$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa File: e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa (raw, json) Hash identifier: YwTywPrEOWYd/pMiSuiywReF7WLNMCAbEvjrMzOA69I= Subject key identifier: 27:43:D8:02:E5:36:3C:D7:53:E8:A2:2C:5A:00:0A:5F:BD:B6:AC:40 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 70164DAB7B5DEFC65C6E191C20154D1972C266D7 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa Signing time: Tue 01 Apr 2025 15:00:23 +0000 ROA not before: Tue 01 Apr 2025 15:00:23 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:16:4d:ab:7b:5d:ef:c6:5c:6e:19:1c:20:15:4d:19:72:c2:66:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 1 15:00:23 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: serialNumber=9c5cfaa87dd413ff3da3aadae286da7e5654b46263b229c226f6bd6ffb4d9556, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:41:79:20:89:b8:48:02:4f:52:12:46:5f:04: c9:14:23:9a:58:05:dd:42:a9:8f:ad:c7:cc:f8:78: c8:66:7b:25:a9:c8:93:81:66:3d:0b:74:00:8f:ce: 72:fe:8b:a1:61:78:b1:54:11:a0:cb:8f:18:73:09: c9:5a:a9:ce:d9:79:80:44:18:e3:18:ae:5d:92:38: d4:c2:29:82:ab:51:1a:14:15:bc:77:31:12:5b:c5: 37:92:46:c0:6f:4a:55:ee:f4:32:35:84:08:34:02: 01:27:0f:12:36:17:a2:84:75:98:09:7f:1c:09:30: 62:50:2f:d9:11:fe:0b:fa:c6:e8:8a:37:d5:7b:34: 40:a6:e4:77:83:ef:3c:7f:dd:3b:77:30:71:82:9b: 6b:7d:29:aa:64:a3:e9:5c:81:7e:fc:b8:b7:9c:63: 6b:63:4e:56:e7:7b:1e:9d:79:94:a0:3f:df:a5:ba: a0:41:78:85:07:d2:df:c8:b6:ec:bf:ad:0b:73:65: 15:be:27:f1:ac:7b:4e:a5:42:79:2b:56:cd:14:1b: a7:44:d1:86:2f:ee:d4:5c:5f:49:0f:06:f7:5e:ff: 09:38:1b:9a:31:5a:6c:0c:34:44:69:74:e4:18:25: a0:64:fa:f1:41:00:40:75:b7:38:fb:ef:76:13:fd: 2b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:43:D8:02:E5:36:3C:D7:53:E8:A2:2C:5A:00:0A:5F:BD:B6:AC:40 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/e5c1b9b8-97f0-44e0-a4b5-2f6c2a2531c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.4.0/24 Signature Algorithm: sha256WithRSAEncryption 06:6a:aa:8c:cd:87:d5:f0:5c:cf:a6:34:74:4a:9e:83:91:3c: de:e5:df:ac:5f:87:25:84:37:6f:55:9f:f1:2f:cd:98:b6:31: c9:45:f4:b7:2d:35:7e:d8:e6:5f:ca:e4:cf:a2:bb:28:5c:e7: a1:2f:c7:a1:8f:e3:85:22:c2:30:4d:3c:31:e9:49:49:af:b2: c8:13:6f:39:c5:f3:5c:0f:c6:e0:94:75:9d:72:c4:3a:bd:07: 26:49:66:7f:eb:c9:d4:8f:b5:66:03:87:3b:82:bb:ba:51:06: c1:94:b3:f3:d0:ac:04:ea:72:a4:44:7f:d0:aa:65:83:22:22: f4:06:76:40:8e:58:f3:fc:1c:95:a5:6e:8c:88:3b:90:0b:3f: 94:fc:a9:f6:37:6b:fb:4e:72:c8:16:df:17:03:80:e4:21:52: 2e:56:80:84:b9:6c:ba:24:5b:ba:35:5e:84:89:c1:70:be:86: 1e:54:51:ed:a5:d2:b1:f9:80:85:5f:83:18:a3:39:cd:ee:64: dd:d2:05:7d:f6:99:c2:37:b9:6f:6c:dd:57:9a:32:d7:bc:56: ef:82:f4:b9:3e:74:58:bd:a3:ab:96:27:e8:8f:7c:58:52:ad: 26:74:73:8e:42:4f:3b:d3:39:0b:8f:da:e8:dc:dd:82:aa:0d: 98:f4:fc:2e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcBZNq3td78ZcbhkcIBVNGXLCZtcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDAxMTUwMDIzWhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzVjZmFhODdkZDQxM2ZmM2RhM2FhZGFlMjg2ZGE3ZTU2 NTRiNDYyNjNiMjI5YzIyNmY2YmQ2ZmZiNGQ5NTU2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbQXkgibhIAk9SEkZfBMkUI5pYBd1CqY+tx8z4eMhmeyWp yJOBZj0LdACPznL+i6FheLFUEaDLjxhzCclaqc7ZeYBEGOMYrl2SONTCKYKrURoU Fbx3MRJbxTeSRsBvSlXu9DI1hAg0AgEnDxI2F6KEdZgJfxwJMGJQL9kR/gv6xuiK N9V7NECm5HeD7zx/3Tt3MHGCm2t9Kapko+lcgX78uLecY2tjTlbnex6deZSgP9+l uqBBeIUH0t/Ituy/rQtzZRW+J/Gse06lQnkrVs0UG6dE0YYv7tRcX0kPBvde/wk4 G5oxWmwMNERpdOQYJaBk+vFBAEB1tzj773YT/St7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJ0PYAuU2PNdT6KIsWgAKX722rEAwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2U1YzFiOWI4LTk3ZjAtNDRlMC1hNGI1LTJmNmMyYTI1MzFjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAQwDQYJKoZIhvcNAQELBQADggEBAAZqqozNh9XwXM+mNHRKnoORPN7l 36xfhyWEN29Vn/EvzZi2MclF9LctNX7Y5l/K5M+iuyhc56Evx6GP44UiwjBNPDHp SUmvssgTbznF81wPxuCUdZ1yxDq9ByZJZn/rydSPtWYDhzuCu7pRBsGUs/PQrATq cqREf9CqZYMiIvQGdkCOWPP8HJWlboyIO5ALP5T8qfY3a/tOcsgW3xcDgOQhUi5W gIS5bLokW7o1XoSJwXC+hh5UUe2l0rH5gIVfgxijOc3uZN3SBX32mcI3uW9s3Vea Mte8Vu+C9Lk+dFi9o6uWJ+iPfFhSrSZ0c45CTzvTOQuP2ujc3YKqDZj0/C4= -----END CERTIFICATE-----Generated at Sat Apr 26 12:20:07 2025 by rpki-client