$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a80e1a1c-1ea0-4528-ac96-20c192fcc87a.roa File: a80e1a1c-1ea0-4528-ac96-20c192fcc87a.roa (raw, json) Hash identifier: SW4v9RFUeRvCZdogJ/7tkD1AcK1eUQtESOdnR8wOei0= Subject key identifier: 91:21:1C:7C:D6:18:D5:47:D5:C7:44:BB:FE:CC:48:F1:FD:D1:B1:B9 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 193AB224BAD5A11490F656CB56869AE36C2E08C3 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a80e1a1c-1ea0-4528-ac96-20c192fcc87a.roa Signing time: Tue 15 Apr 2025 00:50:39 +0000 ROA not before: Tue 15 Apr 2025 00:50:39 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:3a:b2:24:ba:d5:a1:14:90:f6:56:cb:56:86:9a:e3:6c:2e:08:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 15 00:50:39 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=ab112366686e772367e00636109ba00471bc3a143b99950d536a14234c7ccff9, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:2f:cb:19:64:d2:a3:bc:b4:0f:44:a9:19:f4: 7f:d7:96:24:cb:2c:e3:37:2e:87:e2:e8:2e:c6:01: d7:03:07:4e:d5:36:ec:61:10:e3:eb:73:b4:eb:cc: 0a:e8:9f:6a:1e:ba:55:64:73:b9:e9:8b:6a:56:b8: 14:46:70:cf:13:22:76:0c:79:16:a0:5a:3e:47:3c: 9c:9d:79:59:27:4d:fb:f9:19:57:39:e1:01:45:d4: 28:14:2f:b0:c7:19:60:9f:5e:00:4e:ac:fe:76:29: 14:e6:5f:da:f6:a9:bc:ee:ad:5b:71:04:15:a2:dc: f0:e6:93:06:ca:c1:87:98:70:c6:aa:71:88:7b:7a: 2d:82:f7:ef:47:f3:24:ed:1c:7a:74:46:79:6c:fa: 53:15:e2:4a:17:30:b4:8d:af:ca:4a:95:bf:00:4b: 30:4c:64:63:8c:2e:19:6d:63:91:ae:b3:c7:52:19: 72:92:6a:55:b0:8b:97:c5:e9:8a:88:be:b2:83:9a: b2:ca:23:0b:a7:1a:d6:35:da:46:fc:09:ba:cd:71: 1f:00:69:99:04:ea:d6:6e:c3:b4:2f:7b:c1:89:08: f2:c1:86:35:05:99:1f:4c:26:22:5f:a0:8a:4a:dd: 30:3a:3a:69:35:0f:bc:81:1b:3e:63:e5:57:7f:e5: b1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:21:1C:7C:D6:18:D5:47:D5:C7:44:BB:FE:CC:48:F1:FD:D1:B1:B9 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/a80e1a1c-1ea0-4528-ac96-20c192fcc87a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.240.0/24 Signature Algorithm: sha256WithRSAEncryption 71:c1:8a:d1:29:ca:8f:d2:95:47:2d:2c:37:dd:48:ac:3d:7d: fd:eb:47:30:14:3f:4e:9a:2f:6f:70:c3:e4:a4:31:2d:e0:fe: 95:e2:51:41:15:83:7e:5f:87:d2:95:b9:b8:6d:84:00:db:b3: d6:56:69:e5:a9:a8:8d:08:02:0c:25:92:d0:54:b6:bf:fa:55: a9:52:02:b3:cd:ea:55:6b:7a:d7:b0:36:8c:11:9f:52:8c:51: 4d:c4:9c:00:75:7a:b4:bf:b4:a5:e3:f4:4b:15:65:7d:6e:06: 6f:f9:a0:81:09:83:4b:4c:15:7c:f2:bd:0e:d0:b5:60:27:68: 87:03:ef:4a:0f:f2:8b:6e:d5:19:e3:a8:8f:b2:cd:93:fc:4b: 4a:c0:c6:d5:fe:d1:ae:e4:4f:42:96:ff:7c:c0:97:32:c0:c5: 5d:62:f6:b0:65:52:f5:f4:2c:87:97:89:ed:16:5a:db:5c:98: 4d:77:6b:ec:d2:96:e7:73:29:bd:da:a3:9c:57:9f:19:9b:19: ba:6e:ce:c9:24:bd:78:cb:3f:26:46:96:37:ce:3a:5d:ce:f1: a8:0b:ff:47:c0:50:a1:8a:e1:53:b2:1c:c9:62:de:53:62:22: 94:13:6c:e2:d6:28:ba:28:fa:0f:b0:09:17:3c:02:0a:a8:87: 22:6b:4d:29 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGTqyJLrVoRSQ9lbLVoaa42wuCMMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDE1MDA1MDM5WhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjExMjM2NjY4NmU3NzIzNjdlMDA2MzYxMDliYTAwNDcx YmMzYTE0M2I5OTk1MGQ1MzZhMTQyMzRjN2NjZmY5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpL8sZZNKjvLQPRKkZ9H/XliTLLOM3Lofi6C7GAdcDB07V NuxhEOPrc7TrzAron2oeulVkc7npi2pWuBRGcM8TInYMeRagWj5HPJydeVknTfv5 GVc54QFF1CgUL7DHGWCfXgBOrP52KRTmX9r2qbzurVtxBBWi3PDmkwbKwYeYcMaq cYh7ei2C9+9H8yTtHHp0Rnls+lMV4koXMLSNr8pKlb8ASzBMZGOMLhltY5Gus8dS GXKSalWwi5fF6YqIvrKDmrLKIwunGtY12kb8CbrNcR8AaZkE6tZuw7Qve8GJCPLB hjUFmR9MJiJfoIpK3TA6Omk1D7yBGz5j5Vd/5bH5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkSEcfNYY1UfVx0S7/sxI8f3RsbkwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2E4MGUxYTFjLTFlYTAtNDUyOC1hYzk2LTIwYzE5MmZjYzg3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPAwDQYJKoZIhvcNAQELBQADggEBAHHBitEpyo/SlUctLDfdSKw9ff3r RzAUP06aL29ww+SkMS3g/pXiUUEVg35fh9KVubhthADbs9ZWaeWpqI0IAgwlktBU tr/6ValSArPN6lVretewNowRn1KMUU3EnAB1erS/tKXj9EsVZX1uBm/5oIEJg0tM FXzyvQ7QtWAnaIcD70oP8otu1RnjqI+yzZP8S0rAxtX+0a7kT0KW/3zAlzLAxV1i 9rBlUvX0LIeXie0WWttcmE13a+zSludzKb3ao5xXnxmbGbpuzskkvXjLPyZGljfO Ol3O8agL/0fAUKGK4VOyHMli3lNiIpQTbOLWKLoo+g+wCRc8AgqohyJrTSk= -----END CERTIFICATE-----Generated at Sat Apr 26 16:39:38 2025 by rpki-client