorithm: sha256WithRSAEncryption 85:c0:02:27:5b:f5:6f:3e:f8:45:ef:68:e8:53:f5:72:e2:e7: d6:33:9f:88:c5:ce:c0:4a:14:a7:3f:ec:0c:dc:1b:05:40:f0: 9f:68:d4:d5:99:40:e6:7e:e6:db:88:b5:7e:2b:de:d2:99:37: d0:56:d8:91:e2:da:3b:d4:16:bf:5b:ec:38:5b:79:ca:af:ca: 0b:e8:99:bd:d8:00:65:cb:50:0c:9e:ec:d1:8f:96:b0:7e:ac: de:c6:45:b7:80:0a:49:73:99:ad:d0:c0:0c:63:8c:56:fa:24: 32:b5:a4:f0:c0:ed:67:b5:d2:c1:34:86:24:74:41:79:75:3c: 5c:6c:c3:d5:36:b4:40:49:c4:b9:e1:0c:cc:88:a0:71:c9:46: 07:f8:d9:54:ec:4f:55:46:b6:9b:cf:4c:47:3c:7c:36:95:4b: ef:f8:c2:f1:98:45:76:cd:38:35:e5:44:1e:b1:3d:85:4e:1c: 2f:81:d2:16:57:06:11:c2:4b:3a:a1:1a:e1:d1:c6:34:cb:9f: fb:69:db:4b:dc:3f:a6:ce:9b:ba:2e:52:03:72:b6:85:14:c9: 3c:78:fd:e8:d0:3a:31:8c:d1:ad:c1:85:8c:b4:e8:a3:bf:2e: 19:90:b0:af:bb:f8:92:2f:e5:f2:2d:3a:1e:55:36:25:61:b5: 34:db:67:f5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULnPFniszc36EaMfAE6TYUSn81LcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDI1MTc0MDE5WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzM2Q4MDRkYTg1MzYwNDNiOTRlOTk4ODc5NGE4MDYwMmRl YjdmYjE2Mzg3NzM4MTk5Mjk3NTMzNzI4NDBlNjZlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHyL4Zbe8usb/Pg/oxgR+v6GbU79rLFXfG2j7FTS4OJeDR J6+mHuYMjIa/BUpHE4nHUPZOTt0xVJ7KjxSyTf8LhZn2rapm/Y9Hym0qqAWvXeYv MXdyK+3dDl8JqYch34xvpmhkpaAfyxP/iqbIFmVVaDLNl+nSq08DvqWGzwPeQ6MF JTWseaUH/OTUBBQZrgegJ5W36Ub4zLG9kn7CaD0xTrXNGnO8uiFK/eLQfNY2agKd 4DJ0Z2HYLi2zunSMlYXsQBq0cZ5ubLkyNadqPtqQpEm9oguj2E3u7SVA7sqRonbL EOJNWWPI0qil0Cm4h9+la03HimOKZgbdFP8O25npAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+l0qG+mFbqJNsNvL9vmMtSkbpgMwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzQyZDQwZDUxLTRjY2EtNGI5Ny1iYjFjLWE2ZTFhZjMyYWRjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYDAwDQYJKoZIhvcNAQELBQADggEBAIXAAidb9W8++EXvaOhT9XLi59Yz n4jFzsBKFKc/7AzcGwVA8J9o1NWZQOZ+5tuItX4r3tKZN9BW2JHi2jvUFr9b7Dhb ecqvygvomb3YAGXLUAye7NGPlrB+rN7GRbeACklzma3QwAxjjFb6JDK1pPDA7We1 0sE0hiR0QXl1PFxsw9U2tEBJxLnhDMyIoHHJRgf42VTsT1VGtpvPTEc8fDaVS+/4 wvGYRXbNODXlRB6xPYVOHC+B0hZXBhHCSzqhGuHRxjTLn/tp20vcP6bOm7ouUgNy toUUyTx4/ejQOjGM0a3BhYy06KO/LhmQsK+7+JIv5fItOh5VNiVhtTTbZ/U= -----END CERTIFICATE-----Generated at Sat Apr 26 12:57:35 2025 by rpki-client