$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa File: ecc15691-9732-4fda-b2d1-5ad157c2818e.roa (raw, json) Hash identifier: TMgwhZbxy2P+f+dSLQ63C8j6mWRM+zNM1/uLXAayOho= Subject key identifier: 55:40:64:58:93:F6:C5:C7:FC:67:1C:4B:89:51:A0:66:6C:50:6D:FF Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 4A0172527EC793607C86AB7F87285F2937014A5A Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa Signing time: Tue 15 Apr 2025 00:50:33 +0000 ROA not before: Tue 15 Apr 2025 00:50:33 +0000 ROA not after: Tue 20 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:01:72:52:7e:c7:93:60:7c:86:ab:7f:87:28:5f:29:37:01:4a:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 15 00:50:33 2025 GMT Not After : May 20 23:59:59 2025 GMT Subject: serialNumber=e83e7115e147224505abb2c5a5c0d1e9429faf71dd042afd587935c725ccb455, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3d:ba:11:26:bd:a5:0e:4a:9f:c5:f1:e4:51: 5a:e5:22:9f:32:af:e0:ec:ee:46:dc:3b:8a:f4:9c: 1a:06:08:a0:ea:3d:25:67:73:89:61:69:c3:c0:12: 0e:d6:df:95:4b:48:f7:a3:b9:70:02:2b:45:4b:a5: 39:ba:84:53:59:b9:95:d6:ca:cb:d4:24:28:d0:a2: e9:fa:75:c7:b1:5a:3c:1b:97:e7:05:df:76:d5:b0: 41:90:53:c8:3e:2c:dc:9c:ba:d7:fc:b3:54:f3:f8: b9:9a:78:c3:09:6c:b9:c4:eb:db:25:23:bf:7c:00: 2a:1d:3c:e5:0b:8a:4a:52:1e:ce:a5:bd:57:7e:5e: ac:d4:53:3c:08:1f:20:2a:4a:f4:4e:7c:b3:36:ab: 4a:2c:b7:1b:06:7d:68:eb:1a:95:52:07:16:32:1b: 2b:32:66:ea:82:a1:f3:85:76:d5:93:15:8e:78:3a: 44:61:bb:fb:ff:35:a3:a2:9d:33:ba:48:35:b9:cc: ab:6e:ef:7c:bf:48:f8:5f:1a:ac:2b:33:4f:63:f1: 20:17:71:d7:38:ed:31:8f:c6:05:98:92:fc:67:40: 80:4b:0d:18:a5:b6:7c:35:56:89:12:7b:5d:b8:21: fe:a9:11:36:7c:3c:b0:ac:36:41:b2:f3:7c:cd:2b: 73:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:40:64:58:93:F6:C5:C7:FC:67:1C:4B:89:51:A0:66:6C:50:6D:FF X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/ecc15691-9732-4fda-b2d1-5ad157c2818e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.3.0/24 Signature Algorithm: sha256WithRSAEncryption 58:5d:f6:95:42:a5:0e:00:90:64:2a:d6:d3:69:ed:45:73:89: 9d:72:db:9d:5b:23:b6:00:51:04:6e:76:8a:76:b7:5d:d6:f4: b1:31:68:5c:d6:ab:35:77:cb:c9:64:ac:79:3b:5e:99:44:2b: 81:db:b3:c7:43:6c:0e:51:95:43:7f:78:83:84:dd:b4:3b:72: 0c:1b:f8:6a:8f:43:e9:b2:7d:37:76:19:82:46:e6:97:02:6b: 36:7e:c9:50:8f:99:df:30:90:d5:6e:c7:0a:0a:35:a4:3f:49: 71:e1:50:bb:ac:37:66:ec:5e:7f:09:e3:8e:01:73:b7:33:b0: 1b:27:3b:c0:b7:73:ff:74:52:5f:dc:87:9c:49:89:cc:18:63: 7a:bd:f4:cd:24:65:6c:95:c9:77:e5:67:5a:d9:38:8a:5f:20: 30:3d:c0:57:91:08:c8:aa:cb:dc:1a:67:3b:36:ce:35:be:85: 0c:3b:e4:08:3e:e6:7d:af:42:2d:18:16:34:44:43:67:d7:2a: b1:c3:12:aa:d6:20:0f:13:1b:d7:96:6b:9f:00:4e:b0:ee:96: 36:d2:9d:53:5f:60:9a:59:76:87:1b:b5:c6:c4:a8:8f:61:e2: 4b:ab:f4:81:12:73:88:b9:03:23:18:c6:4f:e2:56:46:14:68: d4:8f:89:41 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSgFyUn7Hk2B8hqt/hyhfKTcBSlowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDE1MDA1MDMzWhcNMjUwNTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlODNlNzExNWUxNDcyMjQ1MDVhYmIyYzVhNWMwZDFlOTQy OWZhZjcxZGQwNDJhZmQ1ODc5MzVjNzI1Y2NiNDU1MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZPboRJr2lDkqfxfHkUVrlIp8yr+Ds7kbcO4r0nBoGCKDq PSVnc4lhacPAEg7W35VLSPejuXACK0VLpTm6hFNZuZXWysvUJCjQoun6dcexWjwb l+cF33bVsEGQU8g+LNycutf8s1Tz+LmaeMMJbLnE69slI798ACodPOULikpSHs6l vVd+XqzUUzwIHyAqSvROfLM2q0ostxsGfWjrGpVSBxYyGysyZuqCofOFdtWTFY54 OkRhu/v/NaOinTO6SDW5zKtu73y/SPhfGqwrM09j8SAXcdc47TGPxgWYkvxnQIBL DRiltnw1VokSe124If6pETZ8PLCsNkGy83zNK3NtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVUBkWJP2xcf8ZxxLiVGgZmxQbf8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2VjYzE1NjkxLTk3MzItNGZkYS1iMmQxLTVhZDE1N2MyODE4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYAMwDQYJKoZIhvcNAQELBQADggEBAFhd9pVCpQ4AkGQq1tNp7UVziZ1y 251bI7YAUQRudop2t13W9LExaFzWqzV3y8lkrHk7XplEK4Hbs8dDbA5RlUN/eIOE 3bQ7cgwb+GqPQ+myfTd2GYJG5pcCazZ+yVCPmd8wkNVuxwoKNaQ/SXHhULusN2bs Xn8J444Bc7czsBsnO8C3c/90Ul/ch5xJicwYY3q99M0kZWyVyXflZ1rZOIpfIDA9 wFeRCMiqy9waZzs2zjW+hQw75Ag+5n2vQi0YFjREQ2fXKrHDEqrWIA8TG9eWa58A TrDuljbSnVNfYJpZdocbtcbEqI9h4kur9IESc4i5AyMYxk/iVkYUaNSPiUE= -----END CERTIFICATE-----Generated at Sat Apr 26 14:21:17 2025 by rpki-client