$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ba6cdb2-4752-4cba-b3ef-d76cfb4ad96f.roa File: 3ba6cdb2-4752-4cba-b3ef-d76cfb4ad96f.roa (raw, json) Hash identifier: gMGJbuHbxxe98HPY8j8kMV2KPFMRmpVJyh12GXhn26c= Subject key identifier: DB:A1:AD:C6:DA:21:D8:0F:12:E3:B8:81:C9:B6:FA:A0:E8:A6:0F:61 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5636A77E9B86FDFAC036726C7B1BD91E576601A4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ba6cdb2-4752-4cba-b3ef-d76cfb4ad96f.roa Signing time: Wed 21 May 2025 00:10:31 +0000 ROA not before: Wed 21 May 2025 00:10:31 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 150.222.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:36:a7:7e:9b:86:fd:fa:c0:36:72:6c:7b:1b:d9:1e:57:66:01:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 21 00:10:31 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=373476d3a26692e94eabae514ce0aaae4fc6f2e1306fe7aee488d0bd2070a49a, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:74:49:06:73:57:93:5f:c9:cd:a8:8b:ed:51: 26:99:06:6e:4f:45:70:d5:af:77:0f:4a:20:00:61: c3:8c:43:6a:79:3f:b7:27:35:57:83:51:ff:49:a6: 60:fd:e4:6b:5b:94:e3:ae:b4:ec:ed:b5:61:80:42: 2c:ac:71:01:97:aa:dd:94:e0:21:bf:24:e7:20:8c: ed:f0:98:cd:69:49:06:97:b2:26:1d:55:bc:81:87: 8c:74:cf:c9:08:fa:11:39:cb:2d:31:d8:5b:fb:63: 41:1c:d1:2f:3a:74:2a:74:88:27:15:15:c2:4f:2f: 05:a9:b2:94:4e:c6:6b:12:ab:f4:f7:08:c3:dc:8b: 71:26:00:40:23:45:0b:53:f6:bc:7b:3b:fd:0f:47: d8:f7:b4:f8:0a:9f:b1:19:c6:18:1a:30:58:bc:f5: 7b:10:fa:0e:01:84:ab:79:4f:0b:21:e2:66:61:ea: c8:ea:c2:de:b1:23:1b:f6:4b:13:14:2e:a5:2e:09: 2d:3f:73:35:23:a0:5e:48:de:ec:0b:b0:1e:54:a3: 6e:70:2c:0a:72:4d:56:a4:07:72:91:f7:bb:4b:b6: 5a:23:c0:72:dd:e6:fb:54:8c:da:08:0d:5b:04:77: f2:7d:e9:cf:07:a9:45:16:08:61:4e:d2:f8:46:ee: d9:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A1:AD:C6:DA:21:D8:0F:12:E3:B8:81:C9:B6:FA:A0:E8:A6:0F:61 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/3ba6cdb2-4752-4cba-b3ef-d76cfb4ad96f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.222.236.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:9e:63:65:2d:d4:86:cd:e0:9b:11:4e:b2:0d:0c:5a:3c:a8: c4:f3:0b:d5:6c:95:d4:17:8c:85:3d:c5:9e:93:18:cd:d2:7f: 36:a4:87:59:64:4d:aa:0a:9a:b5:de:69:77:79:46:75:8a:ac: 97:a5:4a:76:c5:e0:51:c4:9b:42:f1:bc:e1:b9:22:3c:5c:ab: cb:8a:c0:b4:a8:15:7f:e2:d5:3d:8c:7c:45:8a:a1:ca:c2:e6: eb:8d:e9:d8:15:d1:06:7e:ec:1f:2e:ab:94:9b:27:59:40:90: c6:3e:a2:c8:f7:08:d7:20:aa:64:37:3d:0b:ac:86:9e:09:bc: 78:41:4b:71:c3:da:ea:db:31:d2:d5:fa:6c:2e:67:5b:61:1d: f9:c3:6d:05:3d:62:cb:51:ad:72:2c:1a:96:95:37:99:a2:d2: 3a:1c:4b:ec:a3:ca:41:69:7d:f7:1b:18:76:31:50:ba:9f:e0: 4f:95:be:87:40:74:50:7e:78:ab:b2:5e:5e:ea:b8:8b:cf:44: d0:c5:ff:c4:3e:17:a7:41:09:8e:83:51:68:9e:6f:69:84:a4: 8d:a7:2a:e9:5d:86:3f:7b:ca:41:42:8b:ae:87:8f:0c:b2:fb: 8f:6e:95:ba:19:38:76:74:31:6d:b0:4a:04:9c:5b:8a:62:8b: ed:35:20:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVjanfpuG/frANnJsexvZHldmAaQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIxMDAxMDMxWhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzM0NzZkM2EyNjY5MmU5NGVhYmFlNTE0Y2UwYWFhZTRm YzZmMmUxMzA2ZmU3YWVlNDg4ZDBiZDIwNzBhNDlhMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0dEkGc1eTX8nNqIvtUSaZBm5PRXDVr3cPSiAAYcOMQ2p5 P7cnNVeDUf9JpmD95GtblOOutOzttWGAQiyscQGXqt2U4CG/JOcgjO3wmM1pSQaX siYdVbyBh4x0z8kI+hE5yy0x2Fv7Y0Ec0S86dCp0iCcVFcJPLwWpspROxmsSq/T3 CMPci3EmAEAjRQtT9rx7O/0PR9j3tPgKn7EZxhgaMFi89XsQ+g4BhKt5Twsh4mZh 6sjqwt6xIxv2SxMULqUuCS0/czUjoF5I3uwLsB5Uo25wLApyTVakB3KR97tLtloj wHLd5vtUjNoIDVsEd/J96c8HqUUWCGFO0vhG7tkdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU26Gtxtoh2A8S47iBybb6oOimD2EwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzNiYTZjZGIyLTQ3NTItNGNiYS1iM2VmLWQ3NmNmYjRhZDk2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACW3uwwDQYJKoZIhvcNAQELBQADggEBAC6eY2Ut1IbN4JsRTrINDFo8qMTz C9VsldQXjIU9xZ6TGM3Sfzakh1lkTaoKmrXeaXd5RnWKrJelSnbF4FHEm0LxvOG5 Ijxcq8uKwLSoFX/i1T2MfEWKocrC5uuN6dgV0QZ+7B8uq5SbJ1lAkMY+osj3CNcg qmQ3PQushp4JvHhBS3HD2urbMdLV+mwuZ1thHfnDbQU9YstRrXIsGpaVN5mi0joc S+yjykFpffcbGHYxULqf4E+VvodAdFB+eKuyXl7quIvPRNDF/8Q+F6dBCY6DUWie b2mEpI2nKuldhj97ykFCi66Hjwyy+49ulboZOHZ0MW2wSgScW4pii+01ID8= -----END CERTIFICATE-----Generated at Sat Jun 14 23:43:48 2025 by rpki-client