$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bed5c1f0-a446-4c7a-ace9-206cba43d6b5.roa File: bed5c1f0-a446-4c7a-ace9-206cba43d6b5.roa (raw, json) Hash identifier: ZCCC9SgWxu50EEur8BrclYed44m4kOh7pSp0fCdpi9A= Subject key identifier: D4:35:4C:79:A6:54:D2:3B:2A:6C:51:29:32:9D:E4:86:5B:3D:25:E4 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6B7334ADECBE43E5CBADC2F5A9D2CD5F00A10FB5 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bed5c1f0-a446-4c7a-ace9-206cba43d6b5.roa Signing time: Fri 25 Jul 2025 16:10:20 +0000 ROA not before: Fri 25 Jul 2025 16:10:20 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.184.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:73:34:ad:ec:be:43:e5:cb:ad:c2:f5:a9:d2:cd:5f:00:a1:0f:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jul 25 16:10:20 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=7a9f53527baf2a7d9d5f039d67fd2ac678cdbde88259cf9f40ca34389a89364c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f0:48:c0:07:6e:8d:b8:ec:98:81:e7:69:17: e9:29:46:51:e0:84:40:d9:20:f4:6f:8f:24:c8:c1: d4:8b:23:12:12:de:4e:ee:0c:57:7d:70:22:0e:b5: c6:db:1e:06:72:5a:7e:08:bd:36:0b:70:78:0e:eb: 91:6e:d3:c4:19:8a:4b:e6:12:ea:f2:e3:84:ca:ae: b2:0c:b6:7b:0d:1c:c9:54:a2:ce:70:67:53:75:8c: 93:ac:10:be:9e:de:75:1d:e2:f3:d2:b4:9a:5b:dc: 21:8d:a4:63:31:b1:7c:4c:32:fd:62:b4:42:d7:9e: 5f:fa:cf:33:6f:16:51:2d:62:34:2a:89:a3:bb:57: 3a:ba:33:eb:76:7f:18:0f:37:f2:05:f1:3e:04:2f: 83:2c:c0:79:a6:aa:e6:97:8c:bb:be:6b:64:2f:59: 80:dd:33:73:5f:b5:ea:cd:16:be:7d:a2:b2:cd:94: da:bd:51:75:62:95:5f:55:9e:d0:c3:bd:85:65:a1: 06:ba:23:c1:77:bd:04:4e:e7:4c:cb:f1:ca:90:28: ab:16:c5:9e:87:5b:1e:b1:2d:c1:4d:6a:d2:5e:12: 03:e6:8b:d3:ba:85:4e:2e:98:92:26:69:c2:75:ea: a0:9a:c0:b0:ec:59:b5:1b:70:4b:1e:f7:22:aa:85: 4e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:35:4C:79:A6:54:D2:3B:2A:6C:51:29:32:9D:E4:86:5B:3D:25:E4 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/bed5c1f0-a446-4c7a-ace9-206cba43d6b5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.184.0.0/18 Signature Algorithm: sha256WithRSAEncryption 28:30:bd:cd:43:43:ac:30:07:65:40:07:72:ec:28:a3:30:02: 47:9d:b0:a9:a9:23:93:43:7e:a7:48:fd:12:95:f3:34:55:39: 16:c6:66:a8:87:2f:c8:46:43:ae:c9:7e:e0:bb:8c:a6:02:e4: c2:a2:50:5a:d0:36:85:53:40:a2:28:48:54:0e:85:10:68:91: 26:2e:54:c7:c2:b3:24:a3:0b:6b:4e:1b:c6:b3:c2:64:96:be: 50:6b:3e:25:fa:28:83:f6:61:b3:d7:cc:37:1f:51:6f:6c:29: 43:75:25:e7:05:79:ef:97:e0:73:54:32:65:33:1b:30:9c:f2: 99:0e:ca:c1:4b:d7:06:fd:45:c3:ce:12:bc:5f:1c:91:e0:5b: f9:ed:9e:2b:d0:a5:d5:fd:f5:09:72:20:e2:b9:94:e2:54:e4: 32:3d:06:5e:c8:81:fd:b5:50:0a:26:5d:f6:d3:81:cb:97:a8: 64:61:b4:c1:61:92:f6:f4:1d:b0:3c:ef:79:34:41:f5:a5:39: 19:e3:c8:0e:e7:f1:61:a4:8a:19:fb:cc:39:4a:7c:55:d4:a6: 9f:23:2f:1e:d6:2c:86:96:2d:97:13:07:1d:30:6f:4c:b4:a4: 56:b0:07:44:fd:fc:27:dc:f4:7b:16:33:cb:d7:35:b7:3a:82: 18:59:46:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa3M0rey+Q+XLrcL1qdLNXwChD7UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNzI1MTYxMDIwWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTlmNTM1MjdiYWYyYTdkOWQ1ZjAzOWQ2N2ZkMmFjNjc4 Y2RiZGU4ODI1OWNmOWY0MGNhMzQzODlhODkzNjRjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+8EjAB26NuOyYgedpF+kpRlHghEDZIPRvjyTIwdSLIxIS 3k7uDFd9cCIOtcbbHgZyWn4IvTYLcHgO65Fu08QZikvmEury44TKrrIMtnsNHMlU os5wZ1N1jJOsEL6e3nUd4vPStJpb3CGNpGMxsXxMMv1itELXnl/6zzNvFlEtYjQq iaO7Vzq6M+t2fxgPN/IF8T4EL4MswHmmquaXjLu+a2QvWYDdM3NfterNFr59orLN lNq9UXVilV9VntDDvYVloQa6I8F3vQRO50zL8cqQKKsWxZ6HWx6xLcFNatJeEgPm i9O6hU4umJImacJ16qCawLDsWbUbcEse9yKqhU6DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1DVMeaZU0jsqbFEpMp3khls9JeQwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2JlZDVjMWYwLWE0NDYtNGM3YS1hY2U5LTIwNmNiYTQzZDZiNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2uAAwDQYJKoZIhvcNAQELBQADggEBACgwvc1DQ6wwB2VAB3LsKKMwAked sKmpI5NDfqdI/RKV8zRVORbGZqiHL8hGQ67JfuC7jKYC5MKiUFrQNoVTQKIoSFQO hRBokSYuVMfCsySjC2tOG8azwmSWvlBrPiX6KIP2YbPXzDcfUW9sKUN1JecFee+X 4HNUMmUzGzCc8pkOysFL1wb9RcPOErxfHJHgW/ntnivQpdX99QlyIOK5lOJU5DI9 Bl7Igf21UAomXfbTgcuXqGRhtMFhkvb0HbA873k0QfWlORnjyA7n8WGkihn7zDlK fFXUpp8jLx7WLIaWLZcTBx0wb0y0pFawB0T9/Cfc9HsWM8vXNbc6ghhZRgA= -----END CERTIFICATE-----Generated at Tue Aug 5 22:56:54 2025 by rpki-client