$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9ca597d5-e2d7-4ff2-96a9-3ceaba019064.roa File: 9ca597d5-e2d7-4ff2-96a9-3ceaba019064.roa (raw, json) Hash identifier: 441NWNFW6xDYOzFBIvogZw2TCwfpNkX08mywvJZasiY= Subject key identifier: C5:90:33:43:03:63:73:E5:42:A2:B8:C1:0A:B7:52:7C:49:5C:57:87 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 40344364FBA0AE7122B41F0F9310E5340D159F14 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9ca597d5-e2d7-4ff2-96a9-3ceaba019064.roa Signing time: Mon 09 Jun 2025 19:37:09 +0000 ROA not before: Mon 09 Jun 2025 19:37:09 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:34:43:64:fb:a0:ae:71:22:b4:1f:0f:93:10:e5:34:0d:15:9f:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 9 19:37:09 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=fb51fa70145ef531c5d0ac704ca934a7919769bf079334ef0a6a74b8b0efab1e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a7:13:2f:29:28:82:91:41:1e:eb:34:35:3a: fe:b9:9a:44:07:93:93:e1:2c:bf:45:8f:f5:e8:81: b1:d4:e5:d7:8e:aa:7a:ad:cc:18:72:df:91:1d:c6: 7e:c1:aa:7f:77:fc:f8:af:f9:61:33:62:e1:0b:be: 42:b1:4e:4a:e6:ce:cd:29:a8:a5:23:65:4e:92:cf: 04:9b:f7:b8:b3:57:5d:b8:9d:7c:ac:47:48:dd:62: e7:ae:13:ae:8f:e8:b3:f4:cf:3f:ea:44:2e:75:f8: 25:74:93:41:e6:af:46:f7:c9:32:d7:f5:0e:cb:41: 3a:61:a2:89:ef:5f:1d:4d:91:ef:fb:cd:1b:af:9b: 6d:44:7a:19:67:c5:26:d6:4b:3d:14:c8:c2:4e:6e: b4:76:7f:57:9b:43:bf:1c:b1:a5:37:8e:85:2e:29: c7:84:1d:77:95:4b:a4:7d:aa:eb:cd:85:7a:c3:ad: 3d:34:6d:72:76:76:62:db:3e:c5:c6:01:50:6c:8f: b0:85:e0:29:65:7d:8a:3e:9b:ba:90:f5:6a:af:1f: 80:c7:f5:b8:97:05:1f:a3:56:2c:ab:9d:c5:69:11: a6:cb:f4:db:e0:fa:e2:b5:8f:c0:c6:48:5c:8b:a6: a7:a9:4a:80:38:89:df:ae:9a:02:d8:d0:d6:87:5d: e1:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:90:33:43:03:63:73:E5:42:A2:B8:C1:0A:B7:52:7C:49:5C:57:87 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/9ca597d5-e2d7-4ff2-96a9-3ceaba019064.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.44.0/24 Signature Algorithm: sha256WithRSAEncryption 12:ae:b8:79:a3:a7:9d:7a:bf:c8:70:aa:1b:27:14:a9:7d:a4: 97:af:db:fc:98:54:1c:1b:96:f9:f8:7c:47:51:b1:6e:c4:77: 17:aa:4e:e3:aa:de:b6:80:09:cf:f6:12:a2:ca:fa:e9:ff:14: 2e:ec:e5:0f:29:3e:a5:ca:87:7d:60:b4:7f:38:d6:10:f9:03: 59:c3:d2:b2:14:2e:e9:b2:ed:fc:cd:0b:51:b2:0c:01:a4:50: 83:25:99:01:cf:99:08:d1:7d:22:a0:ce:dd:37:e1:bc:9d:ae: b1:6f:9d:cf:bd:33:e2:a3:76:4b:73:3c:48:10:e7:77:54:75: 78:5e:da:cd:ca:56:de:00:f6:06:72:c4:da:d0:c9:92:07:98: 65:ba:39:6c:ff:c7:8d:ee:7e:2a:51:0b:ec:e2:9d:7e:10:1a: a4:28:4a:f4:60:45:5f:e9:af:18:a0:15:51:33:f3:5d:6e:fb: 88:e4:84:cf:d1:20:83:01:93:ad:04:fb:06:ea:7a:07:8c:ec: 69:1c:b1:57:1c:cf:f4:f9:da:11:a3:ab:a1:c3:61:72:25:ab: f1:17:d5:70:17:26:1b:f8:28:1d:d0:6c:d6:d9:11:c2:c7:87: 59:a0:4b:ad:c5:c8:29:aa:ef:e5:06:26:49:df:fd:29:c3:94: 55:be:75:76 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQDRDZPugrnEitB8PkxDlNA0VnxQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjA5MTkzNzA5WhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjUxZmE3MDE0NWVmNTMxYzVkMGFjNzA0Y2E5MzRhNzkx OTc2OWJmMDc5MzM0ZWYwYTZhNzRiOGIwZWZhYjFlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTpxMvKSiCkUEe6zQ1Ov65mkQHk5PhLL9Fj/XogbHU5deO qnqtzBhy35Edxn7Bqn93/Piv+WEzYuELvkKxTkrmzs0pqKUjZU6SzwSb97izV124 nXysR0jdYueuE66P6LP0zz/qRC51+CV0k0Hmr0b3yTLX9Q7LQTphoonvXx1Nke/7 zRuvm21EehlnxSbWSz0UyMJObrR2f1ebQ78csaU3joUuKceEHXeVS6R9quvNhXrD rT00bXJ2dmLbPsXGAVBsj7CF4CllfYo+m7qQ9WqvH4DH9biXBR+jViyrncVpEabL 9Nvg+uK1j8DGSFyLpqepSoA4id+umgLY0NaHXeHBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxZAzQwNjc+VCorjBCrdSfElcV4cwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzljYTU5N2Q1LWUyZDctNGZmMi05NmE5LTNjZWFiYTAxOTA2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCwwDQYJKoZIhvcNAQELBQADggEBABKuuHmjp516v8hwqhsnFKl9pJev 2/yYVBwblvn4fEdRsW7EdxeqTuOq3raACc/2EqLK+un/FC7s5Q8pPqXKh31gtH84 1hD5A1nD0rIULumy7fzNC1GyDAGkUIMlmQHPmQjRfSKgzt034bydrrFvnc+9M+Kj dktzPEgQ53dUdXhe2s3KVt4A9gZyxNrQyZIHmGW6OWz/x43ufipRC+zinX4QGqQo SvRgRV/prxigFVEz811u+4jkhM/RIIMBk60E+wbqegeM7GkcsVccz/T52hGjq6HD YXIlq/EX1XAXJhv4KB3QbNbZEcLHh1mgS63FyCmq7+UGJknf/SnDlFW+dXY= -----END CERTIFICATE-----Generated at Sat Jun 14 18:59:50 2025 by rpki-client