$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa File: dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa (raw, json) Hash identifier: dyg29T0CpmxCkvIGwGpNGFiuOcERz5EFj2Uqm2rwu3c= Subject key identifier: 94:BB:D5:35:B3:24:7B:93:0D:E7:A8:FE:EC:11:53:C5:74:6E:E9:D8 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 15BF20DA1F543736E30F582A07EFC1F5D81ECE61 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa Signing time: Mon 14 Apr 2025 17:20:15 +0000 ROA not before: Mon 14 Apr 2025 17:20:15 +0000 ROA not after: Mon 19 May 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:bf:20:da:1f:54:37:36:e3:0f:58:2a:07:ef:c1:f5:d8:1e:ce:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 14 17:20:15 2025 GMT Not After : May 19 23:59:59 2025 GMT Subject: serialNumber=905bb58a4ecb28452a6c94f15573def251a842c468f75c9b83deb672432ee489, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:0d:d6:67:4b:f0:f1:e4:43:4e:c0:95:87:65: 59:12:6b:51:2d:14:42:90:94:57:d2:a2:da:32:13: 6f:46:c1:1e:68:6b:18:91:1d:87:9f:53:9d:f2:0d: 11:3e:90:31:33:39:23:05:3a:98:68:f0:e7:90:b7: 5b:e8:53:e9:26:34:ce:c9:82:37:b9:42:d6:ec:16: 6b:fa:09:94:3f:c1:12:2c:3f:9f:13:ec:08:ee:60: fd:da:a4:ea:f6:2c:68:ec:c2:46:2f:43:c6:05:76: 2b:15:a8:45:53:17:b4:9a:68:49:02:0a:6f:82:09: cf:22:59:50:85:a6:85:01:16:9e:78:5c:1f:ee:65: 9d:0e:0e:07:3d:87:1e:24:b8:2a:f3:79:fd:8a:59: 08:76:21:cc:c5:58:e3:86:4b:ba:d2:9c:2b:7b:51: 89:d7:1b:3d:0b:e6:a5:40:83:6c:72:4d:bb:31:95: 6a:47:dc:db:ef:51:18:25:e5:99:40:e5:87:73:e8: c3:e5:3d:ab:d6:a0:24:bc:40:6f:e4:b5:37:4e:3d: 8b:20:1f:b9:af:09:89:7f:10:42:9c:f0:e8:fe:6b: 76:04:c3:fa:c5:fe:c6:4a:04:d8:7f:8d:01:43:a7: 47:54:34:82:51:40:b5:d5:5e:29:58:0e:7c:77:f1: 59:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:BB:D5:35:B3:24:7B:93:0D:E7:A8:FE:EC:11:53:C5:74:6E:E9:D8 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dc822c01-1717-4e45-a5a8-3a5dc916c76d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.11.0/24 Signature Algorithm: sha256WithRSAEncryption 44:f9:97:47:17:42:a3:21:32:6b:0d:30:90:96:fb:11:84:4e: f6:3c:8b:e2:53:c4:09:3f:f3:2f:91:2f:1e:15:2c:4c:6d:e1: ce:c9:9b:fd:8c:96:36:9a:5c:9d:71:a2:f4:2d:51:bd:d7:b5: bf:d1:0f:7e:41:dd:a4:ad:de:31:ab:d8:aa:e6:fb:22:39:2a: ee:fe:2a:aa:89:ca:bf:80:75:6f:b6:e9:fd:dd:8f:54:d9:91: 95:48:c0:9d:25:45:3c:f2:fa:55:d9:e1:39:bc:28:ce:0e:04: 73:28:bf:52:b5:dd:fe:60:83:75:76:b6:60:ec:01:26:ec:a3: e1:f8:e6:9c:47:d1:25:2c:c9:5d:c7:de:6d:94:2e:04:21:04: 47:c1:e5:4a:3b:e5:95:f6:6b:b2:e0:a0:9f:71:7a:a4:b5:c1: 67:f3:c5:aa:ad:cc:4e:52:6b:9a:b9:6b:78:54:d1:c7:46:b3: 15:3c:e0:ef:d8:1e:47:c8:45:61:2e:44:18:be:bf:07:b3:cf: 9c:bc:68:f3:60:0b:c1:a4:9d:e2:71:7c:86:a5:8c:2a:00:85: 6f:f3:56:ee:2e:5d:a0:61:49:c5:2e:8b:b7:66:dc:0a:af:e9: f5:d7:45:9a:87:3d:d2:17:f3:8b:51:b9:6d:bb:48:d9:51:f5: f9:5e:59:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFb8g2h9UNzbjD1gqB+/B9dgezmEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDE0MTcyMDE1WhcNMjUwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MDViYjU4YTRlY2IyODQ1MmE2Yzk0ZjE1NTczZGVmMjUx YTg0MmM0NjhmNzVjOWI4M2RlYjY3MjQzMmVlNDg5MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQDdZnS/Dx5ENOwJWHZVkSa1EtFEKQlFfSotoyE29GwR5o axiRHYefU53yDRE+kDEzOSMFOpho8OeQt1voU+kmNM7Jgje5QtbsFmv6CZQ/wRIs P58T7AjuYP3apOr2LGjswkYvQ8YFdisVqEVTF7SaaEkCCm+CCc8iWVCFpoUBFp54 XB/uZZ0ODgc9hx4kuCrzef2KWQh2IczFWOOGS7rSnCt7UYnXGz0L5qVAg2xyTbsx lWpH3NvvURgl5ZlA5Ydz6MPlPavWoCS8QG/ktTdOPYsgH7mvCYl/EEKc8Oj+a3YE w/rF/sZKBNh/jQFDp0dUNIJRQLXVXilYDnx38VldAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlLvVNbMke5MN56j+7BFTxXRu6dgwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RjODIyYzAxLTE3MTctNGU0NS1hNWE4LTNhNWRjOTE2Yzc2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAswDQYJKoZIhvcNAQELBQADggEBAET5l0cXQqMhMmsNMJCW+xGETvY8 i+JTxAk/8y+RLx4VLExt4c7Jm/2MljaaXJ1xovQtUb3Xtb/RD35B3aSt3jGr2Krm +yI5Ku7+KqqJyr+AdW+26f3dj1TZkZVIwJ0lRTzy+lXZ4Tm8KM4OBHMov1K13f5g g3V2tmDsASbso+H45pxH0SUsyV3H3m2ULgQhBEfB5Uo75ZX2a7LgoJ9xeqS1wWfz xaqtzE5Sa5q5a3hU0cdGsxU84O/YHkfIRWEuRBi+vwezz5y8aPNgC8GkneJxfIal jCoAhW/zVu4uXaBhScUui7dm3Aqv6fXXRZqHPdIX84tRuW27SNlR9fleWS8= -----END CERTIFICATE-----Generated at Sat Apr 26 12:21:51 2025 by rpki-client