$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d4483609-fc6a-4bef-acf0-d2cead48822d.roa File: d4483609-fc6a-4bef-acf0-d2cead48822d.roa (raw, json) Hash identifier: iVqszB5I1bIys1BdGrYgB0aThtse960wboUx0v5uK6o= Subject key identifier: 24:63:DF:DD:48:AF:AD:7F:0B:C4:AB:B0:3B:28:AA:3F:17:D9:AD:CC Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 03E6B15D52FD7DDE18A3E7F1DC365904560E7190 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d4483609-fc6a-4bef-acf0-d2cead48822d.roa Signing time: Mon 09 Jun 2025 19:37:04 +0000 ROA not before: Mon 09 Jun 2025 19:37:04 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:e6:b1:5d:52:fd:7d:de:18:a3:e7:f1:dc:36:59:04:56:0e:71:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 9 19:37:04 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=521199236ecba87a618f627cdd30b9671958e7921589ad8762505881a4b169e3, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ce:a3:aa:f4:5d:9a:f9:5c:42:1f:5e:75:1f: 7a:96:d3:fa:2e:4c:62:dc:b0:58:d6:05:66:48:80: 08:45:a3:dd:1c:b3:a2:14:35:40:5e:f5:4d:c6:02: 94:45:9f:bf:d2:ce:75:79:cc:43:5e:59:9d:7b:1c: be:5c:20:78:07:0a:1c:d2:85:58:06:8f:a9:96:c1: 90:29:b2:af:61:01:c6:3a:1f:0e:ca:c0:93:55:b1: f7:87:af:be:99:a6:0a:87:df:06:83:94:95:bb:f0: 89:da:d7:ee:37:55:a7:be:06:c1:a5:14:94:0f:81: a7:ef:05:99:73:48:05:fa:3e:78:5f:e7:f4:7d:6f: 53:65:8f:03:e9:b7:55:fd:96:b9:a5:1b:dd:9b:81: f9:74:19:d8:42:66:4d:c7:cc:3f:03:33:f9:f5:0d: 8d:26:db:14:e7:50:23:f9:73:28:e3:56:db:ac:e0: 54:56:b9:ee:0d:c6:d4:e5:b0:c9:12:fb:2d:1b:39: e1:62:55:02:4b:bc:cd:05:60:ca:97:51:42:ae:fa: 36:b0:80:49:d0:9a:45:07:32:9b:17:c8:87:98:65: 9a:b0:df:9b:f9:fa:d1:cd:a2:4a:2c:65:63:a2:21: 20:31:8a:64:79:5f:13:99:43:e7:8d:34:0e:8c:63: 5e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:63:DF:DD:48:AF:AD:7F:0B:C4:AB:B0:3B:28:AA:3F:17:D9:AD:CC X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/d4483609-fc6a-4bef-acf0-d2cead48822d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.39.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:c3:31:8d:ec:7e:a0:73:d3:af:7d:af:c3:92:18:40:68:0c: 43:7a:2a:a3:5e:19:3e:9b:ce:e8:23:b8:66:52:4c:53:6b:59: 32:14:75:fd:f7:ec:7b:4d:41:74:17:ec:88:0f:a4:d0:22:3b: cd:74:f2:4d:21:8d:ad:3a:1b:72:7c:8f:40:93:4f:ac:ff:05: 9c:59:b7:1a:5a:ac:58:ab:7c:cd:6e:03:ad:78:fb:7b:b8:c9: 27:07:c1:14:d5:3e:ce:9f:d1:9d:ec:a3:25:bc:98:70:de:95: 1c:2c:a9:57:0d:bb:86:3f:07:43:70:99:97:06:0d:11:5c:83: eb:4d:80:60:33:78:f5:cc:07:7c:cc:43:e0:e9:3b:2e:9f:a9: 5c:b3:1a:fc:bf:0b:1f:53:11:0d:74:53:8f:ff:47:51:8f:84: 1c:2d:72:d2:f9:58:82:ea:45:3b:8d:f5:99:e6:61:6c:52:6b: 09:d4:d1:a5:58:d2:8c:b0:6d:3d:ef:11:e3:8b:90:ba:88:a5: e9:cf:f3:42:78:44:93:f8:93:29:7d:ea:ac:32:ae:a4:cf:c2: 9d:1e:c1:da:1b:07:03:17:3c:cf:fd:0a:e7:98:3a:75:3b:97: f3:7e:2e:15:c2:7d:bd:6e:6a:17:88:6a:ed:bc:82:b3:6f:d1: 7f:4e:4d:40 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA+axXVL9fd4Yo+fx3DZZBFYOcZAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjA5MTkzNzA0WhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MjExOTkyMzZlY2JhODdhNjE4ZjYyN2NkZDMwYjk2NzE5 NThlNzkyMTU4OWFkODc2MjUwNTg4MWE0YjE2OWUzMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9zqOq9F2a+VxCH151H3qW0/ouTGLcsFjWBWZIgAhFo90c s6IUNUBe9U3GApRFn7/SznV5zENeWZ17HL5cIHgHChzShVgGj6mWwZApsq9hAcY6 Hw7KwJNVsfeHr76ZpgqH3waDlJW78Ina1+43Vae+BsGlFJQPgafvBZlzSAX6Pnhf 5/R9b1NljwPpt1X9lrmlG92bgfl0GdhCZk3HzD8DM/n1DY0m2xTnUCP5cyjjVtus 4FRWue4NxtTlsMkS+y0bOeFiVQJLvM0FYMqXUUKu+jawgEnQmkUHMpsXyIeYZZqw 35v5+tHNokosZWOiISAximR5XxOZQ+eNNA6MY15FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJGPf3UivrX8LxKuwOyiqPxfZrcwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2Q0NDgzNjA5LWZjNmEtNGJlZi1hY2YwLWQyY2VhZDQ4ODIyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYCcwDQYJKoZIhvcNAQELBQADggEBAH7DMY3sfqBz0699r8OSGEBoDEN6 KqNeGT6bzugjuGZSTFNrWTIUdf337HtNQXQX7IgPpNAiO8108k0hja06G3J8j0CT T6z/BZxZtxparFirfM1uA614+3u4yScHwRTVPs6f0Z3soyW8mHDelRwsqVcNu4Y/ B0NwmZcGDRFcg+tNgGAzePXMB3zMQ+DpOy6fqVyzGvy/Cx9TEQ10U4//R1GPhBwt ctL5WILqRTuN9ZnmYWxSawnU0aVY0oywbT3vEeOLkLqIpenP80J4RJP4kyl96qwy rqTPwp0ewdobBwMXPM/9CueYOnU7l/N+LhXCfb1uaheIau28grNv0X9OTUA= -----END CERTIFICATE-----Generated at Sat Jun 14 07:10:12 2025 by rpki-client