$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa File: 5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa (raw, json) Hash identifier: cXwuSFG9uW9RqcWEp8nBwDC9qJKctUcSwe4/e3arE98= Subject key identifier: 2B:57:15:2A:67:CA:BE:EC:69:F3:D4:AF:C2:00:2C:60:B6:D5:3D:16 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5B56BBB9606474025DA1CA25BFA8856F585F655C Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa Signing time: Fri 25 Apr 2025 17:40:12 +0000 ROA not before: Fri 25 Apr 2025 17:40:12 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:56:bb:b9:60:64:74:02:5d:a1:ca:25:bf:a8:85:6f:58:5f:65:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 25 17:40:12 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=c4c1752129a74bdc5082642d7a3ec387270ac32f12d2db5217fd107e0cfffb13, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:09:25:6b:f2:4a:99:1c:b3:fa:6e:24:3a:30: 05:1a:3d:45:2f:08:62:0b:39:87:7d:99:c9:ab:38: 78:a1:ff:59:1a:25:dc:9a:7a:e4:0f:31:49:b8:05: 6e:fb:5d:84:23:c4:70:a4:e5:fa:9a:90:65:15:f2: 39:75:b3:06:37:35:bf:36:1e:65:03:ad:42:e0:63: 1b:7e:b6:d2:3a:1a:d8:b9:2f:cc:66:7e:d8:e3:08: 32:49:b9:ea:95:28:02:69:30:e8:02:23:7f:99:6a: 69:d0:42:ab:85:af:f5:4a:48:28:ef:c1:f8:ec:60: 70:91:61:19:13:d7:67:78:7e:34:c5:36:a1:6c:56: e0:b5:c5:1f:97:63:60:90:e5:f5:e6:aa:a2:20:70: 5f:5b:79:aa:7f:45:d3:00:3b:52:f0:bd:ed:43:cf: d4:1b:47:2d:c4:0d:05:6b:db:2d:3d:25:db:06:64: 57:52:68:9a:6e:90:b8:bf:e2:25:04:70:50:16:53: 08:e9:62:4a:16:cb:32:04:fa:0c:53:38:17:4c:b5: d3:ef:52:b3:5b:0c:fd:c4:5c:63:29:ca:1d:e6:68: 2c:f8:f7:f0:13:4a:df:dc:1d:e8:2d:e0:3a:c2:b9: ef:9f:47:a8:af:db:52:48:a3:e0:21:ea:1e:f2:03: d9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:57:15:2A:67:CA:BE:EC:69:F3:D4:AF:C2:00:2C:60:B6:D5:3D:16 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/5d6508ce-47a1-4002-b03b-9ce21b16cf60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.14.0/24 Signature Algorithm: sha256WithRSAEncryption 22:ee:1c:91:a3:24:85:87:58:f3:32:a6:d0:49:58:8d:53:cd: 7e:dc:e2:14:da:f9:d2:18:ae:46:af:cd:29:05:48:da:9e:fa: 7d:14:10:67:74:32:7f:f6:7f:ce:ce:8d:cb:e0:4c:16:79:8d: 2b:9c:50:ab:58:d6:21:63:28:5c:b3:a0:1c:98:4c:48:1d:9f: 21:bc:0f:4a:a9:7d:2e:12:c4:dc:8e:70:e3:13:4b:c8:eb:d4: a3:11:bf:b3:36:6c:2c:80:df:b8:1b:82:5b:60:75:90:07:31: 7d:6d:bc:09:88:9a:75:41:8b:e7:bb:6e:04:70:98:7b:f6:e9: ba:ee:93:fc:4a:9d:d1:d5:e0:90:13:60:54:f1:94:0d:53:1a: a6:07:09:3a:c3:23:7f:6d:12:5d:dc:be:e6:45:7b:b7:5c:ee: 94:bc:50:18:6a:01:cb:11:6b:68:47:1b:14:5d:84:d0:54:9e: 25:88:ed:bb:ab:5c:1b:a2:80:87:3a:2e:41:9b:c2:6a:94:e7: 4b:8d:f7:7d:de:b7:50:de:01:8b:7c:36:05:bb:08:2d:f3:85: 2b:fd:f6:11:a4:be:6a:f1:66:cd:2d:23:74:46:e6:a2:5a:92: 69:ae:f5:84:fe:cb:81:0c:47:93:7a:85:c7:9d:e1:c8:89:a0: 1c:b2:45:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW1a7uWBkdAJdocolv6iFb1hfZVwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDI1MTc0MDEyWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNGMxNzUyMTI5YTc0YmRjNTA4MjY0MmQ3YTNlYzM4NzI3 MGFjMzJmMTJkMmRiNTIxN2ZkMTA3ZTBjZmZmYjEzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChCSVr8kqZHLP6biQ6MAUaPUUvCGILOYd9mcmrOHih/1ka JdyaeuQPMUm4BW77XYQjxHCk5fqakGUV8jl1swY3Nb82HmUDrULgYxt+ttI6Gti5 L8xmftjjCDJJueqVKAJpMOgCI3+ZamnQQquFr/VKSCjvwfjsYHCRYRkT12d4fjTF NqFsVuC1xR+XY2CQ5fXmqqIgcF9beap/RdMAO1Lwve1Dz9QbRy3EDQVr2y09JdsG ZFdSaJpukLi/4iUEcFAWUwjpYkoWyzIE+gxTOBdMtdPvUrNbDP3EXGMpyh3maCz4 9/ATSt/cHegt4DrCue+fR6iv21JIo+Ah6h7yA9kJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUK1cVKmfKvuxp89SvwgAsYLbVPRYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzVkNjUwOGNlLTQ3YTEtNDAwMi1iMDNiLTljZTIxYjE2Y2Y2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYA4wDQYJKoZIhvcNAQELBQADggEBACLuHJGjJIWHWPMyptBJWI1TzX7c 4hTa+dIYrkavzSkFSNqe+n0UEGd0Mn/2f87OjcvgTBZ5jSucUKtY1iFjKFyzoByY TEgdnyG8D0qpfS4SxNyOcOMTS8jr1KMRv7M2bCyA37gbgltgdZAHMX1tvAmImnVB i+e7bgRwmHv26bruk/xKndHV4JATYFTxlA1TGqYHCTrDI39tEl3cvuZFe7dc7pS8 UBhqAcsRa2hHGxRdhNBUniWI7burXBuigIc6LkGbwmqU50uN933et1DeAYt8NgW7 CC3zhSv99hGkvmrxZs0tI3RG5qJakmmu9YT+y4EMR5N6hced4ciJoByyRfg= -----END CERTIFICATE-----Generated at Sat Apr 26 14:21:31 2025 by rpki-client