$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8e88398f-80cd-4b06-bbdf-e3fab6e6abe1.roa File: 8e88398f-80cd-4b06-bbdf-e3fab6e6abe1.roa (raw, json) Hash identifier: LXvugF7bZjlQgL6DKK58k1wn0aKmfFgbMvQuXvYsABk= Subject key identifier: 46:E8:66:8F:ED:CE:16:B7:43:E5:A3:83:47:60:91:F7:16:C7:5C:96 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 3FE0BC142153DFC2E74540682B998A74DDCF3AC2 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8e88398f-80cd-4b06-bbdf-e3fab6e6abe1.roa Signing time: Tue 15 Apr 2025 00:50:38 +0000 ROA not before: Tue 15 Apr 2025 00:50:38 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:e0:bc:14:21:53:df:c2:e7:45:40:68:2b:99:8a:74:dd:cf:3a:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 15 00:50:38 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=af0924f10b5c883e82ef7389f92f1110e5b17e19e0280423bdd8df992a6727f5, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e5:1e:e7:e0:b6:9a:ce:0d:c6:56:16:3d:d7: c5:47:ec:67:1b:f8:8a:f3:f1:44:dc:08:59:e3:05: 7c:57:32:c1:16:af:02:cc:89:cc:0a:90:01:80:83: 43:98:fe:58:27:14:a0:cd:1f:73:cf:45:ed:67:db: a6:86:b0:9d:c7:7b:ba:b2:4d:e1:c9:6c:ae:b0:86: 07:6e:62:4e:70:f0:7b:2f:31:55:d3:2f:f5:65:65: 7f:2c:0b:ff:13:e7:bb:d8:29:92:8a:90:0e:9f:ec: 50:4d:08:10:18:e5:62:b8:f8:27:b4:07:bc:6b:f2: 36:bd:81:42:4b:76:b3:ee:91:ea:cd:9a:b1:61:ea: 5b:b8:26:33:44:5f:c5:5b:50:90:e6:00:20:10:55: 4a:73:67:91:3b:24:04:2e:f5:9d:16:2b:34:77:7c: c1:2e:ba:13:a8:d0:a3:38:02:62:7f:f5:57:cc:ac: 40:6f:7b:99:a9:ec:98:9b:67:87:62:fc:65:e6:71: 34:44:18:34:35:f9:6d:79:01:b7:da:1d:9e:8f:da: 72:fc:63:e2:47:98:c3:62:46:2e:18:9d:ff:ee:4c: df:65:77:92:26:98:be:fe:a9:00:46:52:2b:42:01: ed:0b:4f:0d:97:45:da:f5:84:ee:5e:1b:c0:b9:da: 58:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:E8:66:8F:ED:CE:16:B7:43:E5:A3:83:47:60:91:F7:16:C7:5C:96 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/8e88398f-80cd-4b06-bbdf-e3fab6e6abe1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.8.0/24 Signature Algorithm: sha256WithRSAEncryption 32:56:77:6c:c9:c2:ce:f0:6d:76:05:33:12:6b:4b:87:ca:b8: 27:25:83:b8:bb:93:9a:26:80:28:b0:e0:0c:9c:69:98:4a:0a: f4:a8:d7:98:48:96:ab:6d:24:44:5f:74:65:29:22:6a:bf:59: 8e:72:bb:d3:1b:08:1a:35:1a:eb:e5:c4:da:2d:2a:e3:f3:8f: f9:33:da:f8:8f:93:db:c5:97:b9:0f:f5:d4:e1:90:0d:83:0f: 72:44:a4:22:ef:35:65:89:75:ba:18:76:9a:01:79:8f:9b:6b: 9f:74:a8:26:ca:88:36:8b:0f:59:6e:ea:0d:c4:4d:1d:d5:22: 94:79:29:69:8b:ca:6b:8a:38:c7:f5:d6:b8:7e:7a:00:5f:9a: cd:5f:9e:ec:d7:78:b6:e5:37:0a:3f:e2:1c:7c:db:18:1d:1c: 2a:f7:d2:c2:e3:01:2f:7e:ad:f1:03:cd:54:46:96:9b:fe:9c: df:a9:16:94:9a:8a:d0:f8:33:9e:cb:9e:fb:e1:97:28:80:cc: 6c:4d:0b:7c:d9:34:3d:f8:d5:7c:b2:08:d5:2d:61:54:c1:ff: b8:5b:3c:00:02:64:13:80:d4:ba:61:c5:9e:15:d8:4e:a3:78: fd:b8:bd:37:d9:47:34:3e:e8:84:5f:be:49:fa:88:8f:ac:96: 9c:1a:20:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP+C8FCFT38LnRUBoK5mKdN3POsIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDE1MDA1MDM4WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjA5MjRmMTBiNWM4ODNlODJlZjczODlmOTJmMTExMGU1 YjE3ZTE5ZTAyODA0MjNiZGQ4ZGY5OTJhNjcyN2Y1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd5R7n4Laazg3GVhY918VH7Gcb+Irz8UTcCFnjBXxXMsEW rwLMicwKkAGAg0OY/lgnFKDNH3PPRe1n26aGsJ3He7qyTeHJbK6whgduYk5w8Hsv MVXTL/VlZX8sC/8T57vYKZKKkA6f7FBNCBAY5WK4+Ce0B7xr8ja9gUJLdrPukerN mrFh6lu4JjNEX8VbUJDmACAQVUpzZ5E7JAQu9Z0WKzR3fMEuuhOo0KM4AmJ/9VfM rEBve5mp7JibZ4di/GXmcTREGDQ1+W15AbfaHZ6P2nL8Y+JHmMNiRi4Ynf/uTN9l d5ImmL7+qQBGUitCAe0LTw2XRdr1hO5eG8C52ljxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURuhmj+3OFrdD5aODR2CR9xbHXJYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzhlODgzOThmLTgwY2QtNGIwNi1iYmRmLWUzZmFiNmU2YWJlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAgwDQYJKoZIhvcNAQELBQADggEBADJWd2zJws7wbXYFMxJrS4fKuCcl g7i7k5omgCiw4AycaZhKCvSo15hIlqttJERfdGUpImq/WY5yu9MbCBo1GuvlxNot KuPzj/kz2viPk9vFl7kP9dThkA2DD3JEpCLvNWWJdboYdpoBeY+ba590qCbKiDaL D1lu6g3ETR3VIpR5KWmLymuKOMf11rh+egBfms1fnuzXeLblNwo/4hx82xgdHCr3 0sLjAS9+rfEDzVRGlpv+nN+pFpSaitD4M57LnvvhlyiAzGxNC3zZND341XyyCNUt YVTB/7hbPAACZBOA1LphxZ4V2E6jeP24vTfZRzQ+6IRfvkn6iI+slpwaILk= -----END CERTIFICATE-----Generated at Sat Apr 26 16:33:11 2025 by rpki-client