$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f24b00af-d0f9-4c84-bc60-86f3001d43e2.roa File: f24b00af-d0f9-4c84-bc60-86f3001d43e2.roa (raw, json) Hash identifier: boAqR2wpHj4WoD2pV8Qa2TSHOk1RTN/kJ/3u6jeFKCw= Subject key identifier: EA:1E:6B:F0:EE:20:E5:21:EE:D8:23:AD:1E:DB:1A:0C:4C:18:76:4C Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 74327C4B036C9224F0D32AEBC2A07CDD19600FD1 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f24b00af-d0f9-4c84-bc60-86f3001d43e2.roa Signing time: Fri 25 Apr 2025 17:40:43 +0000 ROA not before: Fri 25 Apr 2025 17:40:43 +0000 ROA not after: Fri 30 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:32:7c:4b:03:6c:92:24:f0:d3:2a:eb:c2:a0:7c:dd:19:60:0f:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 25 17:40:43 2025 GMT Not After : May 30 23:59:59 2025 GMT Subject: serialNumber=2cf998ea9245828812666aaff8bf4fb2394406485091fa318af2ede49856544f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:2b:93:06:88:05:aa:30:ba:7b:07:08:ee:52: 24:e9:ac:ea:67:a1:6e:e6:4b:3f:3c:72:c5:23:3c: 81:54:8a:66:17:7a:fe:a9:8a:44:dd:0e:1f:06:41: a9:9a:74:c9:47:37:ec:f9:48:7a:a7:0e:94:3e:e9: ef:d7:f3:8e:fc:96:e2:93:f2:e7:45:5e:56:27:5d: b9:1a:a5:97:a9:b7:74:68:6d:35:1c:8b:3c:10:76: d2:b3:05:a0:14:d0:ea:37:c5:cf:50:e4:bb:83:3f: e0:7e:9e:cf:6c:b8:34:66:39:1a:bd:37:55:4a:43: a7:5e:ac:54:54:80:1b:36:a8:1d:7d:0a:14:a9:f3: 0b:c9:32:ba:4f:ca:b3:1a:75:82:a0:c9:58:a6:12: 58:1f:8f:70:6d:79:06:83:f9:40:ff:6f:2a:ef:4b: f5:89:b0:d0:65:c6:be:57:78:3b:24:7a:05:06:86: ae:a3:03:37:bd:03:4d:33:1d:59:a4:ab:97:df:f7: 5c:48:4d:0e:4f:ce:4f:26:f2:bb:94:fe:11:ba:ed: d4:d5:57:35:b9:5b:0a:1c:64:96:2f:0e:90:93:3b: 7f:2b:43:2e:10:98:fb:6f:0b:36:d9:6a:09:87:a7: ef:b7:00:60:ea:2a:43:f2:d6:a0:df:56:42:61:0c: 18:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:1E:6B:F0:EE:20:E5:21:EE:D8:23:AD:1E:DB:1A:0C:4C:18:76:4C X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f24b00af-d0f9-4c84-bc60-86f3001d43e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.96.0/20 Signature Algorithm: sha256WithRSAEncryption 30:9f:55:a4:10:5e:d8:46:47:93:eb:96:7d:f5:4d:8f:36:cd: 23:25:87:e1:c0:a9:c5:bb:27:d8:96:11:95:d4:d0:94:d6:13: 86:6e:89:93:38:c3:ce:b9:56:5d:f6:4d:35:fd:61:d7:5c:da: 4c:0f:2d:2f:fe:42:02:7e:ea:2c:f4:ed:b5:ba:b1:0a:5c:d6: 8b:fa:91:80:8d:30:2a:09:38:b8:76:5e:af:aa:86:01:34:b2: 4f:46:16:9b:09:c2:9a:15:82:3c:19:32:71:67:21:60:cc:f7: 91:57:14:a7:fb:e3:1c:27:7e:8b:63:d5:99:67:96:ab:ff:f2: 9b:44:23:56:f8:7e:a2:0a:04:fe:5c:80:b2:c4:24:f0:29:3a: 68:db:51:76:2d:a2:9b:55:6a:ee:6b:45:25:5b:ad:50:c6:a5: 54:44:e2:0c:c6:e8:1d:c3:8a:8a:02:76:8d:24:52:d7:81:68: 8e:ab:ee:59:a5:fd:a6:a5:0b:8b:e7:12:7c:0a:c2:c3:7c:71: b3:7b:77:06:3d:ee:64:cd:b9:34:32:45:50:9a:aa:b0:80:cb: ee:88:3d:a1:f6:56:0f:89:f3:48:63:46:3c:6f:2d:96:9b:28: 95:90:27:58:c0:cd:b9:7d:79:15:60:8e:69:63:b3:ff:0e:48: 85:1e:f4:02 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdDJ8SwNskiTw0yrrwqB83RlgD9EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDI1MTc0MDQzWhcNMjUwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2Y5OThlYTkyNDU4Mjg4MTI2NjZhYWZmOGJmNGZiMjM5 NDQwNjQ4NTA5MWZhMzE4YWYyZWRlNDk4NTY1NDRmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZK5MGiAWqMLp7BwjuUiTprOpnoW7mSz88csUjPIFUimYX ev6pikTdDh8GQamadMlHN+z5SHqnDpQ+6e/X8478luKT8udFXlYnXbkapZept3Ro bTUcizwQdtKzBaAU0Oo3xc9Q5LuDP+B+ns9suDRmORq9N1VKQ6derFRUgBs2qB19 ChSp8wvJMrpPyrMadYKgyVimElgfj3BteQaD+UD/byrvS/WJsNBlxr5XeDskegUG hq6jAze9A00zHVmkq5ff91xITQ5Pzk8m8ruU/hG67dTVVzW5WwocZJYvDpCTO38r Qy4QmPtvCzbZagmHp++3AGDqKkPy1qDfVkJhDBh7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6h5r8O4g5SHu2COtHtsaDEwYdkwwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2YyNGIwMGFmLWQwZjktNGM4NC1iYzYwLTg2ZjMwMDFkNDNlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjYGAwDQYJKoZIhvcNAQELBQADggEBADCfVaQQXthGR5Prln31TY82zSMl h+HAqcW7J9iWEZXU0JTWE4ZuiZM4w865Vl32TTX9Yddc2kwPLS/+QgJ+6iz07bW6 sQpc1ov6kYCNMCoJOLh2Xq+qhgE0sk9GFpsJwpoVgjwZMnFnIWDM95FXFKf74xwn fotj1Zlnlqv/8ptEI1b4fqIKBP5cgLLEJPApOmjbUXYtoptVau5rRSVbrVDGpVRE 4gzG6B3DiooCdo0kUteBaI6r7lml/aalC4vnEnwKwsN8cbN7dwY97mTNuTQyRVCa qrCAy+6IPaH2Vg+J80hjRjxvLZabKJWQJ1jAzbl9eRVgjmljs/8OSIUe9AI= -----END CERTIFICATE-----Generated at Sat Apr 26 16:45:52 2025 by rpki-client