$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/66fb40d9-76e8-4ce1-9643-8d4c4f968118.roa File: 66fb40d9-76e8-4ce1-9643-8d4c4f968118.roa (raw, json) Hash identifier: 8DJlnbmJvpkLpViLW36tDRMVcVFG7DGwo+1Paeibk30= Subject key identifier: 13:31:63:26:45:91:E7:FE:7E:C4:57:B9:9A:B8:77:C0:8F:A6:59:ED Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5267BF45C0C77927AC008B2C9815E250303AB9D8 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/66fb40d9-76e8-4ce1-9643-8d4c4f968118.roa Signing time: Thu 05 Jun 2025 14:39:17 +0000 ROA not before: Thu 05 Jun 2025 14:39:17 +0000 ROA not after: Thu 10 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:67:bf:45:c0:c7:79:27:ac:00:8b:2c:98:15:e2:50:30:3a:b9:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 5 14:39:17 2025 GMT Not After : Jul 10 23:59:59 2025 GMT Subject: serialNumber=d5985b97d5b651de016e5e197b6ad45ca392f2ebc3dbd053c00c29108b15ffb7, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a3:40:40:e2:42:0a:30:33:00:e5:41:a6:3c: a9:43:79:25:eb:f2:58:76:0a:dd:f6:bf:65:38:f6: 77:50:86:41:ed:0d:48:25:dd:55:76:39:69:95:31: e2:9e:07:a4:b2:f0:d7:72:cb:9f:ba:37:7b:7a:a4: 01:25:51:47:21:55:6a:43:66:92:46:52:ca:31:f7: c1:81:65:82:25:fc:39:1e:f1:9d:30:fc:b1:02:f4: 96:fd:9c:1c:12:54:5b:5a:2a:c7:a6:5e:41:9e:38: 3a:b6:40:b5:fa:ce:db:79:f6:3c:77:44:f5:e2:cb: 69:70:64:49:75:2c:63:eb:53:c4:de:04:f7:23:48: 8f:ff:49:ed:9c:45:fa:b3:43:dd:1d:f9:98:75:31: 2e:75:ee:81:95:fb:d8:86:73:ff:65:10:fc:ad:74: 81:d4:68:d0:01:7e:a6:e0:53:07:c3:74:bd:c9:13: 8f:29:bd:ff:58:24:c9:de:38:41:5b:26:e9:e6:90: c4:09:cf:9b:02:0b:31:62:d1:e5:b5:7e:7e:bf:27: 22:12:ab:18:b1:02:25:22:ee:d9:d0:f6:a8:53:73: f7:e9:5a:8c:19:ad:1b:98:80:0d:51:55:70:32:7e: 1d:f3:4f:23:52:e8:61:0e:8c:64:58:09:2e:b4:22: 4e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:31:63:26:45:91:E7:FE:7E:C4:57:B9:9A:B8:77:C0:8F:A6:59:ED X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/66fb40d9-76e8-4ce1-9643-8d4c4f968118.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.0.0/16 Signature Algorithm: sha256WithRSAEncryption 55:0b:3f:bc:a5:8f:de:53:84:be:ec:c8:e7:1b:a8:a2:42:3e: e1:ed:46:6a:42:f7:4b:0e:e2:80:ba:40:0e:98:03:29:1e:6e: 30:d9:1b:39:09:46:f9:85:11:84:37:c2:ae:5a:3c:ce:60:72: 07:3b:b4:28:04:3b:58:c7:2d:90:9c:13:02:f2:49:22:ad:04: 03:f0:fa:b7:c9:ff:ef:32:8a:0f:18:c1:65:89:fc:e1:6b:ce: 6a:7b:30:ff:62:d9:78:43:d5:f0:04:7c:22:83:db:4c:f2:9b: d9:60:4d:6b:b8:48:37:5a:74:5f:95:d3:d8:86:de:95:ce:dd: d4:e7:f2:da:bf:e0:31:1a:7e:7f:11:9a:a1:54:09:1d:89:a4: fa:99:c7:f2:d2:7c:fa:a2:20:97:4d:3b:2e:68:c9:01:7b:66: 19:48:5f:80:47:e0:12:ae:aa:f5:2a:54:13:d8:4e:ab:3c:e0: d9:61:de:b2:29:a4:fe:fa:c1:79:9b:c0:30:9e:6d:38:e4:e4: 1c:aa:9a:5a:17:8a:e6:94:8e:47:a9:74:92:40:40:8b:a9:cd: 04:a4:98:ee:9d:e4:61:db:e6:81:41:bd:60:ca:2b:d0:e6:bb: 9c:e2:7d:6e:34:f2:f9:22:4a:e4:1f:52:92:a8:76:bd:f8:7c: 9d:d4:69:3e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUme/RcDHeSesAIssmBXiUDA6udgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjA1MTQzOTE3WhcNMjUwNzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTk4NWI5N2Q1YjY1MWRlMDE2ZTVlMTk3YjZhZDQ1Y2Ez OTJmMmViYzNkYmQwNTNjMDBjMjkxMDhiMTVmZmI3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMo0BA4kIKMDMA5UGmPKlDeSXr8lh2Ct32v2U49ndQhkHt DUgl3VV2OWmVMeKeB6Sy8Ndyy5+6N3t6pAElUUchVWpDZpJGUsox98GBZYIl/Dke 8Z0w/LEC9Jb9nBwSVFtaKsemXkGeODq2QLX6ztt59jx3RPXiy2lwZEl1LGPrU8Te BPcjSI//Se2cRfqzQ90d+Zh1MS517oGV+9iGc/9lEPytdIHUaNABfqbgUwfDdL3J E48pvf9YJMneOEFbJunmkMQJz5sCCzFi0eW1fn6/JyISqxixAiUi7tnQ9qhTc/fp WowZrRuYgA1RVXAyfh3zTyNS6GEOjGRYCS60Ik65AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUEzFjJkWR5/5+xFe5mrh3wI+mWe0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzY2ZmI0MGQ5LTc2ZTgtNGNlMS05NjQzLThkNGM0Zjk2ODExOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjYDANBgkqhkiG9w0BAQsFAAOCAQEAVQs/vKWP3lOEvuzI5xuookI+4e1G akL3Sw7igLpADpgDKR5uMNkbOQlG+YURhDfCrlo8zmByBzu0KAQ7WMctkJwTAvJJ Iq0EA/D6t8n/7zKKDxjBZYn84WvOansw/2LZeEPV8AR8IoPbTPKb2WBNa7hIN1p0 X5XT2Ibelc7d1Ofy2r/gMRp+fxGaoVQJHYmk+pnH8tJ8+qIgl007LmjJAXtmGUhf gEfgEq6q9SpUE9hOqzzg2WHesimk/vrBeZvAMJ5tOOTkHKqaWheK5pSOR6l0kkBA i6nNBKSY7p3kYdvmgUG9YMor0Oa7nOJ9bjTy+SJK5B9Skqh2vfh8ndRpPg== -----END CERTIFICATE-----Generated at Sat Jun 14 19:07:10 2025 by rpki-client