$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa File: 6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa (raw, json) Hash identifier: 6kAcrSwvowbsotGjT+koLjIKFkWbSWPba7XQCNqthGc= Subject key identifier: AA:E2:1C:DE:17:EA:E3:D1:E5:17:5F:18:7F:2E:ED:1E:90:EE:A0:5E Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 212A55A4439E6831D51ED039C2FAC18DF7AB6DBD Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa Signing time: Thu 05 Jun 2025 14:37:00 +0000 ROA not before: Thu 05 Jun 2025 14:37:00 +0000 ROA not after: Thu 10 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 19 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:2a:55:a4:43:9e:68:31:d5:1e:d0:39:c2:fa:c1:8d:f7:ab:6d:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 5 14:37:00 2025 GMT Not After : Jul 10 23:59:59 2025 GMT Subject: serialNumber=8843a6402c3edd411e4651cf5b291f11de2f4e33c752e1862a1702e65e8e4644, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4f:0f:d1:0a:a0:34:48:68:2a:8a:10:f5:2c: 7c:85:0b:f0:c8:45:b7:74:ba:73:4f:50:45:fc:86: e5:eb:9f:8e:98:94:af:d0:15:d9:ef:cb:51:b0:c8: 4c:00:79:58:86:5b:a5:44:bc:98:d5:4e:63:65:5e: ca:ea:fb:8e:4e:7a:13:57:0a:6f:86:a5:84:3c:ee: 8f:16:1b:95:dc:d8:34:08:fc:ab:f3:03:70:b1:a6: 89:db:b4:53:23:49:1f:f0:09:f5:7f:e2:a8:f9:ff: 44:ee:be:07:35:3e:da:12:e5:f7:c6:2b:37:15:65: 90:7d:a3:2f:b7:be:cb:ac:6c:54:70:50:a6:7c:52: 68:72:bb:fb:5e:36:6c:cf:15:ec:63:6d:75:73:a6: 8e:f4:12:e5:9e:7f:60:79:21:19:4d:44:2e:2d:89: 1e:85:91:ae:31:ff:a5:74:98:b9:16:39:a5:a1:b2: 94:e9:99:14:47:cd:ad:7c:b7:3e:df:16:84:1f:da: 11:b4:c8:36:8a:67:33:6f:83:13:80:09:54:f1:5a: 9a:bc:b6:f9:ee:de:f9:08:75:a8:e4:25:30:ad:9b: 12:c6:9b:10:84:91:3e:07:5a:95:7c:f5:92:ee:c5: 73:4c:81:33:82:60:cb:8a:84:97:97:e7:43:8a:ef: d3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E2:1C:DE:17:EA:E3:D1:E5:17:5F:18:7F:2E:ED:1E:90:EE:A0:5E X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/6ad3a18a-93fe-4fae-aafd-161d468a32ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.240.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:ee:8c:73:25:4d:64:aa:b0:74:e9:3b:16:0f:a5:ed:3a:85: db:e5:c6:29:81:df:73:9a:21:a1:1b:19:8d:4f:72:9a:19:4b: 1c:75:c5:e4:87:2f:37:b3:92:73:8c:c3:15:a0:70:cb:b0:df: 27:0f:72:3f:f0:bb:47:74:f5:c7:5d:fb:c8:19:58:65:e6:12: 81:3e:d2:12:33:c3:4e:ba:fb:bc:d6:22:ad:50:92:87:d8:fb: e5:ae:c1:16:c6:71:9d:7e:8d:25:03:ff:d7:c0:fd:40:60:d2: 9e:23:dc:ab:83:b9:fa:b6:01:f8:cb:fe:03:d8:91:7b:40:4f: 75:0d:48:cd:86:e5:74:28:5f:76:89:a4:1c:10:30:62:35:a4: db:9f:60:e6:83:e4:fe:b8:0c:b0:a2:89:6c:4e:a0:6a:05:17: c4:a1:30:53:0a:71:3a:18:89:d2:b7:dc:e5:fd:74:3c:57:80: cd:7c:85:bd:a6:fe:7e:91:18:fb:b7:2c:6d:6c:a4:66:a2:83: 54:e9:20:b5:57:82:fe:d0:63:c4:48:ca:f4:69:a9:74:52:cf: 55:f8:70:4e:b4:9c:18:fe:48:dc:9b:e0:73:53:0d:b9:d4:68: a0:77:b9:dd:7a:61:be:6d:43:da:74:5b:e2:48:f9:20:a4:7c: d5:65:cb:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUISpVpEOeaDHVHtA5wvrBjferbb0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjA1MTQzNzAwWhcNMjUwNzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODQzYTY0MDJjM2VkZDQxMWU0NjUxY2Y1YjI5MWYxMWRl MmY0ZTMzYzc1MmUxODYyYTE3MDJlNjVlOGU0NjQ0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiTw/RCqA0SGgqihD1LHyFC/DIRbd0unNPUEX8huXrn46Y lK/QFdnvy1GwyEwAeViGW6VEvJjVTmNlXsrq+45OehNXCm+GpYQ87o8WG5Xc2DQI /KvzA3CxponbtFMjSR/wCfV/4qj5/0Tuvgc1PtoS5ffGKzcVZZB9oy+3vsusbFRw UKZ8Umhyu/teNmzPFexjbXVzpo70EuWef2B5IRlNRC4tiR6Fka4x/6V0mLkWOaWh spTpmRRHza18tz7fFoQf2hG0yDaKZzNvgxOACVTxWpq8tvnu3vkIdajkJTCtmxLG mxCEkT4HWpV89ZLuxXNMgTOCYMuKhJeX50OK79ODAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUquIc3hfq49HlF18Yfy7tHpDuoF4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzZhZDNhMThhLTkzZmUtNGZhZS1hYWZkLTE2MWQ0NjhhMzJlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPAwDQYJKoZIhvcNAQELBQADggEBAA/ujHMlTWSqsHTpOxYPpe06hdvl ximB33OaIaEbGY1PcpoZSxx1xeSHLzezknOMwxWgcMuw3ycPcj/wu0d09cdd+8gZ WGXmEoE+0hIzw066+7zWIq1QkofY++WuwRbGcZ1+jSUD/9fA/UBg0p4j3KuDufq2 AfjL/gPYkXtAT3UNSM2G5XQoX3aJpBwQMGI1pNufYOaD5P64DLCiiWxOoGoFF8Sh MFMKcToYidK33OX9dDxXgM18hb2m/n6RGPu3LG1spGaig1TpILVXgv7QY8RIyvRp qXRSz1X4cE60nBj+SNyb4HNTDbnUaKB3ud16Yb5tQ9p0W+JI+SCkfNVly4Q= -----END CERTIFICATE-----Generated at Wed Jun 18 10:07:50 2025 by rpki-client