$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/caa7d407-5b15-4761-9d49-f36ba2078f3c.roa File: caa7d407-5b15-4761-9d49-f36ba2078f3c.roa (raw, json) Hash identifier: xBKHrCmgFbKvMk0vWrhheMB55FD9ASYAt8ZMaU3XzqY= Subject key identifier: 5C:02:6F:12:88:42:CE:28:3B:36:F9:1C:A7:FD:83:B2:91:DE:DA:9F Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 63BFF0D72BC3F5EA346461BD8601647FE3064A30 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/caa7d407-5b15-4761-9d49-f36ba2078f3c.roa Signing time: Sat 24 May 2025 00:30:17 +0000 ROA not before: Sat 24 May 2025 00:30:17 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 18 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:bf:f0:d7:2b:c3:f5:ea:34:64:61:bd:86:01:64:7f:e3:06:4a:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 24 00:30:17 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=3aa1b2d25944fc026dede4defca385a195b611ca2bf363ce33999bc009a3056a, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2b:2b:cf:cd:f5:70:b9:ce:b9:c5:4e:a4:4c: 10:39:c1:4d:ac:81:fe:39:ff:40:5c:f3:7f:50:0e: 90:83:e8:50:f1:d7:b1:96:07:06:ed:39:88:c5:db: d2:3a:d3:5d:6a:ac:44:88:ba:f4:4e:cc:ab:ad:8b: 4c:eb:31:9a:46:a9:45:58:04:d4:7b:dd:16:c2:d9: a1:cf:17:86:7d:45:1f:d5:bd:9d:6e:57:d6:5c:06: ea:70:16:43:8e:35:9e:fc:13:ab:a9:73:b8:2a:2c: 1e:95:f4:5e:72:75:c6:9e:e4:ca:ef:63:a7:fd:08: a4:33:7c:2c:19:07:b2:cd:88:bf:4d:5c:f7:a7:5c: 85:3b:e3:1d:aa:ac:c8:90:e3:34:f9:76:9a:21:74: 6a:58:a3:56:d4:43:fa:7f:fc:b3:85:c8:10:2a:79: bf:bf:02:72:3e:c8:d2:44:66:d4:01:23:be:5f:e6: f2:6a:22:d3:b7:eb:5a:2e:5f:3f:a1:44:76:b5:3b: b4:c7:02:94:93:b7:99:17:ea:be:24:6c:8e:8f:e2: 4a:8f:94:cf:b4:92:43:41:d4:ab:fe:84:40:5c:ab: ba:9f:b1:f8:87:2c:79:2a:0a:c2:f5:be:88:45:57: c1:87:bc:cf:34:31:8a:b0:18:c1:64:87:b0:22:4e: 41:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:02:6F:12:88:42:CE:28:3B:36:F9:1C:A7:FD:83:B2:91:DE:DA:9F X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/caa7d407-5b15-4761-9d49-f36ba2078f3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.18.0/23 Signature Algorithm: sha256WithRSAEncryption 45:fb:b7:bb:c9:8b:84:fa:63:f0:cd:69:25:1a:4f:34:b6:e8: bd:db:7a:b3:2e:cf:7e:33:e4:47:8c:a6:2a:22:0c:6b:b6:78: 68:ce:c5:53:20:0d:e1:af:81:98:78:6a:ba:88:05:c6:33:4a: a8:da:cb:8c:e0:0d:46:a1:2e:59:c7:18:01:71:38:7b:8f:94: c2:60:fc:c8:1f:85:e0:7d:e3:e7:cf:87:ce:73:cb:12:7a:b8: de:20:9e:77:b4:15:e3:2f:b9:e3:81:7e:68:8e:ef:fc:f4:32: 3d:c0:57:62:17:1c:8d:ef:5f:57:ea:b6:b9:e9:f2:dd:69:35: b2:58:bf:23:69:79:81:18:e2:a4:b6:aa:58:71:41:a9:50:c9: de:1c:11:6f:73:15:48:12:b3:2e:45:de:c1:31:db:80:ce:4c: 55:9d:58:55:71:cf:ca:71:b7:43:3c:f1:1c:33:8d:ee:ac:c4: 68:e9:ef:e1:9b:8e:7f:07:ae:e9:a8:88:3b:84:82:b6:99:e9: f2:3e:1c:59:77:2f:11:15:7c:40:7c:29:75:2c:2c:57:18:79: 5a:fe:a9:23:3a:d0:54:d2:0a:77:dd:58:43:ac:8d:da:76:46: 05:be:ca:8a:44:f1:89:b1:51:e4:e8:32:68:b0:03:21:22:2c: d3:f0:fe:1f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY7/w1yvD9eo0ZGG9hgFkf+MGSjAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTI0MDAzMDE3WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYWExYjJkMjU5NDRmYzAyNmRlZGU0ZGVmY2EzODVhMTk1 YjYxMWNhMmJmMzYzY2UzMzk5OWJjMDA5YTMwNTZhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjKyvPzfVwuc65xU6kTBA5wU2sgf45/0Bc839QDpCD6FDx 17GWBwbtOYjF29I6011qrESIuvROzKuti0zrMZpGqUVYBNR73RbC2aHPF4Z9RR/V vZ1uV9ZcBupwFkOONZ78E6upc7gqLB6V9F5ydcae5MrvY6f9CKQzfCwZB7LNiL9N XPenXIU74x2qrMiQ4zT5dpohdGpYo1bUQ/p//LOFyBAqeb+/AnI+yNJEZtQBI75f 5vJqItO361ouXz+hRHa1O7THApSTt5kX6r4kbI6P4kqPlM+0kkNB1Kv+hEBcq7qf sfiHLHkqCsL1vohFV8GHvM80MYqwGMFkh7AiTkEzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXAJvEohCzig7Nvkcp/2DspHe2p8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2NhYTdkNDA3LTViMTUtNDc2MS05ZDQ5LWYzNmJhMjA3OGYzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEjYBIwDQYJKoZIhvcNAQELBQADggEBAEX7t7vJi4T6Y/DNaSUaTzS26L3b erMuz34z5EeMpioiDGu2eGjOxVMgDeGvgZh4arqIBcYzSqjay4zgDUahLlnHGAFx OHuPlMJg/MgfheB94+fPh85zyxJ6uN4gnne0FeMvueOBfmiO7/z0Mj3AV2IXHI3v X1fqtrnp8t1pNbJYvyNpeYEY4qS2qlhxQalQyd4cEW9zFUgSsy5F3sEx24DOTFWd WFVxz8pxt0M88Rwzje6sxGjp7+Gbjn8HrumoiDuEgraZ6fI+HFl3LxEVfEB8KXUs LFcYeVr+qSM60FTSCnfdWEOsjdp2RgW+yopE8YmxUeToMmiwAyEiLNPw/h8= -----END CERTIFICATE-----Generated at Tue Jun 17 11:35:19 2025 by rpki-client