$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd72b1b3-bfc9-45bf-87dc-b0e90937f198.roa File: dd72b1b3-bfc9-45bf-87dc-b0e90937f198.roa (raw, json) Hash identifier: OV70hvMsoMvB9y5dBXpk67u0YE0eeJkXKRjAhJcqI2I= Subject key identifier: 44:41:96:BC:B5:F7:92:4E:4E:5C:03:6C:7B:72:1C:FC:53:D8:26:9D Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 40B56523DA1FA9BF69EF9565DA176E4BD42B0183 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd72b1b3-bfc9-45bf-87dc-b0e90937f198.roa Signing time: Mon 16 Jun 2025 19:10:13 +0000 ROA not before: Mon 16 Jun 2025 19:10:13 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 19 Jun 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:b5:65:23:da:1f:a9:bf:69:ef:95:65:da:17:6e:4b:d4:2b:01:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 16 19:10:13 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=e9accc2e0cc34d54ab7fc2f8d393bd8fc0dafee007b1f3df021b05643de9ce46, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:97:be:70:90:ed:1e:ef:3a:7b:51:aa:7f:32: 26:4e:56:0c:73:54:70:74:fe:0c:f6:16:a8:91:06: 2b:c1:c3:e6:e6:30:fb:4e:0a:00:8e:b6:bb:3c:57: 4b:cc:5b:49:e7:13:d5:7b:95:3f:28:38:39:53:32: 70:d7:fb:2e:de:25:6e:93:70:bb:68:29:ac:ef:48: 8f:66:89:d4:0a:36:ce:a6:98:d8:ff:57:28:6f:ab: bd:a9:f8:c8:f9:06:42:be:a5:b3:8d:ad:d0:85:32: a6:49:c4:c3:f5:1a:07:62:51:6f:e4:3d:f8:ac:b5: 10:ed:17:d8:50:fd:ba:3b:f2:07:07:0d:56:d1:a9: b0:2c:e0:f6:f3:e8:62:c1:33:47:c6:d7:17:95:8f: f7:33:3a:01:46:6a:75:66:91:cf:9f:98:a4:a5:35: 1d:9c:c3:43:36:ad:dc:45:af:45:81:56:ad:b9:94: de:7f:2f:15:31:bb:bb:74:db:e6:eb:32:e5:9e:f6: 8f:da:91:50:da:00:e4:d7:b0:04:c2:d3:03:23:1c: 87:f5:40:b8:43:22:e0:38:d1:3f:1d:7c:e0:43:a5: 40:1f:88:9b:e0:28:a5:b8:38:74:94:89:1a:ac:d9: ee:1f:97:42:9a:ed:21:9c:8b:65:d4:c4:ea:51:f2: 98:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:41:96:BC:B5:F7:92:4E:4E:5C:03:6C:7B:72:1C:FC:53:D8:26:9D X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/dd72b1b3-bfc9-45bf-87dc-b0e90937f198.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.14.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:76:e3:1d:89:36:c9:70:60:14:2f:32:a2:7a:ef:7b:60:cc: 83:83:2f:5e:20:00:bd:d5:89:88:01:ab:62:da:ca:a5:14:98: bc:0a:6a:2a:9b:b0:84:86:31:88:ad:30:ef:d5:2e:f0:f9:a8: 74:63:f3:af:7f:07:a7:f9:69:80:9a:7f:04:f7:c3:56:1f:79: dd:19:39:ea:99:12:b3:5e:01:96:cd:56:2f:be:ba:8a:4a:c9: 8d:31:d2:44:c2:7f:63:f5:d1:ea:3c:07:62:c3:ca:34:5a:72: fe:bb:bd:68:c7:2d:6d:18:95:1f:07:84:f0:30:1d:d6:2e:59: b9:09:05:d8:7b:f1:33:3f:d9:02:e6:99:52:eb:5a:3b:64:7f: 46:bf:cf:9b:27:dc:8f:4b:7a:c4:f4:19:af:b3:39:4d:ee:9e: 86:6f:3e:b0:86:75:0c:61:46:62:89:8a:96:08:bc:28:ac:e7: a5:b0:65:a4:ce:54:ed:51:41:09:b7:5e:17:6e:e8:d5:0f:ca: e4:bf:71:84:88:06:db:64:20:0b:f0:0e:3f:41:73:c0:6a:01: ca:69:7a:b4:f1:21:9c:e9:86:ae:b1:68:6f:eb:28:ca:f0:fd: fe:71:e5:40:fb:4f:07:55:93:73:0a:3f:33:dc:49:8a:50:12: 25:95:97:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQLVlI9ofqb9p75Vl2hduS9QrAYMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjE2MTkxMDEzWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOWFjY2MyZTBjYzM0ZDU0YWI3ZmMyZjhkMzkzYmQ4ZmMw ZGFmZWUwMDdiMWYzZGYwMjFiMDU2NDNkZTljZTQ2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZl75wkO0e7zp7Uap/MiZOVgxzVHB0/gz2FqiRBivBw+bm MPtOCgCOtrs8V0vMW0nnE9V7lT8oODlTMnDX+y7eJW6TcLtoKazvSI9midQKNs6m mNj/Vyhvq72p+Mj5BkK+pbONrdCFMqZJxMP1GgdiUW/kPfistRDtF9hQ/bo78gcH DVbRqbAs4Pbz6GLBM0fG1xeVj/czOgFGanVmkc+fmKSlNR2cw0M2rdxFr0WBVq25 lN5/LxUxu7t02+brMuWe9o/akVDaAOTXsATC0wMjHIf1QLhDIuA40T8dfOBDpUAf iJvgKKW4OHSUiRqs2e4fl0Ka7SGci2XUxOpR8pi5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUREGWvLX3kk5OXANse3Ic/FPYJp0wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2RkNzJiMWIzLWJmYzktNDViZi04N2RjLWIwZTkwOTM3ZjE5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYA4wDQYJKoZIhvcNAQELBQADggEBAC524x2JNslwYBQvMqJ673tgzIOD L14gAL3ViYgBq2LayqUUmLwKaiqbsISGMYitMO/VLvD5qHRj869/B6f5aYCafwT3 w1Yfed0ZOeqZErNeAZbNVi++uopKyY0x0kTCf2P10eo8B2LDyjRacv67vWjHLW0Y lR8HhPAwHdYuWbkJBdh78TM/2QLmmVLrWjtkf0a/z5sn3I9LesT0Ga+zOU3unoZv PrCGdQxhRmKJipYIvCis56WwZaTOVO1RQQm3Xhdu6NUPyuS/cYSIBttkIAvwDj9B c8BqAcpperTxIZzphq6xaG/rKMrw/f5x5UD7TwdVk3MKPzPcSYpQEiWVl5U= -----END CERTIFICATE-----Generated at Tue Jun 17 22:17:37 2025 by rpki-client