$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa File: e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa (raw, json) Hash identifier: on1Mb2WV2VPOiwgMCMAuXxnUaKs2SiQvIKbqgOncKIQ= Subject key identifier: 5E:CF:12:EB:77:9A:30:C8:5D:5E:5E:BD:83:9F:A8:A0:52:D5:6E:FE Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 25CA66908B0471248C4E4A53F903421D21022DFE Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa Signing time: Fri 23 May 2025 00:30:24 +0000 ROA not before: Fri 23 May 2025 00:30:24 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ca:66:90:8b:04:71:24:8c:4e:4a:53:f9:03:42:1d:21:02:2d:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: May 23 00:30:24 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=34bf1209e04a2b811207a2d1bec13be521fec25da69f24a109087b49e31d0cf5, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0e:9a:00:5c:35:c0:22:ed:63:05:ab:ae:c9: f3:d7:a4:a8:cb:68:30:66:7a:11:0a:28:1d:5a:5f: c4:35:e8:7c:12:90:27:65:e1:15:ae:ca:36:1e:c0: 89:47:6d:a2:46:41:d4:bc:56:f6:62:b9:23:d5:e0: f0:a1:af:dc:e6:cc:53:bf:f5:0c:93:48:8a:cf:fe: 5b:55:83:07:34:8b:49:16:a3:54:58:69:c4:6f:33: 9e:6f:ba:b8:cd:ac:1b:a2:d2:52:a2:f0:f0:12:8d: 41:8a:aa:3f:85:f3:4d:18:40:a4:d3:c6:dd:be:46: 7a:8e:b3:e7:c9:42:f5:9b:d3:1f:e2:6b:b2:13:f2: 1c:66:7d:e2:bd:db:fc:27:dc:67:ba:5e:5f:eb:2c: 56:a8:d7:84:08:ce:cb:5c:2e:fd:7a:d4:da:28:58: 15:74:d4:a2:9f:22:e2:57:31:5e:44:71:0d:c5:30: 7e:30:3e:30:21:ef:7f:87:cd:c4:ad:1d:c5:4a:8e: ff:89:50:91:d9:13:92:c2:5e:9a:31:d0:9e:8e:00: 89:0c:20:58:df:3c:f2:d5:3d:fd:04:d4:77:ec:9e: c1:4c:4d:0b:d5:1a:29:35:79:20:72:ea:a9:dc:4c: 7f:05:e8:e7:e3:2b:17:ee:ee:d9:90:e6:e9:dc:b0: b1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:CF:12:EB:77:9A:30:C8:5D:5E:5E:BD:83:9F:A8:A0:52:D5:6E:FE X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.4.0/24 Signature Algorithm: sha256WithRSAEncryption 30:ec:c8:4d:49:f9:bf:77:88:4f:01:af:23:11:07:2c:59:88: 80:72:be:2c:00:e8:29:c1:ba:a6:a0:0a:c9:00:15:32:4a:31: 9d:25:5a:00:73:a1:47:45:d0:e8:2a:dc:b0:86:25:b0:e7:18: ab:97:1d:9c:7b:8d:94:b0:e1:6e:c0:e4:5b:0d:7d:b7:00:e0: b1:02:66:02:22:9c:40:66:d3:b2:31:87:53:c1:63:65:40:bf: fa:5e:af:91:28:5a:f7:83:64:b6:9e:58:ef:bb:91:9f:e5:1b: bb:00:ad:3c:3e:b7:29:9f:d5:98:37:be:83:af:c8:24:a9:63: 0e:41:2f:72:f9:a5:a3:8e:de:a4:d1:5b:fc:f3:26:c8:fb:c0: 07:71:8b:7f:67:48:20:1d:ac:e2:99:8d:2d:93:b0:8e:b2:9f: e8:35:93:0f:30:1a:07:af:37:7f:bd:7b:ee:2b:a6:7e:02:1a: 88:24:c5:0b:8d:e5:d3:e1:00:ec:2e:03:9b:e3:8b:8f:b1:24: 97:b7:7e:b9:0d:77:6c:eb:83:f6:22:8a:4a:2e:0f:82:04:6e: d7:c0:61:36:b1:98:98:78:8c:a1:26:40:e4:39:52:3f:70:4f: f2:93:53:4f:8a:bc:d7:28:2d:70:97:d6:5e:45:4f:94:2c:bd: 38:a4:67:73 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJcpmkIsEcSSMTkpT+QNCHSECLf4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNTIzMDAzMDI0WhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNGJmMTIwOWUwNGEyYjgxMTIwN2EyZDFiZWMxM2JlNTIx ZmVjMjVkYTY5ZjI0YTEwOTA4N2I0OWUzMWQwY2Y1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyDpoAXDXAIu1jBauuyfPXpKjLaDBmehEKKB1aX8Q16HwS kCdl4RWuyjYewIlHbaJGQdS8VvZiuSPV4PChr9zmzFO/9QyTSIrP/ltVgwc0i0kW o1RYacRvM55vurjNrBui0lKi8PASjUGKqj+F800YQKTTxt2+RnqOs+fJQvWb0x/i a7IT8hxmfeK92/wn3Ge6Xl/rLFao14QIzstcLv161NooWBV01KKfIuJXMV5EcQ3F MH4wPjAh73+HzcStHcVKjv+JUJHZE5LCXpox0J6OAIkMIFjfPPLVPf0E1HfsnsFM TQvVGik1eSBy6qncTH8F6OfjKxfu7tmQ5uncsLG/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXs8S63eaMMhdXl69g5+ooFLVbv4wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2U1YzFiOWI4LTk3ZjAtNDRlMC1hNGI1LTJmNmMyYTI1MzFjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAQwDQYJKoZIhvcNAQELBQADggEBADDsyE1J+b93iE8BryMRByxZiIBy viwA6CnBuqagCskAFTJKMZ0lWgBzoUdF0Ogq3LCGJbDnGKuXHZx7jZSw4W7A5FsN fbcA4LECZgIinEBm07Ixh1PBY2VAv/per5EoWveDZLaeWO+7kZ/lG7sArTw+tymf 1Zg3voOvyCSpYw5BL3L5paOO3qTRW/zzJsj7wAdxi39nSCAdrOKZjS2TsI6yn+g1 kw8wGgevN3+9e+4rpn4CGogkxQuN5dPhAOwuA5vji4+xJJe3frkNd2zrg/Yiikou D4IEbtfAYTaxmJh4jKEmQOQ5Uj9wT/KTU0+KvNcoLXCX1l5FT5QsvTikZ3M= -----END CERTIFICATE-----Generated at Sun Jun 15 17:30:35 2025 by rpki-client