$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bafbe347-7d54-4adc-9f60-0bb4eee46341.roa File: bafbe347-7d54-4adc-9f60-0bb4eee46341.roa (raw, json) Hash identifier: zW+YcWLtlrppo7GzIHmx0IoI7LaGHSjtUCD1n38+jA4= Subject key identifier: ED:BF:F2:A4:5E:9A:19:D7:BC:62:CE:CC:28:A3:31:29:D9:60:32:55 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 5B9C9C8512BB0D6F4506F296421C9DFEC8D67421 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bafbe347-7d54-4adc-9f60-0bb4eee46341.roa Signing time: Mon 14 Jul 2025 15:20:18 +0000 ROA not before: Mon 14 Jul 2025 15:20:18 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 13.217.78.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:9c:9c:85:12:bb:0d:6f:45:06:f2:96:42:1c:9d:fe:c8:d6:74:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 14 15:20:18 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=89122e4cafed13b9b097db1d200ae6ccb3c880b9b2d57453354cd6edf47ea585, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e8:81:69:9b:52:e0:38:29:c5:4d:36:14:92: 80:8e:58:f8:65:2f:4f:a1:da:f9:04:47:18:47:25: 4d:fa:cb:a1:05:8c:c5:4e:b3:2b:03:59:76:ee:3b: 72:74:1b:cb:32:63:69:a0:45:9e:11:a5:f7:20:bb: 15:33:b2:fd:df:25:ad:20:e4:20:0f:e1:46:cf:12: 25:5b:af:f3:a7:cb:79:44:55:33:58:98:c3:51:7f: cf:22:c9:76:27:48:f6:b1:69:51:18:81:3c:6f:e4: 80:91:f5:26:31:09:27:b9:fd:a5:b4:4a:35:42:69: 54:e4:ac:d0:36:5d:02:d3:39:c6:6d:e5:6a:01:12: 73:d1:bb:5f:34:af:71:ad:ef:ea:4a:8f:24:cb:3d: 6d:a3:09:24:b0:48:ec:7e:7d:08:c1:c9:52:1e:ad: 4d:6c:35:50:c0:e0:c8:bf:ca:04:99:ff:93:f2:00: 77:b4:78:9b:6b:77:34:dd:56:32:50:ae:e0:55:76: 7e:d8:68:7b:fa:ab:6e:76:52:e7:25:16:4a:7c:cf: e8:fe:8b:ac:5f:82:79:9a:dc:1c:4a:d3:4c:27:4f: 89:d3:f7:b1:bf:09:09:c7:9b:b7:15:c7:83:16:c8: 59:74:6e:6c:44:3c:51:16:fd:e5:66:db:bc:84:04: 47:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:BF:F2:A4:5E:9A:19:D7:BC:62:CE:CC:28:A3:31:29:D9:60:32:55 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bafbe347-7d54-4adc-9f60-0bb4eee46341.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.217.78.0/23 Signature Algorithm: sha256WithRSAEncryption 23:5a:73:e8:26:68:cc:79:b6:d9:6a:52:9c:64:fe:85:f2:a7: da:b5:46:c1:fa:d5:41:d5:46:1d:93:c3:34:e6:22:ba:8c:ae: 68:89:ef:c4:44:14:c0:5a:d0:22:91:03:b6:3a:f5:92:c0:37: ac:bb:41:2a:fe:20:d6:d6:ce:86:be:a3:a0:7a:de:4f:7f:53: f2:06:14:22:9d:2c:88:2b:72:e4:1b:1a:23:d5:07:1d:df:ff: cb:46:4b:d2:41:0e:b1:8c:75:6e:b3:be:38:15:36:cb:03:4c: 03:b2:09:45:32:31:52:78:7d:07:00:d0:9b:58:ba:65:1e:8b: b9:b6:b2:83:7f:02:5a:66:d9:f0:5b:f0:36:e7:9c:67:47:98: 9a:5d:87:42:27:46:70:95:f0:c1:ef:39:aa:a8:4f:77:6f:cd: 57:cb:dc:14:76:40:bb:2e:7a:db:62:1e:12:0f:0b:7d:b9:8d: ea:4c:5c:a3:82:c1:7b:61:c2:21:61:23:67:4b:85:5d:ae:63: 66:50:a6:7b:6b:a0:da:46:6e:ed:0d:02:b6:e0:7d:40:c6:c0: 6a:6d:60:8f:fc:ad:4a:55:02:cc:34:5d:a3:2a:06:ed:a0:36: e4:ea:9b:35:4b:00:74:63:63:8c:51:c5:02:8f:c6:ce:3b:8c: 36:ed:ea:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW5ychRK7DW9FBvKWQhyd/sjWdCEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzE0MTUyMDE4WhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTEyMmU0Y2FmZWQxM2I5YjA5N2RiMWQyMDBhZTZjY2Iz Yzg4MGI5YjJkNTc0NTMzNTRjZDZlZGY0N2VhNTg1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDL6IFpm1LgOCnFTTYUkoCOWPhlL0+h2vkERxhHJU36y6EF jMVOsysDWXbuO3J0G8syY2mgRZ4RpfcguxUzsv3fJa0g5CAP4UbPEiVbr/Ony3lE VTNYmMNRf88iyXYnSPaxaVEYgTxv5ICR9SYxCSe5/aW0SjVCaVTkrNA2XQLTOcZt 5WoBEnPRu180r3Gt7+pKjyTLPW2jCSSwSOx+fQjByVIerU1sNVDA4Mi/ygSZ/5Py AHe0eJtrdzTdVjJQruBVdn7YaHv6q252UuclFkp8z+j+i6xfgnma3BxK00wnT4nT 97G/CQnHm7cVx4MWyFl0bmxEPFEW/eVm27yEBEdJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7b/ypF6aGde8Ys7MKKMxKdlgMlUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JhZmJlMzQ3LTdkNTQtNGFkYy05ZjYwLTBiYjRlZWU0NjM0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEN2U4wDQYJKoZIhvcNAQELBQADggEBACNac+gmaMx5ttlqUpxk/oXyp9q1 RsH61UHVRh2TwzTmIrqMrmiJ78REFMBa0CKRA7Y69ZLAN6y7QSr+INbWzoa+o6B6 3k9/U/IGFCKdLIgrcuQbGiPVBx3f/8tGS9JBDrGMdW6zvjgVNssDTAOyCUUyMVJ4 fQcA0JtYumUei7m2soN/Alpm2fBb8DbnnGdHmJpdh0InRnCV8MHvOaqoT3dvzVfL 3BR2QLsuettiHhIPC325jepMXKOCwXthwiFhI2dLhV2uY2ZQpntroNpGbu0NArbg fUDGwGptYI/8rUpVAsw0XaMqBu2gNuTqmzVLAHRjY4xRxQKPxs47jDbt6uA= -----END CERTIFICATE-----Generated at Mon Aug 4 14:01:46 2025 by rpki-client