$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d725f87f-a86a-4fc5-843b-fa61c0834c10.roa File: d725f87f-a86a-4fc5-843b-fa61c0834c10.roa (raw, json) Hash identifier: ivoiA0pq7MnwYy/2ViGwZnRMzA/Zy+LvPraHhU/zDlQ= Subject key identifier: 61:DD:A2:35:0A:23:AD:F0:19:F1:48:90:0C:96:A7:0B:56:6B:1A:F2 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 3A7DE980BC5A5B1FC9242A44CBB402AD7ADC1AA2 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d725f87f-a86a-4fc5-843b-fa61c0834c10.roa Signing time: Mon 09 Jun 2025 16:11:44 +0000 ROA not before: Mon 09 Jun 2025 16:11:44 +0000 ROA not after: Mon 14 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.159.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:7d:e9:80:bc:5a:5b:1f:c9:24:2a:44:cb:b4:02:ad:7a:dc:1a:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Jun 9 16:11:44 2025 GMT Not After : Jul 14 23:59:59 2025 GMT Subject: serialNumber=ca06842baf8fe6e084693c3c89cd1e2a4eb49a8f43ab8819f2699c62c4ea57df, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:4a:6b:a1:8c:58:d1:75:8f:1f:46:83:b6:0f: ed:ad:e8:ad:6f:69:30:3e:32:92:0f:f6:a6:5d:e9: bf:7d:3a:43:cd:03:aa:55:f0:97:61:1b:75:49:3d: 58:66:02:fe:ff:7d:e8:3d:1a:85:a2:0d:9e:30:83: 87:c1:be:5a:94:a5:37:f7:5f:2f:b7:a5:b8:2e:6b: a5:72:bc:6f:31:46:be:64:5b:44:c8:5c:d9:57:28: 10:03:c3:c5:4e:9b:47:9a:e1:f3:d1:c2:be:20:5c: 99:f4:8d:f3:13:c3:9c:47:e1:45:7a:1a:89:6a:8e: 75:76:dc:20:cd:21:b5:ed:3d:21:30:e0:53:9b:cf: 3a:7e:e5:38:85:81:d5:e8:eb:95:10:a7:af:cc:a0: a3:bb:94:c4:a0:14:fa:6d:61:00:3f:cd:20:e8:0f: 1c:76:1c:a8:b5:3e:47:ba:d3:2e:e3:8b:ab:99:12: 20:7b:79:6f:64:9d:c0:de:3b:5d:33:30:5e:70:1e: ea:8d:ab:00:37:38:c0:3d:6b:fd:1f:1d:eb:83:f2: 56:ba:0a:7a:7a:37:f1:d0:e0:a3:9e:78:7f:4a:40: dc:e5:04:32:6d:9f:81:f5:f8:a6:33:0c:20:c7:4c: 84:70:0b:d8:3c:06:ee:f1:ea:60:06:2d:a6:b1:09: 2f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:DD:A2:35:0A:23:AD:F0:19:F1:48:90:0C:96:A7:0B:56:6B:1A:F2 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d725f87f-a86a-4fc5-843b-fa61c0834c10.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.159.0.0/18 Signature Algorithm: sha256WithRSAEncryption 3e:40:d8:37:88:6a:db:87:ef:fc:7c:1c:e9:eb:b5:35:20:b8: e9:53:f4:e9:84:3e:98:12:10:ee:a9:35:58:ee:77:6d:80:cc: 99:2e:da:66:dc:32:ae:5f:f6:b2:49:0b:25:9c:e3:dd:7f:4f: 2d:95:3d:7d:2c:9d:15:82:5c:56:28:12:d8:d8:c7:e1:69:b0: 7e:69:16:64:d9:8b:52:2a:7b:f5:94:2a:51:eb:04:d5:87:12: 77:60:b0:a8:91:a1:34:d0:66:34:52:63:f4:e7:9d:e5:f9:95: cd:97:19:d3:f2:0b:5d:28:9d:f1:9d:5f:23:9d:1d:f0:6c:b2: 8b:1b:09:77:f9:a0:ea:3a:1d:df:4d:47:93:49:c6:db:27:ca: 79:13:da:79:bf:3d:0a:6f:31:ac:e2:ed:9f:7c:6a:2b:50:1f: 3e:a4:34:90:d3:fb:9a:e2:db:8b:3e:a0:58:36:c6:d7:4b:0a: 71:1e:94:e7:bb:8f:9b:17:8e:8a:da:f1:6f:f4:1e:b9:9d:57: 69:65:b1:59:df:ed:fd:43:48:4f:f7:3e:2a:66:1e:27:52:04: ef:95:8b:a2:01:33:e1:5a:34:99:ce:e8:13:96:b7:dc:a4:94: b0:fd:35:2b:b1:12:91:89:22:63:21:fe:b3:de:b0:fd:df:6c: ea:94:e9:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOn3pgLxaWx/JJCpEy7QCrXrcGqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwNjA5MTYxMTQ0WhcNMjUwNzE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYTA2ODQyYmFmOGZlNmUwODQ2OTNjM2M4OWNkMWUyYTRl YjQ5YThmNDNhYjg4MTlmMjY5OWM2MmM0ZWE1N2RmMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfSmuhjFjRdY8fRoO2D+2t6K1vaTA+MpIP9qZd6b99OkPN A6pV8JdhG3VJPVhmAv7/feg9GoWiDZ4wg4fBvlqUpTf3Xy+3pbgua6VyvG8xRr5k W0TIXNlXKBADw8VOm0ea4fPRwr4gXJn0jfMTw5xH4UV6GolqjnV23CDNIbXtPSEw 4FObzzp+5TiFgdXo65UQp6/MoKO7lMSgFPptYQA/zSDoDxx2HKi1Pke60y7ji6uZ EiB7eW9kncDeO10zMF5wHuqNqwA3OMA9a/0fHeuD8la6Cnp6N/HQ4KOeeH9KQNzl BDJtn4H1+KYzDCDHTIRwC9g8Bu7x6mAGLaaxCS87AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYd2iNQojrfAZ8UiQDJanC1ZrGvIwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2Q3MjVmODdmLWE4NmEtNGZjNS04NDNiLWZhNjFjMDgzNGMxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2nwAwDQYJKoZIhvcNAQELBQADggEBAD5A2DeIatuH7/x8HOnrtTUguOlT 9OmEPpgSEO6pNVjud22AzJku2mbcMq5f9rJJCyWc491/Ty2VPX0snRWCXFYoEtjY x+FpsH5pFmTZi1Iqe/WUKlHrBNWHEndgsKiRoTTQZjRSY/TnneX5lc2XGdPyC10o nfGdXyOdHfBssosbCXf5oOo6Hd9NR5NJxtsnynkT2nm/PQpvMazi7Z98aitQHz6k NJDT+5ri24s+oFg2xtdLCnEelOe7j5sXjora8W/0HrmdV2llsVnf7f1DSE/3Pipm HidSBO+Vi6IBM+FaNJnO6BOWt9yklLD9NSuxEpGJImMh/rPesP3fbOqU6S8= -----END CERTIFICATE-----Generated at Sat Jun 14 05:49:39 2025 by rpki-client