$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/85bd9bca-c692-4bac-9212-6cc968f995d7.roa File: 85bd9bca-c692-4bac-9212-6cc968f995d7.roa (raw, json) Hash identifier: s8NVABw4734adwpDwWsjw47BGJ3W/Wq674mI3BFoIWU= Subject key identifier: 08:36:87:80:DA:07:50:DE:0E:80:D1:84:B2:68:9B:D6:55:EF:F5:4B Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7D2128479FF2EADF453CBD88EE0A59166884658F Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/85bd9bca-c692-4bac-9212-6cc968f995d7.roa Signing time: Thu 05 Jun 2025 14:37:04 +0000 ROA not before: Thu 05 Jun 2025 14:37:04 +0000 ROA not after: Thu 10 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:21:28:47:9f:f2:ea:df:45:3c:bd:88:ee:0a:59:16:68:84:65:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 5 14:37:04 2025 GMT Not After : Jul 10 23:59:59 2025 GMT Subject: serialNumber=9abec3ef5d99bc0b7c9e545ef2445637aaa09901a6d7b22ec2d11324367e3ebb, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ab:f1:41:f7:e7:b1:f6:e1:b7:b5:60:a4:dd: c7:f2:c9:64:d2:0c:c4:e2:fb:0b:21:34:e9:ab:fe: 66:f9:50:54:10:c4:10:de:21:10:ae:48:57:85:7b: 2b:8b:da:28:3c:1a:20:d7:f8:eb:70:07:77:a8:43: 14:35:47:88:01:ff:c1:39:37:cf:97:ed:87:06:5a: 27:75:5e:39:39:24:c1:ad:3f:5a:11:e6:79:69:df: e9:7f:d9:f0:6b:a5:99:7e:00:4e:11:02:8c:42:16: 7e:b6:b5:cc:30:49:97:45:13:03:cb:da:fa:7f:8a: 41:ff:f1:0a:20:f6:24:1e:2c:36:02:26:20:6a:10: d0:e6:02:fe:55:b5:e4:34:0f:ab:18:10:ac:2e:f2: d6:e3:74:9c:6f:48:97:98:c0:40:cd:3f:18:4d:cb: 75:01:07:13:08:4e:85:05:ee:29:2d:68:f2:71:0d: b8:08:dc:f9:26:ea:57:82:50:1f:cb:ef:b9:e1:7a: 34:67:bc:6d:03:ad:55:86:bd:3c:f7:4c:5f:9b:80: 6e:fd:96:49:f4:8f:c8:65:60:19:98:6f:77:ff:70: da:ad:47:03:22:1d:27:88:66:1d:65:55:b0:34:c7: b3:91:1f:4f:ed:10:bb:39:13:58:52:10:8f:5e:f6: 8b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:36:87:80:DA:07:50:DE:0E:80:D1:84:B2:68:9B:D6:55:EF:F5:4B X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/85bd9bca-c692-4bac-9212-6cc968f995d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.250.0/24 Signature Algorithm: sha256WithRSAEncryption 55:d6:9d:14:a5:86:03:ca:17:3f:7a:77:97:69:5a:a5:46:72: 82:c3:05:8e:e3:c7:33:46:70:f4:79:fc:a1:9e:69:e6:3b:9f: 4b:07:ed:d6:72:56:25:59:b3:fd:a7:17:3d:27:eb:6e:cd:53: 4b:25:97:8e:ba:1a:e2:cc:6a:ad:10:87:db:0c:33:89:ed:5a: 20:19:ba:f5:5b:0e:2a:d7:70:d1:21:34:cc:8b:3c:16:22:e4: cb:35:8e:ee:d1:f9:fa:24:e2:4f:1f:0f:10:4e:b7:01:b6:66: c2:cd:f0:ab:df:f5:f7:5b:c9:6a:40:fc:0e:bc:ee:4a:f7:28: fb:f8:a7:3f:dd:c6:d2:04:c3:2e:52:bd:83:a0:40:e7:0f:e5: cd:ba:61:e4:49:ab:70:68:47:46:15:37:68:e4:12:6e:85:59: b4:e9:d8:8e:cb:f4:b1:77:66:c5:ee:54:64:1f:c5:9c:6a:ad: 01:18:88:a0:30:bc:e3:19:93:c2:c4:f2:c0:9b:77:ca:85:57: 90:46:d6:84:b2:5d:cf:7c:3b:87:55:5b:dc:a7:d8:15:12:6f: 03:8f:fc:ff:82:db:43:88:d4:cd:b4:27:63:1e:ca:52:a5:0e: a8:a0:d8:f0:0b:36:55:95:5c:06:11:44:df:77:80:88:4f:90: 31:8d:9b:c5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfSEoR5/y6t9FPL2I7gpZFmiEZY8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjA1MTQzNzA0WhcNMjUwNzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWJlYzNlZjVkOTliYzBiN2M5ZTU0NWVmMjQ0NTYzN2Fh YTA5OTAxYTZkN2IyMmVjMmQxMTMyNDM2N2UzZWJiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4q/FB9+ex9uG3tWCk3cfyyWTSDMTi+wshNOmr/mb5UFQQ xBDeIRCuSFeFeyuL2ig8GiDX+OtwB3eoQxQ1R4gB/8E5N8+X7YcGWid1Xjk5JMGt P1oR5nlp3+l/2fBrpZl+AE4RAoxCFn62tcwwSZdFEwPL2vp/ikH/8Qog9iQeLDYC JiBqENDmAv5VteQ0D6sYEKwu8tbjdJxvSJeYwEDNPxhNy3UBBxMIToUF7iktaPJx DbgI3Pkm6leCUB/L77nhejRnvG0DrVWGvTz3TF+bgG79lkn0j8hlYBmYb3f/cNqt RwMiHSeIZh1lVbA0x7ORH0/tELs5E1hSEI9e9ovDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCDaHgNoHUN4OgNGEsmib1lXv9UswHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzg1YmQ5YmNhLWM2OTItNGJhYy05MjEyLTZjYzk2OGY5OTVkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPowDQYJKoZIhvcNAQELBQADggEBAFXWnRSlhgPKFz96d5dpWqVGcoLD BY7jxzNGcPR5/KGeaeY7n0sH7dZyViVZs/2nFz0n627NU0sll466GuLMaq0Qh9sM M4ntWiAZuvVbDirXcNEhNMyLPBYi5Ms1ju7R+fok4k8fDxBOtwG2ZsLN8Kvf9fdb yWpA/A687kr3KPv4pz/dxtIEwy5SvYOgQOcP5c26YeRJq3BoR0YVN2jkEm6FWbTp 2I7L9LF3ZsXuVGQfxZxqrQEYiKAwvOMZk8LE8sCbd8qFV5BG1oSyXc98O4dVW9yn 2BUSbwOP/P+C20OI1M20J2MeylKlDqig2PALNlWVXAYRRN93gIhPkDGNm8U= -----END CERTIFICATE-----Generated at Sun Jun 15 09:41:34 2025 by rpki-client