$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b3bc4e7-5070-4a5b-b2fc-778381232bc5.roa File: 8b3bc4e7-5070-4a5b-b2fc-778381232bc5.roa (raw, json) Hash identifier: a7EeRisd/A/sVJ2bFY9R2phGLkh1ERnXPqOy8xPIJJA= Subject key identifier: 23:7A:80:B1:8B:3A:50:6B:E9:EB:FB:D7:3D:DF:3F:43:FB:E6:29:54 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4878E2E545CC35B11FE59A2E038EB251EF9F94F8 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b3bc4e7-5070-4a5b-b2fc-778381232bc5.roa Signing time: Fri 25 Apr 2025 17:40:51 +0000 ROA not before: Fri 25 Apr 2025 17:40:51 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:78:e2:e5:45:cc:35:b1:1f:e5:9a:2e:03:8e:b2:51:ef:9f:94:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 25 17:40:51 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=a33e3e4b46392cb6e142dd8457569a516ddd041d9c7868c2e451541c35b3656b, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7c:2d:eb:44:92:63:a1:e6:5c:5f:c3:10:94: dc:84:06:ef:b1:a5:61:6c:c6:ab:da:dd:31:7b:5e: ee:4e:4e:19:da:b8:bb:a5:19:a9:21:a2:25:97:bd: 51:87:07:49:74:23:68:a8:68:9a:ca:70:b1:89:03: 93:bd:57:32:e7:05:b5:0f:2f:0e:d0:60:18:64:b2: 85:b5:80:59:e2:6c:02:34:e0:3d:26:ba:0e:75:01: 15:7a:f8:43:6d:29:ee:54:dd:c6:61:19:6c:71:20: 90:2d:b7:ba:df:25:a4:7e:17:06:1b:bc:d4:80:36: e9:ce:3e:e4:92:a2:d8:61:ef:e5:9c:a5:55:9c:1b: 43:49:c2:e8:aa:9f:e7:1b:c1:15:52:ee:3a:ad:d2: 33:26:af:83:1b:8a:53:33:2f:3f:53:ec:dc:28:8a: 4c:89:bb:35:3f:2d:bd:77:6d:e9:08:83:43:49:a8: 78:d3:d9:f0:e0:12:48:3e:98:c4:db:f2:31:9d:d9: 2a:d9:a5:56:f8:6a:d1:89:85:3f:29:67:1a:30:41: a2:77:23:1f:b7:d7:f4:ff:63:5a:56:35:fc:53:10: 9c:bb:36:f0:5f:95:41:41:24:da:9f:58:4c:2d:04: cf:66:01:f4:4d:ef:ee:b3:bf:41:dc:b4:e6:c8:29: f9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:7A:80:B1:8B:3A:50:6B:E9:EB:FB:D7:3D:DF:3F:43:FB:E6:29:54 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8b3bc4e7-5070-4a5b-b2fc-778381232bc5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.112.0/20 Signature Algorithm: sha256WithRSAEncryption 88:e6:eb:4a:74:1e:4a:e8:6e:43:31:b4:20:f7:38:55:b3:3b: 0a:c9:72:26:88:78:ff:32:a7:d8:8f:25:a4:1b:33:09:e1:d8: 86:91:2a:92:1c:95:ae:81:76:46:d1:2e:de:cb:84:f6:ef:8b: 41:77:1e:1e:6d:20:0f:b4:75:f8:f4:81:fe:d4:3e:c6:70:fc: 65:0a:4c:d2:e3:35:65:7f:9c:22:1d:94:79:28:67:d8:41:f5: 6f:0f:82:a6:84:e6:64:59:48:67:92:8a:b6:f2:f8:21:20:40: 63:e2:15:4d:c8:3c:b2:fc:e1:5e:11:fa:2c:94:5f:da:0a:3f: 89:fd:fe:20:81:56:02:f2:b8:41:70:ba:82:e4:e9:fb:a3:0b: b2:66:1e:46:09:8f:d0:9d:5b:7d:5b:63:17:46:e3:89:33:4b: 06:57:a0:b1:0b:a2:e8:ba:b2:f8:26:86:59:fc:ee:e8:3f:e7: d0:14:18:86:f6:25:6a:20:f5:47:93:04:bc:f9:61:1c:69:71: 5f:9a:b8:39:ad:95:4e:a2:64:42:7b:95:63:d2:cc:a2:d9:c4: be:39:34:8e:50:f1:a9:5a:c9:9e:42:a3:f3:8a:1b:ba:e8:09: a2:fe:0b:4a:51:04:df:99:c9:72:2a:80:83:17:18:bd:39:c7: 71:07:00:cd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSHji5UXMNbEf5ZouA46yUe+flPgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDI1MTc0MDUxWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzNlM2U0YjQ2MzkyY2I2ZTE0MmRkODQ1NzU2OWE1MTZk ZGQwNDFkOWM3ODY4YzJlNDUxNTQxYzM1YjM2NTZiMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7fC3rRJJjoeZcX8MQlNyEBu+xpWFsxqva3TF7Xu5OThna uLulGakhoiWXvVGHB0l0I2ioaJrKcLGJA5O9VzLnBbUPLw7QYBhksoW1gFnibAI0 4D0mug51ARV6+ENtKe5U3cZhGWxxIJAtt7rfJaR+FwYbvNSANunOPuSSothh7+Wc pVWcG0NJwuiqn+cbwRVS7jqt0jMmr4MbilMzLz9T7NwoikyJuzU/Lb13bekIg0NJ qHjT2fDgEkg+mMTb8jGd2SrZpVb4atGJhT8pZxowQaJ3Ix+31/T/Y1pWNfxTEJy7 NvBflUFBJNqfWEwtBM9mAfRN7+6zv0HctObIKfklAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUI3qAsYs6UGvp6/vXPd8/Q/vmKVQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhiM2JjNGU3LTUwNzAtNGE1Yi1iMmZjLTc3ODM4MTIzMmJjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYHAwDQYJKoZIhvcNAQELBQADggEBAIjm60p0HkrobkMxtCD3OFWzOwrJ ciaIeP8yp9iPJaQbMwnh2IaRKpIcla6BdkbRLt7LhPbvi0F3Hh5tIA+0dfj0gf7U PsZw/GUKTNLjNWV/nCIdlHkoZ9hB9W8PgqaE5mRZSGeSirby+CEgQGPiFU3IPLL8 4V4R+iyUX9oKP4n9/iCBVgLyuEFwuoLk6fujC7JmHkYJj9CdW31bYxdG44kzSwZX oLELoui6svgmhln87ug/59AUGIb2JWog9UeTBLz5YRxpcV+auDmtlU6iZEJ7lWPS zKLZxL45NI5Q8alayZ5Co/OKG7roCaL+C0pRBN+ZyXIqgIMXGL05x3EHAM0= -----END CERTIFICATE-----Generated at Sat Apr 26 13:01:26 2025 by rpki-client