$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cd3cba7a-e3ac-4c64-825b-e5de6c7078fe.roa File: cd3cba7a-e3ac-4c64-825b-e5de6c7078fe.roa (raw, json) Hash identifier: 1C/bKo0IDYv2lKLHYQTrE4AUV3R3JMCwYKOh7Zftr9M= Subject key identifier: DE:E2:A4:A2:A4:36:F8:CF:83:F4:5D:FB:94:74:76:CC:16:ED:A7:F0 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6B728BBAFBD44E62C22FF7482792DFFA08FDFB60 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cd3cba7a-e3ac-4c64-825b-e5de6c7078fe.roa Signing time: Tue 20 May 2025 17:00:58 +0000 ROA not before: Tue 20 May 2025 17:00:58 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 52.46.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:72:8b:ba:fb:d4:4e:62:c2:2f:f7:48:27:92:df:fa:08:fd:fb:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 20 17:00:58 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=3290fe23ceb3d9f56c5f76534ae581aff4c3c9ec3ad80f057d3606265f3114b3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:50:93:c5:cc:5d:09:a7:25:95:a4:7e:2a:c8: 0e:5c:60:59:2d:1d:cf:f3:d8:b5:1b:97:91:10:59: 4a:4a:c1:57:db:37:f6:35:ac:ad:95:58:c8:92:b5: 96:9e:85:dd:b1:8b:67:8a:31:8d:fc:2a:8f:a8:d0: 21:f3:b2:a6:28:12:12:44:86:9e:74:b7:f5:b5:8a: 73:60:22:b6:16:b2:cd:1e:74:66:a4:43:2b:ff:c8: 57:e3:d4:3f:c8:1a:d0:72:80:d9:53:96:10:8f:18: ee:47:96:0e:d9:1d:50:7e:d2:c2:ad:cf:da:ea:ab: 84:39:c2:d7:49:a3:03:e0:fd:81:5d:bc:17:66:6f: c3:f9:af:e1:ab:0f:2f:b6:03:9a:1a:4f:d1:ca:ed: 30:e8:8f:1b:b8:40:8f:78:2c:67:8d:9e:fa:cd:24: 84:46:f3:66:ea:11:9c:07:37:37:cd:0c:53:61:6a: e5:b7:b1:38:fe:df:08:d7:e8:b0:4b:62:78:0b:cc: 49:e0:2b:f0:be:dd:7c:60:89:c8:19:f3:c1:70:98: 2b:cc:18:9e:a2:50:ab:45:d9:e7:fe:41:fa:2d:6c: d7:ac:15:c9:c6:51:bf:f4:c2:15:e5:6d:cb:c0:57: a3:11:4f:7b:41:8e:ca:2b:cc:ae:8a:ef:38:a0:e5: a1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E2:A4:A2:A4:36:F8:CF:83:F4:5D:FB:94:74:76:CC:16:ED:A7:F0 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/cd3cba7a-e3ac-4c64-825b-e5de6c7078fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 52.46.80.0/21 Signature Algorithm: sha256WithRSAEncryption 26:15:71:58:99:0b:0b:37:1b:4c:3c:47:4b:7d:43:c2:15:c5: 13:3b:f5:82:d4:c9:96:6b:5c:bb:81:b6:c4:4a:ed:03:73:34: 50:dd:29:72:99:0c:2e:f3:7a:84:62:39:03:33:2c:51:c2:1c: 98:f1:63:36:7b:60:28:9a:5e:82:96:70:b5:d3:ee:78:47:ee: a0:9f:38:c8:87:98:4b:fb:78:49:11:f5:01:0d:d5:eb:43:54: b8:c1:b7:ed:51:02:aa:52:8d:94:6e:f5:6c:ee:f4:ea:ca:c3: e3:87:6b:6a:d8:74:b4:ac:4a:05:05:71:8a:d1:b1:29:88:e6: 40:18:75:1e:e2:13:a8:11:0f:a4:14:bc:70:85:4b:c8:3f:f2: f4:52:a8:ac:67:d2:7b:3e:82:c8:e8:74:cd:59:18:80:53:ad: fc:d5:98:59:18:92:da:7e:d1:60:42:9f:69:6b:23:7e:67:8b: c8:64:05:05:19:8b:ed:fd:51:b5:97:d4:a0:e1:d8:f2:cf:39: 8e:41:8b:03:f4:8f:93:5a:e0:38:5f:41:70:8c:d2:61:4c:1a: 5d:fd:0a:30:dd:d7:32:17:b7:57:c8:de:d5:92:f3:6a:26:55: aa:b8:7d:01:28:c1:97:ed:26:bf:68:c9:19:5b:2f:49:17:67: 88:14:90:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa3KLuvvUTmLCL/dIJ5Lf+gj9+2AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNTIwMTcwMDU4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjkwZmUyM2NlYjNkOWY1NmM1Zjc2NTM0YWU1ODFhZmY0 YzNjOWVjM2FkODBmMDU3ZDM2MDYyNjVmMzExNGIzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7UJPFzF0JpyWVpH4qyA5cYFktHc/z2LUbl5EQWUpKwVfb N/Y1rK2VWMiStZaehd2xi2eKMY38Ko+o0CHzsqYoEhJEhp50t/W1inNgIrYWss0e dGakQyv/yFfj1D/IGtBygNlTlhCPGO5Hlg7ZHVB+0sKtz9rqq4Q5wtdJowPg/YFd vBdmb8P5r+GrDy+2A5oaT9HK7TDojxu4QI94LGeNnvrNJIRG82bqEZwHNzfNDFNh auW3sTj+3wjX6LBLYngLzEngK/C+3XxgicgZ88FwmCvMGJ6iUKtF2ef+QfotbNes FcnGUb/0whXlbcvAV6MRT3tBjsorzK6K7zig5aGTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3uKkoqQ2+M+D9F37lHR2zBbtp/AwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2NkM2NiYTdhLWUzYWMtNGM2NC04MjViLWU1ZGU2YzcwNzhmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM0LlAwDQYJKoZIhvcNAQELBQADggEBACYVcViZCws3G0w8R0t9Q8IVxRM7 9YLUyZZrXLuBtsRK7QNzNFDdKXKZDC7zeoRiOQMzLFHCHJjxYzZ7YCiaXoKWcLXT 7nhH7qCfOMiHmEv7eEkR9QEN1etDVLjBt+1RAqpSjZRu9Wzu9OrKw+OHa2rYdLSs SgUFcYrRsSmI5kAYdR7iE6gRD6QUvHCFS8g/8vRSqKxn0ns+gsjodM1ZGIBTrfzV mFkYktp+0WBCn2lrI35ni8hkBQUZi+39UbWX1KDh2PLPOY5BiwP0j5Na4DhfQXCM 0mFMGl39CjDd1zIXt1fI3tWS82omVaq4fQEowZftJr9oyRlbL0kXZ4gUkDE= -----END CERTIFICATE-----Generated at Sat Jun 14 05:58:06 2025 by rpki-client