$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa File: 98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa (raw, json) Hash identifier: KviKg7qHWHsmS5lDX5yOnQvbvj/ypNRjNVqJv4ewxB8= Subject key identifier: 0C:8A:26:C9:9D:9D:79:2D:21:C6:55:80:96:A0:FD:03:22:1A:59:28 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 2D0A603A61BB9909F460986412C119703316DA15 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa Signing time: Fri 11 Apr 2025 00:40:05 +0000 ROA not before: Fri 11 Apr 2025 00:40:05 +0000 ROA not after: Fri 16 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:0a:60:3a:61:bb:99:09:f4:60:98:64:12:c1:19:70:33:16:da:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 11 00:40:05 2025 GMT Not After : May 16 23:59:59 2025 GMT Subject: serialNumber=f2431f3667fa4573d3fa0d6c828e8d8fa91769d1a7603dc4e9ba993d9da26fc6, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3d:7b:5a:a5:51:16:ef:b4:01:1f:2f:14:cc: f6:11:51:e1:f3:84:5c:21:8c:de:ac:ca:6a:42:00: a2:96:ad:20:87:8b:18:68:a2:9c:3c:fe:d5:10:65: e9:95:02:db:a1:83:0f:44:36:92:89:ad:a1:97:2d: 7e:1b:8e:e0:33:24:5f:87:32:62:d1:e2:be:3f:f1: 84:81:b4:f9:3a:14:6b:54:06:51:f0:4b:d9:9a:47: 5b:9b:e0:88:81:53:8d:ba:ad:86:e7:63:3e:11:af: b9:19:95:e8:23:bb:71:aa:99:c9:82:d0:11:f3:e7: c0:cd:b5:27:de:aa:61:b9:d5:0d:e1:56:74:61:02: ca:f1:7d:c0:ce:d1:71:94:28:cb:28:10:a7:56:cf: 8a:4b:e6:41:e9:05:1e:3a:83:2a:4e:90:bd:77:05: fb:77:2e:92:42:56:a7:1e:c0:4c:f2:26:dd:d5:69: 57:1f:c2:e7:8b:07:dc:d4:e2:8d:8e:d2:f1:5d:7f: 87:6d:23:1d:d3:24:7d:02:e4:d7:db:43:57:e6:8c: 34:c4:d1:29:4f:f8:7c:e4:ce:d5:80:13:d6:1a:60: fa:9b:82:7a:ac:47:43:18:ef:fe:1b:d1:6c:66:aa: cf:8a:09:d4:52:ae:69:26:3f:4e:5b:f6:28:d6:ab: 3d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:8A:26:C9:9D:9D:79:2D:21:C6:55:80:96:A0:FD:03:22:1A:59:28 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/98b5c890-47f1-4f7f-a9dd-32289554f1d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.247.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:36:6e:d0:8a:0c:3c:28:16:5d:4a:7f:29:61:1a:3f:08:31: 82:46:cf:b7:af:92:31:14:8f:ef:23:15:e4:46:be:6c:94:da: 2a:a0:bd:d3:14:b1:68:f3:89:29:a9:a7:96:04:ac:08:ff:4b: 55:c0:12:f7:b2:f4:5a:20:b5:ca:5c:94:8b:0c:3a:08:c9:aa: 18:6c:3c:dd:a1:ac:5e:b2:eb:84:26:d6:b3:60:9d:d5:dd:d5: a2:85:e8:ab:6a:f6:02:7b:61:b3:2b:ef:f1:27:0c:62:6e:da: 20:a7:f0:8d:ef:07:0f:00:67:28:68:7a:92:8a:f7:22:9c:fa: 90:f6:dc:7e:bf:d1:01:d0:c7:7b:84:35:e5:5a:1a:7e:6d:fc: f3:30:de:41:cf:7f:6f:3a:2d:d4:ef:ce:10:c1:1f:67:8d:de: e1:68:3a:97:0f:12:d4:1e:ef:a2:2f:22:43:fa:ae:93:cb:62: ff:3c:6a:2c:a6:e4:8a:1a:ae:cd:ab:62:b3:c0:92:28:57:d9: 0c:a0:44:03:05:61:7e:28:53:11:cd:7e:4d:86:e2:66:50:b6: 1f:c6:96:6d:7f:a2:e6:4c:36:f2:a6:e3:e7:90:58:13:c7:bf: de:9b:b2:b2:12:22:fc:8c:8d:b3:a0:37:94:d0:5f:0d:68:99: 7a:c5:66:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULQpgOmG7mQn0YJhkEsEZcDMW2hUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDExMDA0MDA1WhcNMjUwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjQzMWYzNjY3ZmE0NTczZDNmYTBkNmM4MjhlOGQ4ZmE5 MTc2OWQxYTc2MDNkYzRlOWJhOTkzZDlkYTI2ZmM2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvPXtapVEW77QBHy8UzPYRUeHzhFwhjN6sympCAKKWrSCH ixhoopw8/tUQZemVAtuhgw9ENpKJraGXLX4bjuAzJF+HMmLR4r4/8YSBtPk6FGtU BlHwS9maR1ub4IiBU426rYbnYz4Rr7kZlegju3GqmcmC0BHz58DNtSfeqmG51Q3h VnRhAsrxfcDO0XGUKMsoEKdWz4pL5kHpBR46gypOkL13Bft3LpJCVqcewEzyJt3V aVcfwueLB9zU4o2O0vFdf4dtIx3TJH0C5NfbQ1fmjDTE0SlP+HzkztWAE9YaYPqb gnqsR0MY7/4b0Wxmqs+KCdRSrmkmP05b9ijWqz2RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDIomyZ2deS0hxlWAlqD9AyIaWSgwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzk4YjVjODkwLTQ3ZjEtNGY3Zi1hOWRkLTMyMjg5NTU0ZjFkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPcwDQYJKoZIhvcNAQELBQADggEBAIw2btCKDDwoFl1KfylhGj8IMYJG z7evkjEUj+8jFeRGvmyU2iqgvdMUsWjziSmpp5YErAj/S1XAEvey9FogtcpclIsM OgjJqhhsPN2hrF6y64Qm1rNgndXd1aKF6Ktq9gJ7YbMr7/EnDGJu2iCn8I3vBw8A ZyhoepKK9yKc+pD23H6/0QHQx3uENeVaGn5t/PMw3kHPf286LdTvzhDBH2eN3uFo OpcPEtQe76IvIkP6rpPLYv88aiym5Ioars2rYrPAkihX2QygRAMFYX4oUxHNfk2G 4mZQth/Glm1/ouZMNvKm4+eQWBPHv96bsrISIvyMjbOgN5TQXw1omXrFZqM= -----END CERTIFICATE-----Generated at Sat Apr 26 12:56:48 2025 by rpki-client