$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/76405039-e005-43ab-826a-f992dc5c0145.roa File: 76405039-e005-43ab-826a-f992dc5c0145.roa (raw, json) Hash identifier: tkhZF15Gy04K0qOgQuZjI4dAtOIl65RMPjZ4FMTtIHE= Subject key identifier: EA:27:C0:08:DE:95:75:A3:BF:7F:8A:82:A5:FD:01:4E:14:A7:D5:C9 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5348817D078E7AE376460A779B79DA8ACCFFD34D Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/76405039-e005-43ab-826a-f992dc5c0145.roa Signing time: Fri 25 Apr 2025 17:40:44 +0000 ROA not before: Fri 25 Apr 2025 17:40:44 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:48:81:7d:07:8e:7a:e3:76:46:0a:77:9b:79:da:8a:cc:ff:d3:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 25 17:40:44 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=33b7ac25600bec74c5f95690d22d658d5cfed871bac27726bff8d1d295f5d3ce, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f5:4e:20:8a:4e:16:cd:bb:1c:ff:2c:60:cc: 0f:f2:b2:f8:53:36:bb:c2:6a:87:8a:00:03:21:8d: 76:ec:57:08:f2:ea:f6:b5:e8:8e:df:ac:fe:59:3b: 66:6e:49:48:bd:ff:1a:d9:c8:1a:a4:07:0f:d0:ba: 6a:f4:23:da:98:ac:76:cd:ec:9a:58:ad:16:b4:de: 65:86:1d:40:36:fc:15:69:0b:61:55:62:64:1e:ae: dc:78:43:df:0b:21:18:19:0d:da:1c:a3:d6:f6:10: 78:c1:68:aa:88:c2:89:e7:5c:ad:e2:d3:6d:2a:a5: 1a:bc:4f:07:d2:a3:4c:cc:69:08:64:d0:44:70:51: 8a:01:c5:06:36:15:50:78:cc:89:a9:01:43:31:7f: d3:31:2e:db:81:e8:23:9c:24:9d:11:60:f7:fd:24: ab:f7:b7:c4:a2:a1:44:83:98:8d:8f:9a:5b:91:66: d1:5a:31:00:53:a7:8b:bf:1e:19:08:86:01:ac:84: 6e:29:37:52:b8:ad:14:14:38:07:52:1e:c4:6b:91: 9a:0a:4b:b7:29:c7:fc:01:72:25:fe:54:e2:cf:54: 75:91:16:70:3c:f0:dd:c3:0c:fd:e7:95:aa:6d:cc: 4d:44:6e:96:47:f7:b2:b8:a5:bf:ae:29:54:ab:c1: 6e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:27:C0:08:DE:95:75:A3:BF:7F:8A:82:A5:FD:01:4E:14:A7:D5:C9 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/76405039-e005-43ab-826a-f992dc5c0145.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.80.0/20 Signature Algorithm: sha256WithRSAEncryption 3b:24:95:7d:62:b1:40:e9:8c:10:af:81:83:82:32:dc:8f:55: 7e:59:99:43:a2:8c:f9:4d:bc:6d:73:35:bf:9f:ed:0b:f4:d4: d3:83:4a:71:69:49:ce:2d:3d:ed:66:07:72:53:a0:27:35:ee: b5:e2:31:ca:51:e9:4e:e8:04:53:af:90:ed:e5:4d:59:47:67: df:4f:49:95:7c:19:73:c8:d0:ac:75:27:b7:fe:68:f5:7c:ab: be:29:20:71:66:66:9f:00:2e:bf:d1:c4:cc:ca:03:71:af:5d: e7:88:7f:e1:4a:bb:9f:4a:59:1d:5c:04:cb:0e:0d:22:37:1e: cb:76:42:e0:77:77:bc:76:86:05:87:4f:ff:71:ea:ef:ac:e0: 20:72:9e:a5:9e:80:bc:9f:f4:1e:74:94:e1:e0:08:21:49:23: 50:35:b7:ef:b9:08:2a:be:ff:bc:f2:e1:fe:c4:b5:b5:e0:99: 76:d4:14:6a:1b:05:9b:d4:48:31:74:d8:06:c2:90:74:4f:29: 9e:3d:d3:90:03:14:a4:1f:05:9e:b5:c0:4e:d1:a9:c0:4f:89: 70:aa:b6:ce:cb:56:3f:1d:b2:92:05:60:cd:3d:5b:35:3c:2a: cf:a5:c1:1d:c6:b2:20:49:29:ae:1b:78:50:ab:48:2f:e3:ce: 47:4d:2e:80 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU0iBfQeOeuN2Rgp3m3naisz/000wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDI1MTc0MDQ0WhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzM2I3YWMyNTYwMGJlYzc0YzVmOTU2OTBkMjJkNjU4ZDVj ZmVkODcxYmFjMjc3MjZiZmY4ZDFkMjk1ZjVkM2NlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC59U4gik4Wzbsc/yxgzA/ysvhTNrvCaoeKAAMhjXbsVwjy 6va16I7frP5ZO2ZuSUi9/xrZyBqkBw/Qumr0I9qYrHbN7JpYrRa03mWGHUA2/BVp C2FVYmQertx4Q98LIRgZDdoco9b2EHjBaKqIwonnXK3i020qpRq8TwfSo0zMaQhk 0ERwUYoBxQY2FVB4zImpAUMxf9MxLtuB6COcJJ0RYPf9JKv3t8SioUSDmI2PmluR ZtFaMQBTp4u/HhkIhgGshG4pN1K4rRQUOAdSHsRrkZoKS7cpx/wBciX+VOLPVHWR FnA88N3DDP3nlaptzE1EbpZH97K4pb+uKVSrwW4VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6ifACN6VdaO/f4qCpf0BThSn1ckwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzc2NDA1MDM5LWUwMDUtNDNhYi04MjZhLWY5OTJkYzVjMDE0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYFAwDQYJKoZIhvcNAQELBQADggEBADsklX1isUDpjBCvgYOCMtyPVX5Z mUOijPlNvG1zNb+f7Qv01NODSnFpSc4tPe1mB3JToCc17rXiMcpR6U7oBFOvkO3l TVlHZ99PSZV8GXPI0Kx1J7f+aPV8q74pIHFmZp8ALr/RxMzKA3GvXeeIf+FKu59K WR1cBMsODSI3Hst2QuB3d7x2hgWHT/9x6u+s4CBynqWegLyf9B50lOHgCCFJI1A1 t++5CCq+/7zy4f7EtbXgmXbUFGobBZvUSDF02AbCkHRPKZ4905ADFKQfBZ61wE7R qcBPiXCqts7LVj8dspIFYM09WzU8Ks+lwR3GsiBJKa4beFCrSC/jzkdNLoA= -----END CERTIFICATE-----Generated at Sat Apr 26 12:35:52 2025 by rpki-client