$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa File: 87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa (raw, json) Hash identifier: AAh73l9ofELbQBXRSZdfyqmIZPYK+jl3pM70h63YK+8= Subject key identifier: 6D:0D:32:44:29:C6:B4:0D:BA:FA:7C:88:99:41:DD:3F:F4:34:3F:82 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 0B384BACF25883B919B86C745F0E833A98BEC290 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa Signing time: Thu 05 Jun 2025 14:39:05 +0000 ROA not before: Thu 05 Jun 2025 14:39:05 +0000 ROA not after: Thu 10 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:38:4b:ac:f2:58:83:b9:19:b8:6c:74:5f:0e:83:3a:98:be:c2:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 5 14:39:05 2025 GMT Not After : Jul 10 23:59:59 2025 GMT Subject: serialNumber=47bf00e427e5d4423faacb74fd6da396f2eb9cc487f5b3576e31e37e7eeb8709, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:37:14:af:26:b3:ca:63:f9:05:55:57:c8:5b: fc:59:8d:f6:8a:1d:db:34:26:d9:6c:c8:ab:f6:41: a2:db:ea:ef:31:a7:1a:30:6f:06:49:39:5d:36:f2: a4:d3:25:06:4d:56:5c:ac:99:da:d9:b4:89:ae:58: 3b:9b:aa:3e:a3:38:5a:79:ff:21:5d:09:d7:94:59: 3d:db:30:47:b4:54:e2:49:f2:fa:93:8f:18:0a:78: a9:7c:58:e5:5e:d6:9d:f7:3d:a6:9c:93:fb:ef:4b: 9d:ba:8b:d0:3a:c9:61:70:a6:a8:fb:af:80:da:81: 84:68:53:0a:3d:a1:6d:0f:36:5f:6d:d6:67:55:a7: 25:da:33:57:db:a5:41:4d:14:fd:82:a5:27:d3:e6: f8:fe:b3:d1:b6:cb:d7:82:60:db:88:8b:69:e1:a2: ef:bc:2a:d0:9c:4f:53:b5:4d:6c:91:7f:7a:e5:4b: ab:02:42:ea:4f:6a:60:bc:75:51:71:69:58:f7:90: d8:36:34:51:de:ac:a6:44:b8:8e:99:a9:6b:6b:2a: 78:41:9e:36:0f:75:69:b0:2b:a3:60:16:e4:bb:a2: 57:42:fa:bd:3a:72:94:20:3e:1f:b1:f3:1b:04:6d: dd:2d:10:fd:ac:a1:dc:e5:0d:04:5a:b5:1b:12:3c: 85:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:0D:32:44:29:C6:B4:0D:BA:FA:7C:88:99:41:DD:3F:F4:34:3F:82 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/87e40ca7-4bd5-4a8e-babc-ef450d25a0ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.112.0/20 Signature Algorithm: sha256WithRSAEncryption 44:86:c0:54:98:eb:b6:93:df:31:16:f8:8e:97:58:b5:8a:d1: 88:71:fb:3d:aa:de:3b:62:a8:bd:5a:72:8f:4b:a7:ef:7b:42: 48:8d:d7:f5:c6:32:04:df:ae:91:b4:b7:d5:d0:42:c8:67:b9: ba:4a:f8:a0:b5:67:57:a4:ab:0a:8b:4c:45:8b:0e:f5:84:0f: 01:e0:af:bb:3c:79:c2:f7:c2:e3:ec:7a:43:bd:b3:80:09:a5: e6:2e:50:db:04:ae:af:69:0d:ce:cc:c3:21:cc:b4:1e:d2:6f: b2:ea:e1:da:ad:5e:80:ca:f5:8a:2d:85:a1:1a:e3:4c:d5:08: 03:54:60:60:f3:73:a1:57:dc:60:b5:ec:63:09:c0:d4:38:92: ef:a8:9f:cc:64:d6:63:8e:3d:5b:7b:bc:5f:9f:9d:a0:55:2e: 0d:53:9b:5e:a3:dd:61:2b:9f:cf:eb:49:fd:38:bd:65:77:75: d3:d1:d1:a0:38:74:3b:b7:0f:7a:60:10:ec:4d:50:1f:de:69: eb:1b:a2:8c:0c:37:bf:83:a1:e3:98:6d:88:d6:30:88:c9:e6: 33:c4:33:2e:a9:09:13:35:8a:52:da:91:ca:1c:d5:ea:13:f0: da:9c:95:76:0f:57:f3:29:e1:1e:46:54:7a:8a:02:3d:f4:62: eb:88:58:02 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCzhLrPJYg7kZuGx0Xw6DOpi+wpAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjA1MTQzOTA1WhcNMjUwNzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0N2JmMDBlNDI3ZTVkNDQyM2ZhYWNiNzRmZDZkYTM5NmYy ZWI5Y2M0ODdmNWIzNTc2ZTMxZTM3ZTdlZWI4NzA5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHNxSvJrPKY/kFVVfIW/xZjfaKHds0JtlsyKv2QaLb6u8x pxowbwZJOV028qTTJQZNVlysmdrZtImuWDubqj6jOFp5/yFdCdeUWT3bMEe0VOJJ 8vqTjxgKeKl8WOVe1p33Paack/vvS526i9A6yWFwpqj7r4DagYRoUwo9oW0PNl9t 1mdVpyXaM1fbpUFNFP2CpSfT5vj+s9G2y9eCYNuIi2nhou+8KtCcT1O1TWyRf3rl S6sCQupPamC8dVFxaVj3kNg2NFHerKZEuI6ZqWtrKnhBnjYPdWmwK6NgFuS7oldC +r06cpQgPh+x8xsEbd0tEP2sodzlDQRatRsSPIVFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbQ0yRCnGtA26+nyImUHdP/Q0P4IwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzg3ZTQwY2E3LTRiZDUtNGE4ZS1iYWJjLWVmNDUwZDI1YTBjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYHAwDQYJKoZIhvcNAQELBQADggEBAESGwFSY67aT3zEW+I6XWLWK0Yhx +z2q3jtiqL1aco9Lp+97QkiN1/XGMgTfrpG0t9XQQshnubpK+KC1Z1ekqwqLTEWL DvWEDwHgr7s8ecL3wuPsekO9s4AJpeYuUNsErq9pDc7MwyHMtB7Sb7Lq4dqtXoDK 9YothaEa40zVCANUYGDzc6FX3GC17GMJwNQ4ku+on8xk1mOOPVt7vF+fnaBVLg1T m16j3WErn8/rSf04vWV3ddPR0aA4dDu3D3pgEOxNUB/eaesboowMN7+DoeOYbYjW MIjJ5jPEMy6pCRM1ilLakcoc1eoT8NqclXYPV/Mp4R5GVHqKAj30YuuIWAI= -----END CERTIFICATE-----Generated at Sat Jun 14 06:41:37 2025 by rpki-client