$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fe10db4e-237b-4b32-b567-e9ebff17bb14.roa File: fe10db4e-237b-4b32-b567-e9ebff17bb14.roa (raw, json) Hash identifier: HImGsQcEZwRtOZMqvrXXiv+RMmsWBoKw7OLOgN0JBnc= Subject key identifier: 23:F2:F8:24:43:6A:C9:90:50:69:8A:D2:64:18:9C:B6:03:7F:12:46 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 08C583BB5807A1921F0D5A8EAAF91E75DF561FAA Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fe10db4e-237b-4b32-b567-e9ebff17bb14.roa Signing time: Thu 05 Jun 2025 14:38:58 +0000 ROA not before: Thu 05 Jun 2025 14:38:58 +0000 ROA not after: Thu 10 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.96.48.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:c5:83:bb:58:07:a1:92:1f:0d:5a:8e:aa:f9:1e:75:df:56:1f:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 5 14:38:58 2025 GMT Not After : Jul 10 23:59:59 2025 GMT Subject: serialNumber=a49c850cfa3705070f2aee91e5d4e53e02e6fb7c606e3895251acab06c53049a, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:05:55:a9:ee:2a:24:4e:d5:3f:a2:da:0e:d0: c6:cb:de:df:b2:84:31:f5:4f:9a:d6:76:36:25:b1: 34:94:50:9e:f7:f2:b3:b5:5d:d2:f1:b7:a3:69:18: 14:6d:29:29:8b:7f:49:43:b0:a9:e9:b6:90:8a:bc: 89:d3:35:30:6e:4d:32:44:df:47:bd:c3:fa:be:34: f8:33:30:51:0e:0a:a3:21:00:16:06:2d:63:39:25: 51:6b:21:78:74:fa:37:84:a8:00:be:9f:e2:01:6b: c4:b2:38:d6:06:40:49:39:41:c2:9e:ab:a6:b7:58: 38:4a:c5:a6:23:e3:2e:1f:b8:a0:f2:7d:47:cf:05: 33:59:30:82:c5:e8:22:a8:e1:af:b3:ed:1c:38:c3: 55:a3:89:bf:8b:b4:28:4c:32:8a:25:51:3a:bf:20: f9:27:62:5c:c1:5c:d7:7a:6b:8b:a4:1d:94:db:a7: 74:df:3e:55:de:fd:58:58:f8:a2:0a:8f:3b:65:32: f3:50:91:85:56:3e:58:8e:dd:2c:55:33:26:ba:0f: fd:1e:0b:be:97:2b:37:ed:da:cd:0b:bc:26:25:65: 7e:c5:91:0d:b7:da:00:9b:ce:1e:8b:32:a1:41:1d: c0:2a:89:71:86:88:9d:c5:91:33:66:09:41:22:28: bd:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F2:F8:24:43:6A:C9:90:50:69:8A:D2:64:18:9C:B6:03:7F:12:46 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/fe10db4e-237b-4b32-b567-e9ebff17bb14.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.48.0/22 Signature Algorithm: sha256WithRSAEncryption 16:55:cd:66:81:c9:8e:7c:c2:f8:08:73:69:49:10:70:df:97: f2:5c:31:0a:37:3d:41:5f:bd:51:08:a2:02:f4:22:66:ee:8b: c9:58:11:7a:33:ae:54:62:d3:f7:43:1a:b4:64:6e:26:f5:ac: 8c:90:03:3c:c4:14:5d:d4:2f:f2:06:f6:3f:71:15:59:77:2a: 94:4c:8d:9f:01:c8:1e:4e:f3:d7:c6:8c:af:45:1e:52:b4:7c: e4:bd:16:5e:17:37:bc:f9:0d:97:d1:b1:09:c1:76:84:57:28: 01:a2:37:3a:19:86:b6:79:1c:05:ed:50:73:04:b2:1c:51:e2: 94:0a:21:6c:0e:07:8a:b6:08:21:1c:b8:8a:20:31:c0:bb:06: 11:4b:6d:38:e3:48:dd:f5:5c:16:c2:53:79:f7:9f:6d:26:00: 1d:d4:9f:a5:24:7d:10:ba:8f:35:c4:b0:dd:47:d1:b5:c9:34: 1f:85:d3:91:6f:7e:79:ae:2a:2d:d5:b9:b9:80:23:7f:a7:47: bb:51:ba:d3:57:65:2a:fb:b5:63:e5:ae:ac:62:3b:8a:27:3d: 48:4e:ae:51:33:74:0a:72:a5:d5:11:4a:e5:d4:c9:67:94:6e: 56:c9:36:de:e3:24:4f:38:c5:8f:ea:40:de:ea:26:fc:41:23: af:85:a5:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCMWDu1gHoZIfDVqOqvkedd9WH6owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjA1MTQzODU4WhcNMjUwNzEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDljODUwY2ZhMzcwNTA3MGYyYWVlOTFlNWQ0ZTUzZTAy ZTZmYjdjNjA2ZTM4OTUyNTFhY2FiMDZjNTMwNDlhMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCBVWp7iokTtU/otoO0MbL3t+yhDH1T5rWdjYlsTSUUJ73 8rO1XdLxt6NpGBRtKSmLf0lDsKnptpCKvInTNTBuTTJE30e9w/q+NPgzMFEOCqMh ABYGLWM5JVFrIXh0+jeEqAC+n+IBa8SyONYGQEk5QcKeq6a3WDhKxaYj4y4fuKDy fUfPBTNZMILF6CKo4a+z7Rw4w1Wjib+LtChMMoolUTq/IPknYlzBXNd6a4ukHZTb p3TfPlXe/VhY+KIKjztlMvNQkYVWPliO3SxVMya6D/0eC76XKzft2s0LvCYlZX7F kQ232gCbzh6LMqFBHcAqiXGGiJ3FkTNmCUEiKL0DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUI/L4JENqyZBQaYrSZBictgN/EkYwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2ZlMTBkYjRlLTIzN2ItNGIzMi1iNTY3LWU5ZWJmZjE3YmIxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIjYDAwDQYJKoZIhvcNAQELBQADggEBABZVzWaByY58wvgIc2lJEHDfl/Jc MQo3PUFfvVEIogL0Imbui8lYEXozrlRi0/dDGrRkbib1rIyQAzzEFF3UL/IG9j9x FVl3KpRMjZ8ByB5O89fGjK9FHlK0fOS9Fl4XN7z5DZfRsQnBdoRXKAGiNzoZhrZ5 HAXtUHMEshxR4pQKIWwOB4q2CCEcuIogMcC7BhFLbTjjSN31XBbCU3n3n20mAB3U n6UkfRC6jzXEsN1H0bXJNB+F05FvfnmuKi3VubmAI3+nR7tRutNXZSr7tWPlrqxi O4onPUhOrlEzdApypdURSuXUyWeUblbJNt7jJE84xY/qQN7qJvxBI6+FpXs= -----END CERTIFICATE-----Generated at Sat Jun 14 06:27:12 2025 by rpki-client