$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/aa794bc2-e175-479a-bf37-44865d31aeaa.roa File: aa794bc2-e175-479a-bf37-44865d31aeaa.roa (raw, json) Hash identifier: Cjexk+05xHvw7d8ROLcywuABbC4AGIhpjgdqf90pK+o= Subject key identifier: BB:B9:71:D3:D6:F8:46:6B:CA:72:C1:D8:29:56:82:55:A2:31:EC:94 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 5ECB98FC819769572DED0C9B41992D26F5006C22 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/aa794bc2-e175-479a-bf37-44865d31aeaa.roa Signing time: Mon 21 Apr 2025 18:30:19 +0000 ROA not before: Mon 21 Apr 2025 18:30:19 +0000 ROA not after: Mon 26 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:cb:98:fc:81:97:69:57:2d:ed:0c:9b:41:99:2d:26:f5:00:6c:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 21 18:30:19 2025 GMT Not After : May 26 23:59:59 2025 GMT Subject: serialNumber=e70995441455cba552e8757c551d9f7d88600ffb1414c60eab2465dc1bfca8d2, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4e:71:4f:be:e2:09:a5:90:22:4f:e8:fb:0b: 90:b0:fd:b3:68:70:36:ef:7c:7e:2a:87:4e:4a:8b: 32:aa:38:cb:5c:cd:38:75:cd:be:8f:07:14:fe:65: 63:bd:02:dc:93:ef:f7:2c:a7:56:0c:a3:30:32:52: 44:0a:55:37:ab:e5:a8:c9:d1:42:58:d1:96:32:f3: b3:2f:56:da:22:2b:c5:0c:db:1a:de:33:42:93:7e: 96:bb:3a:98:92:6d:6e:e5:cd:19:6d:87:15:4e:02: 6c:8e:f3:32:3f:fe:8a:06:1a:81:3a:61:1b:1b:bd: 17:23:ae:60:d0:3d:f1:41:18:24:5b:63:29:7a:49: 4f:ad:72:24:e4:11:97:88:77:4a:7a:0f:d7:53:c1: 66:4c:6f:5b:8b:09:cf:08:39:12:f9:f8:9d:1a:45: 8a:bb:96:d4:9b:00:5d:34:89:2f:a7:05:74:af:8a: 6e:1a:60:21:fc:d5:c0:5a:c0:54:21:11:e2:80:5b: 2e:2c:af:56:66:48:96:01:72:a4:ac:70:40:7b:69: 10:85:20:e0:bd:4d:3f:42:29:b8:4b:1a:e0:4b:95: c4:7e:43:b1:9a:b0:e8:e1:d1:38:8d:ac:26:48:c8: 74:3d:77:f4:e4:25:9d:b9:98:07:20:50:06:95:e0: 59:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B9:71:D3:D6:F8:46:6B:CA:72:C1:D8:29:56:82:55:A2:31:EC:94 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/aa794bc2-e175-479a-bf37-44865d31aeaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.248.0/24 Signature Algorithm: sha256WithRSAEncryption 67:e5:42:7a:df:15:f0:ba:23:87:77:ba:33:42:21:c1:9d:b3: 93:17:bb:ca:03:da:e6:d6:48:e9:ef:b5:6e:db:ff:64:ed:36: 0d:37:77:33:59:89:0f:bc:6a:12:f5:87:84:68:f8:cd:b0:22: cc:7e:d7:51:14:9c:8a:56:ce:17:97:d8:12:c4:6c:db:f0:82: cf:35:15:6d:ba:46:bc:45:15:f4:29:cc:f0:14:93:1d:ae:1a: ca:c7:7d:a1:2d:ea:47:18:cb:cf:36:17:c6:fc:f8:04:37:3a: 9e:f1:73:25:ad:a0:bc:50:2f:1c:cc:ec:83:05:f8:b2:99:22: cc:bc:ac:c1:2d:ba:46:93:c9:9b:9b:be:ee:61:67:4c:eb:00: ae:c4:a0:0d:c7:f8:21:1a:69:be:7d:2a:0f:16:0b:78:5e:a7: d4:7a:5e:ac:25:8c:56:d6:f6:09:5d:89:2c:03:1e:59:d5:cc: c7:0a:1e:32:f6:54:5c:44:e0:69:3e:87:c7:82:be:1a:5e:d1: 3a:74:d9:fc:f6:60:6f:77:14:e1:b9:c5:bc:40:8b:e8:81:cf: 1f:3a:10:b9:7f:f2:0b:d3:89:3c:26:5b:b3:19:59:30:96:fa: 8a:ee:20:9b:15:15:c7:81:86:c1:6c:f3:78:3a:0a:a5:f8:81: 0c:3e:ce:ac -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXsuY/IGXaVct7QybQZktJvUAbCIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDIxMTgzMDE5WhcNMjUwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzA5OTU0NDE0NTVjYmE1NTJlODc1N2M1NTFkOWY3ZDg4 NjAwZmZiMTQxNGM2MGVhYjI0NjVkYzFiZmNhOGQyMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUTnFPvuIJpZAiT+j7C5Cw/bNocDbvfH4qh05KizKqOMtc zTh1zb6PBxT+ZWO9AtyT7/csp1YMozAyUkQKVTer5ajJ0UJY0ZYy87MvVtoiK8UM 2xreM0KTfpa7OpiSbW7lzRlthxVOAmyO8zI//ooGGoE6YRsbvRcjrmDQPfFBGCRb Yyl6SU+tciTkEZeId0p6D9dTwWZMb1uLCc8IORL5+J0aRYq7ltSbAF00iS+nBXSv im4aYCH81cBawFQhEeKAWy4sr1ZmSJYBcqSscEB7aRCFIOC9TT9CKbhLGuBLlcR+ Q7GasOjh0TiNrCZIyHQ9d/TkJZ25mAcgUAaV4FlbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUu7lx09b4RmvKcsHYKVaCVaIx7JQwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2FhNzk0YmMyLWUxNzUtNDc5YS1iZjM3LTQ0ODY1ZDMxYWVhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPgwDQYJKoZIhvcNAQELBQADggEBAGflQnrfFfC6I4d3ujNCIcGds5MX u8oD2ubWSOnvtW7b/2TtNg03dzNZiQ+8ahL1h4Ro+M2wIsx+11EUnIpWzheX2BLE bNvwgs81FW26RrxFFfQpzPAUkx2uGsrHfaEt6kcYy882F8b8+AQ3Op7xcyWtoLxQ LxzM7IMF+LKZIsy8rMEtukaTyZubvu5hZ0zrAK7EoA3H+CEaab59Kg8WC3hep9R6 XqwljFbW9gldiSwDHlnVzMcKHjL2VFxE4Gk+h8eCvhpe0Tp02fz2YG93FOG5xbxA i+iBzx86ELl/8gvTiTwmW7MZWTCW+oruIJsVFceBhsFs83g6CqX4gQw+zqw= -----END CERTIFICATE-----Generated at Sat Apr 26 14:10:24 2025 by rpki-client