$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/888ef377-7e57-4736-9e90-5894d98e6e31.roa File: 888ef377-7e57-4736-9e90-5894d98e6e31.roa (raw, json) Hash identifier: /vUiAp7atROGXMLkn0Vd51S9ZcKTwxYgninvf0xHRLs= Subject key identifier: CD:CA:94:84:58:C6:F6:DF:E8:30:90:14:6F:A2:EE:3F:C4:0B:BC:31 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1BA400518E9DA1C4D4AD180CF80F5AA5DC24F2A4 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/888ef377-7e57-4736-9e90-5894d98e6e31.roa Signing time: Fri 11 Jul 2025 15:31:13 +0000 ROA not before: Fri 11 Jul 2025 15:31:13 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 15.230.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:a4:00:51:8e:9d:a1:c4:d4:ad:18:0c:f8:0f:5a:a5:dc:24:f2:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 11 15:31:13 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=98f7f72f680576e330755294c9894afba5a3277eacd4d397415fc9cbf280c4ee, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:89:04:c3:79:48:4d:13:2e:47:d9:3b:de:c2: 34:5e:ce:cc:30:24:93:67:44:87:46:7c:41:1b:86: dc:38:80:0b:7e:7d:e3:57:fc:d7:85:dd:83:d5:a7: 22:0b:b4:c7:ff:4f:bb:61:7d:58:39:a7:3d:0f:65: a0:e1:b9:fe:36:bd:1d:2b:11:6e:3f:03:68:df:2f: 5b:52:1d:02:0c:65:9d:3b:86:35:76:fa:37:6c:c4: c8:a9:fb:84:9c:d1:ad:ff:67:13:a2:fc:23:80:c1: 2e:9b:78:a6:e9:ee:4a:48:73:6b:f2:40:7e:a9:75: 83:d3:c5:8f:3c:ba:64:23:6a:e3:01:7a:5d:b2:b3: ca:fb:c1:0b:4d:21:2c:3f:0a:d1:cb:e0:ac:fb:a2: 50:9e:cd:58:c9:1c:41:34:ce:aa:92:54:dc:8d:fe: 66:b8:9a:90:0d:3c:03:bb:c3:3d:8f:68:51:bd:97: 45:cb:4d:68:54:6e:f4:05:8f:1b:76:e0:f2:28:84: 78:6c:b3:23:74:44:aa:ca:20:50:b7:d9:ed:f1:28: a4:13:91:b6:07:d5:6c:df:df:7e:04:40:a2:f3:c8: 6c:7e:05:0f:e2:0d:80:3f:b7:5e:1d:dd:a9:90:89: db:a0:2d:7a:e6:69:e0:89:d7:26:f6:2c:6c:8e:66: d9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:CA:94:84:58:C6:F6:DF:E8:30:90:14:6F:A2:EE:3F:C4:0B:BC:31 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/888ef377-7e57-4736-9e90-5894d98e6e31.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.230.148.0/24 Signature Algorithm: sha256WithRSAEncryption 17:71:33:82:2a:30:2f:0a:ef:1d:72:85:e0:3b:b3:55:6a:3b: f3:45:35:c0:8e:49:24:b3:78:3e:85:88:55:4c:f9:c7:77:c9: 08:0b:c6:27:32:ce:89:d4:b5:d8:58:51:14:60:13:50:0c:91: 17:34:f2:9c:ca:8a:a3:71:b7:4f:cf:10:ba:ad:17:8c:f5:eb: ca:5f:45:39:5f:15:12:f3:ed:b5:23:ef:b4:bf:ba:63:1b:f6: 8d:75:49:de:80:46:e7:85:ee:00:f5:ac:19:67:42:79:0f:40: 58:34:1a:22:fc:5e:28:ce:10:87:dd:fc:bd:d7:59:c3:f3:30: b6:29:4f:ba:31:63:6d:f3:e3:d2:40:45:96:0b:31:58:f4:a8: bc:98:9b:f8:6f:44:1d:0a:29:fe:94:98:da:18:16:bc:2c:02: c5:87:1f:42:14:66:c2:ec:c4:eb:8a:21:b7:c4:8f:bf:54:04: d0:a2:2a:ac:ba:01:94:86:a3:a4:03:4d:ad:51:00:62:ba:85: 57:9d:1b:6e:fe:0a:31:de:3d:f8:9d:cf:c2:11:8e:62:be:94: cf:9a:22:15:d7:c2:1d:ec:0c:c9:65:0e:5c:5e:28:88:fb:9d: eb:aa:a7:c0:ac:bc:20:9d:65:77:2b:20:13:04:88:84:83:d6: 67:32:11:b2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG6QAUY6docTUrRgM+A9apdwk8qQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzExMTUzMTEzWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OGY3ZjcyZjY4MDU3NmUzMzA3NTUyOTRjOTg5NGFmYmE1 YTMyNzdlYWNkNGQzOTc0MTVmYzljYmYyODBjNGVlMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFiQTDeUhNEy5H2TvewjRezswwJJNnRIdGfEEbhtw4gAt+ feNX/NeF3YPVpyILtMf/T7thfVg5pz0PZaDhuf42vR0rEW4/A2jfL1tSHQIMZZ07 hjV2+jdsxMip+4Sc0a3/ZxOi/COAwS6beKbp7kpIc2vyQH6pdYPTxY88umQjauMB el2ys8r7wQtNISw/CtHL4Kz7olCezVjJHEE0zqqSVNyN/ma4mpANPAO7wz2PaFG9 l0XLTWhUbvQFjxt24PIohHhssyN0RKrKIFC32e3xKKQTkbYH1Wzf334EQKLzyGx+ BQ/iDYA/t14d3amQidugLXrmaeCJ1yb2LGyOZtnjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzcqUhFjG9t/oMJAUb6LuP8QLvDEwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzg4OGVmMzc3LTdlNTctNDczNi05ZTkwLTU4OTRkOThlNmUzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP5pQwDQYJKoZIhvcNAQELBQADggEBABdxM4IqMC8K7x1yheA7s1VqO/NF NcCOSSSzeD6FiFVM+cd3yQgLxicyzonUtdhYURRgE1AMkRc08pzKiqNxt0/PELqt F4z168pfRTlfFRLz7bUj77S/umMb9o11Sd6ARueF7gD1rBlnQnkPQFg0GiL8XijO EIfd/L3XWcPzMLYpT7oxY23z49JARZYLMVj0qLyYm/hvRB0KKf6UmNoYFrwsAsWH H0IUZsLsxOuKIbfEj79UBNCiKqy6AZSGo6QDTa1RAGK6hVedG27+CjHePfidz8IR jmK+lM+aIhXXwh3sDMllDlxeKIj7neuqp8CsvCCdZXcrIBMEiISD1mcyEbI= -----END CERTIFICATE-----Generated at Mon Aug 4 19:16:42 2025 by rpki-client