$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f6ee6fa-a5c1-43cf-a375-a53cb80d8739.roa File: 5f6ee6fa-a5c1-43cf-a375-a53cb80d8739.roa (raw, json) Hash identifier: pn6dSE8RzE5gSFs8MJxa14f+86kat3dD5KpJsfL3n0w= Subject key identifier: 73:11:AC:3A:9A:90:D4:AD:D9:06:5A:F9:5E:4F:6B:12:01:B9:52:E3 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 04D0E8B06C624FF31D5461755CB5A8ED43BFA6F6 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f6ee6fa-a5c1-43cf-a375-a53cb80d8739.roa Signing time: Mon 09 Jun 2025 19:01:47 +0000 ROA not before: Mon 09 Jun 2025 19:01:47 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.251.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:d0:e8:b0:6c:62:4f:f3:1d:54:61:75:5c:b5:a8:ed:43:bf:a6:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 19:01:47 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=8586387df9937092153b881d3abd559beb72c91cf7150425d456b2e1d34c4999, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e2:a8:1a:7a:e6:63:00:88:31:39:28:f8:d3: 67:a9:fd:c3:1e:04:de:ad:c3:46:f6:73:ce:f1:94: 94:5a:57:56:dd:73:0d:81:3b:a5:43:08:b9:de:77: c6:e9:fc:6c:ac:6b:3d:09:12:7a:42:85:a3:0c:0d: 43:75:5c:92:83:92:ff:96:d4:d1:ca:f6:68:af:b7: 66:af:f5:f6:f6:d8:83:43:5c:86:07:64:7b:88:ed: 1f:fa:3e:27:ab:74:aa:ee:01:a9:bd:b3:bd:03:96: 8e:5a:63:90:9d:c1:bd:af:ca:24:92:22:c7:be:18: ec:d8:dc:f2:dd:0f:88:11:80:a8:5f:0f:53:6d:c7: b5:7d:1d:1b:96:79:3b:1b:d4:ca:e5:7d:fa:92:77: 6e:e8:d9:de:f9:4c:a6:71:47:4e:c6:71:7a:6d:84: b6:82:61:2e:a0:9b:7f:5f:7c:f1:62:5b:9f:fb:30: a3:82:57:67:61:c0:c1:ba:eb:59:d3:e2:5d:ab:b1: 25:38:5a:98:8b:8b:91:57:f2:d5:62:72:1b:37:28: a8:ac:d5:58:38:dd:6c:38:fa:95:d7:e5:4f:14:03: fd:dc:33:1d:ec:8b:a0:08:bd:42:5c:6a:bd:61:51: d4:9d:b3:38:cf:b3:d7:99:31:e6:b7:00:e1:d5:f3: ba:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:11:AC:3A:9A:90:D4:AD:D9:06:5A:F9:5E:4F:6B:12:01:B9:52:E3 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5f6ee6fa-a5c1-43cf-a375-a53cb80d8739.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.251.0.0/18 Signature Algorithm: sha256WithRSAEncryption 84:ac:33:9a:c9:f2:92:7d:13:77:4d:8a:d4:10:dc:4e:98:74: 52:87:86:f4:86:e5:6e:f7:14:bf:e9:05:75:83:95:c3:fd:c5: 4b:88:dd:ee:be:02:a5:4e:e6:25:a3:b6:2c:b6:5f:fe:7b:a9: 28:d6:a9:51:ca:a6:ad:ce:7d:94:34:c3:da:e8:1c:c5:14:8c: 33:66:bd:e5:50:c8:61:1d:42:74:9e:f3:92:1f:36:58:5d:13: 55:ad:38:54:75:66:9e:33:84:e0:6b:a0:b0:cc:6f:96:90:01: 30:29:f0:63:02:34:e7:27:f1:53:23:6f:f1:b7:2e:f8:55:20: 43:66:6e:db:a2:d0:8e:88:ab:0b:62:8a:99:67:ba:d2:92:1c: 87:6d:5f:0b:88:93:b2:90:8b:3c:51:e8:1a:dd:ae:b0:2a:46: 3f:2e:e4:5a:de:72:a1:6e:6b:8c:08:cd:bd:a9:61:d4:cf:af: d5:0a:5d:a6:9d:99:41:31:19:6a:b8:63:44:d4:08:6f:a2:2e: 58:15:c3:4c:99:0b:bc:49:db:bc:6f:3f:a2:7d:d0:63:11:d5: c4:4b:c9:fa:53:f8:9c:f2:35:8f:93:ca:2b:e3:8b:1b:0d:1b: 5b:95:9e:3f:84:5f:f9:ad:f8:d0:c8:f6:3f:46:27:84:16:1c: 9c:90:06:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBNDosGxiT/MdVGF1XLWo7UO/pvYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA5MTkwMTQ3WhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTg2Mzg3ZGY5OTM3MDkyMTUzYjg4MWQzYWJkNTU5YmVi NzJjOTFjZjcxNTA0MjVkNDU2YjJlMWQzNGM0OTk5MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCc4qgaeuZjAIgxOSj402ep/cMeBN6tw0b2c87xlJRaV1bd cw2BO6VDCLned8bp/Gysaz0JEnpChaMMDUN1XJKDkv+W1NHK9mivt2av9fb22IND XIYHZHuI7R/6PierdKruAam9s70Dlo5aY5Cdwb2vyiSSIse+GOzY3PLdD4gRgKhf D1Ntx7V9HRuWeTsb1MrlffqSd27o2d75TKZxR07GcXpthLaCYS6gm39ffPFiW5/7 MKOCV2dhwMG661nT4l2rsSU4WpiLi5FX8tVichs3KKis1Vg43Ww4+pXX5U8UA/3c Mx3si6AIvUJcar1hUdSdszjPs9eZMea3AOHV87rhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcxGsOpqQ1K3ZBlr5Xk9rEgG5UuMwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzVmNmVlNmZhLWE1YzEtNDNjZi1hMzc1LWE1M2NiODBkODczOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2+wAwDQYJKoZIhvcNAQELBQADggEBAISsM5rJ8pJ9E3dNitQQ3E6YdFKH hvSG5W73FL/pBXWDlcP9xUuI3e6+AqVO5iWjtiy2X/57qSjWqVHKpq3OfZQ0w9ro HMUUjDNmveVQyGEdQnSe85IfNlhdE1WtOFR1Zp4zhOBroLDMb5aQATAp8GMCNOcn 8VMjb/G3LvhVIENmbtui0I6IqwtiiplnutKSHIdtXwuIk7KQizxR6BrdrrAqRj8u 5FrecqFua4wIzb2pYdTPr9UKXaadmUExGWq4Y0TUCG+iLlgVw0yZC7xJ27xvP6J9 0GMR1cRLyfpT+JzyNY+TyivjixsNG1uVnj+EX/mt+NDI9j9GJ4QWHJyQBkI= -----END CERTIFICATE-----Generated at Sat Jun 14 05:46:35 2025 by rpki-client