$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4f4eb4db-a0e0-4435-906c-dd0adf5c7803.roa File: 4f4eb4db-a0e0-4435-906c-dd0adf5c7803.roa (raw, json) Hash identifier: lt4g6SLtLhkctLcWMWsTMYoJmhkx/bqxUGMVDwErovg= Subject key identifier: DD:EC:5F:2B:47:A6:43:37:27:A1:C6:9C:F6:23:D4:38:E2:18:83:B7 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1DD297F705DA22F815E2D8D961DE21C37D41A347 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4f4eb4db-a0e0-4435-906c-dd0adf5c7803.roa Signing time: Fri 25 Apr 2025 17:40:36 +0000 ROA not before: Fri 25 Apr 2025 17:40:36 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:d2:97:f7:05:da:22:f8:15:e2:d8:d9:61:de:21:c3:7d:41:a3:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 25 17:40:36 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=e0f2923e4fe0b8cf698d93ed665dce447447e094f6bbe474b79c3d2c936617e9, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:be:d5:25:1e:18:0f:ed:f9:6d:26:5a:f2:f5: 8d:fd:d1:77:66:4d:a3:24:ff:be:bd:c7:f4:04:a8: b5:a0:d5:09:ee:44:6b:d1:20:af:08:3b:65:19:ca: 6a:e7:d6:41:d9:11:25:af:0c:48:75:b9:08:48:b1: cf:c5:02:e7:90:58:99:55:9b:b9:5c:d5:66:ca:3d: cb:89:1b:dc:2c:68:84:cb:f2:86:1f:c6:f2:7c:6a: f5:f2:68:82:fd:9f:3e:31:55:ac:31:bf:93:c9:5d: 56:35:b0:18:97:59:fe:94:f4:02:d8:cb:a4:4b:db: ce:60:d0:b3:f0:56:42:05:36:ea:3d:a6:33:79:00: c4:f5:29:06:90:c0:7e:aa:30:7e:88:f1:c0:db:df: be:0f:97:06:ef:45:25:7d:d8:4d:4a:44:8e:59:c5: dc:95:ef:e3:ca:86:96:8e:36:56:a3:a5:ba:5c:18: a0:6a:9a:96:6a:99:8e:91:73:86:ec:af:f9:8c:ab: 8a:b3:17:d4:11:6f:ef:d4:3e:ad:87:26:26:c6:dd: 86:55:5f:f6:ec:a3:d8:92:aa:5f:83:17:78:c2:67: 74:7d:dc:0f:de:92:61:0f:ad:09:4c:74:42:0f:0a: 46:39:ac:a4:56:11:01:16:d9:18:40:20:8b:4d:cd: 60:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:EC:5F:2B:47:A6:43:37:27:A1:C6:9C:F6:23:D4:38:E2:18:83:B7 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/4f4eb4db-a0e0-4435-906c-dd0adf5c7803.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.0.0/12 Signature Algorithm: sha256WithRSAEncryption 66:84:44:68:5e:99:ec:73:43:26:b7:50:79:f6:a7:e4:19:82: 19:26:d4:8a:d0:d7:0d:71:6f:59:cf:39:88:fe:bd:ef:06:69: 13:a4:b7:7c:6c:a5:e3:4e:10:ce:54:cc:b2:0f:44:6d:ce:97: 74:55:1e:bd:63:d2:da:92:9a:6e:85:0f:f8:9b:1e:73:01:66: f2:2c:2d:d4:6c:d1:f8:b1:dd:c1:b2:7c:cf:f7:b1:27:ec:af: 17:47:30:89:18:59:d6:8d:b7:17:c8:53:76:cf:a3:bd:fd:27: 65:81:a7:d2:15:9a:ee:01:73:03:31:52:d1:82:10:3a:dc:64: 93:f5:2d:b8:fa:ae:2a:e9:ee:2a:45:fe:65:65:41:52:9c:f7: b6:99:09:b7:a6:9c:f1:ba:0b:89:22:11:8f:6a:10:2b:a5:4f: 58:f7:c0:1e:c7:92:6c:51:43:ba:b4:d3:2f:ef:ce:a9:82:cd: d2:04:be:fe:52:2a:d9:f5:7b:e6:ab:f8:cc:ee:6c:b5:17:b9: fe:27:8b:7c:a2:61:2e:07:16:8d:22:0e:61:c0:58:a9:71:70: c6:17:c6:c0:b5:70:55:76:54:80:8a:ff:d6:db:43:a7:e1:7c: 47:5f:ff:55:cc:64:aa:c1:d8:df:86:13:f4:6c:c4:59:fd:88: 22:e6:f0:4e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHdKX9wXaIvgV4tjZYd4hw31Bo0cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDI1MTc0MDM2WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMGYyOTIzZTRmZTBiOGNmNjk4ZDkzZWQ2NjVkY2U0NDc0 NDdlMDk0ZjZiYmU0NzRiNzljM2QyYzkzNjYxN2U5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRvtUlHhgP7fltJlry9Y390XdmTaMk/769x/QEqLWg1Qnu RGvRIK8IO2UZymrn1kHZESWvDEh1uQhIsc/FAueQWJlVm7lc1WbKPcuJG9wsaITL 8oYfxvJ8avXyaIL9nz4xVawxv5PJXVY1sBiXWf6U9ALYy6RL285g0LPwVkIFNuo9 pjN5AMT1KQaQwH6qMH6I8cDb374PlwbvRSV92E1KRI5ZxdyV7+PKhpaONlajpbpc GKBqmpZqmY6Rc4bsr/mMq4qzF9QRb+/UPq2HJibG3YZVX/bso9iSql+DF3jCZ3R9 3A/ekmEPrQlMdEIPCkY5rKRWEQEW2RhAIItNzWDvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3exfK0emQzcnocac9iPUOOIYg7cwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzRmNGViNGRiLWEwZTAtNDQzNS05MDZjLWRkMGFkZjVjNzgwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwQjYDANBgkqhkiG9w0BAQsFAAOCAQEAZoREaF6Z7HNDJrdQefan5BmCGSbU itDXDXFvWc85iP697wZpE6S3fGyl404QzlTMsg9Ebc6XdFUevWPS2pKaboUP+Jse cwFm8iwt1GzR+LHdwbJ8z/exJ+yvF0cwiRhZ1o23F8hTds+jvf0nZYGn0hWa7gFz AzFS0YIQOtxkk/UtuPquKunuKkX+ZWVBUpz3tpkJt6ac8boLiSIRj2oQK6VPWPfA HseSbFFDurTTL+/OqYLN0gS+/lIq2fV75qv4zO5stRe5/ieLfKJhLgcWjSIOYcBY qXFwxhfGwLVwVXZUgIr/1ttDp+F8R1//VcxkqsHY34YT9GzEWf2IIubwTg== -----END CERTIFICATE-----Generated at Sat Apr 26 12:20:09 2025 by rpki-client