$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bb137ef6-15e7-4d0d-9872-00d472b0776b.roa File: bb137ef6-15e7-4d0d-9872-00d472b0776b.roa (raw, json) Hash identifier: mFhZB5B1NjympimRo/uj386syq0srOC1KefcUpoINrY= Subject key identifier: 09:C2:A9:7A:0F:9C:56:9B:43:C5:2B:83:6C:7C:14:9C:DD:D6:70:C6 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4AE2546E0D9F8CFD538ACF051863D67F447B99E2 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bb137ef6-15e7-4d0d-9872-00d472b0776b.roa Signing time: Thu 05 Jun 2025 14:39:01 +0000 ROA not before: Thu 05 Jun 2025 14:39:01 +0000 ROA not after: Thu 10 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.60.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:e2:54:6e:0d:9f:8c:fd:53:8a:cf:05:18:63:d6:7f:44:7b:99:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 5 14:39:01 2025 GMT Not After : Jul 10 23:59:59 2025 GMT Subject: serialNumber=21b5c4037884839be4c5dc1555b96af458f81c1aa789061629a472e0195137c0, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5d:07:ec:0d:32:97:7b:54:6a:71:de:5a:ae: 28:6f:84:9b:5d:3d:e4:8c:62:d4:64:cb:51:ba:24: c7:74:8d:8d:ad:48:4c:1f:7e:e4:87:7b:8a:e5:6d: e1:d7:74:2a:6b:27:92:c0:93:ac:5e:7d:df:03:60: 2b:d1:ef:98:02:65:d6:52:59:eb:f5:5a:b2:fc:30: 1b:c8:57:fd:52:91:65:66:cd:6f:27:0d:71:b7:1c: f9:55:4e:33:02:1d:3b:70:71:9a:25:99:3e:55:85: db:31:ca:0d:44:73:12:94:f4:1f:b3:c9:f2:91:91: 4c:61:f2:6a:81:84:d8:ce:a7:84:74:20:8d:f1:ae: e2:91:d0:61:8b:e5:ae:d3:4d:87:48:b7:93:6c:e2: c6:05:64:f4:0e:1c:58:d9:3d:2b:50:9f:62:d9:db: 56:00:ba:cb:96:30:99:88:00:f9:84:80:55:d8:75: 38:51:84:2b:55:59:88:a5:ef:48:cd:2a:c7:7d:31: 69:d4:6b:bf:a3:35:98:95:74:3a:f5:c5:bc:9e:b5: 14:aa:aa:5b:9a:0b:01:cb:31:77:cf:19:3b:28:fd: 9c:93:c6:d7:6c:dc:5d:7b:af:de:10:bc:9d:e9:1c: ff:f5:10:fe:6e:3c:45:4b:98:ca:97:8a:bd:8a:aa: a9:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:C2:A9:7A:0F:9C:56:9B:43:C5:2B:83:6C:7C:14:9C:DD:D6:70:C6 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bb137ef6-15e7-4d0d-9872-00d472b0776b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.60.0/22 Signature Algorithm: sha256WithRSAEncryption 63:bb:42:dd:e9:ee:9c:d2:9e:3c:75:50:cf:cb:4d:b0:1e:1e: d0:c5:83:28:5a:90:87:49:31:58:eb:9a:99:50:d1:3c:b6:0d: f7:76:a0:33:de:af:f0:c7:96:04:59:9f:47:84:e1:e1:b3:40: 6b:8e:90:22:e4:6c:7e:63:98:39:5f:28:f3:df:e8:a1:53:c0: ac:fe:34:4b:70:81:68:3f:64:b7:e7:b7:c1:a8:a5:c3:79:b9: 8c:8b:76:6c:bc:97:08:46:79:d8:d6:4f:bf:ca:25:40:3a:4f: 41:e8:39:77:c3:8a:10:91:df:36:3e:b5:c2:d6:0a:a3:55:50: 1b:5e:ad:3e:42:39:a0:f7:6c:e0:62:65:00:40:d8:28:ee:72: e1:5e:0f:5e:7d:49:e7:ff:e5:d0:1c:9e:c5:45:61:13:04:b4: 8e:94:44:dc:51:9c:fe:ae:58:2b:ae:a5:df:39:21:bd:50:24: 2b:09:81:ac:84:dd:ac:d3:a5:5f:62:b2:c7:e3:c0:0b:97:40: 24:b9:d6:37:7a:02:32:5a:bf:4a:d9:6e:b0:23:ac:c7:69:37: 41:2b:64:9d:6c:42:ec:bc:03:cd:4a:82:ef:dd:2c:b4:d2:c7: 80:7a:35:dc:94:b9:92:b3:73:ff:ae:4b:17:c3:35:ae:f5:70: 76:e3:4b:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSuJUbg2fjP1Tis8FGGPWf0R7meIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjA1MTQzOTAxWhcNMjUwNzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMWI1YzQwMzc4ODQ4MzliZTRjNWRjMTU1NWI5NmFmNDU4 ZjgxYzFhYTc4OTA2MTYyOWE0NzJlMDE5NTEzN2MwMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsXQfsDTKXe1Rqcd5arihvhJtdPeSMYtRky1G6JMd0jY2t SEwffuSHe4rlbeHXdCprJ5LAk6xefd8DYCvR75gCZdZSWev1WrL8MBvIV/1SkWVm zW8nDXG3HPlVTjMCHTtwcZolmT5Vhdsxyg1EcxKU9B+zyfKRkUxh8mqBhNjOp4R0 II3xruKR0GGL5a7TTYdIt5Ns4sYFZPQOHFjZPStQn2LZ21YAusuWMJmIAPmEgFXY dThRhCtVWYil70jNKsd9MWnUa7+jNZiVdDr1xbyetRSqqluaCwHLMXfPGTso/ZyT xtds3F17r94QvJ3pHP/1EP5uPEVLmMqXir2KqqkZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCcKpeg+cVptDxSuDbHwUnN3WcMYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2JiMTM3ZWY2LTE1ZTctNGQwZC05ODcyLTAwZDQ3MmIwNzc2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYDwwDQYJKoZIhvcNAQELBQADggEBAGO7Qt3p7pzSnjx1UM/LTbAeHtDF gyhakIdJMVjrmplQ0Ty2Dfd2oDPer/DHlgRZn0eE4eGzQGuOkCLkbH5jmDlfKPPf 6KFTwKz+NEtwgWg/ZLfnt8GopcN5uYyLdmy8lwhGedjWT7/KJUA6T0HoOXfDihCR 3zY+tcLWCqNVUBterT5COaD3bOBiZQBA2CjucuFeD159Sef/5dAcnsVFYRMEtI6U RNxRnP6uWCuupd85Ib1QJCsJgayE3azTpV9issfjwAuXQCS51jd6AjJav0rZbrAj rMdpN0ErZJ1sQuy8A81Kgu/dLLTSx4B6NdyUuZKzc/+uSxfDNa71cHbjSxk= -----END CERTIFICATE-----Generated at Sat Jun 14 06:51:50 2025 by rpki-client