$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/83743715-2a53-49b6-a231-c03ac81b1e4a.roa File: 83743715-2a53-49b6-a231-c03ac81b1e4a.roa (raw, json) Hash identifier: C+s7yMuBCTeYxKG1ehMua4pJuGgqpt6JbVFxUBOLFoE= Subject key identifier: 9B:6A:19:46:18:FF:A5:BB:F6:5C:49:C1:57:AD:22:2F:4B:E3:6D:99 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 37E58B9C9AC2B3761837B2669EFC6C9E8DC729C2 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/83743715-2a53-49b6-a231-c03ac81b1e4a.roa Signing time: Tue 22 Apr 2025 00:06:46 +0000 ROA not before: Tue 22 Apr 2025 00:06:46 +0000 ROA not after: Tue 27 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:e5:8b:9c:9a:c2:b3:76:18:37:b2:66:9e:fc:6c:9e:8d:c7:29:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 22 00:06:46 2025 GMT Not After : May 27 23:59:59 2025 GMT Subject: serialNumber=c6ca79a6737116f571cc38c3a7a6a653c42521643a0d6daddc8ad958b9b13ba3, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:33:b4:ec:0f:0f:6f:00:c9:d1:03:4e:1b:ef: bd:c0:17:18:26:86:60:e2:1b:0b:88:cc:5b:77:72: f9:1c:76:14:94:6d:b2:a7:30:ef:a9:34:51:9d:72: 2f:8d:fe:d7:5b:e9:2c:57:1d:49:ca:74:45:f8:a3: d8:dc:47:88:2c:02:6f:70:9b:e3:dd:fa:8b:46:b8: 1e:33:ad:06:60:7c:a8:5f:df:53:af:23:f6:4a:45: 79:d3:2f:80:9e:4c:f7:f6:aa:6c:29:0e:84:ce:4b: b0:ca:a6:4e:5d:e9:08:27:fd:4d:e7:22:97:1d:8a: 60:c0:b4:f1:ae:cd:12:99:90:24:ba:46:da:e5:43: 00:98:ab:ca:7e:71:3f:29:38:c8:fa:80:57:40:45: 62:aa:6a:f1:03:15:3a:f0:8e:44:e3:c7:c6:12:15: 51:f2:a7:bb:c2:e5:79:f4:7c:38:73:82:ff:e5:e7: e2:6f:cc:7f:c1:19:61:5c:83:ab:89:8c:c1:e7:38: c9:bf:42:db:70:1b:b4:56:22:91:ed:69:69:41:b2: 84:ea:54:ff:5d:2c:b9:1b:e9:a2:f0:85:11:bd:3e: 54:59:1c:4f:61:bb:57:80:e1:80:01:8d:4b:f4:95: 1d:6e:77:42:58:05:df:a2:cb:3d:ef:61:a5:17:63: a1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:6A:19:46:18:FF:A5:BB:F6:5C:49:C1:57:AD:22:2F:4B:E3:6D:99 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/83743715-2a53-49b6-a231-c03ac81b1e4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.251.0/24 Signature Algorithm: sha256WithRSAEncryption 73:90:c9:52:77:40:f0:45:ea:ca:cf:e9:4d:4f:21:61:e5:e7: 3d:c7:7c:1c:23:6e:46:3c:76:87:50:ff:f0:5f:c6:46:c6:b3: ec:47:04:91:25:06:c5:41:d1:82:cc:f3:96:74:6e:71:99:d4: cd:81:ac:13:84:ad:a8:0a:ab:e2:17:4b:e9:45:dd:84:5e:a6: 7b:9a:a4:52:34:9b:43:60:8f:21:b0:4a:16:a5:98:da:8a:56: 56:fd:db:af:79:be:f1:18:1e:39:8a:35:a5:ba:c1:59:98:73: fd:aa:c9:26:35:c8:1e:11:e5:fa:82:a3:70:74:41:74:5a:99: 86:85:a6:52:69:a7:b2:b9:56:99:34:8f:c4:a1:b6:9f:72:c6: 47:98:92:3e:1f:71:7f:49:cb:e1:b8:8c:9e:5c:59:cf:b5:2d: 3f:ea:6f:f7:73:5f:ac:bf:45:b2:16:67:80:b9:34:c1:c1:f0: d2:47:00:84:ae:ca:16:5b:f7:26:17:d5:b5:e8:bc:3e:29:a6: ef:eb:b7:ff:3b:34:63:80:88:b7:41:b6:eb:9a:e7:06:72:77: aa:be:c0:42:55:b5:2e:2b:24:78:b7:68:6c:e1:c1:d9:6e:b5: 2c:90:ae:d1:3d:fe:fd:c6:cd:40:65:1e:6c:11:9a:7b:d7:76: 6a:fb:4a:1e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN+WLnJrCs3YYN7Jmnvxsno3HKcIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDIyMDAwNjQ2WhcNMjUwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNmNhNzlhNjczNzExNmY1NzFjYzM4YzNhN2E2YTY1M2M0 MjUyMTY0M2EwZDZkYWRkYzhhZDk1OGI5YjEzYmEzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgM7TsDw9vAMnRA04b773AFxgmhmDiGwuIzFt3cvkcdhSU bbKnMO+pNFGdci+N/tdb6SxXHUnKdEX4o9jcR4gsAm9wm+Pd+otGuB4zrQZgfKhf 31OvI/ZKRXnTL4CeTPf2qmwpDoTOS7DKpk5d6Qgn/U3nIpcdimDAtPGuzRKZkCS6 RtrlQwCYq8p+cT8pOMj6gFdARWKqavEDFTrwjkTjx8YSFVHyp7vC5Xn0fDhzgv/l 5+JvzH/BGWFcg6uJjMHnOMm/QttwG7RWIpHtaWlBsoTqVP9dLLkb6aLwhRG9PlRZ HE9hu1eA4YABjUv0lR1ud0JYBd+iyz3vYaUXY6G5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm2oZRhj/pbv2XEnBV60iL0vjbZkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzgzNzQzNzE1LTJhNTMtNDliNi1hMjMxLWMwM2FjODFiMWU0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPswDQYJKoZIhvcNAQELBQADggEBAHOQyVJ3QPBF6srP6U1PIWHl5z3H fBwjbkY8dodQ//BfxkbGs+xHBJElBsVB0YLM85Z0bnGZ1M2BrBOEragKq+IXS+lF 3YRepnuapFI0m0NgjyGwShalmNqKVlb92695vvEYHjmKNaW6wVmYc/2qySY1yB4R 5fqCo3B0QXRamYaFplJpp7K5Vpk0j8Shtp9yxkeYkj4fcX9Jy+G4jJ5cWc+1LT/q b/dzX6y/RbIWZ4C5NMHB8NJHAISuyhZb9yYX1bXovD4ppu/rt/87NGOAiLdBtuua 5wZyd6q+wEJVtS4rJHi3aGzhwdlutSyQrtE9/v3GzUBlHmwRmnvXdmr7Sh4= -----END CERTIFICATE-----Generated at Sat Apr 26 12:23:32 2025 by rpki-client